Vyskakují okna v prohlížeči - soutěže, porno - log
Napsal: 17 úno 2017 15:01
Zdravím, vyskakují hlavně v chromu okna se soutěžmi a pornem (hlavně píšu proto, že to není můj počítač, a tak jsem byl svědkem jen u chromu).
přikládám i log:
Logfile of random's system information tool 1.14 (written by random/random)
Run by stranik at 2017-02-17 14:49:59
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 43 GB (38%) free of 114 GB
Total RAM: 3293 MB (55% free)
X86
HijackThis download failed
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job -
C:\Windows\tasks\Adobe Flash Player Updater.job -
=========Mozilla firefox=========
ProfilePath - C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default
prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz"
prefs.js - "keyword.URL" - "http://search.centrum.cz/?charset=UTF-8 ... toolbar-ff, ch-toolbar-ff-searchbox&utm_source=ch-toolbar&utm_medium=ff-centrum-cz&utm_content=toolbar-searchbox&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.221 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_24_0_0_221.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files\Software602\602XML\Filler\npfiller.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\
yqs-barff-yandex.xml
C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\addons.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Diagnostics - extension - diagnostics@mozilla.org - C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\features\{9d717b08-c9a7-4284-9dc5-40c28957d020}\diagnostics@mozilla.org.xpi
Send HSTS Priming Requests - extension - hsts-priming@mozilla.org - C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\features\{9d717b08-c9a7-4284-9dc5-40c28957d020}\hsts-priming@mozilla.org.xpi
SHA-1 deprecation staged rollout - extension - disableSHA1rollout@mozilla.org - C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\features\{9d717b08-c9a7-4284-9dc5-40c28957d020}\disableSHA1rollout@mozilla.org.xpi
C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\pluginreg.dat
Plugin - Adobe Acrobat - 15.23.20053.15062 - C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
Plugin - VLC Web Plugin - 2.2.4.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Software602 Form Filler - 4.15.0.0 - C:\Program Files\Software602\602XML\Filler\npfiller.dll
Plugin - Silverlight Plug-In - 5.1.50901.0 - c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll
Plugin - Intel® Identity Protection Technology - 2.1.42.0 - C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin - Intel® Identity Protection Technology - 2.1.42.0 - C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin - Shockwave Flash - 24.0.0.221 - C:\Windows\system32\Macromed\Flash\NPSWF32_24_0_0_221.dll
=========Google Chrome=========
C:\Users\stranik\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod 0.2
Extension aiimdkdngfcipjohbjenkahhlhccpdbc 1 Flash Video Downloader 23.1.1
Extension aminlpmkfcdibgpgfajlgnamicjckkjf 2 Поиск Яндекса 1.0.3
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension bgjpfhpjcgdppjbgnpnjllokbmcdllig 0 Seznam Lištička - Email 1.3.20
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cfhdojbkjhnklbpkdaibdccddilifddb 1 Adblock Plus 1.12.4
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 0 Adobe Acrobat 15.1.0.5
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky Google 1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.8.7
Extension jdkihdhlegcdggknokfekoemkjjnjhgi 2 Стартовая — Яндекс 1.0.3
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mcnjneakpboeehbdelhbbngnkdbhmikg 1 New window with tabs open 1.2
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension olfeabkoenfaoljndfecamgilllcpiak 0 Seznam Lištička - Rychlá volba 1.8.6
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5616.1121.0.3
Homepage: https://www.google.cz/
default_search_provider.search_url:
C:\Users\stranik\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\aminlpmkfcdibgpgfajlgnamicjckkjf]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jdkihdhlegcdggknokfekoemkjjnjhgi]
"Path"=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={6A1806CD-94D4-4689-BA73-E35EA1EA9990}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-01-10 1052384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27 193136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414A-9456-AF95AC9ED7B5}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-01-10 1052384]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27 193136]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IMSS"=C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2012-07-19 133440]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2012-06-11 10996368]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-02-29 56088]
"USB3MON"=C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-05-20 291648]
"AVG_UI"=C:\Program Files\AVG\Framework\Common\avguirnx.exe [2016-12-06 220944]
"BrMfcWnd"=C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [2009-05-26 1159168]
"ControlCenter3"=C:\Program Files\Brother\ControlCenter3\brctrcen.exe [2008-12-24 114688]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"Cobian Backup 11 interface"=C:\Program Files\Cobian Backup 11\cbInterface.exe [2012-12-05 4407808]
"AvgUi"=C:\Program Files\AVG\Framework\Common\avguirnx.exe [2016-12-06 220944]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"PCSpeedUp"=C:\Program Files\Zrychleni Pocitace\PCSUNotifier.exe []
"cz.seznam.software.szndesktop"=C:\Users\stranik\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"cz.seznam.software.autoupdate"=C:\Users\stranik\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"F824C25B7D77C23EE6CA330D0B86D8C73B66CCA3._service_run"=C:\Program Files\Google\Chrome\Application\chrome.exe [2017-02-01 945496]
"GoogleChromeAutoLaunch_86B3D513D540A2504FD4A88DD59DEFC9"=C:\Program Files\Google\Chrome\Application\chrome.exe [2017-02-01 945496]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Network Server.lnk - C:\Program Files\WIBUKEY\Server\WkSvMgr.exe
PadsyClient.lnk - C:\Program Files\PadsyClient\PadsyClient.exe
C:\Users\stranik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Klient systému MISE.lnk - C:\Mise\Bin\Mise.exe
Mazání složky.lnk - C:\Programy\Mazání složky\mazani.exe
Ovládací a nastavovací program.lnk - C:\Mise\Bin\Mise.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{73FA19D0-2D75-11D2-995D-00C04F98BBC9}]
"StubPath"=
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{A6EADE66-0000-0000-484E-7E8A45000000}]
"StubPath"="C:\Windows\system32\Rundll32.exe" "C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-02-17 14:49:59 ----D---- C:\rsit
2017-02-17 14:49:39 ----D---- C:\Vyúčtování pro ZP
2017-02-16 07:08:53 ----A---- C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-02-14 21:48:35 ----D---- C:\Users\stranik\AppData\Roaming\SecureAge Technology
2017-02-14 21:40:15 ----A---- C:\Windows\system32\scan.db
2017-02-14 21:40:13 ----D---- C:\ProgramData\ClamAV
2017-02-14 21:40:11 ----D---- C:\ProgramData\SecureAge Technology
2017-02-14 20:59:23 ----A---- C:\Windows\Reimage.ini
2017-01-30 08:14:33 ----D---- C:\Program Files\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2017-02-17 14:49:52 ----D---- C:\Windows\Temp
2017-02-17 14:49:39 ----D---- C:\Users\stranik\AppData\Roaming\Seznam.cz
2017-02-17 14:18:32 ----D---- C:\ProgramData\MFAData
2017-02-17 14:16:45 ----D---- C:\Windows\System32
2017-02-17 14:16:45 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-02-17 14:15:33 ----A---- C:\Windows\system32\log.txt
