VIRY.CZ

Prosím o kontrolu,
Mozilla nezobrazuje niektoré stránky, ktoré doteraz normálne chodili. Napr. nezobrazí ani google.
Tak prosím o kontrolu čím to môže byť.

Ďakujem

Tu sú logy:

FRST

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24.10.2018
Ran by Iva (administrator) on IVA-PC (29-10-2018 09:48:33)
Running from C:\Users\Iva\Desktop
Loaded Profiles: Iva (Available Profiles: Iva)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Lexmark International, Inc.) C:\Windows\System32\LEXBCES.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\sched.exe
(Lexmark International, Inc.) C:\Windows\System32\LEXPPS.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avguard.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [EnergyUtility] => C:\Program Files\Lenovo\Energy Management\utility.exe [4081480 2009-07-15] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] => C:\Program Files\Lenovo\Energy Management\Energy Management.exe [5064520 2009-06-25] (Lenovo (Beijing) Limited)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-10-09] (Avira Operations GmbH & Co. KG)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5A6B09D9-D8F4-4C90-A6A4-7B84A2405D60}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-30654545-3194649466-4156373986-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://accounts.google.com/ServiceLogin?service=mail&passive=true&rm=false&continue=hxxp://mail.google.com/mail/&scc=1&ltmpl=default&ltmplcache=2
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-08] (Oracle Corporation)
BHO: Pomocník pri prihlasovaní v konte Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-08] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default [2018-10-29]
FF user.js: detected! => C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\user.js [2016-11-27]
FF Session Restore: Mozilla\Firefox\Profiles\ihm4dqwj.default -> is enabled.
FF Extension: (Flash Video Downloader) - C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\Extensions\artur.dubovoy@gmail.com.xpi [2018-10-22]
FF Extension: (1-Click YouTube Video Downloader) - C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2018-04-15]
FF Extension: (Flash and Video Download) - C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}.xpi [2018-08-28]
FF Extension: (Telemetry coverage) - C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\features\{26ece757-2d44-4835-ae77-67024ec03cd7}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-10-10] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_31_0_0_122.dll [2018-10-29] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-10-08] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-10-08] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.4 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2009-06-09] (Microsoft Corp.)
FF Plugin: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files\Sony\Media Go\npmediago.dll [2010-01-20] (Sony Media Software and Services Inc)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-30654545-3194649466-4156373986-1003: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Iva\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2012-10-11] (Skype Limited)

Chrome:
=======
CHR DefaultProfile: Default
CHR NewTab: Default -> "active": false,
"entry": "chrome-extension://mccokphiflkjoppcieamipikjdiagipo/newtabproduct.html"

CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default [2018-10-28]
CHR Extension: (IE Tab) - C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2018-09-17]
CHR Extension: (YourTemplateFinder ) - C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default\Extensions\mccokphiflkjoppcieamipikjdiagipo [2018-09-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-06]
CHR Extension: (Chrome Media Router) - C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-13]
CHR Profile: C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-10-28]
CHR Profile: C:\Users\Iva\AppData\Local\Google\Chrome\User Data\System Profile [2018-10-28]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files\Avira\Antivirus\avmailc7.exe [891472 2018-10-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\Antivirus\sched.exe [248312 2018-10-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\Antivirus\avguard.exe [248312 2018-10-26] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\Antivirus\avwebg7.exe [1162120 2018-10-26] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [431688 2018-10-09] (Avira Operations GmbH & Co. KG)
S3 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [582944 2009-07-01] (Broadcom Corporation.)
R2 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [414984 2009-07-28] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [472328 2009-07-28] (Lenovo Group Limited)
R2 LexBceS; C:\windows\System32\LEXBCES.EXE [303104 2003-08-18] (Lexmark International, Inc.) [File not signed]
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
S3 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [503080 2010-05-04] (Nero AG)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-14] (Lenovo Group Limited)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ACPIVPC; C:\windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R0 avdevprot; C:\windows\System32\DRIVERS\avdevprot.sys [46440 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\windows\System32\DRIVERS\avgntflt.sys [132448 2018-07-11] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\windows\System32\DRIVERS\avipbb.sys [147880 2018-07-11] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\windows\System32\DRIVERS\avkmgr.sys [35840 2017-03-23] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\windows\System32\DRIVERS\avnetflt.sys [59000 2017-03-23] (Avira Operations GmbH & Co. KG)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R3 Btcsrusb; C:\windows\System32\Drivers\btcusb.sys [47504 2016-11-27] (IVT Corporation.)
R1 HWiNFO32; C:\windows\system32\drivers\HWiNFO32.SYS [23840 2016-11-27] (REALiX(tm))
R2 npf; C:\windows\System32\drivers\npf.sys [50704 2010-01-27] (CACE Technologies, Inc.)
S3 RSUSBSTOR; C:\windows\System32\Drivers\RtsUStor.sys [171520 2009-07-30] (Realtek Semiconductor Corp.) [File not signed]
S3 RTSUER; C:\windows\System32\Drivers\RtsUer.sys [304344 2016-11-27] (Realsil Semiconductor Corporation)
S3 s1039mdm; C:\windows\System32\DRIVERS\s1039mdm.sys [124016 2010-03-15] (MCCI Corporation)
R3 SmbDrvI; C:\windows\System32\DRIVERS\Smb_driver_Intel.sys [26792 2016-11-27] (Synaptics Incorporated)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1759616 2009-03-13] ()
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)
U5 AppMgmt; C:\windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-29 09:48 - 2018-10-29 09:50 - 000012695 _____ C:\Users\Iva\Desktop\FRST.txt
2018-10-29 09:40 - 2018-10-29 09:40 - 001774592 _____ (Farbar) C:\Users\Iva\Desktop\FRST.exe
2018-10-19 16:22 - 2018-10-19 16:22 - 000141023 _____ C:\Users\Iva\Downloads\Prostrednik_CV.pdf
2018-10-14 09:22 - 2018-10-14 09:22 - 003108030 _____ C:\Users\Iva\Downloads\studnica2.pdf
2018-10-14 09:22 - 2018-10-14 09:22 - 000619438 _____ C:\Users\Iva\Downloads\etymologia-04priezviskad.pdf
2018-10-10 19:26 - 2018-09-18 19:10 - 000348976 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2018-10-10 19:26 - 2018-09-18 05:33 - 020278784 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2018-10-10 19:26 - 2018-09-18 05:31 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2018-10-10 19:26 - 2018-09-18 05:21 - 000497664 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2018-10-10 19:26 - 2018-09-18 05:21 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2018-10-10 19:26 - 2018-09-18 05:20 - 000341504 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2018-10-10 19:26 - 2018-09-18 05:20 - 000047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2018-10-10 19:26 - 2018-09-18 05:19 - 000064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2018-10-10 19:26 - 2018-09-18 05:18 - 002295808 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2018-10-10 19:26 - 2018-09-18 05:15 - 000047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2018-10-10 19:26 - 2018-09-18 05:15 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2018-10-10 19:26 - 2018-09-18 05:14 - 000476160 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2018-10-10 19:26 - 2018-09-18 05:13 - 000662016 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2018-10-10 19:26 - 2018-09-18 05:13 - 000115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2018-10-10 19:26 - 2018-09-18 05:13 - 000104960 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2018-10-10 19:26 - 2018-09-18 05:12 - 000620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2018-10-10 19:26 - 2018-09-18 05:09 - 000668160 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2018-10-10 19:26 - 2018-09-18 05:06 - 000416256 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2018-10-10 19:26 - 2018-09-18 05:03 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2018-10-10 19:26 - 2018-09-18 05:02 - 000091136 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2018-10-10 19:26 - 2018-09-18 05:02 - 000073216 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2018-10-10 19:26 - 2018-09-18 05:00 - 000168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2018-10-10 19:26 - 2018-09-18 04:59 - 000076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2018-10-10 19:26 - 2018-09-18 04:58 - 000279040 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2018-10-10 19:26 - 2018-09-18 04:57 - 004494848 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2018-10-10 19:26 - 2018-09-18 04:57 - 000130048 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2018-10-10 19:26 - 2018-09-18 04:53 - 013679616 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2018-10-10 19:26 - 2018-09-18 04:52 - 000230400 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2018-10-10 19:26 - 2018-09-18 04:51 - 000696320 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2018-10-10 19:26 - 2018-09-18 04:51 - 000692224 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2018-10-10 19:26 - 2018-09-18 04:50 - 002059776 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2018-10-10 19:26 - 2018-09-18 04:50 - 001155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2018-10-10 19:26 - 2018-09-18 04:37 - 004037632 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2018-10-10 19:26 - 2018-09-18 04:34 - 001330176 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2018-10-10 19:26 - 2018-09-18 04:31 - 000710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2018-10-10 19:25 - 2018-09-19 09:08 - 000343552 _____ (Microsoft Corporation) C:\windows\system32\msrd3x40.dll
2018-10-10 19:25 - 2018-09-18 05:31 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2018-10-10 19:25 - 2018-09-11 19:23 - 002404864 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2018-10-10 19:25 - 2018-09-11 19:20 - 000126464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2018-10-10 19:25 - 2018-09-11 19:20 - 000098304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2018-10-10 19:25 - 2018-09-09 01:46 - 004054216 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2018-10-10 19:25 - 2018-09-09 01:46 - 003959496 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2018-10-10 19:25 - 2018-09-09 01:46 - 001310488 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2018-10-10 19:25 - 2018-09-09 01:46 - 001214152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2018-10-10 19:25 - 2018-09-09 01:46 - 000730824 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2018-10-10 19:25 - 2018-09-09 01:46 - 000219336 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2018-10-10 19:25 - 2018-09-09 01:46 - 000189640 _____ (Microsoft Corporation) C:\windows\system32\halmacpi.dll
2018-10-10 19:25 - 2018-09-09 01:46 - 000189640 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2018-10-10 19:25 - 2018-09-09 01:46 - 000137928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2018-10-10 19:25 - 2018-09-09 01:46 - 000136392 _____ (Microsoft Corporation) C:\windows\system32\halacpi.dll
2018-10-10 19:25 - 2018-09-09 01:46 - 000067272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2018-10-10 19:25 - 2018-09-09 01:44 - 002755584 _____ (Microsoft Corporation) C:\windows\system32\themeui.dll
2018-10-10 19:25 - 2018-09-09 01:44 - 000400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2018-10-10 19:25 - 2018-09-09 01:44 - 000172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2018-10-10 19:25 - 2018-09-09 01:44 - 000099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2018-10-10 19:25 - 2018-09-09 01:44 - 000070144 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2018-10-10 19:25 - 2018-09-09 01:44 - 000043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 001391104 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 001063424 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000655360 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000554496 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000306688 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000261120 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000254464 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000223232 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000141312 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2018-10-10 19:25 - 2018-09-09 01:42 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2018-10-10 19:25 - 2018-09-09 01:42 - 000644096 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2018-10-10 19:25 - 2018-09-09 01:42 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2018-10-10 19:25 - 2018-09-09 01:42 - 000082432 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2018-10-10 19:25 - 2018-09-09 01:42 - 000050688 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2018-10-10 19:25 - 2018-09-09 01:42 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2018-10-10 19:25 - 2018-09-09 01:18 - 000097792 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2018-10-10 19:25 - 2018-09-09 01:18 - 000050688 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2018-10-10 19:25 - 2018-09-09 01:18 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2018-10-10 19:25 - 2018-09-09 01:18 - 000029696 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2018-10-10 19:25 - 2018-09-09 01:18 - 000016896 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2018-10-10 19:25 - 2018-09-09 01:16 - 000107008 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2018-10-10 19:25 - 2018-09-09 01:15 - 000262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2018-10-10 19:25 - 2018-09-09 01:13 - 000226304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2018-10-10 19:25 - 2018-09-09 01:12 - 000069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2018-10-10 19:25 - 2018-09-09 01:12 - 000055296 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2018-10-10 19:25 - 2018-09-09 01:12 - 000053760 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2018-10-10 19:25 - 2018-09-09 01:12 - 000053248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\viac7.sys
2018-10-10 19:25 - 2018-09-09 01:12 - 000052736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2018-10-10 19:25 - 2018-09-09 01:12 - 000052224 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2018-10-10 19:25 - 2018-09-09 01:12 - 000036352 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2018-10-10 19:25 - 2018-09-09 01:12 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2018-10-10 19:25 - 2018-09-09 01:12 - 000015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2018-10-10 19:25 - 2018-08-28 07:09 - 012574208 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2018-10-10 19:25 - 2018-08-28 07:09 - 011411968 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2018-10-10 19:25 - 2018-08-28 06:52 - 000008192 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2018-10-10 19:25 - 2018-08-28 06:52 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2018-10-10 19:25 - 2018-08-28 06:52 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2018-10-10 19:25 - 2018-08-16 03:14 - 000041984 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll
2018-10-10 19:25 - 2018-08-13 22:48 - 000940784 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2018-10-10 19:25 - 2018-08-13 16:41 - 000527872 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2018-10-10 19:25 - 2018-08-12 21:17 - 000122536 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2018-10-10 19:25 - 2018-08-12 21:13 - 000554496 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2018-10-10 19:25 - 2018-08-08 16:40 - 000158720 _____ (Microsoft Corporation) C:\windows\system32\itircl.dll
2018-10-10 19:25 - 2018-08-08 16:40 - 000142848 _____ (Microsoft Corporation) C:\windows\system32\itss.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-29 09:48 - 2018-09-16 12:44 - 000000000 ____D C:\FRST
2018-10-29 09:48 - 2016-11-19 16:55 - 000000000 ____D C:\Users\Iva\AppData\LocalLow\Mozilla
2018-10-29 09:26 - 2012-04-25 04:28 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-10-29 09:17 - 2009-07-14 05:34 - 000018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-10-29 09:17 - 2009-07-14 05:34 - 000018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-10-29 09:07 - 2010-01-29 20:35 - 000000000 ____D C:\Users\Iva\AppData\Local\Adobe
2018-10-29 09:06 - 2012-04-01 07:47 - 000842240 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2018-10-29 09:06 - 2011-08-25 16:09 - 000175104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2018-10-29 08:56 - 2009-07-14 03:37 - 000000000 ____D C:\windows\inf
2018-10-28 20:40 - 2009-09-23 02:25 - 000848194 _____ C:\windows\system32\PerfStringBackup.INI
2018-10-28 20:38 - 2017-12-03 18:51 - 000000000 ____D C:\KMPlayer
2018-10-28 15:08 - 2009-07-14 05:53 - 000000006 ____H C:\windows\Tasks\SA.DAT
2018-10-26 07:57 - 2016-07-03 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2018-10-25 14:59 - 2014-11-01 17:28 - 000002182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-10-24 16:26 - 2016-04-10 16:06 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-10-24 16:15 - 2014-03-31 17:01 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-10-21 10:23 - 2017-12-14 17:43 - 000000000 ____D C:\Users\Iva\Downloads\Doklady
2018-10-19 15:47 - 2016-07-03 19:55 - 000000000 ____D C:\ProgramData\Package Cache
2018-10-14 08:33 - 2017-05-12 18:36 - 000000000 ____D C:\windows\rescache
2018-10-11 17:18 - 2012-10-07 18:03 - 000000000 ____D C:\Users\Iva\AppData\LocalLow\Adobe
2018-10-10 20:28 - 2009-07-14 05:33 - 000412888 _____ C:\windows\system32\FNTCACHE.DAT
2018-10-10 19:47 - 2013-07-24 19:02 - 000000000 ____D C:\windows\system32\MRT
2018-10-10 19:30 - 2010-01-29 18:41 - 133674168 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2018-10-04 18:01 - 2018-04-10 20:47 - 000001351 _____ C:\Users\Iva\Desktop\Glostre-rodokmene - odkaz.lnk

