VIRY.CZ

Dobrý den,
rád bych Vás poprosil o kontrolu logu.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06.06.2018 01
Ran by Pet368 (administrator) on HONZAPC (13-06-2018 21:58:40)
Running from C:\Users\Pet368\Desktop
Loaded Profiles: Pet368 (Available Profiles: Pet368)
Platform: Windows 8.1 Pro (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.EXE
(CrossLoop) C:\Users\Pet368\AppData\Local\CrossLoop\CrossLoopService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.VIDATABASE08\MSSQL\Binn\sqlservr.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Crawler Group, LLC) C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files (x86)\Transoft Solutions\License Server\TransoftLS.exe
() C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Crawler Group, LLC) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
(Crawler Group, LLC) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
() C:\Users\Pet368\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Pet368\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Autodesk, Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\AgentVi\savVi\vi-agentproxy\VIAgentProxy_Service.exe
() C:\Program Files (x86)\AgentVi\savVi\vi-server\VIAS_Service.exe
() C:\Program Files (x86)\AgentVi\savVi\vi-server\VIAS_Service.exe
() C:\Program Files (x86)\AgentVi\savVi\vi-server\VILBS_Service.exe
() C:\Program Files (x86)\AgentVi\savVi\vi-agentproxy\VMSManager_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
() C:\Users\Pet368\AppData\Roaming\Seznam.cz\bin\sznpp_64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(forum.viry.cz) C:\Users\Pet368\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-04-04] (AVAST Software)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] ()
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems, Incorporated)
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [5349120 2017-03-16] (Crawler Group, LLC)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [5585672 2017-03-16] (Crawler Group, LLC)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1627032 2014-02-05] (Autodesk, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [704424 2017-06-15] (Autodesk, Inc.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1226240 2017-09-20] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1871344 2018-05-11] (Adobe Systems Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\Run: [DAEMON Tools Lite] => D:\Programy\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Pet368\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] ()
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [5915776 2016-03-21] (Safer-Networking Ltd.)
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\Policies\Explorer: []
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\MountPoints2: {0f9b55d0-f23a-11e3-827d-74d4351a79be} - "L:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\MountPoints2: {2198decb-1087-11e8-86dc-74d4351a79be} - "E:\Setup.exe"
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\MountPoints2: {c49d37b8-6554-11e8-8756-74d4351a79be} - "E:\Setup.exe"
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{42377649-628F-4257-90DB-D0255E3650F9}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=9973
SearchScopes: HKU\S-1-5-21-595668689-4053202996-1390707377-1001 -> DefaultScope {43E60A92-9447-4B5E-B4A6-574F78B1C64D} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_9973
SearchScopes: HKU\S-1-5-21-595668689-4053202996-1390707377-1001 -> {12950E9E-25C4-45FB-ABBE-89C8B158AD26} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... earch_9973
SearchScopes: HKU\S-1-5-21-595668689-4053202996-1390707377-1001 -> {17AF41EB-78B5-40BF-80A9-C1BC1478D49B} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... earch_9973
SearchScopes: HKU\S-1-5-21-595668689-4053202996-1390707377-1001 -> {1DDB13AD-B6BD-4CAC-A1FF-C207E2127A0C} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_9973
SearchScopes: HKU\S-1-5-21-595668689-4053202996-1390707377-1001 -> {33E0B1EE-D389-4A52-80D1-E09E695D11A7} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_9973
SearchScopes: HKU\S-1-5-21-595668689-4053202996-1390707377-1001 -> {43E60A92-9447-4B5E-B4A6-574F78B1C64D} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_9973
SearchScopes: HKU\S-1-5-21-595668689-4053202996-1390707377-1001 -> {7362CFE5-5D83-4DDA-B4B1-F58709D557FA} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_9973
SearchScopes: HKU\S-1-5-21-595668689-4053202996-1390707377-1001 -> {9D06C0EF-795E-41A7-A19B-9D20FB49E2BB} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_9973
SearchScopes: HKU\S-1-5-21-595668689-4053202996-1390707377-1001 -> {9FC4F431-8448-4084-860A-2A64A966DD9F} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_9973
SearchScopes: HKU\S-1-5-21-595668689-4053202996-1390707377-1001 -> {A59CF3B9-CF4F-458F-98C4-AFB8B993C34F} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... earch_9973