2017-02-17 12:14:47 ----D---- C:\Windows\system32\config
2017-02-17 11:58:28 ----D---- C:\Program Files\Dialog MIS
2017-02-17 09:40:44 ----D---- C:\biochemie
2017-02-16 12:00:06 ----SHD---- C:\System Volume Information
2017-02-15 12:01:07 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2017-02-15 12:01:05 ----D---- C:\Windows\system32\Macromed
2017-02-14 23:33:03 ----D---- C:\Program Files\Advanced OCR Free
2017-02-14 22:48:19 ----D---- C:\Windows
2017-02-14 22:48:16 ----RD---- C:\Program Files
2017-02-14 22:47:29 ----D---- C:\Windows\system32\drivers
2017-02-14 22:44:29 ----D---- C:\Windows\inf
2017-02-14 22:43:56 ----D---- C:\Windows\system32\Tasks
2017-02-14 21:48:08 ----D---- C:\Install
2017-02-14 21:43:41 ----D---- C:\Windows\Panther
2017-02-14 21:43:40 ----D---- C:\Windows\Minidump
2017-02-14 21:43:40 ----D---- C:\Windows\Logs
2017-02-14 21:43:40 ----D---- C:\Windows\debug
2017-02-14 21:40:13 ----HD---- C:\ProgramData
2017-02-14 14:05:45 ----RSD---- C:\Windows\assembly
2017-02-14 14:05:45 ----D---- C:\Windows\Microsoft.NET
2017-02-14 14:05:35 ----SHD---- C:\Windows\Installer
2017-02-14 07:05:59 ----D---- C:\Program Files\TrueKey
2017-02-01 07:16:27 ----D---- C:\Program Files\Mozilla Maintenance Service
2017-01-24 14:42:19 ----D---- C:\CGMSERVER
2017-01-21 10:15:50 ----RSD---- C:\Windows\Fonts
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2016-10-05 207616]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2016-02-16 287008]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2016-09-26 197376]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2016-06-01 47360]
R0 Avgunivx;AVG Universal Driver; C:\Windows\system32\DRIVERS\avgunivx.sys [2016-06-20 65280]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2012-02-01 470808]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-05-20 15680]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2016-05-13 134912]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2016-11-04 259328]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-11-20 31664]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2016-11-30 244992]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2016-07-27 231680]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 WIBUKEY;WIBU-KEY Kernel Driver; C:\Windows\SYSTEM32\DRIVERS\WibuKey.sys [2011-09-22 73216]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2015-08-27 3035568]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2012-06-19 3240400]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-05-20 350016]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-05-20 793920]
R3 MEI;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECI.sys [2012-07-02 55104]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-09-29 490088]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 SAAppCtl;SAAppCtl; saappctl.del []
S3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver; C:\Windows\system32\DRIVERS\silabenm.sys [2009-08-10 17920]
S3 silabser;Silicon Labs CP210x USB to UART Bridge Driver; C:\Windows\system32\DRIVERS\silabser.sys [2009-08-10 63872]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 Wibukey2;Wibukey2; C:\Windows\system32\drivers\wibukey2.sys [2009-09-08 16384]
S4 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 ABBYY.Licensing.PDFTransformer.Classic.4.0;ABBYY PDF Transformer+ - Licensing Service; C:\Program Files\ABBYY PDF Transformer+\NetworkLicenseServer.exe [2014-03-25 959184]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-12-19 82640]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [2017-01-09 4154016]
R2 avgsvc;AVG Service; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [2016-12-06 935184]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\Av\avgwdsvcx.exe [2017-01-09 603288]
R2 Brother XP spl Service;BrSplService; C:\Windows\system32\brsvc01a.exe [2004-06-13 57344]
R2 cbVSCService11;Cobian Backup 11 Stínová kopie - Requester; C:\Program Files\Cobian Backup 11\cbVSCService11.exe [2012-12-05 67584]
R2 cgm.brevir-1;cgm.brevir-1; C:\CGMSERVER\bin\brevir-1\cgm.brevir-1.exe [2017-01-09 263680]
R2 cgm.ebooking-1;cgm.ebooking-1; C:\CGMSERVER\bin\ebooking-1\cgm.ebooking-1.exe [2015-04-29 26512]
R2 cgm.ecommunication-1;cgm.ecommunication-1; C:\CGMSERVER\bin\ecommunication-1\cgm.ecommunication-1.exe [2017-01-11 76384]
R2 cgm.postgres;cgm.postgres; C:/CGMSERVER/bin/pgsql/bin/pg_ctl.exe runservice -N cgm.postgres -D C:/CGMSERVER/data/pgsql []
R2 cgm.servercore;cgm.servercore; C:\CGMSERVER\bin\core\cgm.servercore.exe [2016-12-15 51200]
R2 CobianBackup11;Cobian Backup 11 Gravity; C:\Program Files\Cobian Backup 11\cbService.exe [2012-12-05 1131008]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\cscsvc.dll
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 HCS.MEDCONNECT.SERVICEMANAGER;HCS.MEDCONNECT.SERVICEMANAGER; C:\CGMSERVER\bin\medical-net\MedConnect.ServiceManager\HCS.MedConnect.ServiceManager.exe [2015-02-11 87952]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-02-01 13592]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2015-08-27 283568]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-06-19 462088]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-05 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-19 277824]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2015-04-09 5261584]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2017-01-05 996336]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2017-01-05 17304]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-19 365376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 Everything;Everything; C:\Program Files\SecureAge\Everything\Everything.exe -svc []
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe []
S2 SAEverythingServer;SecureAge Everything Server; C:\Program Files\SecureAge\Everything\EverythingServer.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-15 270936]
S3 AppMgmt;@appmgmts.dll,-3250; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll"=%SystemRoot%\System32\appmgmts.dll
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2016-11-29 45752]
S3 AvgAMPS;AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [2017-01-09 971160]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\system32\IntelCpHeciSvc.exe [2015-08-27 290224]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-12-03 194032]
S3 HCS.MedConnect.Service;HCS.MedConnect.Service; C:\CGMSERVER\bin\medical-net\MedConnect\HCS.MedConnect.Service.exe [2015-02-11 48528]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2017-01-30 172488]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; %SystemRoot%\System32\svchost.exe -k PeerDist;"ServiceDll"=%SystemRoot%\system32\peerdistsvc.dll
S3 saappsvc;SecureAge Application Whitelisting Service; C:\Program Files\SecureAge\Whitelist\saappsvc.exe []
S3 sascansvc;SecureAge Virus Scanner; C:\Program Files\SecureAge\AntiVirus\sascansvc.exe []
S3 SecureAPlusService;SecureAPlus Service; C:\Program Files\SecureAge\Whitelist\SecureAPlusService.exe []
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\system32\storsvc.dll
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2017-01-05 73968]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\umrdp.dll
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-07-07 1343400]
S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 PadsyServer;Padsy Server; C:\PROGRA~1\PADSYS~1\wrapper.exe [2013-10-31 204800]
-----------------EOF-----------------
a log info.txt ...................