==================== Files in the root of some directories =======

2012-04-04 20:10 - 2010-01-26 10:11 - 000444283 _____ () C:\Program Files\Common Files\WinPcapNmap.exe
2011-09-26 20:23 - 2011-10-01 08:24 - 000007722 _____ () C:\Users\Iva\AppData\Roaming\mdbu.bin
2017-01-16 09:01 - 2017-01-23 09:44 - 000007608 _____ () C:\Users\Iva\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-10-26 08:26

==================== End of FRST.txt ============================


Addition

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24.10.2018
Ran by Iva (29-10-2018 09:51:27)
Running from C:\Users\Iva\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2010-01-29 16:48:30)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-30654545-3194649466-4156373986-500 - Administrator - Disabled)
Guest (S-1-5-21-30654545-3194649466-4156373986-501 - Limited - Enabled)
Iva (S-1-5-21-30654545-3194649466-4156373986-1003 - Administrator - Enabled) => C:\Users\Iva

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 16.04 (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}) (Version: 1.0 - Microsoft Corporation) Hidden
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\Activation Assistant for the 2007 Microsoft Office suites) (Version: - Microsoft Corporation)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.008.20080 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Advertising Center (HKLM\...\{b2ec4a38-b545-4a00-8214-13fe0e915e6d}) (Version: 0.0.0.1 - Nero AG) Hidden
Aktualizácia Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-041B-0000-0000000FF1CE}_HOMESTUDENTR_{9A8C39B0-D27F-4F81-BE74-2FECF164707E}) (Version: - Microsoft)
Aktualizácia Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-041B-0000-0000000FF1CE}_HOMESTUDENTR_{CE23B3DC-18CC-46FC-A309-81D6670F8D3D}) (Version: - Microsoft)
Aktualizácia Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-041B-0000-0000000FF1CE}_HOMESTUDENTR_{D6DBF512-87C0-4F6A-8FB9-AC3A389D9DE5}) (Version: - Microsoft)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - )
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Asistent pri prihlasovaní v konte Windows Live ID (HKLM\...\{10A44844-4465-456E-8C97-80BDD4F68845}) (Version: 6.500.3146.0 - Microsoft Corporation)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (HKLM\...\{E031338C-839D-4EDD-9537-99B653C39D81}) (Version: 6.5.5.24 - Autodesk, Inc.)
Avanquest update (HKLM\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.29 - Avanquest Software)
Avira (HKLM\...\{18787388-9263-47A6-B954-41BDE0B90959}) (Version: 1.2.121.24663 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM\...\{2884d9b5-2fed-48df-b0e0-fe229e7eb781}) (Version: 1.2.121.24663 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.42.11 - Avira Operations GmbH & Co. KG)
Broadcom 802.11 Wireless Driver (HKLM\...\{8991E763-21F5-4DEA-A938-5D9D77DCB488}) (Version: 1.0.0.0 - )
Broadcom Gigabit Integrated Controller (HKLM\...\{49F3D04B-B849-4C89-AB31-2366A004EA28}) (Version: 12.24.01 - Broadcom Corporation)
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
Business Contact Manager for Outlook 2007 SP2 (HKLM\...\{B32C4059-6E7A-41EF-AD20-56DF1872B923}) (Version: 3.0.8619.1 - Microsoft Corporation) Hidden
Business Contact Manager for Outlook 2007 SP2 (HKLM\...\Business Contact Manager) (Version: 3.0.8619.1 - Microsoft Corporation)
Canon IJ Network Scanner Selector EX (HKLM\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - )
Canon IJ Network Tool (HKLM\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MP Navigator EX 5.1 (HKLM\...\MP Navigator EX 5.1) (Version: - )
Canon MP550 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP550_series) (Version: - )
Canon MX430 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX430_series) (Version: - Canon Inc.)
Canon My Image Garden (HKLM\...\Canon My Image Garden) (Version: 3.0.1 - Canon Inc.)
Canon Pomôcka na rýchlu voľbu (HKLM\...\Speed Dial Utility) (Version: 1.5.0 - Canon Inc.)
Canon Solution Menu EX (HKLM\...\CanonSolutionMenuEX) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5931 - CDBurnerXP)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.98.4.0 - Conexant)
CrystalDiskInfo 6.1.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 6.1.0 - Crystal Dew World)
Cubes Trial Version 2.00 (HKLM\...\Cubes Trial Version_is1) (Version: - )
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
doPDF 6.0 printer (HKLM\...\doPDF 6 printer_is1) (Version: - Softland)
Doplnok Microsoft Save as PDF or XPS pre programy balíka 2007 Microsoft Office (HKLM\...\{90120000-00B2-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation)
EasyCapture (HKLM\...\EasyCapture4.0) (Version: V4.0.09.0731 - Lenovo)
EGR-ShellExtension (HKLM\...\EGR-ShellExtension) (Version: 1.1.0.100 - EasternGraphics)
Energy Management (HKLM\...\{AE1E24C2-E720-42D5-B8E1-48F71A97B4DB}) (Version: 4.3.1.1 - Lenovo)
Facebook Video Calling 1.2.0.287 (HKLM\...\{B92C5909-1D37-4C51-8397-A28BB28E5DC3}) (Version: 1.2.287 - Skype Limited)
FileHippo.com Update Checker (HKLM\...\FileHippo.com) (Version: - )
FormatFactory 3.00 (HKLM\...\FormatFactory) (Version: 3.00 - Free Time)
Free M4a to MP3 Converter 7.1 (HKLM\...\Free M4a to MP3 Converter_is1) (Version: - ManiacTools.com)
GIMP 2.4.5 (HKLM\...\WinGimp-2.0_is1) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 70.0.3538.77 - Spoločnosť Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HD Tune 2.55 (HKLM\...\HD Tune_is1) (Version: - EFD Software)
HF Designer 2.7 (HKLM\...\HappyFoto-Designer_is1) (Version: - )
ICQ7.5 (HKLM\...\{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}) (Version: 7.5 - ICQ)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel(R) Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Java 7 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.450 - Oracle)
Java(TM) 6 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
K-Lite Codec Pack 10.5.5 Full (HKLM\...\KLiteCodecPack_is1) (Version: 10.5.5 - )
KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 4.1.5.6 - PandoraTV)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9600 - Broadcom Corporation)
Lenovo EasyCamera (HKLM\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.50.6 - Suyin Optronics Corp.)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0723 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0723 - CyberLink Corp.)
Lenovo ReadyComm 5 (HKLM\...\{17542DBF-E17C-4562-BC4D-FA3EF3076C45}) (Version: 5.1.1.17 - Lenovo)
Lenovo ReadyComm 5.0 Service (HKLM\...\{76C66170-C538-4E77-B54D-48E136B5B533}) (Version: 5.0.0.1 - Lenovo Group Limited)
Lexmark X1100 Series (HKLM\...\Lexmark X1100 Series) (Version: - )
Media Go (HKLM\...\{520CD4F0-9DAC-4C5C-8CA1-D0210CFF6062}) (Version: 1.4.269 - Sony)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM\...\{90A40409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office 2007 Primary Interop Assemblies (HKLM\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.4 (HKLM\...\{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}) (Version: 2.0.3008.0 - Microsoft Corporation)
Microsoft Office Small Business Connectivity Components (HKLM\...\{A939D341-5A04-4E0A-BB55-3E65B386432D}) (Version: 2.0.7024.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{E7084B89-69E0-46B3-A118-8F99D06988CD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mobile Connect (HKLM\...\{3EAAC5FD-E209-4856-8C49-D4EA40F85032}) (Version: 1.00.0000 - Huawei technologies)
Mozilla Firefox 63.0 (x86 sk) (HKLM\...\Mozilla Firefox 63.0 (x86 sk)) (Version: 63.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MusicJet (HKU\S-1-5-21-30654545-3194649466-4156373986-1003\...\76f4758ca7e15dc6) (Version: 1.0.2.18 - MusicJet)
Nero 9 Essentials (HKLM\...\{faeebf0a-0bd4-44a5-a539-f9ea31b1e084}) (Version: - Nero AG)
Nero BurnLite 10 (HKLM\...\{842BEE12-CCCB-43F4-ABAF-CBA6DFE2583D}) (Version: 10.0.10600 - Nero AG)
Nero BurnLite 10 (HKLM\...\{AB627AF2-9C7E-4DBD-816B-3B2646B81E89}) (Version: 10.0.10500.5.100 - Nero AG)
Nero Update (HKLM\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0018 - Nero AG)
Opera 12.17 (HKLM\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Opera Stable 48.0.2685.35 (HKLM\...\Opera 48.0.2685.35) (Version: 48.0.2685.35 - Opera Software)
PC Inspector smart recovery (HKLM\...\{C9A87D86-FDFD-418B-BF96-EF09320973B3}) (Version: 4.50 - )
pCon.planner 6.7 (HKLM\...\{61FFF5E3-1D08-4F66-AC29-EF61963F2619}) (Version: 6.7.0.102 - EasternGraphics) Hidden
pCon.planner 6.7 (HKLM\...\pCon.planner 6.7) (Version: 6.7.0.102 - EasternGraphics)
PlayStation(R)Network Downloader (HKLM\...\{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}) (Version: 2.02.00076 - Sony Computer Entertainment Inc.)
PlayStation(R)Store (HKLM\...\{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}) (Version: 3.1.8.07881 - Sony Computer Entertainment Inc.)
Pluto TV version 0.3.2 (HKU\S-1-5-21-30654545-3194649466-4156373986-1003\...\Pluto TV_is1) (Version: 0.3.2 - Pluto TV)
Power2Go (HKLM\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.4809d1 - CyberLink Corp.)
Puzzle Express Deluxe (HKU\S-1-5-21-30654545-3194649466-4156373986-1003\...\Puzzle Express Deluxe) (Version: 1.0.0 - Zylom Games)
QIP 2012 4.0.6611 (HKU\S-1-5-21-30654545-3194649466-4156373986-1003\...\QIP 2012) (Version: 4.0.6611 - )
QIP Internet Guardian (HKU\S-1-5-21-30654545-3194649466-4156373986-1003\...\QipGuard) (Version: - )
QuickTime 7 (HKLM\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RAD Video Tools (HKLM\...\RADVideo) (Version: - )
Realtek Card Reader (HKLM\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconduct Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30101 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.45 - Piriform)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Super DX-Ball v1.00 (HKLM\...\Super DX-Ball_is1) (Version: 1.0 - BlitWise Productions, LLC)
swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Tetris Navždy (HKLM\...\Tetris Navždy) (Version: - )
Theophilos 3 (HKLM\...\Theophilos_is1) (Version: - )
Theophilos 3.0 (HKLM\...\Theophilos 3.0_is1) (Version: - )
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
WinPcap 4.1.1 (HKLM\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-30654545-3194649466-4156373986-1003_Classes\CLSID\{5C4094D7-4213-4C40-9E33-16A2D2D69EF2}\InprocServer32 -> C:\Program Files\Sony\PlayStation Store\StoreDrmUtility.dll (Sony Computer Entertainment Inc.)
CustomCLSID: HKU\S-1-5-21-30654545-3194649466-4156373986-1003_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\Iva\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files\Avira\Antivirus\shlext.dll [2018-10-26] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2011-02-11] (Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files\Avira\Antivirus\shlext.dll [2018-10-26] (Avira Operations GmbH & Co. KG)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1338EC58-3ED9-49C4-81C3-A6B4B3547CE5} - System32\Tasks\{D817FDD0-775A-4570-BFAE-9154269408A8} => C:\windows\system32\pcalua.exe -a F:\NOVE_USPORIADANIE\Instalacky\Kodeky_instalacky\Codecs6030_allin1_All_in_ONE.exe -d F:\NOVE_USPORIADANIE\Instalacky\Kodeky_instalacky