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard64.dll [2017-03-16] (Crawler Group, LLC)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-12-23] (Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-12-23] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-08] (Oracle Corporation)
BHO-x32: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard.dll [2017-03-16] (Crawler Group, LLC)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-04-04] (AVAST Software)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-12-23] (Adobe Systems Incorporated)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-08] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-12-23] (Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-12-23] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-12-23] (Adobe Systems Incorporated)
DPF: HKLM-x32 {538793D5-659C-4639-A56C-A179AD87ED44} hxxps://vpn.vsb.cz/CACHE/stc/1/binaries/vpnweb.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-03-12] (Microsoft Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2017-01-02] [Legacy]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2017-01-02] [Legacy]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2018-02-02]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-08] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-08] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-03-03] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2018-05-11] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-05-11] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default [2018-06-13]
CHR Extension: (Disk Google) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2018-05-04]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2018-05-04]
CHR Extension: (YouTube) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast SafePrice) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-06-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-05-25]
CHR Extension: (Google Kalendář) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2018-04-05]
CHR Extension: (Avast Online Security) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-04-17]
CHR Extension: (Mapy Google) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-09-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-02]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-05-04]
CHR Extension: (Gmail) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Pet368\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-05-02]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1353208 2017-06-15] (Autodesk Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2321384 2018-05-11] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems, Incorporated)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7398336 2017-04-04] (AVAST Software s.r.o.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [261712 2017-04-04] (AVAST Software)
R2 CrossLoopService; C:\Users\Pet368\AppData\Local\CrossLoop\CrossLoopService.exe [569072 2012-01-06] (CrossLoop)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 MSSQL$VIDATABASE08; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.VIDATABASE08\MSSQL\Binn\sqlservr.exe [43040096 2011-06-17] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.) [File not signed]
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [235984 2016-11-24] (Safer-Networking Ltd.) [File not signed]
S4 SQLAgent$VIDATABASE08; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.VIDATABASE08\MSSQL\Binn\SQLAGENT.EXE [370016 2011-06-17] (Microsoft Corporation)
R2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [3292416 2017-03-16] (Crawler Group, LLC)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2018-03-01] (TeamViewer GmbH)
R2 Transoft Solutions License Server V1.7; C:\Program Files (x86)\Transoft Solutions\License Server\TransoftLS.exe [446464 2012-05-01] () [File not signed]
S3 tvnserver; C:\Users\Pet368\AppData\Local\CrossLoop\tvnserver.exe [814080 2010-07-21] (GlavSoft LLC.) [File not signed]
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248856 2017-08-08] ()
R2 VIAgentProxy; c:\program files (x86)\agentvi\savvi\vi-agentproxy\VIAgentProxy_Service.exe [922624 2015-11-01] () [File not signed]
R2 VIAS; c:\program files (x86)\agentvi\savvi\vi-server\VIAS_Service.exe [4709376 2015-11-01] () [File not signed]
R2 VIAS$VIAS1; c:\program files (x86)\agentvi\savvi\vi-server\VIAS_Service.exe [4709376 2015-11-01] () [File not signed]
R2 VILBS; c:\program files (x86)\agentvi\savvi\vi-server\VILBS_Service.exe [6547456 2015-11-01] () [File not signed]
S3 VIPCEncoder; c:\program files (x86)\agentvi\savvi\vi-pcencoder\VIPCEncoder_Service.exe [308224 2015-11-01] () [File not signed]
R2 VIVMSManager; c:\program files (x86)\agentvi\savvi\vi-agentproxy\VMSManager_Service.exe [1108992 2015-11-01] () [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] ()
