VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu notebooku, poslední dobou je pomalý

https://forum.viry.cz:443/viewtopic.php?t=155475

Stránka 1 z 2

Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 12:00
od rakato11
Logfile of random's system information tool 1.10 (written by random/random)
Run by Otakar VavreÄŤka at 2019-01-26 11:56:45
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 17 GB (11%) free of 158 GB
Total RAM: 3066 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:56:58, on 26.1.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\MSTMON_N.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Otakar VavreÄŤka\AppData\Local\Viber\Viber.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\Otakar VavreÄŤka\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Users\Otakar VavreÄŤka\Desktop\Gmail Notifier Plus.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\taskeng.exe
C:\Users\Otakar VavreÄŤka\Desktop\RSIT.exe
C:\Program Files\trend micro\Otakar VavreÄŤka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll
O4 - HKLM\..\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] C:\Windows\system32\MSTMON_N.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\ecmds.exe" /launch /hide
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Viber] "C:\Users\Otakar VavreÄŤka\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Otakar VavreÄŤka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - Startup: Mámemail Pošťák.lnk = C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
O8 - Extra context menu item: Free YouTube Download - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: DESlock+ Service (dlpsrv) - DESlock Limited. - C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
O23 - Service: SluĹľba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: SluĹľba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: TeamViewer 14 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe

--
End of file - 4927 bytes

=========Mozilla firefox=========

ProfilePath - C:\Users\Otakar VavreÄŤka\AppData\Roaming\Mozilla\Firefox\Profiles\91phxdze.default-1494695803407

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/MycameraPlugin]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.73.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.73.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-10 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-10 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"KONICA MINOLTA PagePro 1300WStatusDisplay"=C:\Windows\system32\MSTMON_N.EXE [2004-11-25 151552]
"egui"=C:\Program Files\ESET\ESET Smart Security\ecmds.exe [2018-11-29 169616]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Viber"=C:\Users\Otakar VavreÄŤka\AppData\Local\Viber\Viber.exe [2017-07-20 31348816]
"cz.seznam.software.szndesktop"=C:\Users\Otakar VavreÄŤka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2018-03-27 109808]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 354304]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Otakar VavreÄŤka\AppData\Roaming\Seznam.cz\szninstall.exe [2018-03-27 1069296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Otakar VavreÄŤka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2018-03-27 109808]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hppwrsav]
C:\SCANJET\PrecisionScanLT\hppwrsav.exe [1999-06-07 23552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1300WStatusDisplay]
C:\Windows\system32\MSTMON_N.EXE [2004-11-25 151552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1400W STD]
C:\Windows\system32\MSTMON_Y.EXE [2006-03-01 184320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MP3 Skype Recorder]
C:\Users\Otakar VavreÄŤka\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe [2015-11-13 2216600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC7302_Monitor]
C:\Windows\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Seznam Postak]
C:\Users\Otakar VavreÄŤka\AppData\Local\Seznam.cz\bin\postak.exe [2012-01-10 491040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Viber]
C:\Users\Otakar VavreÄŤka\AppData\Local\Viber\Viber.exe [2017-07-20 31348816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk]
C:\PROGRA~1\Canon\IMAGEB~1\MFMANA~1.EXE [2013-01-29 69120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Otakar Vavrečka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Mámemail Pošťák.lnk]
C:\PROGRA~1\Mamemail\MAMEMA~1\Postak.exe [2015-04-13 740352]

C:\Users\Otakar VavreÄŤka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Mámemail Pošťák.lnk - C:\Program Files\Mamemail\Mamemail Postak\Postak.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2019-01-25 21:07:37 ----RAC---- C:\Windows\system32\CH341DLL.DLL
2019-01-25 21:07:37 ----RAC---- C:\Windows\system32\drivers\CH341WDM.SYS
2019-01-25 19:34:15 ----AC---- C:\Windows\system32\CH341PT.DLL
2019-01-25 19:34:15 ----AC---- C:\Windows\system32\drivers\CH341SER.SYS
2019-01-25 19:34:15 ----AC---- C:\Windows\system32\drivers\CH341S98.SYS
2019-01-25 16:11:16 ----DC---- C:\WCH.CN
2019-01-24 17:25:45 ----DC---- C:\SkyGz
2019-01-09 08:14:33 ----A---- C:\Windows\system32\mshtml.dll
2019-01-09 08:14:30 ----A---- C:\Windows\system32\ieframe.dll
2019-01-09 08:14:29 ----A---- C:\Windows\system32\wininet.dll
2019-01-09 08:14:29 ----A---- C:\Windows\system32\iertutil.dll
2019-01-09 08:14:28 ----A---- C:\Windows\system32\urlmon.dll
2019-01-09 08:14:28 ----A---- C:\Windows\system32\ntkrnlpa.exe
2019-01-09 08:14:28 ----A---- C:\Windows\system32\msrd3x40.dll
2019-01-09 08:14:28 ----A---- C:\Windows\system32\lsasrv.dll
2019-01-09 08:14:27 ----A---- C:\Windows\system32\rasdiag.dll
2019-01-09 08:14:27 ----A---- C:\Windows\system32\rascfg.dll
2019-01-09 08:14:27 ----A---- C:\Windows\system32\ntoskrnl.exe
2019-01-09 08:14:27 ----A---- C:\Windows\system32\msfeeds.dll
2019-01-09 08:14:27 ----A---- C:\Windows\system32\drivers\wanarp.sys
2019-01-09 08:14:26 ----A---- C:\Windows\system32\rasser.dll
2019-01-09 08:14:26 ----A---- C:\Windows\system32\rasmxs.dll
2019-01-09 08:14:26 ----A---- C:\Windows\system32\ntdll.dll
2019-01-09 08:14:26 ----A---- C:\Windows\system32\iedkcs32.dll
2019-01-09 08:14:26 ----A---- C:\Windows\system32\drivers\ntfs.sys
2019-01-09 08:14:26 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2019-01-09 08:14:26 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2019-01-09 08:14:25 ----A---- C:\Windows\system32\webcheck.dll
2019-01-09 08:14:25 ----A---- C:\Windows\system32\rstrui.exe
2019-01-09 08:14:25 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2019-01-09 08:14:25 ----A---- C:\Windows\system32\kerberos.dll
2019-01-09 08:14:25 ----A---- C:\Windows\system32\halmacpi.dll
2019-01-09 08:14:25 ----A---- C:\Windows\system32\halacpi.dll
2019-01-09 08:14:25 ----A---- C:\Windows\system32\hal.dll
2019-01-09 08:14:25 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2019-01-09 08:14:25 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2019-01-09 08:14:24 ----AC---- C:\Windows\system32\drivers\viac7.sys
2019-01-09 08:14:24 ----AC---- C:\Windows\system32\drivers\processr.sys
2019-01-09 08:14:24 ----AC---- C:\Windows\system32\drivers\intelppm.sys
2019-01-09 08:14:24 ----AC---- C:\Windows\system32\drivers\amdppm.sys
2019-01-09 08:14:24 ----AC---- C:\Windows\system32\drivers\amdk8.sys
2019-01-09 08:14:24 ----A---- C:\Windows\system32\wdigest.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\TSpkg.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\srcore.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\smss.exe
2019-01-09 08:14:24 ----A---- C:\Windows\system32\schannel.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\rpchttp.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\rpcrt4.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\ncrypt.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\msv1_0.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\drivers\videoprt.sys
2019-01-09 08:14:24 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2019-01-09 08:14:24 ----A---- C:\Windows\system32\csrsrv.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\auditpol.exe
2019-01-09 08:14:24 ----A---- C:\Windows\system32\appidsvc.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\appidapi.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\advapi32.dll
2019-01-09 08:14:23 ----A---- C:\Windows\system32\jscript9.dll
2019-01-09 08:14:23 ----A---- C:\Windows\system32\apisetschema.dll
2019-01-09 08:14:22 ----A---- C:\Windows\system32\sspicli.dll
2019-01-09 08:14:22 ----A---- C:\Windows\system32\srclient.dll
2019-01-09 08:14:22 ----A---- C:\Windows\system32\setbcdlocale.dll
2019-01-09 08:14:22 ----A---- C:\Windows\system32\mshtmlmedia.dll
2019-01-09 08:14:22 ----A---- C:\Windows\system32\lsass.exe
2019-01-09 08:14:22 ----A---- C:\Windows\system32\ie4uinit.exe
2019-01-09 08:14:22 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2019-01-09 08:14:22 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2019-01-09 08:14:22 ----A---- C:\Windows\system32\drivers\appid.sys
2019-01-09 08:14:22 ----A---- C:\Windows\system32\credssp.dll
2019-01-09 08:14:22 ----A---- C:\Windows\system32\bcrypt.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\vbscript.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\sspisrv.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\secur32.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\msobjs.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\msaudite.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\jscript.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\cryptbase.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2019-01-09 08:14:21 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2019-01-09 08:14:21 ----A---- C:\Windows\system32\adtschema.dll
2019-01-09 08:14:20 ----A---- C:\Windows\system32\ieui.dll
2019-01-09 08:14:20 ----A---- C:\Windows\system32\ieapfltr.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\winsrv.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\occache.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\msrating.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\mshtmled.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\KernelBase.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\jsproxy.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\jscript9diag.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\ieUnatt.exe
2019-01-09 08:14:19 ----A---- C:\Windows\system32\ieetwproxystub.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\dxtrans.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\dxtmsft.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\MshtmlDac.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\kernel32.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\inseng.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\iesetup.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\iernonce.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\ieetwcollector.exe
2019-01-09 08:14:18 ----A---- C:\Windows\system32\conhost.exe
2019-01-09 08:14:17 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-01-09 08:14:17 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-01-09 08:14:17 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-01-09 08:14:17 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-01-09 08:14:17 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-01-09 08:14:16 ----A---- C:\Windows\system32\ieetwcollectorres.dll