Task: {2DD6F659-9040-4FF3-9B3E-3F51EA58FB5F} - System32\Tasks\{5776848F-1F69-40B3-B043-98AC6F2519AA} => C:\windows\system32\pcalua.exe -a C:\windows\system32\pcwrun.exe -c "C:\Program Files\GIMP-2.0\bin\gimp-2.4.exe"
Task: {347AE205-0965-4447-8AA6-D90406632E44} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {4704E4C5-FB1F-42C4-802C-06FB1BB50A0F} - System32\Tasks\{FAB74AE7-CF79-45AE-AB0F-6624C9CEBDF6} => C:\windows\system32\pcalua.exe -a C:\Dokumenty_od_29-12-2014\Hry\tetrinst.exe -d C:\Dokumenty_od_29-12-2014\Hry
Task: {4848B36A-807F-4EE7-8844-D47D8AC7DD17} - System32\Tasks\{F2A42AD5-62FA-47B2-B9E1-FB3562B266F6} => C:\windows\system32\pcalua.exe -a "C:\Dokumenty_od_29-12-2014\PROGRAM---Bible-do-PC\THEOPHILOS - Bible do PC - základní program.EXE" -d C:\Dokumenty_od_29-12-2014\PROGRAM---Bible-do-PC
Task: {5A683F93-2FC4-49BE-87D1-70EB88C286DB} - System32\Tasks\{927D828E-ABEF-43FC-9968-E85D61911011} => C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe [2009-07-01] (Broadcom Corporation.)
Task: {6F37622D-AC57-4AA6-8A94-6A166F1B927B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {6F51716D-4A9F-49CC-9875-203FDD8E9E33} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files\Avira\Antivirus\avgnt.exe [2018-10-26] (Avira Operations GmbH & Co. KG)
Task: {7714160B-C66A-44B1-A6A9-AEF5D51595AB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-10] (Piriform Ltd)
Task: {7E272799-9C03-4FB0-86B3-71E3C8248B65} - System32\Tasks\{3EB3C91F-59DD-4A57-B960-89983FF43EBC} => C:\windows\system32\pcalua.exe -a C:\windows\system32\pcwrun.exe -c "C:\Program Files\RarZilla Free Unrar\RarZilla.exe"
Task: {87288777-F114-4765-B44B-78BAB217E075} - System32\Tasks\{B9592A61-A346-42FE-B832-D61EECCA6EA3} => C:\windows\system32\pcalua.exe -a C:\ProgramData\F4D55F3B000026F400013E6CB4EB23C1\F4D55F3B000026F400013E6CB4EB23C1.exe -c -u
Task: {88604855-7D6C-4E11-9DB4-73F1ED06F403} - System32\Tasks\Avast Software\Overseer => C:\Program Files\AVAST Software\Avast\setup\overseer.exe
Task: {89A2278B-132D-47B2-9914-D2777C33D3E1} - System32\Tasks\Opera scheduled Autoupdate 1422108017 => C:\Program Files\Opera\launcher.exe [2017-10-02] (Opera Software)
Task: {9E1FC1E2-7DF0-445C-AC33-ACC9D788BF78} - System32\Tasks\{9CEE08D8-D68A-44B1-924C-EA8367A4C2B9} => C:\windows\system32\pcalua.exe -a C:\Moje_dokumenty\NOVE_USPORIADANIE\Instalacky\Virtualna_tlaciaren_pdf_creator_instalacka\dopdf.exe -d C:\Moje_dokumenty\NOVE_USPORIADANIE\Instalacky\Virtualna_tlaciaren_pdf_creator_instalacka
Task: {A01A5F0A-9524-46AC-899A-15A2A4AD7599} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-10] (Piriform Ltd)
Task: {A22DBA14-D8C0-4927-9298-2257956299D6} - System32\Tasks\{355E2702-06E9-4D0A-A4E8-E130D43F75C7} => C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe [2009-07-01] (Broadcom Corporation.)
Task: {B8F2C1F1-8C1C-46BF-9B75-50B06BE1494E} - System32\Tasks\{A6BAE287-7DC6-4DB6-80B8-76EBDC43450B} => C:\windows\system32\pcalua.exe -a "F:\NOVE_USPORIADANIE\Instalacky\Mozilla_Firefox\Firefox Setup 3.0.9.exe" -d F:\NOVE_USPORIADANIE\Instalacky\Mozilla_Firefox
Task: {C5C526FE-B8B6-43EB-ACED-E54930D05A9D} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\system32\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe [2018-10-29] (Adobe Systems Incorporated)
Task: {D0CDCABB-EADB-4E22-8A8B-7E4AE2F95C13} - System32\Tasks\{B7493C4E-3873-46DD-85AC-547AD1DE3955} => C:\windows\system32\pcalua.exe -a F:\NOVE_USPORIADANIE\Instalacky\K_happy_akvariu_na_Facebooku\Shockwave_Installer_Full.exe -d F:\NOVE_USPORIADANIE\Instalacky\K_happy_akvariu_na_Facebooku
Task: {D8D2FD5D-2972-406B-83B6-F4FF951D437A} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-29] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2010-03-27 18:35 - 2003-07-29 14:27 - 000078336 _____ () C:\windows\system32\spool\PRTPROCS\W32X86\LXBKPP5C.dll
2009-11-10 17:21 - 2008-12-20 04:20 - 000063304 _____ () C:\Program Files\Lenovo\Energy Management\kbdhook.dll
2009-11-10 17:21 - 2008-12-20 04:20 - 000051016 _____ () C:\Program Files\Lenovo\Energy Management\HookLib.dll
2018-08-12 13:01 - 2018-08-12 12:59 - 001204472 _____ () C:\Program Files\Avira\Antivirus\crypto-42.dll
2018-08-12 13:01 - 2018-08-12 12:59 - 000243352 _____ () C:\Program Files\Avira\Antivirus\ssl-44.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2018-02-08 16:21 - 000000035 _____ C:\windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-30654545-3194649466-4156373986-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\Iva\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Iva^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^PlutoTV.lnk => C:\windows\pss\PlutoTV.lnk.Startup
MSCONFIG\startupreg: Apoint => C:\Program Files\Apoint2K\Apoint.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: IJNetworkScannerSelectorEX => C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
MSCONFIG\startupreg: VeriFaceManager => C:\Program Files\Lenovo\VeriFace\PManage.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B15C5458-D4C3-4F39-8188-C73886AB484C}] => (Allow) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
FirewallRules: [{50309CE0-6061-4F45-8387-30F71EABD235}] => (Allow) C:\windows\System32\IgrsSvcs.exe
FirewallRules: [{7D4EBB45-7C2D-476A-866E-321EB71387D2}] => (Allow) C:\windows\System32\IgrsSvcs.exe
FirewallRules: [{0C0DCF90-E250-4325-8275-9595FECF2D2F}] => (Allow) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
FirewallRules: [{F410BBB9-AE8D-4117-914E-33DD15AD4422}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ReadyComm.exe
FirewallRules: [{25A04806-39BE-4844-A2DF-38AAD39F517F}] => (Allow) C:\Program Files\Lenovo\ReadyComm\Projectionist.exe
FirewallRules: [{ECE083BB-B64A-45C8-8029-DB318B4A5F0E}] => (Allow) C:\Program Files\Lenovo\ReadyComm\Projectionist.exe
FirewallRules: [{33FFBE7A-5CFE-41F7-9C00-901BE47D649F}] => (Allow) C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
FirewallRules: [{2553EFAB-2FA2-4CAD-8970-224B673EAE70}] => (Allow) C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
FirewallRules: [{AE86CC13-F845-4BBE-A531-94ACCE01422B}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
FirewallRules: [{8BCAAD73-86D7-4ACB-8986-D6AE5A52A2FD}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
FirewallRules: [{3F6E1029-3C60-48E9-B43A-995BD4170373}] => (Allow) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
FirewallRules: [{3DAE2E26-3D52-4E65-B808-9BB50FE05534}] => (Allow) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
FirewallRules: [TCP Query User{C3B652EC-FB8E-4BD2-96A2-7FCA3B2E3CBC}C:\program files\opera\opera.exe] => (Allow) C:\program files\opera\opera.exe
FirewallRules: [UDP Query User{F17F7FF8-E5B0-4B99-AA4F-083047336DC2}C:\program files\opera\opera.exe] => (Allow) C:\program files\opera\opera.exe
FirewallRules: [TCP Query User{BFB1BD70-4668-4735-9277-BF2C8FC8D96A}C:\program files\opera\opera.exe] => (Block) C:\program files\opera\opera.exe
FirewallRules: [UDP Query User{AC1D111C-7049-4C99-A992-CE9054976335}C:\program files\opera\opera.exe] => (Block) C:\program files\opera\opera.exe
FirewallRules: [{1279EAB1-AAB1-4993-A899-6C839FFC5300}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{773470E4-2101-421F-860C-F50618287C65}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{4F5E48D2-17E9-45AE-A1B9-C9D153C275D3}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{2AFED377-0A67-4CB4-9E68-AA17F07CC0E4}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{E119330F-0296-41AE-881E-9AB1C7B550E0}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{C954B080-78AD-41E4-AC33-CECC4B574CFA}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{9A3BD9B4-1B67-4B6C-8DE1-2F477D26F696}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{D9947D47-64ED-4E36-A234-F83F84FCBA4D}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{8438D759-BD91-4474-87F6-93933ECAF8F6}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{274186CA-8E0F-4083-9020-30B819D51EEB}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{21DD6A2A-2D3F-4565-8803-B815BD409441}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{E9B25EC6-C489-49F6-A485-AD6F9EE7EA5B}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{F9AE9B17-9BB8-49FD-B76C-225DCEF378EC}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{FF4225D5-645C-415B-886F-4B899AE761E8}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{41B2B6CA-4BE9-486B-B867-3A8163B5EF97}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{87865ECB-6BAB-4957-9881-75DC136D889C}C:\program files\icq7.1\icq.exe] => (Block) C:\program files\icq7.1\icq.exe
FirewallRules: [UDP Query User{57D7DE28-E332-4309-B5BE-2B1241C996AB}C:\program files\icq7.1\icq.exe] => (Block) C:\program files\icq7.1\icq.exe
FirewallRules: [{19FE0E10-D10C-44B1-8B64-D72E6810B046}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [TCP Query User{D6915018-2A90-4CAC-8D5C-60427DBFFB57}C:\program files\qip 2012\qip.exe] => (Block) C:\program files\qip 2012\qip.exe
FirewallRules: [UDP Query User{539F7CB0-327A-4949-A591-7AF2933E4A24}C:\program files\qip 2012\qip.exe] => (Block) C:\program files\qip 2012\qip.exe
FirewallRules: [{61843223-799F-4909-BBB3-8287FDE853B2}] => (Allow) C:\Program Files\ICQ7.5\ICQ.exe
FirewallRules: [{E2195357-D431-4FF9-A4B4-2784FBE2192B}] => (Allow) C:\Program Files\ICQ7.5\ICQ.exe
FirewallRules: [{AB13E5EC-657F-4520-B704-16D4FFA77250}] => (Allow) C:\Program Files\ICQ7.5\ICQ.exe
FirewallRules: [{59F5D1DB-33D9-4FD9-A312-D1B0EE31FAC6}] => (Allow) C:\Program Files\ICQ7.5\ICQ.exe
FirewallRules: [{8DBD9DC6-579B-441F-84E0-7FC12418187A}] => (Allow) C:\Program Files\ICQ7.5\ICQ.exe
FirewallRules: [{7E18E430-A132-4C2E-BBD5-7DF8DFE8FA32}] => (Allow) C:\Program Files\ICQ7.5\ICQ.exe
FirewallRules: [{78612CBD-2D82-4079-B6FD-13F87AA3E188}] => (Allow) C:\Users\Iva\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{DABDD449-D4CF-45EE-B207-BA77CB5E1B22}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{D6B57271-792A-40FB-93C8-EBBB4F46E218}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{5133B4C8-BA48-4B3B-BB33-752780D417FF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{5B9B160A-CED9-45DE-A1A2-D79A245ED541}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{E9D4009A-2910-4592-8CF1-2F545720FB3A}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{ECD4B7E2-16F4-4C80-AD95-3763A1E9E199}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{0E0951EB-4215-4CDA-8116-86DA8C9B6E34}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C8DA4E42-DF17-4C3C-83EB-BDAC890BE4FB}] => (Allow) C:\Program Files\Opera\47.0.2631.80\opera.exe
FirewallRules: [{183CC8A7-E2B2-4702-8FF5-BF3C8F1132E5}] => (Allow) C:\Program Files\Opera\48.0.2685.35\opera.exe
FirewallRules: [{A20155EB-5054-4BCA-B259-0BAC6D932E12}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{06079893-644A-4D5D-9CBA-61C3B5B0A919}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{4EE98E45-9C68-4C0F-A2E3-FE7E5F2184F6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