info.txt logfile of random's system information tool 1.14 2017-02-17 14:50:02
======MBR======
Unable to open MBR
======Uninstall list======
7-Zip 9.20 [2014/07/07 05:45:05]-->"C:\Program Files\7-Zip\Uninstall.exe"
ABBYY FineReader 9.0 Sprint [2014/07/22 13:44:45]-->MsiExec.exe /I {F9000000-0018-0000-0000-074957833700}
ABBYY FineReader 9.0 Sprint [20140722]-->MsiExec.exe /X{F9000000-0018-0000-0000-074957833700}
ABBYY PDF Transformer+ [20140911]-->MsiExec.exe /I{FA400000-0001-0000-0000-074957833700}
Adobe Acrobat Reader DC - Czech [20170123]-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AC0F074E4100}
Adobe Flash Player 24 ActiveX [2017/02/15 10:01:06]-->C:\Windows\system32\Macromed\Flash\FlashUtil32_24_0_0_221_ActiveX.exe -maintain activex
Adobe Flash Player 24 NPAPI [2017/02/15 11:01:06]-->C:\Windows\system32\Macromed\Flash\FlashUtil32_24_0_0_221_Plugin.exe -maintain plugin
Adobe Flash Player 24 PPAPI [2017/02/15 12:01:07]-->C:\Windows\system32\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe -maintain pepperplugin
Adobe Refresh Manager [20170112]-->MsiExec.exe /I{AC76BA86-0804-1033-1959-001824211354}
Advanced OCR Free 6.5.4 [20140911]-->"C:\Program Files\Advanced OCR Free\unins000.exe"
AVG [20170119]-->MsiExec.exe /I{0EC28962-27C8-4421-A3E9-1655D3AB63A9}
AVG 2016 [20170131]-->MsiExec.exe /I{58BD347A-F9F6-4BAC-8838-998D0BCB87CA}
AVG Protection [2017/01/19 07:30:27]-->C:\Program Files\AVG\Setup\avgsetupx.exe /mode=offline /uninstall=av
Brother MFL-Pro Suite DCP-115C [20140722]-->"C:\Program Files\InstallShield Installation Information\{BB9AC6BF-71B6-42A4-9689-C17D9F44E79A}\Setup.exe" -runfromtemp -l0x0009 UNINSTALL Reg=Mini2e -removeonly
Cobian Backup 11 Gravity [2014/12/18 06:36:40]-->C:\Program Files\Cobian Backup 11\cbUninstall.exe
CompuGroup Medical - (PC DOKTOR / PC DENT) [20170214]-->MsiExec.exe /X{81F07A4F-A47E-4E0F-A75D-D24BD09BB2D8}
CompuGroup Medical - Brevíř [20170124]-->MsiExec.exe /X{2ED5E236-8C33-44A9-8A5E-64780464A80E}
CompuGroup Medical - CGM SERVER [20170124]-->MsiExec.exe /X{8FE2C676-72E8-4024-9066-710FE32112E8}
CompuGroup Medical - Ecommunication [20170124]-->MsiExec.exe /X{3850A53F-8A0E-45E1-9F11-D801237D3694}
CompuGroup Medical - Kniha objednávek [20150514]-->MsiExec.exe /X{CF314AF7-682B-4C77-B164-6FB0080D2726}
CompuGroup Medical - MEDICAL NET [20150925]-->MsiExec.exe /X{0726B7A2-A8F4-4BE1-A086-A93E9A5BA5BC}
EPSON Scan [2014/07/22 13:41:57]-->C:\Program Files\epson\escndv\setup\setup.exe /r
FMW 1 [20170105]-->MsiExec.exe /I{A2B92392-DC17-416B-88F6-A6A55E053E32}
Google Chrome [20150930]-->"C:\Program Files\Google\Chrome\Application\56.0.2924.87\Installer\setup.exe" --uninstall --system-level
Google Toolbar for Internet Explorer [20141203]-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Toolbar for Internet Explorer [2016/12/01 08:00:59]-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_8B0481A9A34D47CD.exe" /uninstall
Google Update Helper [20141118]-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Update Helper [20161219]-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Intel Security True Key [2017/01/19 07:16:01]-->C:\Program Files\TrueKey\Mcafee.TrueKey.Uninstaller.Exe
Intel(R) Control Center [2014/04/30 06:56:33]-->C:\Program Files\Intel\Intel Control Center\uninstaller\SetupICC.exe -uninstall -force -confirm
Intel(R) Management Engine Components [2014/04/30 06:56:15]-->C:\Program Files\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) Processor Graphics [2016/06/10 10:56:55]-->"C:\Program Files\Intel\Intel(R) Processor Graphics\Uninstall\setup.exe" -uninstall
Intel(R) Rapid Storage Technology [2014/04/30 06:58:17]-->C:\Program Files\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
Intel(R) USB 3.0 eXtensible Host Controller Driver [2014/04/30 06:58:41]-->C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Uninstall\setup.exe -uninstall
Intel® Trusted Connect Service Client [20140430]-->MsiExec.exe /I{BCED7487-44BC-487C-94CF-824AB27909E0}
Microsoft .NET Framework 4.6.1 (CSY) [20160523]-->MsiExec.exe /X{F4C709E1-76EC-3A6B-A015-38AEB35CAED0}
Microsoft .NET Framework 4.6.1 (čeština) [2016/05/23 12:48:10]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\CSY\\Setup.exe /repair /x86 /lcid 1029
Microsoft .NET Framework 4.6.1 [2016/05/20 07:06:48]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\\Setup.exe /repair /x86
Microsoft .NET Framework 4.6.1 [20161214]-->MsiExec.exe /X{30500C7C-2206-3DC6-9792-96E95A04669D}
Microsoft Office File Validation Add-In [20160610]-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE}
Microsoft Office Professional Edition 2003 [20141202]-->MsiExec.exe /I{90110405-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight [20161012]-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 [20140708]-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 [20141202]-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [20140430]-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 [2016/05/17 12:27:15]-->"C:\ProgramData\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 [20160517]-->MsiExec.exe /X{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 [20160517]-->MsiExec.exe /X{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}
Mozilla Firefox 51.0.1 (x86 cs) [2017/01/31 07:53:14]-->"C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service [2017/01/31 07:53:13]-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
MSXML 4.0 SP2 (KB954430) [20140718]-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688) [20140718]-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
PADSY Server 7.3.0.0 [2014/07/18 12:32:56]-->C:\Program Files\PadsyServer\uninstall.exe
PadsyClient 7.3.0.0 [2014/07/18 12:53:24]-->C:\Program Files\PadsyClient\uninstall.exe
Realtek Ethernet Controller Driver [20140430]-->C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.Exe -runfromtemp -removeonly
Realtek High Definition Audio Driver [20140430]-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\LSetup.Exe" -removeonly
Sada Compatibility Pack pro systém Office 2007 [20161214]-->MsiExec.exe /X{90120000-0020-0405-0000-0000000FF1CE}
Security Update for CAPICOM (KB931906) [2014/12/02 13:22:15]-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906) [20141202]-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Microsoft .NET Framework 4.6.1 (KB3122661) [2016/05/23 12:47:08]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {51754CAF-1734-39B0-B10B-4AB66BCC02C0}