======List of files/folders modified in the last 1 month======

2019-01-26 11:56:50 ----DC---- C:\Program Files\trend micro
2019-01-26 11:56:39 ----DC---- C:\Windows\temp
2019-01-26 08:40:02 ----DC---- C:\Windows\system32\config
2019-01-26 08:21:35 ----DC---- C:\Users\Otakar VavreÄŤka\AppData\Roaming\ViberPC
2019-01-26 08:14:04 ----DC---- C:\Program Files\TeamViewer
2019-01-26 01:45:15 ----DC---- C:\Windows\Prefetch
2019-01-25 21:38:56 ----DC---- C:\Users\Otakar VavreÄŤka\AppData\Roaming\vlc
2019-01-25 21:07:37 ----DC---- C:\Windows\system32\drivers
2019-01-25 21:07:37 ----ADC---- C:\Windows\System32
2019-01-25 20:37:47 ----DC---- C:\Windows\system32\Tasks
2019-01-25 19:30:05 ----SHD---- C:\System Volume Information
2019-01-25 19:27:45 ----D---- C:\Windows\system32\DriverStore
2019-01-25 19:27:43 ----DC---- C:\Windows\inf
2019-01-25 19:08:42 ----DC---- C:\Windows
2019-01-25 17:21:45 ----DC---- C:\Windows\debug
2019-01-25 17:17:27 ----DC---- C:\Windows\Minidump
2019-01-25 16:24:24 ----SHDC---- C:\Windows\Installer
2019-01-25 16:24:23 ----SHDC---- C:\Config.Msi
2019-01-25 16:24:12 ----D---- C:\Program Files\ESET
2019-01-23 11:31:08 ----DC---- C:\Windows\system32\catroot2
2019-01-22 16:04:52 ----DC---- C:\Windows\system32\NDF
2019-01-21 15:56:10 ----D---- C:\Windows\rescache
2019-01-19 12:42:39 ----DC---- C:\Program Files\Microsoft Silverlight
2019-01-15 12:58:31 ----DC---- C:\Windows\Microsoft.NET
2019-01-15 12:54:26 ----RSDC---- C:\Windows\assembly
2019-01-13 16:42:05 ----DC---- C:\Shoty
2019-01-09 12:19:54 ----AC---- C:\Windows\system32\PerfStringBackup.INI
2019-01-09 12:13:33 ----D---- C:\Windows\winsxs
2019-01-09 12:10:03 ----DC---- C:\Program Files\Internet Explorer
2019-01-09 12:10:02 ----DC---- C:\Windows\system32\en-US
2019-01-09 12:10:02 ----DC---- C:\Windows\system32\cs-CZ
2019-01-09 10:56:03 ----DC---- C:\Windows\system32\MRT
2019-01-09 10:50:49 ----AC---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 DLMFENC;DLMFENC; C:\Windows\system32\DRIVERS\DLMFENC.sys [2018-02-27 142408]
R0 DLPCRYPT;DLPCRYPT; C:\Windows\system32\DRIVERS\dlpcrypt.sys [2017-11-02 109824]
R0 dlpvdisk;dlpvdisk; C:\Windows\system32\DRIVERS\dlpvdisk.sys [2017-11-02 84984]
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2018-11-29 92176]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2013-06-03 46096]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-05 173288]
R0 VDLPToken2;VDLPToken2; C:\Windows\system32\DRIVERS\vdlptkn2.sys [2017-11-02 125432]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 21576]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2018-11-29 124776]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2018-10-17 149192]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2018-10-17 72912]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2018-10-17 54240]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2018-10-17 94712]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2018-10-17 43816]
R2 npf;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2015-08-21 36600]
R3 5U876UVC;HP Webcam [2 MP series]; C:\Windows\system32\DRIVERS\5U876.sys [2009-11-13 114688]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2010-01-26 1163328]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2013-09-26 4268608]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.SYS [2003-07-18 18848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;OvladaÄŤ filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2018-02-10 52928]
S3 athur;Atheros AR9271 Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athur.sys [2010-01-05 1500160]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;OvladaÄŤ pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 94208]
S3 BTHPORT;OvladaÄŤ portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;OvladaÄŤ rozhranĂ­ USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2016-10-04 96464]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2016-10-04 74864]
S3 glavcam;GL USB2.0 UVC Camera Device; C:\Windows\system32\DRIVERS\glavcam.sys [2017-02-20 1475584]
S3 CH341;CH341WDM; C:\Windows\System32\Drivers\CH341WDM.SYS [2017-01-02 20464]
S3 PAC7302;PAC7302 VGA USB Camera; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-06-14 457856]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 Ser2plx86;Prolific Serial port WDF driver; C:\Windows\system32\DRIVERS\ser2pl.sys []
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2018-02-10 51904]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2005-08-17 58352]
S3 sscdmdfl;SAMSUNG CDMA Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2005-08-17 8272]
S3 sscdmdm;SAMSUNG CDMA Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2005-08-17 93872]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 usbscan;OvladaÄŤ skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2015-03-02 115672]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2018-02-10 52928]
S3 ViaC7;OvladaÄŤ procesoru VIA C7; C:\Windows\system32\drivers\viac7.sys [2018-12-28 53248]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-08-13 83984]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 dlpsrv;DESlock+ Service; C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe [2017-11-02 486080]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2018-11-29 1833552]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
R2 TeamViewer;TeamViewer 14; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2018-11-14 11786992]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2018-11-29 1833552]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 gupdate;SluĹľba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2018-03-26 47200]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files\Google\Chrome\Application\71.0.3578.98\elevation_service.exe [2018-12-12 375776]
S3 gupdatem;SluĹľba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-01-09 104960]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-23 1343400]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-13 270016]
S4 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 90112]
S4 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
S4 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
S4 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [2007-12-17 143872]
S4 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [2007-01-11 113664]
S4 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
S4 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [2014-12-11 89864]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-11 146888]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2008-04-08 800040]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

-----------------EOF-----------------

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 12:28
od Diallix
Dobry den.