28-10-2018 20:01:14 Plánovaný kontrolný bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/28/2018 08:40:41 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/28/2018 08:40:41 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/28/2018 07:00:05 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Zálohovanie sa nedokončilo v dôsledku chyby zápisu do umiestnenia zálohy F:\. Vyskytla sa chyba: Umiestnenie zálohy sa nedá nájsť alebo nie je platné. Skontrolujte svoje nastavenie zálohovania a umiestnenie zálohy. (0x81000006).

Error: (10/28/2018 05:40:11 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/28/2018 05:40:11 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/28/2018 04:59:50 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - There was a failure initializing profiling API attach infrastructure. This process will not allow a profiler to attach. HRESULT: 0x80004005. Process ID (decimal): 2328. Message ID: [0x2509].

Error: (10/28/2018 04:31:39 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - There was a failure initializing profiling API attach infrastructure. This process will not allow a profiler to attach. HRESULT: 0x80004005. Process ID (decimal): 2820. Message ID: [0x2509].

Error: (10/28/2018 03:46:55 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.


System errors:
=============
Error: (10/28/2018 08:16:27 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (10/28/2018 08:16:26 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (10/28/2018 08:16:26 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (10/28/2018 08:16:25 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (10/28/2018 05:37:06 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk2\DR2.

Error: (10/28/2018 05:37:05 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk2\DR2.

Error: (10/28/2018 05:37:05 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk2\DR2.

Error: (10/28/2018 05:37:04 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk2\DR2.


==================== Memory info ===========================

Processor: Pentium(R) Dual-Core CPU T4300 @ 2.10GHz
Percentage of memory in use: 30%
Total physical RAM: 3032.6 MB
Available physical RAM: 2097.46 MB
Total Virtual: 6063.57 MB
Available Virtual: 4794.11 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:252.89 GB) (Free:8.41 GB) NTFS
Drive d: (Lenovo) (Fixed) (Total:30.25 GB) (Free:0.51 GB) NTFS
Drive g: () (Removable) (Total:28.63 GB) (Free:0.16 GB) FAT32

\\?\Volume{26c8cd6d-ce13-11de-b561-806e6f6e6963}\ () (Fixed) (Total:0.2 GB) (Free:0.15 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 397BDB04)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=252.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=30.2 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=14.8 GB) - (Type=12)

========================================================
Disk: 1 (Protective MBR) (Size: 28.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

Ahoj

Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/

• Uloz na plochu a ukonci vsetky programy
• Spusti AdwCleaner ako spravca
• Odsuhlas licencne podmienky
• Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
• Nechaj zaskrtnute vsetky nalezy
• Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
• Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
• Otvori sa log, jeho obsah sem skopiruj

nenašiel nič
nereštartoval sa PC
a log som musela hladať
tu je

# -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build: 09-25-2018
# Database: 2018-10-23.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-29-2018
# Duration: 00:00:44
# OS: Windows 7 Home Premium
# Scanned: 32011
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [1809 octets] - [16/09/2018 18:13:48]
AdwCleaner[C00].txt - [1881 octets] - [16/09/2018 18:15:24]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########

OK, poprosim o obidva noev logy z FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24.10.2018
Ran by Iva (administrator) on IVA-PC (29-10-2018 20:47:03)
Running from C:\Users\Iva\Desktop
Loaded Profiles: Iva (Available Profiles: Iva)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Lexmark International, Inc.) C:\Windows\System32\LEXBCES.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\sched.exe
(Lexmark International, Inc.) C:\Windows\System32\LEXPPS.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avguard.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [EnergyUtility] => C:\Program Files\Lenovo\Energy Management\utility.exe [4081480 2009-07-15] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] => C:\Program Files\Lenovo\Energy Management\Energy Management.exe [5064520 2009-06-25] (Lenovo (Beijing) Limited)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-10-09] (Avira Operations GmbH & Co. KG)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5A6B09D9-D8F4-4C90-A6A4-7B84A2405D60}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-30654545-3194649466-4156373986-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://accounts.google.com/ServiceLogin?service=mail&passive=true&rm=false&continue=hxxp://mail.google.com/mail/&scc=1&ltmpl=default&ltmplcache=2
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-08] (Oracle Corporation)
BHO: Pomocník pri prihlasovaní v konte Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-08] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default [2018-10-29]
FF user.js: detected! => C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\user.js [2016-11-27]
FF Session Restore: Mozilla\Firefox\Profiles\ihm4dqwj.default -> is enabled.
FF Extension: (Flash Video Downloader) - C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\Extensions\artur.dubovoy@gmail.com.xpi [2018-10-22]
FF Extension: (1-Click YouTube Video Downloader) - C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2018-04-15]
FF Extension: (Flash and Video Download) - C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}.xpi [2018-08-28]
FF Extension: (Telemetry coverage) - C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\features\{26ece757-2d44-4835-ae77-67024ec03cd7}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-10-10] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_31_0_0_122.dll [2018-10-29] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-10-08] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-10-08] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.4 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2009-06-09] (Microsoft Corp.)
FF Plugin: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files\Sony\Media Go\npmediago.dll [2010-01-20] (Sony Media Software and Services Inc)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-30654545-3194649466-4156373986-1003: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Iva\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2012-10-11] (Skype Limited)

Chrome:
=======
CHR DefaultProfile: Default
CHR NewTab: Default -> "active": false,
"entry": "chrome-extension://mccokphiflkjoppcieamipikjdiagipo/newtabproduct.html"

CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default [2018-10-28]
CHR Extension: (IE Tab) - C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2018-09-17]
CHR Extension: (YourTemplateFinder ) - C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default\Extensions\mccokphiflkjoppcieamipikjdiagipo [2018-09-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-06]
CHR Extension: (Chrome Media Router) - C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-13]
CHR Profile: C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-10-28]
CHR Profile: C:\Users\Iva\AppData\Local\Google\Chrome\User Data\System Profile [2018-10-28]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files\Avira\Antivirus\avmailc7.exe [891472 2018-10-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\Antivirus\sched.exe [248312 2018-10-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\Antivirus\avguard.exe [248312 2018-10-26] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\Antivirus\avwebg7.exe [1162120 2018-10-26] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [431688 2018-10-09] (Avira Operations GmbH & Co. KG)
S3 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [582944 2009-07-01] (Broadcom Corporation.)
R2 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [414984 2009-07-28] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [472328 2009-07-28] (Lenovo Group Limited)
R2 LexBceS; C:\windows\System32\LEXBCES.EXE [303104 2003-08-18] (Lexmark International, Inc.) [File not signed]
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
S3 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [503080 2010-05-04] (Nero AG)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-14] (Lenovo Group Limited)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ACPIVPC; C:\windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R0 avdevprot; C:\windows\System32\DRIVERS\avdevprot.sys [46440 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\windows\System32\DRIVERS\avgntflt.sys [132448 2018-07-11] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\windows\System32\DRIVERS\avipbb.sys [147880 2018-07-11] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\windows\System32\DRIVERS\avkmgr.sys [35840 2017-03-23] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\windows\System32\DRIVERS\avnetflt.sys [59000 2017-03-23] (Avira Operations GmbH & Co. KG)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R3 Btcsrusb; C:\windows\System32\Drivers\btcusb.sys [47504 2016-11-27] (IVT Corporation.)
R1 HWiNFO32; C:\windows\system32\drivers\HWiNFO32.SYS [23840 2016-11-27] (REALiX(tm))
R2 npf; C:\windows\System32\drivers\npf.sys [50704 2010-01-27] (CACE Technologies, Inc.)
S3 RSUSBSTOR; C:\windows\System32\Drivers\RtsUStor.sys [171520 2009-07-30] (Realtek Semiconductor Corp.) [File not signed]
S3 RTSUER; C:\windows\System32\Drivers\RtsUer.sys [304344 2016-11-27] (Realsil Semiconductor Corporation)
S3 s1039mdm; C:\windows\System32\DRIVERS\s1039mdm.sys [124016 2010-03-15] (MCCI Corporation)
R3 SmbDrvI; C:\windows\System32\DRIVERS\Smb_driver_Intel.sys [26792 2016-11-27] (Synaptics Incorporated)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1759616 2009-03-13] ()
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)
U5 AppMgmt; C:\windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-29 19:27 - 2018-10-29 20:02 - 608377554 _____ C:\Users\Iva\Downloads\Soudkyne Amy 02x13 - Nechte malickych prijiti ke mne.avi
2018-10-29 17:55 - 2018-10-29 17:55 - 000129823 _____ C:\Users\Iva\Downloads\Povazska_Bystrica-Domaniza.pdf
2018-10-29 17:54 - 2018-10-29 17:54 - 000138921 _____ C:\Users\Iva\Downloads\Trencin-Povazska_Bystrica.pdf
2018-10-29 17:52 - 2018-10-29 17:52 - 000132642 _____ C:\Users\Iva\Downloads\Trencianske_Stankovce,Male_Stankovce-Trencin.pdf
2018-10-29 17:36 - 2018-10-29 17:36 - 007592144 _____ (Malwarebytes) C:\Users\Iva\Desktop\adwcleaner_7.2.4.0.exe
2018-10-29 09:51 - 2018-10-29 09:52 - 000036097 _____ C:\Users\Iva\Desktop\Addition.txt
2018-10-29 09:48 - 2018-10-29 20:48 - 000012752 _____ C:\Users\Iva\Desktop\FRST.txt
2018-10-29 09:40 - 2018-10-29 09:40 - 001774592 _____ (Farbar) C:\Users\Iva\Desktop\FRST.exe
2018-10-19 16:22 - 2018-10-19 16:22 - 000141023 _____ C:\Users\Iva\Downloads\Prostrednik_CV.pdf
2018-10-14 09:22 - 2018-10-14 09:22 - 003108030 _____ C:\Users\Iva\Downloads\studnica2.pdf
2018-10-14 09:22 - 2018-10-14 09:22 - 000619438 _____ C:\Users\Iva\Downloads\etymologia-04priezviskad.pdf
2018-10-10 19:26 - 2018-09-18 19:10 - 000348976 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2018-10-10 19:26 - 2018-09-18 05:33 - 020278784 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2018-10-10 19:26 - 2018-09-18 05:31 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2018-10-10 19:26 - 2018-09-18 05:21 - 000497664 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2018-10-10 19:26 - 2018-09-18 05:21 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2018-10-10 19:26 - 2018-09-18 05:20 - 000341504 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2018-10-10 19:26 - 2018-09-18 05:20 - 000047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2018-10-10 19:26 - 2018-09-18 05:19 - 000064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2018-10-10 19:26 - 2018-09-18 05:18 - 002295808 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2018-10-10 19:26 - 2018-09-18 05:15 - 000047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2018-10-10 19:26 - 2018-09-18 05:15 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2018-10-10 19:26 - 2018-09-18 05:14 - 000476160 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2018-10-10 19:26 - 2018-09-18 05:13 - 000662016 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2018-10-10 19:26 - 2018-09-18 05:13 - 000115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2018-10-10 19:26 - 2018-09-18 05:13 - 000104960 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2018-10-10 19:26 - 2018-09-18 05:12 - 000620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2018-10-10 19:26 - 2018-09-18 05:09 - 000668160 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2018-10-10 19:26 - 2018-09-18 05:06 - 000416256 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2018-10-10 19:26 - 2018-09-18 05:03 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2018-10-10 19:26 - 2018-09-18 05:02 - 000091136 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2018-10-10 19:26 - 2018-09-18 05:02 - 000073216 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2018-10-10 19:26 - 2018-09-18 05:00 - 000168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2018-10-10 19:26 - 2018-09-18 04:59 - 000076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2018-10-10 19:26 - 2018-09-18 04:58 - 000279040 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2018-10-10 19:26 - 2018-09-18 04:57 - 004494848 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2018-10-10 19:26 - 2018-09-18 04:57 - 000130048 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2018-10-10 19:26 - 2018-09-18 04:53 - 013679616 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2018-10-10 19:26 - 2018-09-18 04:52 - 000230400 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2018-10-10 19:26 - 2018-09-18 04:51 - 000696320 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2018-10-10 19:26 - 2018-09-18 04:51 - 000692224 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2018-10-10 19:26 - 2018-09-18 04:50 - 002059776 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2018-10-10 19:26 - 2018-09-18 04:50 - 001155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2018-10-10 19:26 - 2018-09-18 04:37 - 004037632 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2018-10-10 19:26 - 2018-09-18 04:34 - 001330176 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2018-10-10 19:26 - 2018-09-18 04:31 - 000710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2018-10-10 19:25 - 2018-09-19 09:08 - 000343552 _____ (Microsoft Corporation) C:\windows\system32\msrd3x40.dll
2018-10-10 19:25 - 2018-09-18 05:31 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2018-10-10 19:25 - 2018-09-11 19:23 - 002404864 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2018-10-10 19:25 - 2018-09-11 19:20 - 000126464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2018-10-10 19:25 - 2018-09-11 19:20 - 000098304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2018-10-10 19:25 - 2018-09-09 01:46 - 004054216 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2018-10-10 19:25 - 2018-09-09 01:46 - 003959496 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2018-10-10 19:25 - 2018-09-09 01:46 - 001310488 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2018-10-10 19:25 - 2018-09-09 01:46 - 001214152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2018-10-10 19:25 - 2018-09-09 01:46 - 000730824 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2018-10-10 19:25 - 2018-09-09 01:46 - 000219336 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2018-10-10 19:25 - 2018-09-09 01:46 - 000189640 _____ (Microsoft Corporation) C:\windows\system32\halmacpi.dll
2018-10-10 19:25 - 2018-09-09 01:46 - 000189640 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2018-10-10 19:25 - 2018-09-09 01:46 - 000137928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2018-10-10 19:25 - 2018-09-09 01:46 - 000136392 _____ (Microsoft Corporation) C:\windows\system32\halacpi.dll
2018-10-10 19:25 - 2018-09-09 01:46 - 000067272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2018-10-10 19:25 - 2018-09-09 01:44 - 002755584 _____ (Microsoft Corporation) C:\windows\system32\themeui.dll
2018-10-10 19:25 - 2018-09-09 01:44 - 000400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2018-10-10 19:25 - 2018-09-09 01:44 - 000172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2018-10-10 19:25 - 2018-09-09 01:44 - 000099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2018-10-10 19:25 - 2018-09-09 01:44 - 000070144 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2018-10-10 19:25 - 2018-09-09 01:44 - 000043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 001391104 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 001063424 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000655360 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000554496 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000306688 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000261120 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000254464 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000223232 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000141312 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2018-10-10 19:25 - 2018-09-09 01:43 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2018-10-10 19:25 - 2018-09-09 01:42 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2018-10-10 19:25 - 2018-09-09 01:42 - 000644096 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2018-10-10 19:25 - 2018-09-09 01:42 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2018-10-10 19:25 - 2018-09-09 01:42 - 000082432 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2018-10-10 19:25 - 2018-09-09 01:42 - 000050688 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2018-10-10 19:25 - 2018-09-09 01:42 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2018-10-10 19:25 - 2018-09-09 01:18 - 000097792 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2018-10-10 19:25 - 2018-09-09 01:18 - 000050688 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2018-10-10 19:25 - 2018-09-09 01:18 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2018-10-10 19:25 - 2018-09-09 01:18 - 000029696 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2018-10-10 19:25 - 2018-09-09 01:18 - 000016896 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2018-10-10 19:25 - 2018-09-09 01:16 - 000107008 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2018-10-10 19:25 - 2018-09-09 01:15 - 000262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2018-10-10 19:25 - 2018-09-09 01:13 - 000226304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2018-10-10 19:25 - 2018-09-09 01:12 - 000069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2018-10-10 19:25 - 2018-09-09 01:12 - 000055296 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2018-10-10 19:25 - 2018-09-09 01:12 - 000053760 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2018-10-10 19:25 - 2018-09-09 01:12 - 000053248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\viac7.sys
2018-10-10 19:25 - 2018-09-09 01:12 - 000052736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2018-10-10 19:25 - 2018-09-09 01:12 - 000052224 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2018-10-10 19:25 - 2018-09-09 01:12 - 000036352 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2018-10-10 19:25 - 2018-09-09 01:12 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2018-10-10 19:25 - 2018-09-09 01:12 - 000015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2018-10-10 19:25 - 2018-08-28 07:09 - 012574208 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2018-10-10 19:25 - 2018-08-28 07:09 - 011411968 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2018-10-10 19:25 - 2018-08-28 06:52 - 000008192 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2018-10-10 19:25 - 2018-08-28 06:52 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2018-10-10 19:25 - 2018-08-28 06:52 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2018-10-10 19:25 - 2018-08-16 03:14 - 000041984 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll
2018-10-10 19:25 - 2018-08-13 22:48 - 000940784 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2018-10-10 19:25 - 2018-08-13 16:41 - 000527872 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2018-10-10 19:25 - 2018-08-12 21:17 - 000122536 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2018-10-10 19:25 - 2018-08-12 21:13 - 000554496 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2018-10-10 19:25 - 2018-08-08 16:40 - 000158720 _____ (Microsoft Corporation) C:\windows\system32\itircl.dll
2018-10-10 19:25 - 2018-08-08 16:40 - 000142848 _____ (Microsoft Corporation) C:\windows\system32\itss.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-29 20:47 - 2018-09-16 12:44 - 000000000 ____D C:\FRST
2018-10-29 20:46 - 2016-11-19 16:55 - 000000000 ____D C:\Users\Iva\AppData\LocalLow\Mozilla
2018-10-29 20:01 - 2009-09-23 02:25 - 000848194 _____ C:\windows\system32\PerfStringBackup.INI
2018-10-29 20:01 - 2009-07-14 03:37 - 000000000 ____D C:\windows\inf
2018-10-29 19:59 - 2017-12-03 18:51 - 000000000 ____D C:\KMPlayer
2018-10-29 09:26 - 2012-04-25 04:28 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-10-29 09:17 - 2009-07-14 05:34 - 000018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-10-29 09:17 - 2009-07-14 05:34 - 000018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-10-29 09:07 - 2010-01-29 20:35 - 000000000 ____D C:\Users\Iva\AppData\Local\Adobe
2018-10-29 09:06 - 2012-04-01 07:47 - 000842240 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2018-10-29 09:06 - 2011-08-25 16:09 - 000175104 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2018-10-28 15:08 - 2009-07-14 05:53 - 000000006 ____H C:\windows\Tasks\SA.DAT
2018-10-26 07:57 - 2016-07-03 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2018-10-25 14:59 - 2014-11-01 17:28 - 000002182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-10-24 16:26 - 2016-04-10 16:06 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-10-24 16:15 - 2014-03-31 17:01 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-10-21 10:23 - 2017-12-14 17:43 - 000000000 ____D C:\Users\Iva\Downloads\Doklady
2018-10-19 15:47 - 2016-07-03 19:55 - 000000000 ____D C:\ProgramData\Package Cache
2018-10-14 08:33 - 2017-05-12 18:36 - 000000000 ____D C:\windows\rescache
2018-10-11 17:18 - 2012-10-07 18:03 - 000000000 ____D C:\Users\Iva\AppData\LocalLow\Adobe
2018-10-10 20:28 - 2009-07-14 05:33 - 000412888 _____ C:\windows\system32\FNTCACHE.DAT
2018-10-10 19:47 - 2013-07-24 19:02 - 000000000 ____D C:\windows\system32\MRT
2018-10-10 19:30 - 2010-01-29 18:41 - 133674168 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2018-10-04 18:01 - 2018-04-10 20:47 - 000001351 _____ C:\Users\Iva\Desktop\Glostre-rodokmene - odkaz.lnk

==================== Files in the root of some directories =======

2012-04-04 20:10 - 2010-01-26 10:11 - 000444283 _____ () C:\Program Files\Common Files\WinPcapNmap.exe
2011-09-26 20:23 - 2011-10-01 08:24 - 000007722 _____ () C:\Users\Iva\AppData\Roaming\mdbu.bin
2017-01-16 09:01 - 2017-01-23 09:44 - 000007608 _____ () C:\Users\Iva\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-10-26 08:26

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24.10.2018
Ran by Iva (29-10-2018 20:48:35)
Running from C:\Users\Iva\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2010-01-29 16:48:30)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-30654545-3194649466-4156373986-500 - Administrator - Disabled)
Guest (S-1-5-21-30654545-3194649466-4156373986-501 - Limited - Enabled)
Iva (S-1-5-21-30654545-3194649466-4156373986-1003 - Administrator - Enabled) => C:\Users\Iva