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [307736 2017-04-04] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [189768 2017-04-04] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334088 2017-04-04] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [48528 2017-04-04] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-04-04] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32600 2017-04-04] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [128648 2017-04-28] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [101152 2017-04-04] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-04-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1005048 2017-04-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [556784 2017-04-28] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [164064 2017-04-04] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [339696 2017-04-04] (AVAST Software)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2013-09-24] (Advanced Micro Devices)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-04-07] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [152184 2018-04-26] (Malwarebytes)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [107736 2015-03-17] (Malwarebytes Corporation)
S3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [112864 2018-06-11] (Malwarebytes)
S3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [103648 2018-06-11] (Malwarebytes)
S3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [103648 2018-06-11] (Malwarebytes)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2011-08-24] (Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] ()
S3 vpnva; C:\Windows\system32\DRIVERS\vpnva64-6.sys [52592 2017-05-17] (Cisco Systems, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44024 2015-02-04] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [264000 2015-02-04] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-06-13 21:58 - 2018-06-13 21:58 - 000015327 _____ C:\Users\Pet368\Desktop\LM.bat
2018-06-13 21:57 - 2018-06-13 21:58 - 000033443 _____ C:\Users\Pet368\Desktop\FRST.txt
2018-06-13 21:55 - 2018-06-13 21:55 - 000112640 _____ (forum.viry.cz) C:\Users\Pet368\Desktop\FRSTLauncher.exe
2018-06-13 21:54 - 2018-06-13 21:54 - 000112640 _____ (forum.viry.cz) C:\Users\Pet368\Desktop\Nepotvrzeno 699834.crdownload
2018-06-13 21:52 - 2018-06-13 21:58 - 000000000 ____D C:\FRST
2018-06-13 21:51 - 2018-06-13 21:52 - 002413056 _____ (Farbar) C:\Users\Pet368\Desktop\FRST64.exe
2018-06-11 22:41 - 2018-06-13 21:54 - 000000000 ____D C:\Users\Pet368\AppData\LocalLow\Spyware Terminator
2018-06-11 22:41 - 2018-06-12 23:11 - 000000000 ____D C:\ProgramData\Spyware Terminator
2018-06-11 22:41 - 2018-06-11 22:41 - 009694960 _____ (Crawler Group ) C:\Users\Pet368\Downloads\SpywareTerminatorSetup.exe
2018-06-11 22:41 - 2018-06-11 22:41 - 000001050 _____ C:\Users\Public\Desktop\Spyware Terminator 2015.lnk
2018-06-11 22:41 - 2018-06-11 22:41 - 000000000 ____D C:\Users\Pet368\AppData\Roaming\Spyware Terminator
2018-06-11 22:41 - 2018-06-11 22:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2015
2018-06-11 22:41 - 2018-06-11 22:41 - 000000000 ____D C:\Program Files (x86)\Spyware Terminator
2018-06-11 22:38 - 2018-06-11 22:41 - 000103648 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-06-11 22:38 - 2018-06-11 22:38 - 000112864 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2018-06-11 22:38 - 2018-06-11 22:38 - 000001114 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2018-06-11 22:38 - 2018-06-11 22:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2018-06-11 22:38 - 2015-03-17 06:15 - 000107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2018-06-11 22:38 - 2015-03-17 06:15 - 000025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2018-06-11 22:37 - 2018-06-11 22:37 - 000253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-06-11 22:37 - 2018-06-11 22:37 - 000001843 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-06-11 22:37 - 2018-06-11 22:37 - 000000721 _____ C:\Users\Pet368\Downloads\Plocha – zástupce.lnk
2018-06-11 22:37 - 2018-06-11 22:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-06-11 22:37 - 2018-06-11 22:37 - 000000000 ____D C:\ProgramData\MB2Migration
2018-06-11 22:37 - 2018-06-11 22:37 - 000000000 ____D C:\Program Files\Malwarebytes
2018-06-11 22:37 - 2018-04-26 05:36 - 000152184 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-06-11 22:36 - 2018-06-11 22:38 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2018-06-11 22:36 - 2018-06-11 22:37 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-06-11 22:36 - 2018-06-11 22:37 - 000000000 ____D C:\AdwCleaner
2018-06-11 22:36 - 2018-06-11 22:36 - 021540440 _____ (Malwarebytes Corporation ) C:\Users\Pet368\Downloads\mbam-setup-2.1.4.1018.exe
2018-06-11 22:36 - 2018-06-11 22:36 - 007372496 _____ (Malwarebytes) C:\Users\Pet368\Downloads\adwcleaner_7.2.0.exe
2018-06-11 20:05 - 2018-06-11 20:05 - 000154474 _____ C:\Users\Pet368\Documents\cc_20180611_200526.reg
2018-06-11 20:03 - 2018-06-08 19:21 - 000454512 ____R C:\Windows\system32\Drivers\etc\hosts.20180611-200356.backup
2018-06-08 19:21 - 2017-08-14 23:05 - 000454512 _____ C:\Windows\system32\Drivers\etc\hosts.20180608-192152.backup