:arrow: Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, klikni na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 14:13
od rakato11
# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build: 12-18-2018
# Database: 2019-01-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-26-2019
# Duration: 00:00:09
# OS: Windows 7 Home Premium
# Cleaned: 37
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files\Carambis
Deleted C:\Users\Otakar Vavrečka\AppData\Roaming\Carambis
Deleted C:\Program Files\Seznam.cz
Deleted C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz
Deleted C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon PhotoRecord\PhotoRecord unInstall.lnk
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon PhotoRecord\PhotoRecord ReadMe.lnk

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnceE33EEA27F82E4A8B91A4B589E13BC177
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnceD2C14D34ADEA4DAEBF236CF1FB43DFFA
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnceC7745B11D50A45EF95BE8EC76290B365
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce969634C6473644D6962A8C186E9C7BCC
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce704D3AFD68934EBEAD5583531531B0C7
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce5FF9A6793D2249459A5E33AFB884F189
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce5AE40829E3994EAE927588237786C6FF
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserFD96219D53F1428CA129905168E8AEF6
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserD841DA392046453C875C2FF289730397
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserC58FF41A73AE44389FEEBF94B1E6FA62
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserC1BBEE3497A94DB1A63A8FAE5B9D0498
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserACB2CAE89F644B409A1D7C4EA67BB01B
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUser6A1BAA85F076493EAEF7B2FF44EBE4CF
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUser33C766F3583240B5AA37F650CC7672A4
Deleted HKCU\Software\Carambis
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SoundMAXPnP
Deleted HKLM\SOFTWARE\Classes\Unknown\shell\openas\command|FileCure.old
Deleted HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.autoupdate
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\seznam-listicka-distribuce
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-505298747-3480647553-2469496864-1000\Software\Seznam.cz
Deleted HKCU\Software\AppDataLow\Software\Seznam.cz
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\Software\Seznam.cz
Deleted HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm

***** [ Chromium (and derivatives) ] *****

Deleted Seznam doplněk - Email
Deleted Seznam doplněk - Esko

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [5614 octets] - [26/01/2019 14:05:00]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 14:15
od Diallix
Preskenujte pocitac s FRST - navod tu: https://forum.viry.cz/viewtopic.php?f=24&t=132509, skopirujte FRST.log + Addition log sem.

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 15:46
od rakato11
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 26-01-2019
Ran by Otakar Vavrečka (administrator) on PC-OTAKAR (26-01-2019 15:38:02)
Running from C:\Users\Otakar Vavrečka\Desktop
Loaded Profiles: Otakar Vavrečka (Available Profiles: Otakar Vavrečka & Guest)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(DESlock Limited.) C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Prolific Technology Inc.) C:\Windows\System32\IoctlSvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) C:\Windows\System32\MSTMON_N.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Viber Media S.à r.l.) C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(TB development & investment, s.r.o.) C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
(Baptiste Girod) C:\Users\Otakar Vavrečka\Desktop\Gmail Notifier Plus.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] => C:\Windows\system32\MSTMON_N.EXE [151552 2004-11-25] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmds.exe [169616 2018-11-29] (ESET)
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [Viber] => C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [31348816 2017-07-20] (Viber Media S.à r.l.)
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-29] (Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-14] (Google Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Inc.)
Startup: C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Mámemail Pošťák.lnk [2016-08-18]
ShortcutTarget: Mámemail Pošťák.lnk -> C:\Program Files\Mamemail\Mamemail Postak\Postak.exe (TB development & investment, s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4548DDFA-1512-4BFA-82B7-BD949C6B66D7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7B2E29D8-C151-4499-9A12-89D37C4D46F3}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-505298747-3480647553-2469496864-1000 -> {AA1A8F4B-E651-4E8B-B7F0-B1F0544A65BF} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-10] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-10] (Oracle Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File

FireFox:
========
FF ProfilePath: C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\91phxdze.default-1494695803407 [2019-01-26]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-13] ()
FF Plugin: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-10] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-10] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-505298747-3480647553-2469496864-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-505298747-3480647553-2469496864-1000: @talk.google.com/O1DPlugin -> C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-505298747-3480647553-2469496864-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-30] (Google Inc.)
FF Plugin HKU\S-1-5-21-505298747-3480647553-2469496864-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-30] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Otakar Vavrečka\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Otakar Vavrečka\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR NewTab: Default -> Not-active:"chrome-extension://blmojkbhnkkphngknkmgccmlenfaelkd/speeddial/html/newTab.html"
CHR Profile: C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default [2019-01-26]
CHR Extension: (Dokumenty) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-03]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2018-11-23]
CHR Extension: (YouTube) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-03]
CHR Extension: (Vyhledávání Google) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-03]
CHR Extension: (Adobe Acrobat) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-17]
CHR Extension: (Avast Online Security) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-28]
CHR Extension: (VXG Media Player) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hncknjnnbahamgpjoafdebabmoamcnni [2019-01-11]
CHR Extension: (Fast Music Search) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljjjecfkodpceolgcjgojpaffaehjdhn [2017-07-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-15]
CHR Extension: (Chrome Media Router) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-15]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation)
R2 dlpsrv; C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe [486080 2017-11-02] (DESlock Limited.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1833552 2018-11-29] (ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1833552 2018-11-29] (ESET)
S4 EPSON_EB_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [143872 2007-12-17] (SEIKO EPSON CORPORATION)
S4 EPSON_PM_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [113664 2007-01-11] (SEIKO EPSON CORPORATION)
S4 HPSupportSolutionsFrameworkService; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864 2014-12-11] (Hewlett-Packard Company)
R2 PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [11786992 2018-11-14] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 5U876UVC; C:\Windows\System32\DRIVERS\5U876.sys [114688 2009-11-13] (Ricoh co.,Ltd.)
R1 aswKbd; C:\Windows\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1500160 2010-01-05] (Atheros Communications, Inc.)
S3 CH341; C:\Windows\System32\Drivers\CH341WDM.SYS [20464 2017-01-02] (www.winchiphead.com)
R0 DLMFENC; C:\Windows\System32\DRIVERS\DLMFENC.sys [142408 2018-02-27] (DESlock Ltd.)
R0 DLPCRYPT; C:\Windows\System32\DRIVERS\dlpcrypt.sys [109824 2017-11-02] (DESlock Ltd.)
R0 dlpvdisk; C:\Windows\System32\DRIVERS\dlpvdisk.sys [84984 2017-11-02] (DESlock Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [124776 2018-11-29] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [92176 2018-11-29] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [149192 2018-10-17] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [43816 2018-10-17] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [72912 2018-10-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [54240 2018-10-17] (ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [94712 2018-10-17] (ESET)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [96464 2016-10-04] (Future Technology Devices International Ltd.)
S3 FTSER2K; C:\Windows\System32\drivers\ftser2k.sys [74864 2016-10-04] ()
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 glavcam; C:\Windows\System32\DRIVERS\glavcam.sys [1475584 2017-02-20] (Windows (R) Codename Longhorn DDK provider)
S2 MLPTDR_N; C:\Windows\system32\MLPTDR_N.SYS [18848 2003-07-18] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2015-08-21] (Riverbed Technology, Inc.)
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [457856 2007-06-14] (PixArt Imaging Inc.)
R0 PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [46096 2013-06-03] (Corel Corporation)
R0 VDLPToken2; C:\Windows\System32\DRIVERS\vdlptkn2.sys [125432 2017-11-02] (DESlock Ltd.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 Ser2plx86; system32\DRIVERS\ser2pl.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-26 15:38 - 2019-01-26 15:39 - 000015351 ____C C:\Users\Otakar Vavrečka\Desktop\FRST.txt
2019-01-26 15:37 - 2019-01-26 15:38 - 000000000 ___DC C:\FRST
2019-01-26 15:33 - 2019-01-26 15:34 - 001787904 ____C (Farbar) C:\Users\Otakar Vavrečka\Desktop\FRST.exe
2019-01-26 13:49 - 2019-01-26 13:49 - 007320272 ____C (Malwarebytes) C:\Users\Otakar Vavrečka\Desktop\adwcleaner_7.2.6.0.exe
2019-01-26 11:56 - 2019-01-26 11:56 - 001107968 ____C C:\Users\Otakar Vavrečka\Desktop\RSIT.exe
2019-01-25 21:07 - 2017-01-02 20:47 - 000031012 ___RC (www.winchiphead.com) C:\Windows\system32\CH341DLL.DLL
2019-01-25 21:07 - 2017-01-02 20:47 - 000020464 ___RC (www.winchiphead.com) C:\Windows\system32\Drivers\CH341WDM.SYS
2019-01-25 21:06 - 2019-01-25 21:06 - 000001713 ____C C:\Users\Otakar Vavrečka\Desktop\CH341A - USB Programmer 1.30.lnk
2019-01-25 21:06 - 2019-01-25 21:06 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CH341A - USB Programmer 1.30
2019-01-25 19:34 - 2015-01-26 00:00 - 000041472 ____C (www.winchiphead.com) C:\Windows\system32\Drivers\CH341SER.SYS
2019-01-25 19:34 - 2008-12-18 00:00 - 000020089 ____C C:\Windows\system32\CH341SER.VXD
2019-01-25 19:34 - 2007-06-12 00:00 - 000019680 ____C (www.winchiphead.com) C:\Windows\system32\Drivers\CH341S98.SYS
2019-01-25 19:34 - 2005-07-30 00:00 - 000006712 ____C (www.winchiphead.com) C:\Windows\system32\CH341PT.DLL
2019-01-25 16:24 - 2019-01-25 16:24 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Local\DESlock+
2019-01-25 16:11 - 2019-01-25 19:34 - 000000000 ___DC C:\WCH.CN
2019-01-25 14:46 - 2019-01-25 14:46 - 000001997 ____C C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2019-01-25 14:44 - 2019-01-25 14:44 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2019-01-25 14:01 - 2019-01-25 14:01 - 005455480 ____C (ESET) C:\Users\Otakar Vavrečka\Desktop\eset_smart_security_premium_live_installer.exe
2019-01-24 17:25 - 2019-01-25 21:06 - 000000000 ___DC C:\SkyGz
2019-01-20 08:53 - 2019-01-20 08:54 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\eRmail
2019-01-12 09:34 - 2019-01-12 09:35 - 000011943 ____C C:\Users\Otakar Vavrečka\Desktop\Tablet-hláška na displeji.odt
2019-01-10 12:21 - 2019-01-10 12:21 - 000067528 ____C C:\Users\Otakar Vavrečka\Downloads\splnomocnenie.pdf
2019-01-09 20:08 - 2019-01-09 20:08 - 000009328 ____C C:\Users\Otakar Vavrečka\Downloads\LIDI.cz.odt
2019-01-09 14:58 - 2019-01-23 13:48 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\Odhazování sněhu-Nikolka
2019-01-09 08:14 - 2019-01-09 10:49 - 020279808 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 013680640 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 004494848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 004386816 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 004055272 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 003960552 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-01-09 08:14 - 2019-01-09 10:49 - 002295808 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 002060288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-01-09 08:14 - 2019-01-09 10:49 - 001329664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 001310520 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 001214696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 001072640 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000663040 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000498176 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000419608 _____ C:\Windows\system32\locale.nls
2019-01-09 08:14 - 2019-01-09 10:49 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000352768 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000348760 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-01-09 08:14 - 2019-01-09 10:49 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000189672 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000189672 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000136424 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-01-09 08:14 - 2019-01-09 10:49 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2019-01-09 08:14 - 2019-01-09 10:49 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2019-01-09 08:14 - 2019-01-09 10:49 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-01-09 08:14 - 2018-12-28 20:26 - 000055296 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-01-09 08:14 - 2018-12-28 20:26 - 000053760 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-01-09 08:14 - 2018-12-28 20:26 - 000053248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\viac7.sys
2019-01-09 08:14 - 2018-12-28 20:26 - 000052736 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-01-09 08:14 - 2018-12-28 20:26 - 000052224 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2018-12-31 18:47 - 2019-01-10 18:07 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\LED podsvícení
2018-12-31 18:00 - 2019-01-14 08:55 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\Žárovky-Čína
2018-12-28 20:36 - 2018-12-28 20:36 - 008862695 ____C C:\Users\Otakar Vavrečka\Desktop\otf_color_462_463_sm.pdf
2018-12-27 21:59 - 2018-12-27 22:09 - 000000000 ___DC C:\Users\Otakar Vavrečka\Downloads\Martina Zack
2018-12-27 18:34 - 2018-12-27 18:54 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\NOKIA RM-1035