Security Update for Microsoft .NET Framework 4.6.1 (KB3127233) [2016/05/23 12:44:32]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {B8FFB62D-5BBC-35AD-BF69-3D7B52450FA4}
Security Update for Microsoft .NET Framework 4.6.1 (KB3136000v2) [2016/05/23 12:48:40]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {2B321B91-0E99-3F89-9664-3278A790984D}
Security Update for Microsoft .NET Framework 4.6.1 (KB3142037) [2016/05/23 12:45:11]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {59E81921-739B-3DE1-8329-E2FAD1F691A4}
Security Update for Microsoft .NET Framework 4.6.1 (KB3143693) [2016/05/23 12:46:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {CC6C62FF-0741-3062-8D70-09A13AD6C9C2}
Security Update for Microsoft .NET Framework 4.6.1 (KB3164025) [2016/07/13 12:40:17]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {456E28A3-8C83-3B42-B77D-BA87FDFDB138}
Seznam Software [2014/12/18 07:10:22]-->"C:\Users\stranik\AppData\Roaming\Seznam.cz\szninstall.exe" -X
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) [2014/07/18 14:05:32]-->C:\Windows\system32\Silabs\DriverUninstaller.exe VCP CP210x Cardinal\SLABCOMM&10C4&EA60
Software602 Form Filler [20150112]-->MsiExec.exe /X{F8F79FE0-64EA-439C-A6AE-B1946A178F24}
SpO2 v0.9x [20140718]-->"C:\Program Files\SpO2\unins000.exe"
TeamViewer 9 [2015/04/15 07:48:49]-->C:\Program Files\TeamViewer\Version9\uninstall.exe
Update for Microsoft .NET Framework 4.6.1 (KB3210136) [2016/12/14 14:16:35]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {C2296E9A-3806-30BD-A5AB-BE94CC699C18}
Visual Studio 2012 x86 Redistributables [20160802]-->MsiExec.exe /I{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}
VLC media player [2016/10/12 07:11:02]-->C:\Program Files\VideoLAN\VLC\uninstall.exe
WibuKey Setup (WibuKey Remove) [18.07.2014]-->C:\Program Files\WIBUKEY\Setup\Setup32.exe /R:{00060000-0000-1004-8002-0000C06B5161}
Windows Media Player Firefox Plugin [20141125]-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
======System event log"======
Computer Name: 402LEKAR
Event Code: 7036
Message: Stav služby Služba WinHTTP WPAD byl změněn na: Zastaveno
Record Number: 206055
Source Name: Service Control Manager
Time Written: 20160623102701.045769-000
Event Type: Informace
User:
Computer Name: 402LEKAR
Event Code: 7036
Message: Stav služby Služba WinHTTP WPAD byl změněn na: Spuštěno
Record Number: 206054
Source Name: Service Control Manager
Time Written: 20160623101031.045144-000
Event Type: Informace
User:
Computer Name: 402LEKAR
Event Code: 7036
Message: Stav služby Adobe Flash Player Update Service byl změněn na: Zastaveno
Record Number: 206053
Source Name: Service Control Manager
Time Written: 20160623100100.687521-000
Event Type: Informace
User:
Computer Name: 402LEKAR
Event Code: 7036
Message: Stav služby Adobe Flash Player Update Service byl změněn na: Spuštěno
Record Number: 206052
Source Name: Service Control Manager
Time Written: 20160623100100.495510-000
Event Type: Informace
User:
Computer Name: 402LEKAR
Event Code: 6013
Message: Doba provozu systému je 13803 sekund.
Record Number: 206051
Source Name: EventLog
Time Written: 20160623100034.000000-000
Event Type: Informace
User:
=====Application event log"=====
Computer Name: 402LEKAR
Event Code: 1001
Message: WDLMW BrtWDLMW: [2016/04/14 14:07:21.299]: [00001404]: lperrcode->api = 1 , lperrcode->code = 2
Record Number: 288908
Source Name: Brother BrLog
Time Written: 20160414120721.000000-000
Event Type: Chyba
User:
Computer Name: 402LEKAR
Event Code: 1001
Message: WDLMW BrtWDLMW: [2016/04/14 14:07:19.799]: [00001404]: lperrcode->api = 1 , lperrcode->code = 2
Record Number: 288907
Source Name: Brother BrLog
Time Written: 20160414120719.000000-000
Event Type: Chyba
User:
Computer Name: 402LEKAR
Event Code: 1001
Message: WDLMW BrtWDLMW: [2016/04/14 14:07:18.299]: [00001404]: lperrcode->api = 1 , lperrcode->code = 2
Record Number: 288906
Source Name: Brother BrLog
Time Written: 20160414120718.000000-000
Event Type: Chyba
User:
Computer Name: 402LEKAR
Event Code: 1001
Message: WDLMW BrtWDLMW: [2016/04/14 14:07:16.799]: [00001404]: lperrcode->api = 1 , lperrcode->code = 2
Record Number: 288905
Source Name: Brother BrLog
Time Written: 20160414120716.000000-000
Event Type: Chyba
User:
Computer Name: 402LEKAR
Event Code: 1001
Message: WDLMW BrtWDLMW: [2016/04/14 14:07:15.299]: [00001404]: lperrcode->api = 1 , lperrcode->code = 2
Record Number: 288904
Source Name: Brother BrLog
Time Written: 20160414120715.000000-000
Event Type: Chyba
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 58 Stepping 9, GenuineIntel
"PROCESSOR_REVISION"=3a09
"windows_tracing_logfile"=C:\BVTBin\Tests\installpackage\csilogfile.log
"windows_tracing_flags"=3
-----------------EOF-----------------
přikládám i log:
Logfile of random's system information tool 1.14 (written by random/random)
Run by stranik at 2017-02-17 14:49:59
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 43 GB (38%) free of 114 GB
Total RAM: 3293 MB (55% free)
X86
HijackThis download failed
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job -
C:\Windows\tasks\Adobe Flash Player Updater.job -
=========Mozilla firefox=========
ProfilePath - C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default
prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz"
prefs.js - "keyword.URL" - "http://search.centrum.cz/?charset=UTF-8 ... toolbar-ff, ch-toolbar-ff-searchbox&utm_source=ch-toolbar&utm_medium=ff-centrum-cz&utm_content=toolbar-searchbox&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.221 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_24_0_0_221.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files\Software602\602XML\Filler\npfiller.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\
yqs-barff-yandex.xml
C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\addons.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Diagnostics - extension - diagnostics@mozilla.org - C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\features\{9d717b08-c9a7-4284-9dc5-40c28957d020}\diagnostics@mozilla.org.xpi
Send HSTS Priming Requests - extension - hsts-priming@mozilla.org - C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\features\{9d717b08-c9a7-4284-9dc5-40c28957d020}\hsts-priming@mozilla.org.xpi
SHA-1 deprecation staged rollout - extension - disableSHA1rollout@mozilla.org - C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\features\{9d717b08-c9a7-4284-9dc5-40c28957d020}\disableSHA1rollout@mozilla.org.xpi
C:\Users\stranik\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\pluginreg.dat