2018-06-03 22:04 - 2018-06-03 22:04 - 003024863 _____ C:\Users\Pet368\Documents\zaverecna_prace.pdf
2018-05-27 23:16 - 2018-05-27 23:16 - 000306318 _____ C:\Users\Pet368\Documents\Hodnocení bakalářské práce - Cuninkova.pdf
2018-05-27 23:16 - 2018-05-27 23:16 - 000306121 _____ C:\Users\Pet368\Downloads\Hodnocení bakalářské práce - Rumler.pdf
2018-05-26 08:20 - 2018-06-08 19:21 - 000000000 ____D C:\Users\Pet368\Downloads\mp3
2018-05-17 23:23 - 2018-05-17 23:23 - 001650545 _____ C:\Users\Pet368\Documents\konani-obhajoby-klajmonova.pdf
2018-05-14 21:56 - 2018-05-14 21:56 - 000109350 _____ C:\Users\Pet368\Documents\v-r-fast-12-04-2018.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-06-13 21:50 - 2014-04-07 19:33 - 000003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-595668689-4053202996-1390707377-1001
2018-06-13 21:49 - 2014-04-07 22:47 - 000000000 ____D C:\Users\Pet368\Documents\Soubory aplikace Outlook
2018-06-13 21:45 - 2014-03-28 12:09 - 000002244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-06-13 21:42 - 2014-03-28 12:06 - 001935748 _____ C:\Windows\system32\PerfStringBackup.INI
2018-06-13 21:42 - 2013-08-23 00:08 - 000805930 _____ C:\Windows\system32\perfh005.dat
2018-06-13 21:42 - 2013-08-23 00:08 - 000176840 _____ C:\Windows\system32\perfc005.dat
2018-06-13 21:42 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2018-06-13 21:40 - 2017-10-08 10:46 - 000004958 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for HONZAPC-Pet368 HonzaPC
2018-06-13 21:38 - 2014-05-01 18:58 - 000000286 _____ C:\servicetest.txt
2018-06-13 21:38 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-06-11 22:44 - 2014-04-07 19:28 - 000000000 ____D C:\Users\Pet368
2018-06-11 22:44 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\FileManager
2018-06-11 22:43 - 2014-08-26 15:38 - 000000000 ____D C:\Program Files\CamStudio 2.7
2018-06-11 22:38 - 2018-02-14 19:54 - 000000556 _____ C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-595668689-4053202996-1390707377-1001.job
2018-06-11 22:36 - 2014-05-01 20:17 - 001268224 ___SH C:\Users\Pet368\Desktop\Thumbs.db
2018-06-11 22:23 - 2014-05-29 21:21 - 000000000 ____D C:\Users\Pet368\AppData\Local\CrashDumps
2018-06-11 22:21 - 2014-05-01 18:13 - 000000000 ____D C:\Users\Pet368\Documents\Autodesk Application Manager
2018-06-11 22:20 - 2018-02-14 19:54 - 000000652 _____ C:\Windows\Tasks\G2MUploadTask-S-1-5-21-595668689-4053202996-1390707377-1001.job
2018-06-11 22:20 - 2013-08-22 16:44 - 005172632 _____ C:\Windows\system32\FNTCACHE.DAT
2018-06-11 20:17 - 2014-08-06 20:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2018-06-11 20:14 - 2014-08-06 20:19 - 000000000 ____D C:\Program Files (x86)\HP
2018-06-11 20:13 - 2014-08-06 20:17 - 000000000 ____D C:\ProgramData\HP
2018-06-11 20:09 - 2015-09-11 21:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 Fusion
2018-06-11 20:07 - 2014-04-07 21:17 - 000000000 ____D C:\Program Files\Autodesk
2018-06-11 20:07 - 2014-04-07 21:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2018-06-11 20:06 - 2018-02-14 19:54 - 000003652 _____ C:\Windows\System32\Tasks\G2MUploadTask-S-1-5-21-595668689-4053202996-1390707377-1001
2018-06-11 20:06 - 2018-02-14 19:54 - 000003556 _____ C:\Windows\System32\Tasks\G2MUpdateTask-S-1-5-21-595668689-4053202996-1390707377-1001
2018-06-11 20:06 - 2018-02-14 19:54 - 000000000 ____D C:\Users\Pet368\AppData\Local\GoToMeeting
2018-06-11 20:06 - 2014-04-07 21:08 - 000000000 ____D C:\Program Files (x86)\Autodesk
2018-06-11 20:06 - 2014-04-07 20:20 - 000000000 ____D C:\ProgramData\Autodesk
2018-06-08 19:28 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2018-06-08 19:18 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\AppReadiness
2018-06-07 21:39 - 2017-07-06 21:14 - 000004408 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-06-07 21:39 - 2017-06-07 21:12 - 000004540 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-06-07 21:39 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-06-07 21:39 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\Macromed
2018-06-06 23:31 - 2014-04-07 19:28 - 000000000 ____D C:\Users\Pet368\AppData\Local\Packages
2018-06-05 18:12 - 2015-12-03 18:16 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2018-06-05 06:49 - 2014-09-29 07:01 - 000000000 ____D C:\Users\Pet368\AppData\Roaming\Skype
2018-06-01 10:02 - 2016-03-23 17:44 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2018-05-26 07:50 - 2018-02-14 06:35 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2018-05-26 07:50 - 2018-02-14 06:35 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2018-05-26 07:50 - 2014-12-28 16:59 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-05-18 17:39 - 2014-03-28 12:09 - 000003386 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-05-18 17:39 - 2014-03-28 12:09 - 000003258 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-05-17 18:54 - 2016-01-31 19:49 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Files in the root of some directories =======