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-26 14:15 - 2009-07-14 05:34 - 000018736 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-01-26 14:15 - 2009-07-14 05:34 - 000018736 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-01-26 14:07 - 2017-07-26 14:22 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Roaming\ViberPC
2019-01-26 14:07 - 2013-02-02 14:48 - 000000000 ___DC C:\Program Files\TeamViewer
2019-01-26 14:06 - 2009-07-14 05:53 - 000000006 ___HC C:\Windows\Tasks\SA.DAT
2019-01-26 14:05 - 2017-02-17 19:11 - 000000000 ___DC C:\AdwCleaner
2019-01-26 12:02 - 2017-02-10 19:00 - 000000000 ___DC C:\rsit
2019-01-26 11:56 - 2016-03-09 16:19 - 000000000 ___DC C:\Program Files\trend micro
2019-01-26 08:21 - 2017-07-26 15:05 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Local\Viber
2019-01-26 02:14 - 2018-04-07 06:25 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A
2019-01-25 21:38 - 2013-04-10 07:18 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Roaming\vlc
2019-01-25 19:50 - 2014-09-15 16:39 - 000000000 ___DC C:\Users\Otakar Vavrečka\Documents\ViberDownloads
2019-01-25 19:27 - 2009-07-14 03:37 - 000000000 ___DC C:\Windows\inf
2019-01-25 17:17 - 2012-04-19 18:56 - 000000000 ___DC C:\Windows\Minidump
2019-01-25 16:24 - 2014-03-15 22:44 - 000000000 ____D C:\Program Files\ESET
2019-01-25 14:08 - 2016-07-13 07:23 - 000000000 ___DC C:\Users\Otakar Vavrečka\Data z plochy
2019-01-24 17:54 - 2018-04-02 08:50 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\Firmware
2019-01-22 16:04 - 2009-07-14 03:37 - 000000000 ___DC C:\Windows\system32\NDF
2019-01-21 15:56 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\rescache
2019-01-19 12:42 - 2012-03-18 12:28 - 000000000 ___DC C:\Program Files\Microsoft Silverlight
2019-01-17 07:32 - 2012-03-18 12:28 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2019-01-14 09:01 - 2018-08-06 13:27 - 000001024 ____C C:\Users\Public\Desktop\VLC media player.lnk
2019-01-13 16:42 - 2012-01-12 08:08 - 000000000 ___DC C:\Shoty
2019-01-10 13:11 - 2017-04-09 14:53 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\LED žárovky
2019-01-09 12:19 - 2011-02-22 14:51 - 001587926 ____C C:\Windows\system32\PerfStringBackup.INI
2019-01-09 12:19 - 2009-08-14 04:45 - 000670164 ____C C:\Windows\system32\perfh005.dat
2019-01-09 12:19 - 2009-08-14 04:45 - 000142246 ____C C:\Windows\system32\perfc005.dat
2019-01-09 10:56 - 2013-08-14 06:58 - 000000000 ___DC C:\Windows\system32\MRT
2019-01-09 10:50 - 2011-02-23 08:18 - 129687688 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-01-04 13:58 - 2015-11-08 16:37 - 000002441 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Files in the root of some directories =======

2015-05-07 05:06 - 2015-05-07 05:06 - 000087608 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\inst.exe
2015-05-07 05:06 - 2015-05-07 05:06 - 000007887 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\pcouffin.cat
2015-05-07 05:06 - 2015-05-07 05:06 - 000001144 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\pcouffin.inf
2015-05-07 05:06 - 2015-05-07 05:06 - 000000055 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\pcouffin.log
2015-05-07 05:06 - 2015-05-07 05:06 - 000047360 ____C (VSO Software) C:\Users\Otakar Vavrečka\AppData\Roaming\pcouffin.sys
2011-08-28 17:17 - 2015-05-07 05:05 - 000001189 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\vso_ts_preview.xml
2012-03-07 11:43 - 2014-04-01 07:43 - 000012288 ____C () C:\Users\Otakar Vavrečka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-08-28 09:31 - 2011-08-28 09:31 - 000000061 ____C () C:\Users\Otakar Vavrečka\AppData\Local\SRDownloader.err
2011-07-07 06:28 - 2013-06-10 20:39 - 000000888 ____C () C:\Users\Otakar Vavrečka\AppData\Local\SRDownloader.nast
2011-08-06 11:27 - 2011-08-06 11:27 - 000000000 ____C () C:\Users\Otakar Vavrečka\AppData\Local\{C9479304-8CCB-45C2-B189-3DC354E03AA2}

Some files in TEMP:
====================
2019-01-25 19:30 - 2019-01-24 17:26 - 000117447 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Temp\Uninstall.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-01-25 09:07

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 26-01-2019
Ran by Otakar Vavrečka (26-01-2019 15:40:15)
Running from C:\Users\Otakar Vavrečka\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2011-02-22 14:02:06)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-505298747-3480647553-2469496864-500 - Administrator - Disabled)
Guest (S-1-5-21-505298747-3480647553-2469496864-501 - Limited - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-505298747-3480647553-2469496864-1002 - Limited - Enabled)
Otakar Vavrečka (S-1-5-21-505298747-3480647553-2469496864-1000 - Administrator - Enabled) => C:\Users\Otakar Vavrečka