Plugin - Adobe Acrobat - 15.23.20053.15062 - C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
Plugin - VLC Web Plugin - 2.2.4.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Software602 Form Filler - 4.15.0.0 - C:\Program Files\Software602\602XML\Filler\npfiller.dll
Plugin - Silverlight Plug-In - 5.1.50901.0 - c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll
Plugin - Intel® Identity Protection Technology - 2.1.42.0 - C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
Plugin - Intel® Identity Protection Technology - 2.1.42.0 - C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
Plugin - Shockwave Flash - 24.0.0.221 - C:\Windows\system32\Macromed\Flash\NPSWF32_24_0_0_221.dll
=========Google Chrome=========
C:\Users\stranik\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod 0.2
Extension aiimdkdngfcipjohbjenkahhlhccpdbc 1 Flash Video Downloader 23.1.1
Extension aminlpmkfcdibgpgfajlgnamicjckkjf 2 Поиск Яндекса 1.0.3
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension bgjpfhpjcgdppjbgnpnjllokbmcdllig 0 Seznam Lištička - Email 1.3.20
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cfhdojbkjhnklbpkdaibdccddilifddb 1 Adblock Plus 1.12.4
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 0 Adobe Acrobat 15.1.0.5
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky Google 1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.8.7
Extension jdkihdhlegcdggknokfekoemkjjnjhgi 2 Стартовая — Яндекс 1.0.3
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mcnjneakpboeehbdelhbbngnkdbhmikg 1 New window with tabs open 1.2
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension olfeabkoenfaoljndfecamgilllcpiak 0 Seznam Lištička - Rychlá volba 1.8.6
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5616.1121.0.3
Homepage: https://www.google.cz/
default_search_provider.search_url:
C:\Users\stranik\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\aminlpmkfcdibgpgfajlgnamicjckkjf]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jdkihdhlegcdggknokfekoemkjjnjhgi]
"Path"=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={6A1806CD-94D4-4689-BA73-E35EA1EA9990}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-01-10 1052384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27 193136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414A-9456-AF95AC9ED7B5}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-01-10 1052384]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27 193136]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IMSS"=C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2012-07-19 133440]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2012-06-11 10996368]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-02-29 56088]
"USB3MON"=C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-05-20 291648]
"AVG_UI"=C:\Program Files\AVG\Framework\Common\avguirnx.exe [2016-12-06 220944]
"BrMfcWnd"=C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [2009-05-26 1159168]
"ControlCenter3"=C:\Program Files\Brother\ControlCenter3\brctrcen.exe [2008-12-24 114688]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"Cobian Backup 11 interface"=C:\Program Files\Cobian Backup 11\cbInterface.exe [2012-12-05 4407808]
"AvgUi"=C:\Program Files\AVG\Framework\Common\avguirnx.exe [2016-12-06 220944]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"PCSpeedUp"=C:\Program Files\Zrychleni Pocitace\PCSUNotifier.exe []
"cz.seznam.software.szndesktop"=C:\Users\stranik\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"cz.seznam.software.autoupdate"=C:\Users\stranik\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"F824C25B7D77C23EE6CA330D0B86D8C73B66CCA3._service_run"=C:\Program Files\Google\Chrome\Application\chrome.exe [2017-02-01 945496]
"GoogleChromeAutoLaunch_86B3D513D540A2504FD4A88DD59DEFC9"=C:\Program Files\Google\Chrome\Application\chrome.exe [2017-02-01 945496]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Network Server.lnk - C:\Program Files\WIBUKEY\Server\WkSvMgr.exe
PadsyClient.lnk - C:\Program Files\PadsyClient\PadsyClient.exe
C:\Users\stranik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Klient systému MISE.lnk - C:\Mise\Bin\Mise.exe
Mazání složky.lnk - C:\Programy\Mazání složky\mazani.exe
Ovládací a nastavovací program.lnk - C:\Mise\Bin\Mise.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{73FA19D0-2D75-11D2-995D-00C04F98BBC9}]
"StubPath"=
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{A6EADE66-0000-0000-484E-7E8A45000000}]
"StubPath"="C:\Windows\system32\Rundll32.exe" "C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-02-17 14:49:59 ----D---- C:\rsit
2017-02-17 14:49:39 ----D---- C:\Vyúčtování pro ZP
2017-02-16 07:08:53 ----A---- C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-02-14 21:48:35 ----D---- C:\Users\stranik\AppData\Roaming\SecureAge Technology
2017-02-14 21:40:15 ----A---- C:\Windows\system32\scan.db
2017-02-14 21:40:13 ----D---- C:\ProgramData\ClamAV
2017-02-14 21:40:11 ----D---- C:\ProgramData\SecureAge Technology
2017-02-14 20:59:23 ----A---- C:\Windows\Reimage.ini
2017-01-30 08:14:33 ----D---- C:\Program Files\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2017-02-17 14:49:52 ----D---- C:\Windows\Temp
2017-02-17 14:49:39 ----D---- C:\Users\stranik\AppData\Roaming\Seznam.cz
2017-02-17 14:18:32 ----D---- C:\ProgramData\MFAData
2017-02-17 14:16:45 ----D---- C:\Windows\System32
2017-02-17 14:16:45 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-02-17 14:15:33 ----A---- C:\Windows\system32\log.txt
2017-02-17 12:14:47 ----D---- C:\Windows\system32\config
2017-02-17 11:58:28 ----D---- C:\Program Files\Dialog MIS
2017-02-17 09:40:44 ----D---- C:\biochemie
2017-02-16 12:00:06 ----SHD---- C:\System Volume Information
2017-02-15 12:01:07 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2017-02-15 12:01:05 ----D---- C:\Windows\system32\Macromed
2017-02-14 23:33:03 ----D---- C:\Program Files\Advanced OCR Free
2017-02-14 22:48:19 ----D---- C:\Windows
2017-02-14 22:48:16 ----RD---- C:\Program Files
2017-02-14 22:47:29 ----D---- C:\Windows\system32\drivers
2017-02-14 22:44:29 ----D---- C:\Windows\inf
2017-02-14 22:43:56 ----D---- C:\Windows\system32\Tasks
2017-02-14 21:48:08 ----D---- C:\Install
2017-02-14 21:43:41 ----D---- C:\Windows\Panther
2017-02-14 21:43:40 ----D---- C:\Windows\Minidump
2017-02-14 21:43:40 ----D---- C:\Windows\Logs
2017-02-14 21:43:40 ----D---- C:\Windows\debug
2017-02-14 21:40:13 ----HD---- C:\ProgramData
2017-02-14 14:05:45 ----RSD---- C:\Windows\assembly
2017-02-14 14:05:45 ----D---- C:\Windows\Microsoft.NET
2017-02-14 14:05:35 ----SHD---- C:\Windows\Installer
2017-02-14 07:05:59 ----D---- C:\Program Files\TrueKey
2017-02-01 07:16:27 ----D---- C:\Program Files\Mozilla Maintenance Service
2017-01-24 14:42:19 ----D---- C:\CGMSERVER
2017-01-21 10:15:50 ----RSD---- C:\Windows\Fonts
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2016-10-05 207616]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2016-02-16 287008]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2016-09-26 197376]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2016-06-01 47360]
R0 Avgunivx;AVG Universal Driver; C:\Windows\system32\DRIVERS\avgunivx.sys [2016-06-20 65280]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2012-02-01 470808]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-05-20 15680]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2016-05-13 134912]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2016-11-04 259328]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-11-20 31664]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2016-11-30 244992]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2016-07-27 231680]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 WIBUKEY;WIBU-KEY Kernel Driver; C:\Windows\SYSTEM32\DRIVERS\WibuKey.sys [2011-09-22 73216]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2015-08-27 3035568]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2012-06-19 3240400]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-05-20 350016]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-05-20 793920]
R3 MEI;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECI.sys [2012-07-02 55104]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-09-29 490088]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 SAAppCtl;SAAppCtl; saappctl.del []
S3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver; C:\Windows\system32\DRIVERS\silabenm.sys [2009-08-10 17920]
S3 silabser;Silicon Labs CP210x USB to UART Bridge Driver; C:\Windows\system32\DRIVERS\silabser.sys [2009-08-10 63872]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 Wibukey2;Wibukey2; C:\Windows\system32\drivers\wibukey2.sys [2009-09-08 16384]
S4 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 ABBYY.Licensing.PDFTransformer.Classic.4.0;ABBYY PDF Transformer+ - Licensing Service; C:\Program Files\ABBYY PDF Transformer+\NetworkLicenseServer.exe [2014-03-25 959184]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-12-19 82640]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [2017-01-09 4154016]
R2 avgsvc;AVG Service; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [2016-12-06 935184]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\Av\avgwdsvcx.exe [2017-01-09 603288]
R2 Brother XP spl Service;BrSplService; C:\Windows\system32\brsvc01a.exe [2004-06-13 57344]
R2 cbVSCService11;Cobian Backup 11 Stínová kopie - Requester; C:\Program Files\Cobian Backup 11\cbVSCService11.exe [2012-12-05 67584]
R2 cgm.brevir-1;cgm.brevir-1; C:\CGMSERVER\bin\brevir-1\cgm.brevir-1.exe [2017-01-09 263680]
R2 cgm.ebooking-1;cgm.ebooking-1; C:\CGMSERVER\bin\ebooking-1\cgm.ebooking-1.exe [2015-04-29 26512]
R2 cgm.ecommunication-1;cgm.ecommunication-1; C:\CGMSERVER\bin\ecommunication-1\cgm.ecommunication-1.exe [2017-01-11 76384]
R2 cgm.postgres;cgm.postgres; C:/CGMSERVER/bin/pgsql/bin/pg_ctl.exe runservice -N cgm.postgres -D C:/CGMSERVER/data/pgsql []
R2 cgm.servercore;cgm.servercore; C:\CGMSERVER\bin\core\cgm.servercore.exe [2016-12-15 51200]
R2 CobianBackup11;Cobian Backup 11 Gravity; C:\Program Files\Cobian Backup 11\cbService.exe [2012-12-05 1131008]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\cscsvc.dll
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 HCS.MEDCONNECT.SERVICEMANAGER;HCS.MEDCONNECT.SERVICEMANAGER; C:\CGMSERVER\bin\medical-net\MedConnect.ServiceManager\HCS.MedConnect.ServiceManager.exe [2015-02-11 87952]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-02-01 13592]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2015-08-27 283568]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-06-19 462088]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-05 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-19 277824]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2015-04-09 5261584]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2017-01-05 996336]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2017-01-05 17304]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-19 365376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 Everything;Everything; C:\Program Files\SecureAge\Everything\Everything.exe -svc []
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe []
S2 SAEverythingServer;SecureAge Everything Server; C:\Program Files\SecureAge\Everything\EverythingServer.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-15 270936]
S3 AppMgmt;@appmgmts.dll,-3250; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll"=%SystemRoot%\System32\appmgmts.dll
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2016-11-29 45752]
S3 AvgAMPS;AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [2017-01-09 971160]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\system32\IntelCpHeciSvc.exe [2015-08-27 290224]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-12-03 194032]
S3 HCS.MedConnect.Service;HCS.MedConnect.Service; C:\CGMSERVER\bin\medical-net\MedConnect\HCS.MedConnect.Service.exe [2015-02-11 48528]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2017-01-30 172488]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; %SystemRoot%\System32\svchost.exe -k PeerDist;"ServiceDll"=%SystemRoot%\system32\peerdistsvc.dll
S3 saappsvc;SecureAge Application Whitelisting Service; C:\Program Files\SecureAge\Whitelist\saappsvc.exe []
S3 sascansvc;SecureAge Virus Scanner; C:\Program Files\SecureAge\AntiVirus\sascansvc.exe []
S3 SecureAPlusService;SecureAPlus Service; C:\Program Files\SecureAge\Whitelist\SecureAPlusService.exe []
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\system32\storsvc.dll
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2017-01-05 73968]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\umrdp.dll
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-07-07 1343400]
S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 PadsyServer;Padsy Server; C:\PROGRA~1\PADSYS~1\wrapper.exe [2013-10-31 204800]
-----------------EOF-----------------
a log info.txt ...................
info.txt logfile of random's system information tool 1.14 2017-02-17 14:50:02
======MBR======
Unable to open MBR
======Uninstall list======
7-Zip 9.20 [2014/07/07 05:45:05]-->"C:\Program Files\7-Zip\Uninstall.exe"
ABBYY FineReader 9.0 Sprint [2014/07/22 13:44:45]-->MsiExec.exe /I {F9000000-0018-0000-0000-074957833700}
ABBYY FineReader 9.0 Sprint [20140722]-->MsiExec.exe /X{F9000000-0018-0000-0000-074957833700}
ABBYY PDF Transformer+ [20140911]-->MsiExec.exe /I{FA400000-0001-0000-0000-074957833700}
Adobe Acrobat Reader DC - Czech [20170123]-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AC0F074E4100}
Adobe Flash Player 24 ActiveX [2017/02/15 10:01:06]-->C:\Windows\system32\Macromed\Flash\FlashUtil32_24_0_0_221_ActiveX.exe -maintain activex
Adobe Flash Player 24 NPAPI [2017/02/15 11:01:06]-->C:\Windows\system32\Macromed\Flash\FlashUtil32_24_0_0_221_Plugin.exe -maintain plugin
Adobe Flash Player 24 PPAPI [2017/02/15 12:01:07]-->C:\Windows\system32\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe -maintain pepperplugin
Adobe Refresh Manager [20170112]-->MsiExec.exe /I{AC76BA86-0804-1033-1959-001824211354}
Advanced OCR Free 6.5.4 [20140911]-->"C:\Program Files\Advanced OCR Free\unins000.exe"
AVG [20170119]-->MsiExec.exe /I{0EC28962-27C8-4421-A3E9-1655D3AB63A9}
AVG 2016 [20170131]-->MsiExec.exe /I{58BD347A-F9F6-4BAC-8838-998D0BCB87CA}
AVG Protection [2017/01/19 07:30:27]-->C:\Program Files\AVG\Setup\avgsetupx.exe /mode=offline /uninstall=av
Brother MFL-Pro Suite DCP-115C [20140722]-->"C:\Program Files\InstallShield Installation Information\{BB9AC6BF-71B6-42A4-9689-C17D9F44E79A}\Setup.exe" -runfromtemp -l0x0009 UNINSTALL Reg=Mini2e -removeonly
Cobian Backup 11 Gravity [2014/12/18 06:36:40]-->C:\Program Files\Cobian Backup 11\cbUninstall.exe
CompuGroup Medical - (PC DOKTOR / PC DENT) [20170214]-->MsiExec.exe /X{81F07A4F-A47E-4E0F-A75D-D24BD09BB2D8}
CompuGroup Medical - Brevíř [20170124]-->MsiExec.exe /X{2ED5E236-8C33-44A9-8A5E-64780464A80E}
CompuGroup Medical - CGM SERVER [20170124]-->MsiExec.exe /X{8FE2C676-72E8-4024-9066-710FE32112E8}
CompuGroup Medical - Ecommunication [20170124]-->MsiExec.exe /X{3850A53F-8A0E-45E1-9F11-D801237D3694}
CompuGroup Medical - Kniha objednávek [20150514]-->MsiExec.exe /X{CF314AF7-682B-4C77-B164-6FB0080D2726}
CompuGroup Medical - MEDICAL NET [20150925]-->MsiExec.exe /X{0726B7A2-A8F4-4BE1-A086-A93E9A5BA5BC}
EPSON Scan [2014/07/22 13:41:57]-->C:\Program Files\epson\escndv\setup\setup.exe /r
FMW 1 [20170105]-->MsiExec.exe /I{A2B92392-DC17-416B-88F6-A6A55E053E32}
Google Chrome [20150930]-->"C:\Program Files\Google\Chrome\Application\56.0.2924.87\Installer\setup.exe" --uninstall --system-level
Google Toolbar for Internet Explorer [20141203]-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Toolbar for Internet Explorer [2016/12/01 08:00:59]-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_8B0481A9A34D47CD.exe" /uninstall
Google Update Helper [20141118]-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Update Helper [20161219]-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Intel Security True Key [2017/01/19 07:16:01]-->C:\Program Files\TrueKey\Mcafee.TrueKey.Uninstaller.Exe
Intel(R) Control Center [2014/04/30 06:56:33]-->C:\Program Files\Intel\Intel Control Center\uninstaller\SetupICC.exe -uninstall -force -confirm
Intel(R) Management Engine Components [2014/04/30 06:56:15]-->C:\Program Files\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) Processor Graphics [2016/06/10 10:56:55]-->"C:\Program Files\Intel\Intel(R) Processor Graphics\Uninstall\setup.exe" -uninstall
Intel(R) Rapid Storage Technology [2014/04/30 06:58:17]-->C:\Program Files\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
Intel(R) USB 3.0 eXtensible Host Controller Driver [2014/04/30 06:58:41]-->C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Uninstall\setup.exe -uninstall
Intel® Trusted Connect Service Client [20140430]-->MsiExec.exe /I{BCED7487-44BC-487C-94CF-824AB27909E0}
Microsoft .NET Framework 4.6.1 (CSY) [20160523]-->MsiExec.exe /X{F4C709E1-76EC-3A6B-A015-38AEB35CAED0}
Microsoft .NET Framework 4.6.1 (čeština) [2016/05/23 12:48:10]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\CSY\\Setup.exe /repair /x86 /lcid 1029
Microsoft .NET Framework 4.6.1 [2016/05/20 07:06:48]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\\Setup.exe /repair /x86
Microsoft .NET Framework 4.6.1 [20161214]-->MsiExec.exe /X{30500C7C-2206-3DC6-9792-96E95A04669D}
Microsoft Office File Validation Add-In [20160610]-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE}
Microsoft Office Professional Edition 2003 [20141202]-->MsiExec.exe /I{90110405-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight [20161012]-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 [20140708]-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 [20141202]-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [20140430]-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 [2016/05/17 12:27:15]-->"C:\ProgramData\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 [20160517]-->MsiExec.exe /X{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 [20160517]-->MsiExec.exe /X{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}
Mozilla Firefox 51.0.1 (x86 cs) [2017/01/31 07:53:14]-->"C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service [2017/01/31 07:53:13]-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
MSXML 4.0 SP2 (KB954430) [20140718]-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688) [20140718]-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
PADSY Server 7.3.0.0 [2014/07/18 12:32:56]-->C:\Program Files\PadsyServer\uninstall.exe