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 16.04 (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}) (Version: 1.0 - Microsoft Corporation) Hidden
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\Activation Assistant for the 2007 Microsoft Office suites) (Version: - Microsoft Corporation)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.008.20080 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Advertising Center (HKLM\...\{b2ec4a38-b545-4a00-8214-13fe0e915e6d}) (Version: 0.0.0.1 - Nero AG) Hidden
Aktualizácia Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-041B-0000-0000000FF1CE}_HOMESTUDENTR_{9A8C39B0-D27F-4F81-BE74-2FECF164707E}) (Version: - Microsoft)
Aktualizácia Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-041B-0000-0000000FF1CE}_HOMESTUDENTR_{CE23B3DC-18CC-46FC-A309-81D6670F8D3D}) (Version: - Microsoft)
Aktualizácia Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-041B-0000-0000000FF1CE}_HOMESTUDENTR_{D6DBF512-87C0-4F6A-8FB9-AC3A389D9DE5}) (Version: - Microsoft)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - )
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Asistent pri prihlasovaní v konte Windows Live ID (HKLM\...\{10A44844-4465-456E-8C97-80BDD4F68845}) (Version: 6.500.3146.0 - Microsoft Corporation)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (HKLM\...\{E031338C-839D-4EDD-9537-99B653C39D81}) (Version: 6.5.5.24 - Autodesk, Inc.)
Avanquest update (HKLM\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.29 - Avanquest Software)
Avira (HKLM\...\{18787388-9263-47A6-B954-41BDE0B90959}) (Version: 1.2.121.24663 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM\...\{2884d9b5-2fed-48df-b0e0-fe229e7eb781}) (Version: 1.2.121.24663 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.42.11 - Avira Operations GmbH & Co. KG)
Broadcom 802.11 Wireless Driver (HKLM\...\{8991E763-21F5-4DEA-A938-5D9D77DCB488}) (Version: 1.0.0.0 - )
Broadcom Gigabit Integrated Controller (HKLM\...\{49F3D04B-B849-4C89-AB31-2366A004EA28}) (Version: 12.24.01 - Broadcom Corporation)
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
Business Contact Manager for Outlook 2007 SP2 (HKLM\...\{B32C4059-6E7A-41EF-AD20-56DF1872B923}) (Version: 3.0.8619.1 - Microsoft Corporation) Hidden
Business Contact Manager for Outlook 2007 SP2 (HKLM\...\Business Contact Manager) (Version: 3.0.8619.1 - Microsoft Corporation)
Canon IJ Network Scanner Selector EX (HKLM\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - )
Canon IJ Network Tool (HKLM\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MP Navigator EX 5.1 (HKLM\...\MP Navigator EX 5.1) (Version: - )
Canon MP550 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP550_series) (Version: - )
Canon MX430 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX430_series) (Version: - Canon Inc.)
Canon My Image Garden (HKLM\...\Canon My Image Garden) (Version: 3.0.1 - Canon Inc.)
Canon Pomôcka na rýchlu voľbu (HKLM\...\Speed Dial Utility) (Version: 1.5.0 - Canon Inc.)
Canon Solution Menu EX (HKLM\...\CanonSolutionMenuEX) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5931 - CDBurnerXP)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.98.4.0 - Conexant)
CrystalDiskInfo 6.1.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 6.1.0 - Crystal Dew World)
Cubes Trial Version 2.00 (HKLM\...\Cubes Trial Version_is1) (Version: - )
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
doPDF 6.0 printer (HKLM\...\doPDF 6 printer_is1) (Version: - Softland)
Doplnok Microsoft Save as PDF or XPS pre programy balíka 2007 Microsoft Office (HKLM\...\{90120000-00B2-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation)
EasyCapture (HKLM\...\EasyCapture4.0) (Version: V4.0.09.0731 - Lenovo)
EGR-ShellExtension (HKLM\...\EGR-ShellExtension) (Version: 1.1.0.100 - EasternGraphics)
Energy Management (HKLM\...\{AE1E24C2-E720-42D5-B8E1-48F71A97B4DB}) (Version: 4.3.1.1 - Lenovo)
Facebook Video Calling 1.2.0.287 (HKLM\...\{B92C5909-1D37-4C51-8397-A28BB28E5DC3}) (Version: 1.2.287 - Skype Limited)
FileHippo.com Update Checker (HKLM\...\FileHippo.com) (Version: - )
FormatFactory 3.00 (HKLM\...\FormatFactory) (Version: 3.00 - Free Time)
Free M4a to MP3 Converter 7.1 (HKLM\...\Free M4a to MP3 Converter_is1) (Version: - ManiacTools.com)
GIMP 2.4.5 (HKLM\...\WinGimp-2.0_is1) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 70.0.3538.77 - Spoločnosť Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HD Tune 2.55 (HKLM\...\HD Tune_is1) (Version: - EFD Software)
HF Designer 2.7 (HKLM\...\HappyFoto-Designer_is1) (Version: - )
ICQ7.5 (HKLM\...\{7578ADEA-D65F-4C89-A249-B1C88B6FFC20}) (Version: 7.5 - ICQ)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel(R) Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Java 7 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.450 - Oracle)
Java(TM) 6 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
K-Lite Codec Pack 10.5.5 Full (HKLM\...\KLiteCodecPack_is1) (Version: 10.5.5 - )
KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 4.1.5.6 - PandoraTV)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9600 - Broadcom Corporation)
Lenovo EasyCamera (HKLM\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.50.6 - Suyin Optronics Corp.)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0723 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0723 - CyberLink Corp.)
Lenovo ReadyComm 5 (HKLM\...\{17542DBF-E17C-4562-BC4D-FA3EF3076C45}) (Version: 5.1.1.17 - Lenovo)
Lenovo ReadyComm 5.0 Service (HKLM\...\{76C66170-C538-4E77-B54D-48E136B5B533}) (Version: 5.0.0.1 - Lenovo Group Limited)
Lexmark X1100 Series (HKLM\...\Lexmark X1100 Series) (Version: - )
Media Go (HKLM\...\{520CD4F0-9DAC-4C5C-8CA1-D0210CFF6062}) (Version: 1.4.269 - Sony)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM\...\{90A40409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office 2007 Primary Interop Assemblies (HKLM\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.4 (HKLM\...\{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}) (Version: 2.0.3008.0 - Microsoft Corporation)
Microsoft Office Small Business Connectivity Components (HKLM\...\{A939D341-5A04-4E0A-BB55-3E65B386432D}) (Version: 2.0.7024.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{E7084B89-69E0-46B3-A118-8F99D06988CD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mobile Connect (HKLM\...\{3EAAC5FD-E209-4856-8C49-D4EA40F85032}) (Version: 1.00.0000 - Huawei technologies)
Mozilla Firefox 63.0 (x86 sk) (HKLM\...\Mozilla Firefox 63.0 (x86 sk)) (Version: 63.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MusicJet (HKU\S-1-5-21-30654545-3194649466-4156373986-1003\...\76f4758ca7e15dc6) (Version: 1.0.2.18 - MusicJet)
Nero 9 Essentials (HKLM\...\{faeebf0a-0bd4-44a5-a539-f9ea31b1e084}) (Version: - Nero AG)
Nero BurnLite 10 (HKLM\...\{842BEE12-CCCB-43F4-ABAF-CBA6DFE2583D}) (Version: 10.0.10600 - Nero AG)
Nero BurnLite 10 (HKLM\...\{AB627AF2-9C7E-4DBD-816B-3B2646B81E89}) (Version: 10.0.10500.5.100 - Nero AG)
Nero Update (HKLM\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0018 - Nero AG)
Opera 12.17 (HKLM\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Opera Stable 48.0.2685.35 (HKLM\...\Opera 48.0.2685.35) (Version: 48.0.2685.35 - Opera Software)
PC Inspector smart recovery (HKLM\...\{C9A87D86-FDFD-418B-BF96-EF09320973B3}) (Version: 4.50 - )
pCon.planner 6.7 (HKLM\...\{61FFF5E3-1D08-4F66-AC29-EF61963F2619}) (Version: 6.7.0.102 - EasternGraphics) Hidden
pCon.planner 6.7 (HKLM\...\pCon.planner 6.7) (Version: 6.7.0.102 - EasternGraphics)
PlayStation(R)Network Downloader (HKLM\...\{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}) (Version: 2.02.00076 - Sony Computer Entertainment Inc.)
PlayStation(R)Store (HKLM\...\{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}) (Version: 3.1.8.07881 - Sony Computer Entertainment Inc.)
Pluto TV version 0.3.2 (HKU\S-1-5-21-30654545-3194649466-4156373986-1003\...\Pluto TV_is1) (Version: 0.3.2 - Pluto TV)
Power2Go (HKLM\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.4809d1 - CyberLink Corp.)
Puzzle Express Deluxe (HKU\S-1-5-21-30654545-3194649466-4156373986-1003\...\Puzzle Express Deluxe) (Version: 1.0.0 - Zylom Games)
QIP 2012 4.0.6611 (HKU\S-1-5-21-30654545-3194649466-4156373986-1003\...\QIP 2012) (Version: 4.0.6611 - )
QIP Internet Guardian (HKU\S-1-5-21-30654545-3194649466-4156373986-1003\...\QipGuard) (Version: - )
QuickTime 7 (HKLM\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RAD Video Tools (HKLM\...\RADVideo) (Version: - )
Realtek Card Reader (HKLM\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconduct Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30101 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.45 - Piriform)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Super DX-Ball v1.00 (HKLM\...\Super DX-Ball_is1) (Version: 1.0 - BlitWise Productions, LLC)
swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Tetris Navždy (HKLM\...\Tetris Navždy) (Version: - )
Theophilos 3 (HKLM\...\Theophilos_is1) (Version: - )
Theophilos 3.0 (HKLM\...\Theophilos 3.0_is1) (Version: - )
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
WinPcap 4.1.1 (HKLM\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-30654545-3194649466-4156373986-1003_Classes\CLSID\{5C4094D7-4213-4C40-9E33-16A2D2D69EF2}\InprocServer32 -> C:\Program Files\Sony\PlayStation Store\StoreDrmUtility.dll (Sony Computer Entertainment Inc.)
CustomCLSID: HKU\S-1-5-21-30654545-3194649466-4156373986-1003_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\Iva\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files\Avira\Antivirus\shlext.dll [2018-10-26] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2011-02-11] (Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files\Avira\Antivirus\shlext.dll [2018-10-26] (Avira Operations GmbH & Co. KG)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1338EC58-3ED9-49C4-81C3-A6B4B3547CE5} - System32\Tasks\{D817FDD0-775A-4570-BFAE-9154269408A8} => C:\windows\system32\pcalua.exe -a F:\NOVE_USPORIADANIE\Instalacky\Kodeky_instalacky\Codecs6030_allin1_All_in_ONE.exe -d F:\NOVE_USPORIADANIE\Instalacky\Kodeky_instalacky
Task: {2DD6F659-9040-4FF3-9B3E-3F51EA58FB5F} - System32\Tasks\{5776848F-1F69-40B3-B043-98AC6F2519AA} => C:\windows\system32\pcalua.exe -a C:\windows\system32\pcwrun.exe -c "C:\Program Files\GIMP-2.0\bin\gimp-2.4.exe"
Task: {347AE205-0965-4447-8AA6-D90406632E44} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {4704E4C5-FB1F-42C4-802C-06FB1BB50A0F} - System32\Tasks\{FAB74AE7-CF79-45AE-AB0F-6624C9CEBDF6} => C:\windows\system32\pcalua.exe -a C:\Dokumenty_od_29-12-2014\Hry\tetrinst.exe -d C:\Dokumenty_od_29-12-2014\Hry
Task: {4848B36A-807F-4EE7-8844-D47D8AC7DD17} - System32\Tasks\{F2A42AD5-62FA-47B2-B9E1-FB3562B266F6} => C:\windows\system32\pcalua.exe -a "C:\Dokumenty_od_29-12-2014\PROGRAM---Bible-do-PC\THEOPHILOS - Bible do PC - základní program.EXE" -d C:\Dokumenty_od_29-12-2014\PROGRAM---Bible-do-PC
Task: {5A683F93-2FC4-49BE-87D1-70EB88C286DB} - System32\Tasks\{927D828E-ABEF-43FC-9968-E85D61911011} => C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe [2009-07-01] (Broadcom Corporation.)
Task: {6F37622D-AC57-4AA6-8A94-6A166F1B927B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {6F51716D-4A9F-49CC-9875-203FDD8E9E33} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files\Avira\Antivirus\avgnt.exe [2018-10-26] (Avira Operations GmbH & Co. KG)
Task: {7714160B-C66A-44B1-A6A9-AEF5D51595AB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-10] (Piriform Ltd)
Task: {7E272799-9C03-4FB0-86B3-71E3C8248B65} - System32\Tasks\{3EB3C91F-59DD-4A57-B960-89983FF43EBC} => C:\windows\system32\pcalua.exe -a C:\windows\system32\pcwrun.exe -c "C:\Program Files\RarZilla Free Unrar\RarZilla.exe"
Task: {87288777-F114-4765-B44B-78BAB217E075} - System32\Tasks\{B9592A61-A346-42FE-B832-D61EECCA6EA3} => C:\windows\system32\pcalua.exe -a C:\ProgramData\F4D55F3B000026F400013E6CB4EB23C1\F4D55F3B000026F400013E6CB4EB23C1.exe -c -u
Task: {88604855-7D6C-4E11-9DB4-73F1ED06F403} - System32\Tasks\Avast Software\Overseer => C:\Program Files\AVAST Software\Avast\setup\overseer.exe
Task: {89A2278B-132D-47B2-9914-D2777C33D3E1} - System32\Tasks\Opera scheduled Autoupdate 1422108017 => C:\Program Files\Opera\launcher.exe [2017-10-02] (Opera Software)
Task: {9E1FC1E2-7DF0-445C-AC33-ACC9D788BF78} - System32\Tasks\{9CEE08D8-D68A-44B1-924C-EA8367A4C2B9} => C:\windows\system32\pcalua.exe -a C:\Moje_dokumenty\NOVE_USPORIADANIE\Instalacky\Virtualna_tlaciaren_pdf_creator_instalacka\dopdf.exe -d C:\Moje_dokumenty\NOVE_USPORIADANIE\Instalacky\Virtualna_tlaciaren_pdf_creator_instalacka
Task: {A01A5F0A-9524-46AC-899A-15A2A4AD7599} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-10] (Piriform Ltd)
Task: {A22DBA14-D8C0-4927-9298-2257956299D6} - System32\Tasks\{355E2702-06E9-4D0A-A4E8-E130D43F75C7} => C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe [2009-07-01] (Broadcom Corporation.)
Task: {B8F2C1F1-8C1C-46BF-9B75-50B06BE1494E} - System32\Tasks\{A6BAE287-7DC6-4DB6-80B8-76EBDC43450B} => C:\windows\system32\pcalua.exe -a "F:\NOVE_USPORIADANIE\Instalacky\Mozilla_Firefox\Firefox Setup 3.0.9.exe" -d F:\NOVE_USPORIADANIE\Instalacky\Mozilla_Firefox
Task: {C5C526FE-B8B6-43EB-ACED-E54930D05A9D} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\system32\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe [2018-10-29] (Adobe Systems Incorporated)
Task: {D0CDCABB-EADB-4E22-8A8B-7E4AE2F95C13} - System32\Tasks\{B7493C4E-3873-46DD-85AC-547AD1DE3955} => C:\windows\system32\pcalua.exe -a F:\NOVE_USPORIADANIE\Instalacky\K_happy_akvariu_na_Facebooku\Shockwave_Installer_Full.exe -d F:\NOVE_USPORIADANIE\Instalacky\K_happy_akvariu_na_Facebooku
Task: {D8D2FD5D-2972-406B-83B6-F4FF951D437A} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-29] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2010-03-27 18:35 - 2003-07-29 14:27 - 000078336 _____ () C:\windows\system32\spool\PRTPROCS\W32X86\LXBKPP5C.dll
2009-11-10 17:21 - 2008-12-20 04:20 - 000063304 _____ () C:\Program Files\Lenovo\Energy Management\kbdhook.dll
2009-11-10 17:21 - 2008-12-20 04:20 - 000051016 _____ () C:\Program Files\Lenovo\Energy Management\HookLib.dll
2018-08-12 13:01 - 2018-08-12 12:59 - 001204472 _____ () C:\Program Files\Avira\Antivirus\crypto-42.dll
2018-08-12 13:01 - 2018-08-12 12:59 - 000243352 _____ () C:\Program Files\Avira\Antivirus\ssl-44.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2018-02-08 16:21 - 000000035 _____ C:\windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-30654545-3194649466-4156373986-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\Iva\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Iva^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^PlutoTV.lnk => C:\windows\pss\PlutoTV.lnk.Startup
MSCONFIG\startupreg: Apoint => C:\Program Files\Apoint2K\Apoint.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: IJNetworkScannerSelectorEX => C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
MSCONFIG\startupreg: VeriFaceManager => C:\Program Files\Lenovo\VeriFace\PManage.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B15C5458-D4C3-4F39-8188-C73886AB484C}] => (Allow) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
FirewallRules: [{50309CE0-6061-4F45-8387-30F71EABD235}] => (Allow) C:\windows\System32\IgrsSvcs.exe
FirewallRules: [{7D4EBB45-7C2D-476A-866E-321EB71387D2}] => (Allow) C:\windows\System32\IgrsSvcs.exe
FirewallRules: [{0C0DCF90-E250-4325-8275-9595FECF2D2F}] => (Allow) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
FirewallRules: [{F410BBB9-AE8D-4117-914E-33DD15AD4422}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ReadyComm.exe
FirewallRules: [{25A04806-39BE-4844-A2DF-38AAD39F517F}] => (Allow) C:\Program Files\Lenovo\ReadyComm\Projectionist.exe
FirewallRules: [{ECE083BB-B64A-45C8-8029-DB318B4A5F0E}] => (Allow) C:\Program Files\Lenovo\ReadyComm\Projectionist.exe
FirewallRules: [{33FFBE7A-5CFE-41F7-9C00-901BE47D649F}] => (Allow) C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
FirewallRules: [{2553EFAB-2FA2-4CAD-8970-224B673EAE70}] => (Allow) C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
FirewallRules: [{AE86CC13-F845-4BBE-A531-94ACCE01422B}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
FirewallRules: [{8BCAAD73-86D7-4ACB-8986-D6AE5A52A2FD}] => (Allow) C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
FirewallRules: [{3F6E1029-3C60-48E9-B43A-995BD4170373}] => (Allow) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
FirewallRules: [{3DAE2E26-3D52-4E65-B808-9BB50FE05534}] => (Allow) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
FirewallRules: [TCP Query User{C3B652EC-FB8E-4BD2-96A2-7FCA3B2E3CBC}C:\program files\opera\opera.exe] => (Allow) C:\program files\opera\opera.exe
FirewallRules: [UDP Query User{F17F7FF8-E5B0-4B99-AA4F-083047336DC2}C:\program files\opera\opera.exe] => (Allow) C:\program files\opera\opera.exe
FirewallRules: [TCP Query User{BFB1BD70-4668-4735-9277-BF2C8FC8D96A}C:\program files\opera\opera.exe] => (Block) C:\program files\opera\opera.exe
FirewallRules: [UDP Query User{AC1D111C-7049-4C99-A992-CE9054976335}C:\program files\opera\opera.exe] => (Block) C:\program files\opera\opera.exe
FirewallRules: [{1279EAB1-AAB1-4993-A899-6C839FFC5300}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{773470E4-2101-421F-860C-F50618287C65}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{4F5E48D2-17E9-45AE-A1B9-C9D153C275D3}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{2AFED377-0A67-4CB4-9E68-AA17F07CC0E4}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{E119330F-0296-41AE-881E-9AB1C7B550E0}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{C954B080-78AD-41E4-AC33-CECC4B574CFA}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{9A3BD9B4-1B67-4B6C-8DE1-2F477D26F696}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{D9947D47-64ED-4E36-A234-F83F84FCBA4D}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{8438D759-BD91-4474-87F6-93933ECAF8F6}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{274186CA-8E0F-4083-9020-30B819D51EEB}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{21DD6A2A-2D3F-4565-8803-B815BD409441}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{E9B25EC6-C489-49F6-A485-AD6F9EE7EA5B}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{F9AE9B17-9BB8-49FD-B76C-225DCEF378EC}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{FF4225D5-645C-415B-886F-4B899AE761E8}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{41B2B6CA-4BE9-486B-B867-3A8163B5EF97}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{87865ECB-6BAB-4957-9881-75DC136D889C}C:\program files\icq7.1\icq.exe] => (Block) C:\program files\icq7.1\icq.exe
FirewallRules: [UDP Query User{57D7DE28-E332-4309-B5BE-2B1241C996AB}C:\program files\icq7.1\icq.exe] => (Block) C:\program files\icq7.1\icq.exe
FirewallRules: [{19FE0E10-D10C-44B1-8B64-D72E6810B046}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [TCP Query User{D6915018-2A90-4CAC-8D5C-60427DBFFB57}C:\program files\qip 2012\qip.exe] => (Block) C:\program files\qip 2012\qip.exe
FirewallRules: [UDP Query User{539F7CB0-327A-4949-A591-7AF2933E4A24}C:\program files\qip 2012\qip.exe] => (Block) C:\program files\qip 2012\qip.exe
FirewallRules: [{61843223-799F-4909-BBB3-8287FDE853B2}] => (Allow) C:\Program Files\ICQ7.5\ICQ.exe
FirewallRules: [{E2195357-D431-4FF9-A4B4-2784FBE2192B}] => (Allow) C:\Program Files\ICQ7.5\ICQ.exe
FirewallRules: [{AB13E5EC-657F-4520-B704-16D4FFA77250}] => (Allow) C:\Program Files\ICQ7.5\ICQ.exe
FirewallRules: [{59F5D1DB-33D9-4FD9-A312-D1B0EE31FAC6}] => (Allow) C:\Program Files\ICQ7.5\ICQ.exe
FirewallRules: [{8DBD9DC6-579B-441F-84E0-7FC12418187A}] => (Allow) C:\Program Files\ICQ7.5\ICQ.exe
FirewallRules: [{7E18E430-A132-4C2E-BBD5-7DF8DFE8FA32}] => (Allow) C:\Program Files\ICQ7.5\ICQ.exe
FirewallRules: [{78612CBD-2D82-4079-B6FD-13F87AA3E188}] => (Allow) C:\Users\Iva\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{DABDD449-D4CF-45EE-B207-BA77CB5E1B22}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{D6B57271-792A-40FB-93C8-EBBB4F46E218}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{5133B4C8-BA48-4B3B-BB33-752780D417FF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{5B9B160A-CED9-45DE-A1A2-D79A245ED541}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{E9D4009A-2910-4592-8CF1-2F545720FB3A}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{ECD4B7E2-16F4-4C80-AD95-3763A1E9E199}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{0E0951EB-4215-4CDA-8116-86DA8C9B6E34}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C8DA4E42-DF17-4C3C-83EB-BDAC890BE4FB}] => (Allow) C:\Program Files\Opera\47.0.2631.80\opera.exe
FirewallRules: [{183CC8A7-E2B2-4702-8FF5-BF3C8F1132E5}] => (Allow) C:\Program Files\Opera\48.0.2685.35\opera.exe
FirewallRules: [{A20155EB-5054-4BCA-B259-0BAC6D932E12}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{06079893-644A-4D5D-9CBA-61C3B5B0A919}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{4EE98E45-9C68-4C0F-A2E3-FE7E5F2184F6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

28-10-2018 20:01:14 Plánovaný kontrolný bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/29/2018 08:01:50 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/29/2018 08:01:49 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/29/2018 06:52:25 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - There was a failure initializing profiling API attach infrastructure. This process will not allow a profiler to attach. HRESULT: 0x80004005. Process ID (decimal): 4960. Message ID: [0x2509].

Error: (10/28/2018 08:40:41 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/28/2018 08:40:41 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/28/2018 07:00:05 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Zálohovanie sa nedokončilo v dôsledku chyby zápisu do umiestnenia zálohy F:\. Vyskytla sa chyba: Umiestnenie zálohy sa nedá nájsť alebo nie je platné. Skontrolujte svoje nastavenie zálohovania a umiestnenie zálohy. (0x81000006).

Error: (10/28/2018 05:40:11 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/28/2018 05:40:11 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.


System errors:
=============
Error: (10/29/2018 10:06:49 AM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR6.

Error: (10/28/2018 08:16:27 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (10/28/2018 08:16:26 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (10/28/2018 08:16:26 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (10/28/2018 08:16:25 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (10/28/2018 05:37:06 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk2\DR2.

Error: (10/28/2018 05:37:05 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk2\DR2.

Error: (10/28/2018 05:37:05 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk2\DR2.


==================== Memory info ===========================

Processor: Pentium(R) Dual-Core CPU T4300 @ 2.10GHz
Percentage of memory in use: 26%
Total physical RAM: 3032.6 MB
Available physical RAM: 2218.26 MB
Total Virtual: 6063.57 MB
Available Virtual: 4805.17 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:252.89 GB) (Free:7.35 GB) NTFS
Drive d: (Lenovo) (Fixed) (Total:30.25 GB) (Free:0.51 GB) NTFS

\\?\Volume{26c8cd6d-ce13-11de-b561-806e6f6e6963}\ () (Fixed) (Total:0.2 GB) (Free:0.15 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 397BDB04)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=252.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=30.2 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=14.8 GB) - (Type=12)

==================== End of Addition.txt ============================

Otvor poznamkovy blok (Win+R -> notepad -> enter)

• Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

  Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
  CMD: type "C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\user.js"
  File: C:\windows\System32\LEXBCES.EXE
  File: C:\windows\System32\Drivers\RtsUStor.sys
  Folder: C:\ProgramData\F4D55F3B000026F400013E6CB4EB23C1
  
  HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
  HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
  HKU\S-1-5-21-30654545-3194649466-4156373986-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://accounts.google.com/ServiceLogin?service=mail&passive=true&rm=false&continue=hxxp://mail.google.com/mail/&scc=1&ltmpl=default&ltmplcache=2
  SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  FF user.js: detected! => C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\user.js [2016-11-27]
  CHR NewTab: Default -> "active": false,
  C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default\Extensions\mccokphiflkjoppcieamipikjdiagipo
  U5 AppMgmt; C:\windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
  S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
  S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]
  Task: {1338EC58-3ED9-49C4-81C3-A6B4B3547CE5} - System32\Tasks\{D817FDD0-775A-4570-BFAE-9154269408A8} => C:\windows\system32\pcalua.exe -a F:\NOVE_USPORIADANIE\Instalacky\Kodeky_instalacky\Codecs6030_allin1_All_in_ONE.exe -d F:\NOVE_USPORIADANIE\Instalacky\Kodeky_instalacky
  Task: {87288777-F114-4765-B44B-78BAB217E075} - System32\Tasks\{B9592A61-A346-42FE-B832-D61EECCA6EA3} => C:\windows\system32\pcalua.exe -a C:\ProgramData\F4D55F3B000026F400013E6CB4EB23C1\F4D55F3B000026F400013E6CB4EB23C1.exe -c -u
  Task: {9E1FC1E2-7DF0-445C-AC33-ACC9D788BF78} - System32\Tasks\{9CEE08D8-D68A-44B1-924C-EA8367A4C2B9} => C:\windows\system32\pcalua.exe -a C:\Moje_dokumenty\NOVE_USPORIADANIE\Instalacky\Virtualna_tlaciaren_pdf_creator_instalacka\dopdf.exe -d C:\Moje_dokumenty\NOVE_USPORIADANIE\Instalacky\Virtualna_tlaciaren_pdf_creator_instalacka
  Task: {B8F2C1F1-8C1C-46BF-9B75-50B06BE1494E} - System32\Tasks\{A6BAE287-7DC6-4DB6-80B8-76EBDC43450B} => C:\windows\system32\pcalua.exe -a "F:\NOVE_USPORIADANIE\Instalacky\Mozilla_Firefox\Firefox Setup 3.0.9.exe" -d F:\NOVE_USPORIADANIE\Instalacky\Mozilla_Firefox
  Task: {D0CDCABB-EADB-4E22-8A8B-7E4AE2F95C13} - System32\Tasks\{B7493C4E-3873-46DD-85AC-547AD1DE3955} => C:\windows\system32\pcalua.exe -a F:\NOVE_USPORIADANIE\Instalacky\K_happy_akvariu_na_Facebooku\Shockwave_Installer_Full.exe -d F:\NOVE_USPORIADANIE\Instalacky\K_happy_akvariu_na_Facebooku
  C:\ProgramData\F4D55F3B000026F400013E6CB4EB23C1
  
  Hosts:
  EmptyTemp:
  End

• Uloz na plochu s nazvom fixlist.txt
• Spusti znovu FRST a klikni na Fix
• Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
• Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj

Fix result of Farbar Recovery Scan Tool (x86) Version: 24.10.2018
Ran by Iva (30-10-2018 07:20:58) Run:2
Running from C:\Users\Iva\Desktop
Loaded Profiles: Iva (Available Profiles: Iva)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
CMD: type "C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\user.js"
File: C:\windows\System32\LEXBCES.EXE
File: C:\windows\System32\Drivers\RtsUStor.sys
Folder: C:\ProgramData\F4D55F3B000026F400013E6CB4EB23C1

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-30654545-3194649466-4156373986-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://accounts.google.com/ServiceLogin?service=mail&passive=true&rm=false&continue=hxxp://mail.google.com/mail/&scc=1&ltmpl=default&ltmplcache=2
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF user.js: detected! => C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\user.js [2016-11-27]
CHR NewTab: Default -> "active": false,
C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default\Extensions\mccokphiflkjoppcieamipikjdiagipo
U5 AppMgmt; C:\windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]
Task: {1338EC58-3ED9-49C4-81C3-A6B4B3547CE5} - System32\Tasks\{D817FDD0-775A-4570-BFAE-9154269408A8} => C:\windows\system32\pcalua.exe -a F:\NOVE_USPORIADANIE\Instalacky\Kodeky_instalacky\Codecs6030_allin1_All_in_ONE.exe -d F:\NOVE_USPORIADANIE\Instalacky\Kodeky_instalacky
Task: {87288777-F114-4765-B44B-78BAB217E075} - System32\Tasks\{B9592A61-A346-42FE-B832-D61EECCA6EA3} => C:\windows\system32\pcalua.exe -a C:\ProgramData\F4D55F3B000026F400013E6CB4EB23C1\F4D55F3B000026F400013E6CB4EB23C1.exe -c -u
Task: {9E1FC1E2-7DF0-445C-AC33-ACC9D788BF78} - System32\Tasks\{9CEE08D8-D68A-44B1-924C-EA8367A4C2B9} => C:\windows\system32\pcalua.exe -a C:\Moje_dokumenty\NOVE_USPORIADANIE\Instalacky\Virtualna_tlaciaren_pdf_creator_instalacka\dopdf.exe -d C:\Moje_dokumenty\NOVE_USPORIADANIE\Instalacky\Virtualna_tlaciaren_pdf_creator_instalacka
Task: {B8F2C1F1-8C1C-46BF-9B75-50B06BE1494E} - System32\Tasks\{A6BAE287-7DC6-4DB6-80B8-76EBDC43450B} => C:\windows\system32\pcalua.exe -a "F:\NOVE_USPORIADANIE\Instalacky\Mozilla_Firefox\Firefox Setup 3.0.9.exe" -d F:\NOVE_USPORIADANIE\Instalacky\Mozilla_Firefox
Task: {D0CDCABB-EADB-4E22-8A8B-7E4AE2F95C13} - System32\Tasks\{B7493C4E-3873-46DD-85AC-547AD1DE3955} => C:\windows\system32\pcalua.exe -a F:\NOVE_USPORIADANIE\Instalacky\K_happy_akvariu_na_Facebooku\Shockwave_Installer_Full.exe -d F:\NOVE_USPORIADANIE\Instalacky\K_happy_akvariu_na_Facebooku
C:\ProgramData\F4D55F3B000026F400013E6CB4EB23C1

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 130
Average :
Sum : 17812879
Maximum :
Minimum :
Property : Length


========= End of Powershell: =========


========= type "C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\user.js" =========

user_pref("network.http.pipelining.maxrequests", 8);
user_pref("network.http.request.max-start-delay", 0);
user_pref("network.http.max-connections", 48);
user_pref("network.http.max-connections-per-server", 16);
user_pref("network.http.max-persistent-connections-per-proxy", 16);
user_pref("network.http.max-persistent-connections-per-server", 8);
user_pref("browser.turbo.enabled", true);
user_pref("browser.display.show_image_placeholders", true);
user_pref("browser.chrome.favicons", false);
user_pref("browser.urlbar.autocomplete.enabled", true);
user_pref("browser.cache.memory.capacity", 65536);
user_pref("content.notify.ontimer", true);
user_pref("content.interrupt.parsing", true);
user_pref("content.max.tokenizing.time", 2250000);
user_pref("content.switch.threshold", 750000);
user_pref("plugin.expose_full_path", true);
user_pref("ui.submenuDelay", 0);

========= End of CMD: =========


========================= File: C:\windows\System32\LEXBCES.EXE ========================

C:\windows\System32\LEXBCES.EXE
File not signed
MD5: 027D03D9D8AB95194A115A999E960AC0
Creation and modification date: 2010-03-27 18:35 - 2003-08-18 15:37
Size: 000303104
Attributes: ----A
Company Name: Lexmark International, Inc.
Internal Name: LexBce Service
Original Name: LexBceS.exe
Product: MarkVision for Windows (32 bit)
Description: LexBce Service
File Version: 8.29
Product Version: 8.29
Copyright: (C) 1993 - 2003 Lexmark International, Inc.
VirusTotal: https://www.virustotal.com/file/f21daae ... 508232747/

====== End of File: ======


========================= File: C:\windows\System32\Drivers\RtsUStor.sys ========================

C:\windows\System32\Drivers\RtsUStor.sys
File not signed
MD5: EF8B2AFC3C0751C5E5A59983C8893260
Creation and modification date: 2009-09-23 02:17 - 2009-07-30 10:45
Size: 000171520
Attributes: ----A
Company Name: Realtek Semiconductor Corp.
Internal Name: RtsUStor.sys
Original Name: RtsUStor.sys
Product: Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7
Description: Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7
File Version: 6.1.7600.30101
Product Version: 6.1.7600.30101
Copyright: Copyright (C) Realtek Semiconductor Corp.
VirusTotal: https://www.virustotal.com/file/f612aca ... 508275985/

====== End of File: ======


========================= Folder: C:\ProgramData\F4D55F3B000026F400013E6CB4EB23C1 ========================

2012-05-18 20:45 - 2012-05-18 20:53 - 000000328 ____A [64EBD9F93881141382467BFC8803F274] () C:\ProgramData\F4D55F3B000026F400013E6CB4EB23C1\F4D55F3B000026F400013E6CB4EB23C1

====== End of Folder: ======

"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Search Page" => removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page" => removed successfully.
HKU\S-1-5-21-30654545-3194649466-4156373986-1003\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully.
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
C:\Users\Iva\AppData\Roaming\Mozilla\Firefox\Profiles\ihm4dqwj.default\user.js => moved successfully
"Chrome NewTab" => removed successfully.
C:\Users\Iva\AppData\Local\Google\Chrome\User Data\Default\Extensions\mccokphiflkjoppcieamipikjdiagipo => moved successfully
HKLM\System\CurrentControlSet\Services\AppMgmt => removed successfully.
AppMgmt => service removed successfully.
HKLM\System\CurrentControlSet\Services\RtsUIR => removed successfully.
RtsUIR => service removed successfully.
HKLM\System\CurrentControlSet\Services\USBCCID => removed successfully.
USBCCID => service removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1338EC58-3ED9-49C4-81C3-A6B4B3547CE5} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1338EC58-3ED9-49C4-81C3-A6B4B3547CE5} => removed successfully.
C:\Windows\System32\Tasks\{D817FDD0-775A-4570-BFAE-9154269408A8} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D817FDD0-775A-4570-BFAE-9154269408A8} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{87288777-F114-4765-B44B-78BAB217E075} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87288777-F114-4765-B44B-78BAB217E075} => removed successfully.
C:\Windows\System32\Tasks\{B9592A61-A346-42FE-B832-D61EECCA6EA3} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B9592A61-A346-42FE-B832-D61EECCA6EA3} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9E1FC1E2-7DF0-445C-AC33-ACC9D788BF78} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9E1FC1E2-7DF0-445C-AC33-ACC9D788BF78} => removed successfully.
C:\Windows\System32\Tasks\{9CEE08D8-D68A-44B1-924C-EA8367A4C2B9} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9CEE08D8-D68A-44B1-924C-EA8367A4C2B9} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B8F2C1F1-8C1C-46BF-9B75-50B06BE1494E} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B8F2C1F1-8C1C-46BF-9B75-50B06BE1494E} => removed successfully.
C:\Windows\System32\Tasks\{A6BAE287-7DC6-4DB6-80B8-76EBDC43450B} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A6BAE287-7DC6-4DB6-80B8-76EBDC43450B} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D0CDCABB-EADB-4E22-8A8B-7E4AE2F95C13} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D0CDCABB-EADB-4E22-8A8B-7E4AE2F95C13} => removed successfully.
C:\Windows\System32\Tasks\{B7493C4E-3873-46DD-85AC-547AD1DE3955} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B7493C4E-3873-46DD-85AC-547AD1DE3955} => removed successfully.
C:\ProgramData\F4D55F3B000026F400013E6CB4EB23C1 => moved successfully
Could not move "C:\Windows\System32\Drivers\etc\hosts" => Scheduled to move on reboot.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 6536469 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 3714 B
Edge => 0 B
Chrome => 20137280 B
Firefox => 529107880 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
LocalService => 0 B
NetworkService => 0 B
Iva => 31558863 B

RecycleBin => 7592688 B
EmptyTemp: => 575.4 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 30-10-2018 07:29:47)

"C:\Windows\System32\Drivers\etc\hosts" => Could not move.
Could not restore Hosts.

==== End of Fixlog 07:29:47 ====

Zresetuj Firefox na predvolene nastavenia: do adresneho riadku napis "about:support" (bez uvodzoviek) -> stlac enter -> vpravo hore klikni na Obnovit Firefox a potvrd.

Zresetuj Chrome na predvolene nastavenia: Nastavenia -> Rozsirene -> Obnovenie povodnych predvolenych nastaveni (predposledna polozka uplne na konci) -> Resetovat nastavenia.

tak som to spravila, a zmizli mi všetky záložky čo som mala poukladané

No, reštartovala som mozillu a záložky sú s5. Dúfam, že to tak aj ostane.
Ale ... na ploche sa mi objavil adresár s názvom "Staré údaje Firefoxu" a veľkosťou 6,85 GB !!!!!!!
Čož mi tu dosť zaberá miesto ... čo s ním?

Ten reset by mal iba obnovit predvolene nastavenia a odstranit doplnky. Zalozky by mali ostat nedotknute.

Skontroluj teda ci vo Firefoxe uz nic nechyba. Ak nie, tak tu zlozku Stare udaje Firefoxu mozes odstranit.

vyzeralo to byť všetko ok, tak som to teda vymazala

OK. A ako o vyzera s PC? Su este nejake problemy?

no stránky už idú načítať všetky, tak ako predtým, tak hádam to už bude ok

Tak este upraceme po pouzitych nastrojoch:

• Stiahni DelFix: https://toolslib.net/downloads/finish/2-delfix/
• Uloz na plochu a spusti
• Nechaj oznacenu moznost "Remove disinfection tools"
• Klikni na "Run"