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM\...\uTorrent) (Version: 2.2.1.25534 - emc, uTorrent.CZ)
7-Zip 18.01 (HKLM\...\7-Zip) (Version: 18.01 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated)
Adobe Flash Player 22 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Any Video Converter 5.9.0 (HKLM\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Apowersoft Video Stahovač V6.1.6 (HKLM\...\{b3336f66-e079-4ff6-abdb-51e2fab781d5}_is1) (Version: 6.1.6 - APOWERSOFT LIMITED)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Audacity 2.0.5 (HKLM\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (HKLM\...\{E031338C-839D-4EDD-9537-99B653C39D81}) (Version: 6.5.5.24 - Autodesk, Inc.)
Avidemux 2.6 - 32 bits (32-bit) (HKLM\...\Avidemux 2.6 - 32 bits) (Version: 2.6.20.170428 - )
AxCrypt 1.7.2976.0 (HKLM\...\{38350E9E-D50E-454A-BAFC-58BBDDBE08C4}) (Version: 1.7.2976.0 - Axantum Software AB)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: - Broadcom Corporation)
Canon MovieEdit Task for ZoomBrowser EX (HKLM\...\MovieEditTask) (Version: 3.9.0.6 - Canon Inc.)
Canon PhotoRecord (HKLM\...\PhotoRecord) (Version: - )
Canon RAW Codec (HKLM\...\Canon RAW Codec) (Version: 1.7.0.56 - Canon Inc.)
Canon Utilities CameraWindow DC 8 (HKLM\...\CameraWindowDC) (Version: 8.8.0.17 - Canon Inc.)
Canon Utilities EOS Video Snapshot Task for ZoomBrowser EX (HKLM\...\EOS Video Snapshot Task) (Version: 1.0.0.10 - Canon Inc.)
Canon Utilities ImageBrowser EX (HKLM\...\ImageBrowser EX) (Version: 1.2.1.13 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM\...\{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}) (Version: 04.00.00024 - CISRA)
Canon Utilities ZoomBrowser EX (HKLM\...\ZoomBrowser EX) (Version: 6.9.0.1 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
CDBurnerXP (HKLM\...\{5932A5C4-BB44-4CFB-AD66-1B826F4D788B}) (Version: 4.3.8.2568 - Canneverbe Limited)
Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Cryptext (Remove Only) (HKLM\...\CryptextNT4) (Version: - )
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
doPDF 7.2 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland)
dreamboxEDIT -- The one and only settings editor for your Dreambox (HKLM\...\dreamboxEDIT) (Version: - )
EAGLE 6.4.0 (HKLM\...\EAGLE 6.4.0) (Version: 6.4.0 - CadSoft Computer GmbH)
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - )
ESET Premium Line Encryption (HKLM\...\{A88A7368-8FEE-421F-A785-B067A5575AF6}) (Version: 1.0.14 - ESET) Hidden
ESET Security (HKLM\...\{0BA8BBB6-4354-40BD-AA15-D4FF2E551998}) (Version: 12.0.31.0 - ESET, spol. s r.o.)
Eusing Free MP3 Cutter (HKLM\...\Eusing Free MP3 Cutter) (Version: - )
EVEREST Ultimate Edition v5.50 (HKLM\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
FastStone Image Viewer 4.6 (HKLM\...\FastStone Image Viewer) (Version: 4.6 - FastStone Soft)
FTP Commander (HKLM\...\FTP Commander) (Version: - )
GIMP 2.6.11 (HKLM\...\WinGimp-2.0_is1) (Version: 2.6.11 - The GIMP Team)
GL USB2.0 UVC Camera Device (HKLM\...\{9897BBD8-013A-49F3-928E-866A59B6E00C}) (Version: 14.03.11.0 - GenesysLogic)
Google Drive (HKLM\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Talk Plugin (HKLM\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.09) (Version: 9.09 - Artifex Software Inc.)
HP PrecisionScan LT Software (HKLM\...\HP PrecisionScan LT Software) (Version: - )
HP Support Solutions Framework (HKLM\...\{96D12EC9-720B-45FB-904C-36D6307A1C76}) (Version: 11.51.0048 - Hewlett-Packard Company)
HP Webcam (HKLM\...\{1D61E881-43CD-447B-9E6B-D2C6138B2862}) (Version: 1.0 - Roxio)
CH341A - USB Programmer 1.30 (HKLM\...\CH341A - USB Programmer 1.30) (Version: 1.30 - SkyGz)
Chinese Traditional Fonts Support For Adobe Reader X (HKLM\...\{AC76BA86-7AD7-2448-0000-A00000000003}) (Version: 10.0.0 - Adobe Systems Incorporated)
ICQ7.6 (HKLM\...\{7644E42D-B096-457F-8B5B-901238FC81AE}) (Version: 7.6 - ICQ)
Integrated Camera Driver Installer Package Ver.1.33.110.0 (HKLM\...\{B0344B38-378B-47E0-BDCC-977785D24768}) (Version: 1.33.110.0 - BISON)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 8 Update 73 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
KONICA MINOLTA PagePro 1300W (HKLM\...\KONICA MINOLTA PagePro 1300W) (Version: - )
KONICA MINOLTA PagePro 1400W (HKLM\...\KONICA MINOLTA PagePro 1400W) (Version: - )
Mámemail Pošťák verze 1.3 (HKLM\...\{FF58C679-3D55-4F3C-90CF-A5F026710AE0}_is1) (Version: 1.3 - Mamemail.cz)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 11.45.4.3 - Marvell)
Microsoft .NET Framework 4.7.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 47.0 (x86 cs) (HKLM\...\Mozilla Firefox 47.0 (x86 cs)) (Version: 47.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla)
MP3 Skype recorder (HKLM\...\{7CF296C0-583C-4BB7-8DBE-34DD6AE635B7}) (Version: 4.18.1.0 - Domit LTD)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
Nero 7 Ultra Edition (HKLM\...\{F90D6825-8F1F-4E3A-9E42-A9C8A9DD1029}) (Version: 7.03.1152 - Nero AG)
Odinstalace tiskárny EPSON Stylus SX200 Series (HKLM\...\EPSON Stylus SX200 Series) (Version: - SEIKO EPSON Corporation)
OpenOffice 4.1.5 (HKLM\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
PL-2303 USB-to-Serial (HKLM\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.8.12 - Prolific Technology INC)
ProfiCAD 9.3.9 (HKLM\...\ProfiCAD_is1) (Version: - )
Recover Files 3.31 (HKLM\...\Recover Files_is1) (Version: - Undelete & Unerase, Inc.)
Recuva (HKLM\...\Recuva) (Version: 1.48 - Piriform)
Revo Uninstaller Pro 2.5.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 2.5.8 - VS Revo Group, Ltd.)
Seznam Pošťák 2 (Pouze já.) (HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\szn-software-postak) (Version: - )
Skype verze 8.34 (HKLM\...\Skype_is1) (Version: 8.34 - Skype Technologies S.A.)
sPlan 7.0 (Demo) (HKLM\...\sPlan_70_Demo_is1) (Version: - )
SuperiorUSB v5.6.0 (HKLM\...\SuperiorUSB_is1) (Version: - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
TeamViewer 14 (HKLM\...\TeamViewer) (Version: 14.0.13880 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 9.21a - Ghisler Software GmbH)
TuneUp Utilities 2014 (en-US) (HKLM\...\{14C8CE46-C68C-461B-BCA9-E276A85851C6}) (Version: 14.0.1000.88 - TuneUp Software) Hidden
Undelete 360 (HKLM\...\Undelete 360_is1) (Version: - File Recovery Ltd.)
Uschovna.cz 1.1.0 (HKLM\...\{8531A154-5045-4E32-885A-391F750C5DE2}_is1) (Version: 1.1.0 - Capsa.cz)
Viber (HKLM\...\{05247C1B-0AD7-43B0-B6F9-D29B376ADC9A}) (Version: 6.8.6.5 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\{222ce6fa-97ef-411d-a3f3-51229b6827fc}) (Version: 6.8.6.5 - Viber Media Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
X-Lite 3.0 (HKLM\...\X-Lite 3.0_is1) (Version: - CounterPath Solutions Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{39125640-8D80-11DC-A2FE-C5C455D89593}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Google Talk Plugin\googletalkax.dll (Google)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{AB9F4455-E591-4132-A386-0B91EAEDB96C}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Google Talk Plugin\o1dax.dll (Google)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F47-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ESD Shell Icon Overlay Identifier] -> {AF106685-9C86-48AF-8524-8F485C459E17} => C:\Program Files\ESET\ESET Secure Data\esdovrly.dll [2017-11-02] (DESlock Limited)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers1: [axcrypt.File] -> {C3DFC144-30F8-4138-81F9-578DBEB9324A} => C:\Program Files\Axantum\AxCrypt\ShellExt.dll [2012-11-12] (Axantum Software AB)
ContextMenuHandlers1: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-07-24] (Nero AG)
ContextMenuHandlers1: [Cryptext] -> {990a81a0-b289-11cf-a800-00a0c903a2a6} => C:\Windows\system32\ShellExt\Cryptext.dll [1999-04-23] ()
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-29] (ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2018-04-23] (Google)
ContextMenuHandlers1: [Print602] -> {D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-29] (ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers4: [Cryptext] -> {990a81a0-b289-11cf-a800-00a0c903a2a6} => C:\Windows\system32\ShellExt\Cryptext.dll [1999-04-23] ()
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2018-04-23] (Google)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers4: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers6: [axcrypt.File] -> {C3DFC144-30F8-4138-81F9-578DBEB9324A} => C:\Program Files\Axantum\AxCrypt\ShellExt.dll [2012-11-12] (Axantum Software AB)
ContextMenuHandlers6: [Cryptext] -> {990a81a0-b289-11cf-a800-00a0c903a2a6} => C:\Windows\system32\ShellExt\Cryptext.dll [1999-04-23] ()
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-29] (ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2010-08-12] (VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-05-28] ()