PadsyClient 7.3.0.0 [2014/07/18 12:53:24]-->C:\Program Files\PadsyClient\uninstall.exe
Realtek Ethernet Controller Driver [20140430]-->C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.Exe -runfromtemp -removeonly
Realtek High Definition Audio Driver [20140430]-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\LSetup.Exe" -removeonly
Sada Compatibility Pack pro systém Office 2007 [20161214]-->MsiExec.exe /X{90120000-0020-0405-0000-0000000FF1CE}
Security Update for CAPICOM (KB931906) [2014/12/02 13:22:15]-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906) [20141202]-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Microsoft .NET Framework 4.6.1 (KB3122661) [2016/05/23 12:47:08]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {51754CAF-1734-39B0-B10B-4AB66BCC02C0}
Security Update for Microsoft .NET Framework 4.6.1 (KB3127233) [2016/05/23 12:44:32]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {B8FFB62D-5BBC-35AD-BF69-3D7B52450FA4}
Security Update for Microsoft .NET Framework 4.6.1 (KB3136000v2) [2016/05/23 12:48:40]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {2B321B91-0E99-3F89-9664-3278A790984D}
Security Update for Microsoft .NET Framework 4.6.1 (KB3142037) [2016/05/23 12:45:11]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {59E81921-739B-3DE1-8329-E2FAD1F691A4}
Security Update for Microsoft .NET Framework 4.6.1 (KB3143693) [2016/05/23 12:46:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {CC6C62FF-0741-3062-8D70-09A13AD6C9C2}
Security Update for Microsoft .NET Framework 4.6.1 (KB3164025) [2016/07/13 12:40:17]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {456E28A3-8C83-3B42-B77D-BA87FDFDB138}
Seznam Software [2014/12/18 07:10:22]-->"C:\Users\stranik\AppData\Roaming\Seznam.cz\szninstall.exe" -X
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) [2014/07/18 14:05:32]-->C:\Windows\system32\Silabs\DriverUninstaller.exe VCP CP210x Cardinal\SLABCOMM&10C4&EA60
Software602 Form Filler [20150112]-->MsiExec.exe /X{F8F79FE0-64EA-439C-A6AE-B1946A178F24}
SpO2 v0.9x [20140718]-->"C:\Program Files\SpO2\unins000.exe"
TeamViewer 9 [2015/04/15 07:48:49]-->C:\Program Files\TeamViewer\Version9\uninstall.exe
Update for Microsoft .NET Framework 4.6.1 (KB3210136) [2016/12/14 14:16:35]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.6.01055\setup.exe /uninstallpatch {C2296E9A-3806-30BD-A5AB-BE94CC699C18}
Visual Studio 2012 x86 Redistributables [20160802]-->MsiExec.exe /I{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}
VLC media player [2016/10/12 07:11:02]-->C:\Program Files\VideoLAN\VLC\uninstall.exe
WibuKey Setup (WibuKey Remove) [18.07.2014]-->C:\Program Files\WIBUKEY\Setup\Setup32.exe /R:{00060000-0000-1004-8002-0000C06B5161}
Windows Media Player Firefox Plugin [20141125]-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
======System event log"======
Computer Name: 402LEKAR
Event Code: 7036
Message: Stav služby Služba WinHTTP WPAD byl změněn na: Zastaveno
Record Number: 206055
Source Name: Service Control Manager
Time Written: 20160623102701.045769-000
Event Type: Informace
User:
Computer Name: 402LEKAR
Event Code: 7036
Message: Stav služby Služba WinHTTP WPAD byl změněn na: Spuštěno
Record Number: 206054
Source Name: Service Control Manager
Time Written: 20160623101031.045144-000
Event Type: Informace
User:
Computer Name: 402LEKAR
Event Code: 7036
Message: Stav služby Adobe Flash Player Update Service byl změněn na: Zastaveno
Record Number: 206053
Source Name: Service Control Manager
Time Written: 20160623100100.687521-000
Event Type: Informace
User:
Computer Name: 402LEKAR
Event Code: 7036
Message: Stav služby Adobe Flash Player Update Service byl změněn na: Spuštěno
Record Number: 206052
Source Name: Service Control Manager
Time Written: 20160623100100.495510-000
Event Type: Informace
User:
Computer Name: 402LEKAR
Event Code: 6013
Message: Doba provozu systému je 13803 sekund.
Record Number: 206051
Source Name: EventLog
Time Written: 20160623100034.000000-000
Event Type: Informace
User:
=====Application event log"=====
Computer Name: 402LEKAR
Event Code: 1001
Message: WDLMW BrtWDLMW: [2016/04/14 14:07:21.299]: [00001404]: lperrcode->api = 1 , lperrcode->code = 2
Record Number: 288908
Source Name: Brother BrLog
Time Written: 20160414120721.000000-000
Event Type: Chyba
User:
Computer Name: 402LEKAR
Event Code: 1001
Message: WDLMW BrtWDLMW: [2016/04/14 14:07:19.799]: [00001404]: lperrcode->api = 1 , lperrcode->code = 2
Record Number: 288907
Source Name: Brother BrLog
Time Written: 20160414120719.000000-000
Event Type: Chyba
User:
Computer Name: 402LEKAR
Event Code: 1001
Message: WDLMW BrtWDLMW: [2016/04/14 14:07:18.299]: [00001404]: lperrcode->api = 1 , lperrcode->code = 2
Record Number: 288906
Source Name: Brother BrLog
Time Written: 20160414120718.000000-000
Event Type: Chyba
User:
Computer Name: 402LEKAR
Event Code: 1001
Message: WDLMW BrtWDLMW: [2016/04/14 14:07:16.799]: [00001404]: lperrcode->api = 1 , lperrcode->code = 2
Record Number: 288905
Source Name: Brother BrLog
Time Written: 20160414120716.000000-000
Event Type: Chyba
User:
Computer Name: 402LEKAR
Event Code: 1001
Message: WDLMW BrtWDLMW: [2016/04/14 14:07:15.299]: [00001404]: lperrcode->api = 1 , lperrcode->code = 2
Record Number: 288904
Source Name: Brother BrLog
Time Written: 20160414120715.000000-000
Event Type: Chyba
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 58 Stepping 9, GenuineIntel
"PROCESSOR_REVISION"=3a09
"windows_tracing_logfile"=C:\BVTBin\Tests\installpackage\csilogfile.log
"windows_tracing_flags"=3
-----------------EOF-----------------