2014-08-26 15:54 - 2015-03-22 21:50 - 000000105 _____ () C:\Users\Pet368\AppData\Roaming\Camdata.ini
2014-08-26 15:54 - 2015-03-22 21:50 - 000000408 _____ () C:\Users\Pet368\AppData\Roaming\CamLayout.ini
2014-08-26 15:54 - 2015-03-22 21:50 - 000000408 _____ () C:\Users\Pet368\AppData\Roaming\CamShapes.ini
2014-08-26 15:54 - 2015-03-22 21:50 - 000004542 _____ () C:\Users\Pet368\AppData\Roaming\CamStudio.cfg
2014-08-26 15:38 - 2014-08-26 16:01 - 000000096 _____ () C:\Users\Pet368\AppData\Roaming\version2.xml
2017-06-29 23:21 - 2017-06-29 23:21 - 000000863 _____ () C:\Users\Pet368\AppData\Local\recently-used.xbel

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-06-11 20:56

==================== End of FRST.txt ============================

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Dobrý den,
scan jsem spustil a přikládám log níže.

Práce s PC začala být dosti obtížná, nelze spustit internet a počítač začal mít velkou odezvu na úkoly typu (správce úloh, internet, restart a pod.)

# -------------------------------
# Malwarebytes AdwCleaner 7.2.0.0
# -------------------------------
# Build: 06-05-2018
# Database: 2018-04-24.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-15-2018
# Duration: 00:00:38
# OS: Windows 8.1 Pro
# Cleaned: 0
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2698 octets] - [11/06/2018 22:37:37]
AdwCleaner[C00].txt - [2570 octets] - [11/06/2018 22:38:48]
AdwCleaner[S01].txt - [1364 octets] - [15/06/2018 12:27:39]
AdwCleaner[C01].txt - [1550 octets] - [15/06/2018 12:39:45]
AdwCleaner[S02].txt - [1486 octets] - [15/06/2018 12:50:26]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

Problém, může být i jinde, než je zaneřáděný systém. Musíme ale dočistit. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\MountPoints2: {0f9b55d0-f23a-11e3-827d-74d4351a79be} - "L:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\MountPoints2: {2198decb-1087-11e8-86dc-74d4351a79be} - "E:\Setup.exe"
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\MountPoints2: {c49d37b8-6554-11e8-8756-74d4351a79be} - "E:\Setup.exe"
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => -> No File
Task: {3C5C082C-F499-4828-8B4C-A052E31FD58D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {4137C296-35D1-4877-A08A-03143D4E2D06} - System32\Tasks\Trigger KMS Activation => C:\Program Files\Microsoft Office\Office15\TriggerKMS.exe [2013-05-03] ()
C:\Program Files\Microsoft Office\Office15\TriggerKMS.exe
Task: {C80A223D-FC2B-48F6-A840-6FE4D4DD0C8E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]

EmptyTemp:
Hosts:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

zde je vytvořený Fixlog.

Fix result of Farbar Recovery Scan Tool (x64) Version: 06.06.2018 01
Ran by Pet368 (15-06-2018 18:26:04) Run:2
Running from C:\Users\Pet368\Desktop
Loaded Profiles: Pet368 (Available Profiles: Pet368)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\MountPoints2: {0f9b55d0-f23a-11e3-827d-74d4351a79be} - "L:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\MountPoints2: {2198decb-1087-11e8-86dc-74d4351a79be} - "E:\Setup.exe"
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\...\MountPoints2: {c49d37b8-6554-11e8-8756-74d4351a79be} - "E:\Setup.exe"
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => -> No File
Task: {3C5C082C-F499-4828-8B4C-A052E31FD58D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {4137C296-35D1-4877-A08A-03143D4E2D06} - System32\Tasks\Trigger KMS Activation => C:\Program Files\Microsoft Office\Office15\TriggerKMS.exe [2013-05-03] ()
C:\Program Files\Microsoft Office\Office15\TriggerKMS.exe
Task: {C80A223D-FC2B-48F6-A840-6FE4D4DD0C8E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => not found
HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SDWinLogon => not found
"HKU\S-1-5-21-595668689-4053202996-1390707377-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge" => not found
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0f9b55d0-f23a-11e3-827d-74d4351a79be} => not found
HKLM\Software\Classes\CLSID\{0f9b55d0-f23a-11e3-827d-74d4351a79be} => not found
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2198decb-1087-11e8-86dc-74d4351a79be} => not found
HKLM\Software\Classes\CLSID\{2198decb-1087-11e8-86dc-74d4351a79be} => not found
HKU\S-1-5-21-595668689-4053202996-1390707377-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c49d37b8-6554-11e8-8756-74d4351a79be} => not found
HKLM\Software\Classes\CLSID\{c49d37b8-6554-11e8-8756-74d4351a79be} => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => not found
HKLM\Software\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} => not found
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => not found
HKLM\Software\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => not found
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f}" => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} => not found
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => not found
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GDriveSharedOverlay => not found
HKLM\Software\Classes\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C5C082C-F499-4828-8B4C-A052E31FD58D} => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4137C296-35D1-4877-A08A-03143D4E2D06} => not found
"C:\Windows\System32\Tasks\Trigger KMS Activation" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Trigger KMS Activation => not found
"C:\Program Files\Microsoft Office\Office15\TriggerKMS.exe" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C80A223D-FC2B-48F6-A840-6FE4D4DD0C8E} => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => not found
"C:\ProgramData\Reprise" => ":wupeogjxlctlfudivq`qsp`28hfm" ADS not found.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 7379416 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 8512 B
Edge => 0 B
Chrome => 1426794 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 784 B
NetworkService => 0 B
Pet368 => 18113 B

RecycleBin => 0 B
EmptyTemp: => 16.4 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 18:27:11 ====

OK. Nastala nějaká změna?

VIRY.CZ

Prosba o kontrolu logu - samovolné ubývání prostoru na disku

Prosba o kontrolu logu - samovolné ubývání prostoru na disku

Re: Prosba o kontrolu logu - samovolné ubývání prostoru na d

Re: Prosba o kontrolu logu - samovolné ubývání prostoru na d

Re: Prosba o kontrolu logu - samovolné ubývání prostoru na d

Re: Prosba o kontrolu logu - samovolné ubývání prostoru na d

Re: Prosba o kontrolu logu - samovolné ubývání prostoru na d