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1E97DEFE-56CD-43DA-9D17-E238D9194780} - \DriverCure -> No File <==== ATTENTION
Task: {2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {3E86EE08-3FAA-47A7-BA29-2059F745A87D} - System32\Tasks\{8C134072-3CE6-421D-9589-025BE960BDCF} => C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový\CH341PAR.EXE" -d "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový"
Task: {6609F292-B444-4351-97BE-8955581B0502} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-29] (Piriform Ltd)
Task: {87D1AA01-FB73-4F54-AEC6-65047C803ED0} - System32\Tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {D8F46F61-120B-4D71-AA30-06D8C4BF3E5B} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\VXG Media Player.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hncknjnnbahamgpjoafdebabmoamcnni

==================== Loaded Modules (Whitelisted) ==============

2011-07-10 16:36 - 2001-10-28 16:42 - 000116224 _____ () C:\Windows\System32\pdfcmnnt.dll
2011-02-28 22:44 - 2011-05-28 22:04 - 000140288 _____ () C:\Program Files\WinRAR\rarext.dll
1999-04-23 03:21 - 1999-04-23 03:21 - 000142848 _____ () C:\Windows\system32\ShellExt\Cryptext.dll
2017-07-20 12:51 - 2017-07-20 12:51 - 000041040 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Viber\qrencode.dll
2017-07-20 12:52 - 2017-07-20 12:52 - 000391760 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Viber\imageformats\qsvg.dll
2017-07-20 12:51 - 2017-07-20 12:51 - 000019536 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Viber\libEGL.DLL
2017-07-20 12:51 - 2017-07-20 12:51 - 001955408 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Viber\libGLESv2.dll
2014-10-23 20:19 - 2014-10-23 20:19 - 000043520 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2015-09-15 20:23 - 000000027 ____C C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\Program Files\Broadcom\Broadcom 802.11\Driver;;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0;C:\Program Files\Skype\Phone
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AEADIFilters => 2
MSCONFIG\Services: AgereModemAudio => 2
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: EPSON_EB_RPCV4_01 => 2
MSCONFIG\Services: EPSON_PM_RPCV4_01 => 2
MSCONFIG\Services: hpsrv => 2
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NBService => 3
MSCONFIG\Services: NMIndexingService => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk => C:\Windows\pss\ImageBrowser EX Agent.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Otakar Vavrečka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Mámemail Pošťák.lnk => C:\Windows\pss\Mámemail Pošťák.lnk.Startup
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: hppwrsav => C:\SCANJET\PrecisionScanLT\hppwrsav.exe
MSCONFIG\startupreg: KONICA MINOLTA PagePro 1300WStatusDisplay => C:\Windows\system32\MSTMON_N.EXE
MSCONFIG\startupreg: KONICA MINOLTA PagePro 1400W STD => C:\Windows\system32\MSTMON_Y.EXE STARTUP
MSCONFIG\startupreg: MP3 Skype Recorder => C:\Users\Otakar Vavrečka\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe
MSCONFIG\startupreg: PAC7302_Monitor => C:\Windows\PixArt\PAC7302\Monitor.exe
MSCONFIG\startupreg: Seznam Postak => "C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe" -s
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: Viber => "C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe" StartMinimized

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{C12D7CA6-15BB-47EC-8CA7-23933E88D22D}C:\program files\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files\counterpath\x-lite\x-lite.exe ()
FirewallRules: [UDP Query User{6A436787-7B16-469F-9F44-FC3FC0469E7D}C:\program files\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files\counterpath\x-lite\x-lite.exe ()
FirewallRules: [TCP Query User{9A70AE46-C4D9-4B10-BDBD-5402881E6D1A}C:\program files\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files\counterpath\x-lite\x-lite.exe ()
FirewallRules: [UDP Query User{7DFFE528-3065-4AC4-A3C2-5C44CE3ABCB1}C:\program files\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files\counterpath\x-lite\x-lite.exe ()
FirewallRules: [TCP Query User{E90E4A23-CF53-4C85-902D-E86CF4DCC1D7}C:\program files\icq7.5\icq.exe] => (Allow) C:\program files\icq7.5\icq.exe (ICQ, LLC.)
FirewallRules: [UDP Query User{049F281A-D2AB-4D1F-853D-B84EFAC7C86F}C:\program files\icq7.5\icq.exe] => (Allow) C:\program files\icq7.5\icq.exe (ICQ, LLC.)
FirewallRules: [{2BE19BC0-E07A-4BB1-9016-9B4D3AB215C3}] => (Allow) C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
FirewallRules: [{CE36758B-9BEA-431C-A4E5-F8B4FB3AC211}] => (Allow) C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
FirewallRules: [{7DAB9A18-A07A-4B18-A816-B6102C5D0385}] => (Allow) C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
FirewallRules: [{2EACFA2A-F0D5-4F8C-8294-2568E5EA5FB7}] => (Allow) C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
FirewallRules: [TCP Query User{4A8AEC46-0EEB-420A-96A8-741B6FD10681}C:\program files\icq7.5\icq.exe] => (Allow) C:\program files\icq7.5\icq.exe (ICQ, LLC.)
FirewallRules: [UDP Query User{969C7F17-F2E3-4FDA-868C-120A541EC12C}C:\program files\icq7.5\icq.exe] => (Allow) C:\program files\icq7.5\icq.exe (ICQ, LLC.)
FirewallRules: [{F8036CE2-7026-4673-A991-D73F805113F0}] => (Allow) LPort=2869
FirewallRules: [{54C06B4D-5386-430F-B9E1-0A8D212B0D60}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{0B8C7F57-9146-400A-A0CF-5FF70A101C27}C:\program files\icq7.6\icq.exe] => (Allow) C:\program files\icq7.6\icq.exe (ICQ, LLC.)
FirewallRules: [UDP Query User{FCB83ECD-3216-4505-B939-EE65EED7E084}C:\program files\icq7.6\icq.exe] => (Allow) C:\program files\icq7.6\icq.exe (ICQ, LLC.)
FirewallRules: [{2F5ED779-D282-4211-857F-FDBFAD58A1D5}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation)
FirewallRules: [{0E16DEA9-25A3-48A8-A05B-4D7D9D3C99C4}] => (Allow) C:\Users\Otakar Vavrečka\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [{58157869-02A9-4224-AD87-A2372AACCE46}] => (Allow) C:\Users\Otakar Vavrečka\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [{E971F3A4-CA71-463B-8F96-11F3AC755476}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{FBAD154A-E5E7-4E2A-B135-078B5530CBFA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{C1AAEF9C-2F2C-40FB-91AE-CFA31C9E4288}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{E0D5F073-CCD7-406D-B5A9-51A535DE6705}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{300CCF1E-3648-4059-8D16-577AD2A86349}] => (Allow) C:\Program Files\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe (Apowersoft)
FirewallRules: [{75161E8B-F1FE-424B-8360-04D0B43615B3}] => (Allow) C:\Program Files\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe (Apowersoft)
FirewallRules: [{9A274ECC-D931-49C7-9C60-5C5EA6C3BDD3}] => (Allow) C:\Program Files\Apowersoft\Video Download Capture 6\rtmpsrv.exe ()
FirewallRules: [{96CA91A7-5EEA-47AF-8240-F9531C23D329}] => (Allow) C:\Program Files\Apowersoft\Video Download Capture 6\rtmpsrv.exe ()
FirewallRules: [{E86A656F-E516-4FBB-9D4B-9C342DFEE60C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{E94A3881-3A90-4702-8295-3757666FE176}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{769DDB12-57E0-4B90-90BC-A09DFD806FA6}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{25AFEC86-EEB1-4317-AA87-DCF99A57626D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{E8122F07-4585-4790-91A7-3D177C067AF1}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.)
FirewallRules: [{FE7D460A-9CB8-4754-BA27-7BD50F6C8B76}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.)
FirewallRules: [{5598FD04-AF2A-47CD-BF21-EE55A829CBF0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

==================== Restore Points =========================

03-11-2018 01:04:38 Windows Update
10-11-2018 09:12:00 Naplánovaný kontrolní bod
14-11-2018 09:45:30 Windows Update
24-11-2018 14:29:32 Naplánovaný kontrolní bod
27-11-2018 09:47:00 Windows Update
04-12-2018 11:54:43 Naplánovaný kontrolní bod
13-12-2018 07:03:04 Windows Update
20-12-2018 11:35:44 Windows Update
27-12-2018 16:59:43 Naplánovaný kontrolní bod
09-01-2019 10:47:38 Windows Update
17-01-2019 07:27:51 Windows Update
23-01-2019 11:04:29 Windows Update
25-01-2019 14:09:53 Revo Uninstaller Pro's restore point - ESET Security
25-01-2019 19:27:08 Instalace balíčku ovladače zařízení: wch.cn Interface
25-01-2019 19:29:54 Revo Uninstaller Pro's restore point - CH341A - USB Programmer 1.30

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/25/2019 09:24:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CH341A_130.exe, verze: 1.30.0.0, časové razítko: 0x56610000
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000
ID chybujícího procesu: 0x18b4
Čas spuštění chybující aplikace: 0x01d4b4e9a64ad7f3
Cesta k chybující aplikaci: C:\SkyGz\CH341A - USB Programmer\CH341A_130.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 3d626a7e-20df-11e9-a641-18a905e47eaa

Error: (01/25/2019 05:23:16 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-505298747-3480647553-2469496864-1000}/>.

Error: (01/25/2019 05:23:02 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-505298747-3480647553-2469496864-1000}/>.

Error: (01/25/2019 05:21:41 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-505298747-3480647553-2469496864-1000}/>.

Error: (01/25/2019 02:32:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: egui.exe, verze: 10.2.164.0, časové razítko: 0x5a37ca53
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.14393.33, časové razítko: 0x579994fc
Kód výjimky: 0x40000015
Posun chyby: 0x000891da
ID chybujícího procesu: 0xcdc
Čas spuštění chybující aplikace: 0x01d4b4b26322c881
Cesta k chybující aplikaci: C:\Program Files\ESET\ESET Smart Security\egui.exe
Cesta k chybujícímu modulu: C:\Program Files\ESET\ESET Smart Security\ucrtbase.DLL
ID zprávy: a4c43d29-20a5-11e9-b041-18a905e47eaa

Error: (01/25/2019 02:30:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: egui.exe, verze: 10.2.164.0, časové razítko: 0x5a37ca53
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.14393.33, časové razítko: 0x579994fc
Kód výjimky: 0x40000015
Posun chyby: 0x000891da
ID chybujícího procesu: 0xa08
Čas spuštění chybující aplikace: 0x01d4b4b2279f4df3
Cesta k chybující aplikaci: C:\Program Files\ESET\ESET Smart Security\egui.exe
Cesta k chybujícímu modulu: C:\Program Files\ESET\ESET Smart Security\ucrtbase.DLL
ID zprávy: 6664bb34-20a5-11e9-b4e3-18a905e47eaa

Error: (01/25/2019 02:29:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: egui.exe, verze: 10.2.164.0, časové razítko: 0x5a37ca53
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.14393.33, časové razítko: 0x579994fc
Kód výjimky: 0x40000015
Posun chyby: 0x000891da
ID chybujícího procesu: 0x11c4
Čas spuštění chybující aplikace: 0x01d4b4b203cca254
Cesta k chybující aplikaci: C:\Program Files\ESET\ESET Smart Security\egui.exe
Cesta k chybujícímu modulu: C:\Program Files\ESET\ESET Smart Security\ucrtbase.DLL
ID zprávy: 42b10178-20a5-11e9-b4e3-18a905e47eaa

Error: (01/25/2019 02:29:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program egui.exe verze 10.2.164.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: c30

Čas spuštění: 01d4b4b13f5eeb22

Čas ukončení: 46

Cesta k aplikaci: C:\Program Files\ESET\ESET Smart Security\egui.exe

ID hlášení: 336c6df8-20a5-11e9-b4e3-18a905e47eaa


System errors:
=============
Error: (01/26/2019 03:24:28 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (01/26/2019 02:06:58 PM) (Source: Service Control Manager) (EventID: 7002) (User: )
Description: Služba MLPTDR_N závisí na skupině Parallel arbitrator a žádný člen této skupiny nebyl spuštěn.

Error: (01/26/2019 02:06:49 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (01/26/2019 02:06:49 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (01/26/2019 02:05:53 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\bcmihvsrv.dll

Error: (01/26/2019 02:05:53 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\bcmihvsrv.dll

Error: (01/26/2019 02:05:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Windows Media Player Network Sharing neuspěla při spuštění v důsledku následující chyby:
Služba nebyla zahájena, protože se nepodařilo přihlásit.

Error: (01/26/2019 02:05:50 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WMPNetworkSvc se nemohla přihlásit jako NT AUTHORITY\NetworkService s aktuálně konfigurovaným heslem z důvodu následující chyby:
Požadavek není podporován.


Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).


Windows Defender:
===================================
Date: 2018-03-26 08:49:32.668
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{299693A3-AD73-4D9D-BC99-931C9A20EC88}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2017-10-18 19:13:23.001
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{2C0446CC-8ABC-4FEF-B895-595629725D67}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2013-11-24 21:53:17.850
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{9FFAED12-FDAA-4AD7-946D-09EAE8988AAC}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2011-07-04 23:28:23.768
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=147745
Název:Program:Win32/RegCure
ID:147745
Závažnost:Vysoké
Kategorie:Potenciálně nežádoucí software
Nalezeno v cestě:containerfile:D:\Přenesené z dětské\Vymeniteľný disk\ProBook 4710s\USB-LG\USB L G\Downloads-Otík\RegCureSetup_RW.exe;file:D:\Přenesené z dětské\Vymeniteľný disk\ProBook 4710s\USB-LG\USB L G\Downloads-Otík\RegCureSetup_RW.exe->(nsis-6-RegCure.exe)
Typ zjišťování:Konkrétní
Zdroj zjišťování:Uživatel
Stav:Neznámý
Uživatel:PC-Otakar\Otakar Vavrečka
Název procesu:C:\Program Files\Windows Defender\MSASCui.exe

Date: 2011-07-04 23:28:23.768
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=153970
Název:Adware:JS/Pornpop.A
ID:153970
Závažnost:Střední
Kategorie:Software placený zobrazováním reklamy
Nalezeno v cestě:containerfile:C:\Users\Otakar Vavrečka\AppData\Local\Mozilla\Firefox\Profiles\fslv0uhv.default\Cache\F\00\1793Bd01;file:C:\Users\Otakar Vavrečka\AppData\Local\Mozilla\Firefox\Profiles\fslv0uhv.default\Cache\F\00\1793Bd01->(GZip)->(SCRIPT0003)
Typ zjišťování:Konkrétní
Zdroj zjišťování:Uživatel
Stav:Neznámý
Uživatel:PC-Otakar\Otakar Vavrečka
Název procesu:C:\Program Files\Windows Defender\MSASCui.exe

Date: 2018-03-27 11:54:44.432
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0

Date: 2018-03-27 11:54:44.416
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.

Date: 2018-03-23 07:47:06.662
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0

Date: 2018-03-23 07:47:06.600
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.

Date: 2018-03-23 07:12:51.120
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0

==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU T5870 @ 2.00GHz
Percentage of memory in use: 40%
Total physical RAM: 3066.27 MB
Available physical RAM: 1814.79 MB
Total Virtual: 6130.89 MB
Available Virtual: 4870.92 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:154.29 GB) (Free:16.41 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Nový zväzok) (Fixed) (Total:126.51 GB) (Free:11.35 GB) NTFS
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.92 GB) FAT32
Drive g: (HP_RECOVERY) (Fixed) (Total:15 GB) (Free:8.5 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{f98ec1df-59b4-11df-a6a6-00271361010a}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.25 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: DCB86D34)
Partition 1: (Not Active) - (Size=993 KB) - (Type=42)
Partition 2: (Active) - (Size=300 MB) - (Type=42)
Partition 3: (Not Active) - (Size=154.3 GB) - (Type=42)
Partition 4: (Not Active) - (Size=143.5 GB) - (Type=42)

==================== End of Addition.txt ============================

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 17:33
od Diallix
Otestujte tento subor na virustotal.com a vysledok skenu dajte sem:
C:\Windows\System32\Drivers\CH341WDM.SYS

Do poznamkoveho bloku skopirujte obsah dole:

Kód: Vybrat vše

CloseProcesses:
C:\Windows\system32\Drivers\aswKbd.sys

HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-14] (Google Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Inc.)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
CHR Extension: (Avast Online Security) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-28]
R1 aswKbd; C:\Windows\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 Ser2plx86; system32\DRIVERS\ser2pl.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F47-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ContextMenuHandlers1: [Print602] -> {D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Task: {1E97DEFE-56CD-43DA-9D17-E238D9194780} - \DriverCure -> No File <==== ATTENTION
Task: {2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {3E86EE08-3FAA-47A7-BA29-2059F745A87D} - System32\Tasks\{8C134072-3CE6-421D-9589-025BE960BDCF} => C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový\CH341PAR.EXE" -d "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový"
Task: {87D1AA01-FB73-4F54-AEC6-65047C803ED0} - System32\Tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {D8F46F61-120B-4D71-AA30-06D8C4BF3E5B} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST, pricom zvolte Kodovanie na UTF-8 (skopirujte do poznamkoveho bloku -> Subor -> Ulozit ako -> Encoding/Kodovaniee: zvolte UTF-8 -> ulozit).
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 18:39
od rakato11
Po restartu mi přestala fungovat klávesnice, nemohu tím pádem zadat heslo pro přihlášení. Co mám delat?

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 18:43
od Diallix
To je divne. Skuste system spustit v nudzovom rezime.

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 18:53
od rakato11
Po několika restartech kdy jsem zkoušel mačkat f7, f8, esc abych se dostal do nouzového režimu se zacal PC připravovat na konfiguraci a zasekl se při spouštění systému windows. Mám počkat nebo natvrdo vypnout? Mám HP ProBook 4710s.

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 19:00
od Diallix
Nemazali sme nic, preco by mal system skolabovat.

Skuste to restartovat..btw,
Po několika restartech kdy jsem zkoušel mačkat f7, f8, esc abych se dostal do nouzového režimu
, tak wam klavesnica ide nie?

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 19:12
od rakato11
Když jsem chtěl zadat to f s číslem tak to šlo ale pak při zadávání hesla nereagovala. Já jsem asi 3 x restartoval počítač a nic se nezměnilo. Nevím jak spustit nouzový režim.

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 19:16
od rakato11
Vypnul jsem notebook natvrdo a za chvíli pustil, dalo mi to možnost oprava systému tak uvidím zda to nyní půjde až skončí ta oprava.

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 19:18
od Diallix
Jasne a potom tu dajte, prosim, ten log z FRST.

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 19:32
od rakato11
Tak po opravě systému počítač už naběhl normálně a šlo zadat heslo. Zde je log:

Fix result of Farbar Recovery Scan Tool (x86) Version: 26-01-2019
Ran by Otakar VavreÄŤka (26-01-2019 18:22:33) Run:1
Running from C:\Users\Otakar VavreÄŤka\Desktop
Loaded Profiles: Otakar VavreÄŤka (Available Profiles: Otakar VavreÄŤka & Guest)
Boot Mode: Normal

==============================================

fixlist content:
*****************
CloseProcesses:
C:\Windows\system32\Drivers\aswKbd.sys

HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-14] (Google Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Inc.)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
CHR Extension: (Avast Online Security) - C:\Users\Otakar VavreÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-28]
R1 aswKbd; C:\Windows\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 Ser2plx86; system32\DRIVERS\ser2pl.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F47-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar VavreÄŤka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar VavreÄŤka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ContextMenuHandlers1: [Print602] -> {D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Task: {1E97DEFE-56CD-43DA-9D17-E238D9194780} - \DriverCure -> No File <==== ATTENTION
Task: {2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {3E86EE08-3FAA-47A7-BA29-2059F745A87D} - System32\Tasks\{8C134072-3CE6-421D-9589-025BE960BDCF} => C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový\CH341PAR.EXE" -d "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový"
Task: {87D1AA01-FB73-4F54-AEC6-65047C803ED0} - System32\Tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {D8F46F61-120B-4D71-AA30-06D8C4BF3E5B} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
*****************

Processes closed successfully.
C:\Windows\system32\Drivers\aswKbd.sys => moved successfully
"HKU\S-1-5-21-505298747-3480647553-2469496864-1000\Software\Microsoft\Windows\CurrentVersion\Run\\RESTART_STICKY_NOTES" => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{A6EADE66-0000-0000-484E-7E8A45000000} => removed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully.
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\Software\Classes\PROTOCOLS\Handler\skype4com => removed successfully.
HKLM\Software\Classes\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} => not found
CHR Extension: (Avast Online Security) - C:\Users\Otakar VavreÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-28] => Error: No automatic fix found for this entry.
aswKbd => Unable to stop service.
HKLM\System\CurrentControlSet\Services\aswKbd => removed successfully.
aswKbd => service removed successfully.
HKLM\System\CurrentControlSet\Services\AppMgmt => removed successfully.
AppMgmt => service removed successfully.
HKLM\System\CurrentControlSet\Services\Ser2plx86 => removed successfully.
Ser2plx86 => service removed successfully.
HKLM\System\CurrentControlSet\Services\VBoxNetFlt => removed successfully.
VBoxNetFlt => service removed successfully.
HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F47-5AD1-443E-AE34-FFE03CBF3099} => removed successfully.
HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F48-5AD1-443E-AE34-FFE03CBF3099} => removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GDriveSharedOverlay => removed successfully.
HKLM\Software\Classes\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Print602 => removed successfully.
HKLM\Software\Classes\CLSID\{D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully.
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully.
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1E97DEFE-56CD-43DA-9D17-E238D9194780} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E97DEFE-56CD-43DA-9D17-E238D9194780} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DriverCure => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6}" => removed successfully.
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3E86EE08-3FAA-47A7-BA29-2059F745A87D}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E86EE08-3FAA-47A7-BA29-2059F745A87D}" => removed successfully.
C:\Windows\System32\Tasks\{8C134072-3CE6-421D-9589-025BE960BDCF} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8C134072-3CE6-421D-9589-025BE960BDCF}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{87D1AA01-FB73-4F54-AEC6-65047C803ED0}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87D1AA01-FB73-4F54-AEC6-65047C803ED0}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1cf6a811f49157b" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D8F46F61-120B-4D71-AA30-06D8C4BF3E5B}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D8F46F61-120B-4D71-AA30-06D8C4BF3E5B}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1cf8b84abba174e" => removed successfully.


The system needed a reboot.

==== End of Fixlog 18:23:14 ====

Re: Prosím o kontrolu notebooku, poslední dobou je pomalý

Napsal: 26 led 2019 19:37
od Diallix
Super.

Preskenujte pocitac s FRST - navod tu: https://forum.viry.cz/viewtopic.php?f=24&t=132509, skopirujte FRST.log + Addition log sem.
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz