Dobrý den, opět po čase prosím o preventivní kontrolu - děkuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-02-2020
Ran by Safrovi (administrator) on SAFROVI-HP (Hewlett-Packard ) (16-02-2020 11:17:51)
Running from C:\Users\Safrovi\Desktop
Loaded Profiles: Safrovi & blabla (Available Profiles: Safrovi & blabla)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eOppFrame.exe
(HP) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [37888 2012-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard )
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-04-24] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [585296 2017-11-22] (Acronis International GmbH -> )
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [183088 2019-12-12] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-08-29] (Corel Corporation -> Corel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [290688 2012-11-06] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [File Sanitizer] => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [12310616 2012-03-09] (Softex Incorporated -> Hewlett-Packard)
HKLM-x32\...\Run: [HPUsageTrackingLEDM] => "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6210368 2019-10-02] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [4848280 2019-02-01] (Acronis International GmbH -> )
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [1194048 2018-02-01] (PDF Complete Inc. -> PDF Complete Inc)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2017-10-16] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Safrovi\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Safrovi\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Safrovi\AppData\Local\Microsoft\Teams\Update.exe [1780448 2019-06-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {2f9ac852-b98d-11e8-898d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {3284a34b-758a-11e9-a1b2-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {4e36c131-ad0a-11e9-b029-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {57534a6f-d565-11e9-9c68-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {59c4831f-1700-11e9-9153-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a1e4f604-4105-11ea-a01d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a9efed85-cbc1-11e8-ae84-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {db25b4cd-055d-11ea-9ba5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {df5be5f8-c755-11e9-a15e-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {e6f5612f-73d1-11e8-b1d5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {fd4be2bc-c405-11e9-8aaf-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [241664 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3453386134-3950636445-3288212601-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.106\Installer\chrmstp.exe [2020-02-14] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{438363A8-F486-4C37-834C-4955773CB3D3}] -> msiexec /fu {438363A8-F486-4C37-834C-4955773CB3D3} /qn
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{02AA8B83-49C5-482C-915A-B6824F665CCD}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{2A16DF2F-490B-4F2B-8C68-21EF46FCCC37}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{3ADC7042-51AF-4D0F-BD1D-4D6965A77323}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{57E84B57-5533-4624-AB49-E29C8C5489D6}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{70099717-17C8-4BD0-B3D4-FAF721AB1A62}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{FD2AB138-F9A8-4ab6-9095-EEE7AF8B6C28}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{8D90E7E9-6F48-4e24-85E0-596C8E6C4639}] -> c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCmsGPOClient.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{D75A25CD-0CCA-4C3C-A5E6-94039CC03B72}] -> c:\Windows\system32\DPLic.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2018-07-26]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2019-09-11]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
Startup: C:\Users\Safrovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2016-09-04]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (No File)
Startup: C:\Users\Safrovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledování výstrah kazety - HP DJ 3700 series.lnk [2020-02-16]
ShortcutAndArgument: Sledování výstrah kazety - HP DJ 3700 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP DeskJet 3700 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN8894P0JH06H8;CONNECTION=USB;MONITOR=1;
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {138808CF-24B3-4E17-9EF3-814FC0786F11} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-02-11] (Adobe Inc. -> Adobe)
Task: {2712CCD2-31C4-4AF6-BB29-39F99C50F9A1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe
Task: {27B46EFF-0948-40DC-AC64-98D5866D4E1F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {33D09E81-64D7-443A-AD4C-91032F4AE577} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-08-29] (Corel Corporation -> Corel Corporation)
Task: {38BF5B60-CCD2-4951-95D4-BE79C0F997CC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {445851A7-26E8-4982-B3A2-DDA3D0A5CA18} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {46B88247-BD25-4797-8AC2-82183F57EABD} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-08-29] (Corel Corporation -> Corel Corporation)
Task: {478D398B-F0EA-4FD5-8A9B-A3FFB2467432} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {485A5ACF-310A-4876-9C79-882487AF2A22} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {49EBA26C-4EE8-46F3-844E-F440C05DCCEF} - System32\Tasks\HPCustPartic.exe_{297A0A1F-DB47-440A-95A1-4F39DF89E680} => C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPCustPartic.exe [6438536 2016-12-19] (Hewlett Packard -> HP Inc.)
Task: {4CAAA2D6-E970-47EF-AE1E-DD69BBF5D37D} - System32\Tasks\GoogleUpdateTaskMachineCore1d041068d2d5829 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {6E67CECD-6725-4BE7-9705-4B368C885414} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {79B87823-5DED-474F-BCB6-2450E173C392} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1448832 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9109BFC4-51E9-4616-9047-8ACCFE32416B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_330_Plugin.exe [1458232 2020-02-11] (Adobe Inc. -> Adobe)
Task: {A039FC6C-9585-4199-A5F2-7E3545B8873D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115440 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {A45576EE-1065-400C-AF19-3A7CEAB87C8E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115440 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {B2976C52-D3DA-4BFA-B753-AF72952283DB} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [1659000 2019-07-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {B6A5FBDF-8B77-4D3C-8781-793EB00955F5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1354064 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {CBB2300D-9945-4F23-A3EF-C99F40162A68} - System32\Tasks\HPCeeScheduleForSafrovi => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: {D151EDBB-B5E3-472B-8B0C-454D2D01AE89} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-08-29] (Corel Corporation -> Corel Corporation)
Task: {D28F2FDB-99A6-497C-A0BF-475B08492BAA} - System32\Tasks\HPCeeScheduleForSAFROVI-HP$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: {DFE72EE2-5AD5-428F-A829-4DDC4B168CAA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {E0A95F6C-A4DF-43F6-AD23-CEC69F042387} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe
Task: {E4AB52C3-3748-40CB-B124-DB9929631CAB} - System32\Tasks\HPCustParticipation HP DeskJet 3700 series => C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPCustPartic.exe [6438536 2016-12-19] (Hewlett Packard -> HP Inc.)
Task: {E5BF0455-A10E-4C60-B907-492981E18937} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1354064 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {EB5A0D84-20DA-441B-B7B5-3F656A5E0783} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {F1019826-04D6-41D0-B679-76853A51979F} - System32\Tasks\GoogleUpdateTaskMachineUA1d041068ddfdf5e => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {F1E71B8B-665E-46ED-A943-A1624C3243BF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {F5230F97-CFE7-4929-A330-3A309680E2D8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 62.24.64.2 8.8.8.8 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{11C6231B-48B5-4393-9ADC-D8834B961E86}: [DhcpNameServer] 62.24.64.2 8.8.8.8 8.8.8.8 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3453386134-3950636445-3288212601-1004 -> {32D14CA0-5EF8-4F80-993B-2E368DFAD94D} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO: PDF Architect 6 Helper -> {9FD094B1-A4BF-415A-82AE-8C2845D0B769} -> C:\Program Files\PDF Architect 6\creator\plugins\IEAddin\creator-ie-helper.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-03-09] (Softex Incorporated -> Hewlett-Packard)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08] (pdfforge GmbH -> pdfforge GmbH)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: PDF Architect 6 Helper -> {9FD094B1-A4BF-415A-82AE-8C2845D0B769} -> C:\Program Files (x86)\PDF Architect 6\creator\plugins\IEAddin\creator-ie-helper.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - PDF Architect 6 Toolbar - {E8536605-CA24-4DFF-B1BC-316EE27F6DF7} - C:\Program Files\PDF Architect 6\creator\plugins\IEAddin\creator-ie-plugin.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
Toolbar: HKLM-x32 - PDF Architect 6 Toolbar - {E8536605-CA24-4DFF-B1BC-316EE27F6DF7} - C:\Program Files (x86)\PDF Architect 6\creator\plugins\IEAddin\creator-ie-plugin.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 9f48d6zo.default-1439536559487-1552502079990
FF ProfilePath: C:\Users\Safrovi\AppData\Roaming\Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 [2020-02-16]
FF Homepage: Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 -> hxxps://www.skolka-pripravy.cz; hxxps://www.eva.cz; hxxps://www.facebook.com; hxxps://www.csob.cz; hxxps://www.mesec.cz
FF NewTabOverride: Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 -> Enabled: {241ffcc1-cc25-47e9-86e6-ab5e79147952}
FF Extension: (Group Speed Dial) - C:\Users\Safrovi\AppData\Roaming\Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990\Extensions\admin@fastaddons.com_GroupSpeedDial.xpi [2020-01-24]
FF Extension: (Tlačítko „Uložit“ pro Pinterest) - C:\Users\Safrovi\AppData\Roaming\Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2020-01-11]
FF Extension: (FF Speed Dial - New Tab with Custom tiles) - C:\Users\Safrovi\AppData\Roaming\Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990\Extensions\{241ffcc1-cc25-47e9-86e6-ab5e79147952}.xpi [2019-03-13]
FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06] [Legacy]
FF HKLM\...\Firefox\Extensions: [pdf_architect_6_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 6\creator\plugins\FirefoxAddin\pdf_architect_6_conv_v.2@pdfforge.org.xpi
FF Extension: (PDF Architect 6 Creator) - C:\Program Files\PDF Architect 6\creator\plugins\FirefoxAddin\pdf_architect_6_conv_v.2@pdfforge.org.xpi [2018-09-18]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-09-30] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: (PDF Architect Converter For Firefox) - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2014-03-21] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_6_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 6\creator\plugins\FirefoxAddin\pdf_architect_6_conv_v.2@pdfforge.org.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> )
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [No File]
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-17] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: digitalpersona.com/ChromeDPAgent -> c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll [2012-07-21] (DigitalPersona, Inc. -> Digital Persona, Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-02-16]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default [2020-02-16]
CHR Notifications: Default -> hxxps://www.skolka-pripravy.cz
CHR NewTab: Default -> Not-active:"chrome-extension://ejbjamhkdedinncaeiackcdehpccoejm/pages/newtab.html", Not-active:"chrome-extension://blmojkbhnkkphngknkmgccmlenfaelkd/speeddial/html/newTab.html", Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTabSwitcher.html"
CHR Extension: (Dokumenty) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-24]
CHR Extension: (Disk Google) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-24]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-02-14]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-07-26]
CHR Extension: (YouTube) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-22]
CHR Extension: (Vyhledávání Google) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-05]
CHR Extension: (Speed Dial) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbjamhkdedinncaeiackcdehpccoejm [2019-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-13]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-02-14]
CHR Extension: (Gmail) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-14]
CHR Profile: C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-02-12]
CHR Profile: C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-12]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [2725920 2018-06-18] (Acronis International GmbH -> Acronis International GmbH)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [10287216 2019-07-25] (AVAST Software s.r.o. -> AVAST Software)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129712 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-10-02] (Dropbox, Inc -> Dropbox, Inc.)
R2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [494456 2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2245488 2019-12-12] (ESET, spol. s r.o. -> ESET)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477056 2012-11-19] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [174592 2012-12-04] (HP) [File not signed]
R2 HPFSService; c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [372824 2012-03-09] (Softex Incorporated -> Hewlett-Packard)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-12-27] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-12-10] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1327104 2013-02-21] () [File not signed]
S4 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2017-10-16] (Acronis International GmbH -> Acronis International GmbH)
S4 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2017-10-16] (Acronis International GmbH -> Acronis International GmbH)
S4 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1745344 2019-02-01] (Acronis International GmbH -> )
S4 PDF Architect 6; C:\Program Files\PDF Architect 6\ws.exe [2569976 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
S4 PDF Architect 6 Creator; C:\Program Files\PDF Architect 6\creator\common\creator-ws.exe [832248 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
S4 PDF Architect 6 Update Service; C:\Program Files\PDF Architect 6\updater-ws.exe [1665272 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
S4 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH -> pdfforge GmbH)
S4 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH -> pdfforge GmbH)
S4 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1795136 2018-02-01] (PDF Complete Inc. -> PDF Complete Inc)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [318464 2012-04-24] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 DAMDrv; C:\Windows\System32\DRIVERS\DAMDrv64.sys [64832 2012-11-09] (Hewlett-Packard Company -> Hewlett-Packard Company)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [149944 2019-10-28] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [103264 2019-10-28] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [189512 2019-10-28] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [50712 2019-10-28] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [79744 2019-12-12] (ESET, spol. s r.o. -> ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [64200 2019-12-12] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [116696 2019-12-12] (ESET, spol. s r.o. -> ESET)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 file_protector; C:\Windows\System32\DRIVERS\file_protector.sys [569392 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [379664 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28656 2013-04-30] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-02-15] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-02-16] (Malwarebytes Inc -> Malwarebytes)
R0 MfeEpeOpal; C:\Windows\System32\Drivers\MfeEpeOpal.sys [91176 2013-02-21] (McAfee, Inc. -> McAfee, Inc.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [158760 2013-02-21] (McAfee, Inc. -> McAfee, Inc.)
R3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () [File not signed]
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [536576 2012-04-24] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1310552 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [213336 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\Windows\System32\DRIVERS\tnd.sys [690520 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [331976 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 volume_tracker; C:\Windows\System32\DRIVERS\volume_tracker.sys [243472 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-16 11:17 - 2020-02-16 11:19 - 000040961 _____ C:\Users\Safrovi\Desktop\FRST.txt
2020-02-16 11:16 - 2020-02-16 11:16 - 002279424 _____ (Farbar) C:\Users\Safrovi\Desktop\FRST64.exe
2020-02-16 10:59 - 2020-02-16 10:59 - 001288408 _____ (Google LLC) C:\Users\Safrovi\Downloads\ChromeSetup.exe
2020-02-16 09:05 - 2020-02-16 09:05 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-02-15 07:47 - 2020-02-15 07:47 - 000214496 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-02-14 17:52 - 2020-02-14 17:52 - 001099158 _____ C:\Users\Safrovi\Downloads\42.PROČ MÁŠ TAK VELKÉ UŠI, BABI ....pdf
2020-02-14 17:50 - 2020-02-14 17:50 - 005504824 _____ (ESET) C:\Users\Safrovi\Downloads\eset_smart_security_premium_live_installer.exe
2020-02-14 15:52 - 2020-02-14 15:53 - 000000000 ____D C:\Users\Safrovi\AppData\LocalLow\IGDump
2020-02-14 14:46 - 2020-02-14 14:46 - 000441816 _____ C:\Windows\system32\FNTCACHE.DAT
2020-02-13 18:04 - 2020-02-15 16:00 - 000000000 ____D C:\Users\Safrovi\Desktop\PROJEKT
2020-02-10 14:38 - 2020-02-10 14:38 - 000000000 ____D C:\Program Files\Bonjour
2020-02-10 14:38 - 2020-02-10 14:38 - 000000000 ____D C:\Program Files (x86)\Bonjour
2020-02-06 17:30 - 2020-02-06 17:43 - 000000000 ____D C:\Users\Safrovi\Downloads\TVARY
2020-02-05 18:06 - 2020-02-05 18:13 - 000000000 ____D C:\Users\Safrovi\Downloads\brusle
2020-02-05 08:03 - 2020-02-09 22:02 - 000003730 _____ C:\Users\Safrovi\Desktop\ovoce x zelenina.txt
2020-02-03 21:19 - 2020-02-03 21:19 - 000006789 _____ C:\Users\Safrovi\Downloads\3451_12_2019(1).xlsx
2020-02-03 20:13 - 2020-02-03 20:13 - 000002611 _____ C:\Users\Safrovi\Desktop\smuteční řeč.txt
2020-02-03 18:31 - 2020-02-03 18:31 - 003588168 _____ C:\Users\Safrovi\Downloads\vy_32_inovace_cj_1.04.pdf
2020-02-03 18:31 - 2020-02-03 18:31 - 003588168 _____ C:\Users\Safrovi\Downloads\vy_32_inovace_cj_1.04(1).pdf
2020-02-02 18:56 - 2020-02-02 18:56 - 000437073 _____ C:\Users\Safrovi\Downloads\zadost-o-prispevek-z-fondu-prevence-pro-pojistence.pdf
2020-02-02 18:38 - 2020-02-02 18:38 - 000171809 _____ C:\Users\Safrovi\Downloads\hb_zadost_urokova_sazba_576160-1_20190404_008.pdf
2020-02-02 18:38 - 2020-02-02 18:38 - 000148673 _____ C:\Users\Safrovi\Downloads\hb_oznameni_576160-1_20190404_149(1).pdf
2020-02-02 18:31 - 2020-02-02 18:31 - 000012851 _____ C:\Users\Safrovi\Downloads\hb_splatkovy_plan_576160-1_20200202.csv
2020-02-02 17:46 - 2020-02-02 17:47 - 000009038 _____ C:\Users\Safrovi\Desktop\OVOCE A ZELENINA.txt
2020-02-01 12:02 - 2020-02-01 12:02 - 008400857 _____ C:\Users\Safrovi\Downloads\6.pdf
2020-02-01 10:23 - 2020-02-01 10:23 - 000142676 _____ C:\Users\Safrovi\Downloads\Vypis_z_uctu_491306329_z_20200131.pdf
2020-01-31 17:14 - 2020-01-31 17:14 - 000127056 _____ C:\Users\Safrovi\Downloads\Vypis_z_uctu_491306329_z_20191231(1).pdf
2020-01-28 20:25 - 2020-01-28 20:25 - 000009616 _____ C:\Users\Safrovi\Downloads\comgate prosinec 2019 export transakcí Zuzana Šafrová .csv
2020-01-28 19:59 - 2020-01-28 19:59 - 000011787 _____ C:\Users\Safrovi\Downloads\Klientský portál export transakcí Zuzana Šafrová.csv
2020-01-27 19:59 - 2020-01-27 19:59 - 002346991 _____ C:\Users\Safrovi\Downloads\41. Sada - Karnevalové krátkohrátky, Máme rádi pohádky.pdf
2020-01-27 19:39 - 2020-01-27 19:39 - 004876371 _____ C:\Users\Safrovi\Downloads\40. -SADA ZÁSOBNÍKŮ -ZIMA, SILNICE ,ZVÍŘÁTKA.pdf
2020-01-27 18:16 - 2020-01-27 18:16 - 000000997 _____ C:\Users\Public\Desktop\HiSuite.lnk
2020-01-27 18:16 - 2020-01-27 18:16 - 000000997 _____ C:\ProgramData\Desktop\HiSuite.lnk
2020-01-27 18:16 - 2020-01-27 18:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2020-01-27 18:16 - 2020-01-27 18:16 - 000000000 ____D C:\Program Files (x86)\HiSuite
2020-01-26 11:08 - 2020-01-26 11:08 - 001514375 _____ C:\Users\Safrovi\Downloads\38. Co silnice vyprávěly.pdf
2020-01-26 11:08 - 2020-01-26 11:08 - 001466525 _____ C:\Users\Safrovi\Downloads\39. KARNEVALOVÉ KRÁTKOHRÁTKY.pdf
2020-01-23 19:57 - 2020-01-23 19:57 - 000000000 ____D C:\Users\Safrovi\Downloads\ZIMNÍ SPORTY
2020-01-23 18:05 - 2020-01-23 18:05 - 000244350 _____ C:\Users\Safrovi\Desktop\SK_Prihlaska_Clen_06.18(3).pdf
2020-01-23 18:01 - 2020-01-23 18:01 - 000298881 _____ C:\Users\Safrovi\Downloads\SK_Prihlaska_Clen_06.18(3).pdf
2020-01-22 18:52 - 2020-01-22 18:52 - 001522335 _____ C:\Users\Safrovi\Downloads\program_ceske_vanoce_0.pdf
2020-01-20 20:40 - 2020-01-20 20:41 - 000000000 ____D C:\Users\Safrovi\Downloads\KYTKY
2020-01-20 20:25 - 2020-01-20 20:25 - 000134883 _____ C:\Users\Safrovi\Downloads\Potvrzení o zaplaceném pojistném pro da_ové odpo_ty_0(2).pdf
2020-01-19 17:10 - 2020-01-19 17:10 - 000085658 _____ C:\Users\Safrovi\Downloads\Sieger-lineart.svg
2020-01-19 17:06 - 2020-01-19 17:06 - 003501958 _____ C:\Users\Safrovi\Downloads\3xy1_8ozd_140917.zip
2020-01-19 17:05 - 2020-01-19 17:05 - 000353386 _____ C:\Users\Safrovi\Downloads\korea_winter_olympic2.zip
2020-01-19 16:02 - 2020-01-19 16:02 - 000472692 _____ C:\Users\Safrovi\Downloads\Olympijské-kruhy-k-vybarvení.pdf
2020-01-17 17:33 - 2020-01-17 17:33 - 000376957 _____ C:\Users\Safrovi\Downloads\Potvrzení o zaplaceném pojistném pro da_ové odpo_ty_0(1).pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-16 11:18 - 2016-11-18 22:53 - 000000000 ____D C:\FRST
2020-02-16 11:05 - 2013-09-30 23:23 - 000000000 ____D C:\ProgramData\PDFC
2020-02-16 10:35 - 2015-11-06 08:51 - 000004478 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-02-16 10:26 - 2016-11-18 19:26 - 000000000 ____D C:\Users\Safrovi\AppData\LocalLow\Mozilla
2020-02-16 09:16 - 2009-07-14 05:45 - 000031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-02-16 09:16 - 2009-07-14 05:45 - 000031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-02-16 09:04 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-15 15:42 - 2019-01-23 08:12 - 000000000 ____D C:\Users\Safrovi\Desktop\foto mobil
2020-02-15 15:35 - 2013-12-16 22:41 - 000000000 ____D C:\Users\Safrovi\AppData\Roaming\VSO
2020-02-15 07:44 - 2009-07-14 06:08 - 000032600 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2020-02-14 15:52 - 2019-12-10 07:31 - 000000000 ____D C:\Users\Safrovi\AppData\Local\cache
2020-02-14 14:58 - 2013-12-19 10:59 - 000002226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-14 14:58 - 2013-12-19 10:59 - 000002185 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-02-14 14:58 - 2013-12-19 10:59 - 000002185 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-02-13 21:27 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-02-13 17:38 - 2015-11-14 21:34 - 000000000 ____D C:\Users\Safrovi\Desktop\upravené obrázky
2020-02-12 15:47 - 2013-12-16 20:05 - 000000000 ____D C:\Windows\system32\MRT
2020-02-12 15:43 - 2013-12-16 20:05 - 120407888 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-02-12 14:11 - 2016-11-18 19:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-02-11 18:32 - 2018-03-13 18:32 - 000004536 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-02-11 18:32 - 2015-10-02 05:12 - 000004396 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-02-11 18:32 - 2013-09-30 23:19 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-02-11 18:32 - 2013-09-30 23:19 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-02-11 18:32 - 2013-09-30 23:19 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-02-11 18:32 - 2013-09-30 23:19 - 000000000 ____D C:\Windows\system32\Macromed
2020-02-10 14:39 - 2013-09-30 23:17 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-10 14:37 - 2018-09-01 20:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-02-10 14:30 - 2016-09-04 17:05 - 000002170 _____ C:\Users\Safrovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2020-02-10 14:30 - 2014-12-20 20:58 - 000000000 ___RD C:\Users\Safrovi\OneDrive
2020-02-09 19:31 - 2019-08-04 18:09 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-02-09 19:27 - 2015-07-22 00:10 - 000038113 ____H C:\Users\Safrovi\Downloads\.picasa.ini
2020-02-06 18:09 - 2013-09-30 22:41 - 000672158 _____ C:\Windows\system32\perfh005.dat
2020-02-06 18:09 - 2013-09-30 22:41 - 000142754 _____ C:\Windows\system32\perfc005.dat
2020-02-06 18:09 - 2009-07-14 06:13 - 001593238 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-06 07:29 - 2018-12-19 19:24 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d041068ddfdf5e
2020-02-06 07:29 - 2018-12-19 19:24 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d041068d2d5829
2020-02-01 10:38 - 2016-05-28 09:30 - 000086528 ___SH C:\Users\Safrovi\Thumbs.db
2020-01-31 21:49 - 2018-08-08 12:34 - 000000000 ____D C:\Users\Safrovi\Desktop\A 02 - JANCA
2020-01-31 15:56 - 2018-07-18 06:46 - 000000000 ____D C:\Users\Safrovi\Desktop\A 01 - KACKA
2020-01-28 21:13 - 2013-12-16 20:22 - 000000000 ____D C:\Users\Safrovi\AppData\Local\CrashDumps
2020-01-27 18:17 - 2018-02-16 10:37 - 000000000 ____D C:\Users\Safrovi\AppData\Local\Hisuite
2020-01-23 22:18 - 2020-01-13 18:38 - 000000000 ____D C:\Users\Safrovi\Desktop\HOTOVÉ PŘÍPRAVY
2020-01-21 07:24 - 2013-12-16 19:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-01-17 14:36 - 2013-12-16 19:09 - 000000000 ____D C:\Users\Safrovi
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-02-15 19:16
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by Safrovi (16-02-2020 11:20:13)
Running from C:\Users\Safrovi\Desktop
Windows 7 Professional Service Pack 1 (X64) (2013-12-16 18:09:21)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3453386134-3950636445-3288212601-500 - Administrator - Disabled)
blabla (S-1-5-21-3453386134-3950636445-3288212601-1004 - Limited - Enabled) => C:\Users\blabla
Guest (S-1-5-21-3453386134-3950636445-3288212601-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3453386134-3950636445-3288212601-1003 - Limited - Enabled)
Safrovi (S-1-5-21-3453386134-3950636445-3288212601-1002 - Administrator - Enabled) => C:\Users\Safrovi
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: ESET Security (Enabled - Up to date) {333C65BB-8923-0EAA-C47E-C486E687BEFD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acronis True Image (HKLM-x32\...\{9BB8598B-C237-446F-AD4E-8F0FA6A93D10}) (Version: 22.6.15470 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{9BB8598B-C237-446F-AD4E-8F0FA6A93D10}Visible) (Version: 22.6.15470 - Acronis)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.330 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.330 - Adobe)
Advertising Center (HKLM-x32\...\{b2ec4a38-b545-4a00-8214-13fe0e915e6d}) (Version: 0.0.0.1 - Nero AG) Hidden
Alcor Micro USB Card Reader Driver (HKLM-x32\...\{0DEB2EEB-BE9A-44B1-9D90-183250B61785}) (Version: 20.13.3317.03143 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{0DEB2EEB-BE9A-44B1-9D90-183250B61785}) (Version: 20.13.3317.03143 - Alcor Micro Corp.)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 19.1.7734 - AVAST Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon MP280 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP280_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
CDex - Digital Audio CD Extractor and Converter (HKLM-x32\...\CDex) (Version: 2.21.0.2019 - CDex.mu)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Device Access Manager for HP ProtectTools (HKLM\...\{55B52830-024A-443E-AF61-61E1E71AFA1B}) (Version: 7.1.2.0 - Hewlett-Packard Company)
DirectX for Managed Code Update (Summer 2004) (HKLM-x32\...\{E9E34215-82EF-4909-BE2F-F581F0DC9062}) (Version: 9.02.2904 - Microsoft) Hidden
Doplněk Microsoft Outlook Hotmail Connector (64bitový) (HKLM\...\{95140000-007A-0405-1000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Drive Encryption For HP ProtectTools (HKLM\...\{27F1E086-5691-4EB8-8BA1-5CBA87D67EB5}) (Version: 7.0.40.35706 - Hewlett-Packard Company)
Dropbox (HKLM-x32\...\Dropbox) (Version: 82.4.155 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
Easy Poster Printer (HKLM-x32\...\{1B2A990F-B138-49A3-8916-706849DF903A}) (Version: 2.0.1 - GD Software)
ESET Security (HKLM\...\{B489BC2D-0079-4631-97BF-CA2378299D43}) (Version: 13.0.24.0 - ESET, spol. s r.o.)
File Sanitizer For HP ProtectTools (HKLM-x32\...\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}) (Version: 7.0.0.4 - Hewlett-Packard Company)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit PDF Editor (HKLM-x32\...\Foxit PDF Editor) (Version: - )
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.106 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
HD Tune Pro 5.70 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.0.1.100 - Huawei Technologies Co.,Ltd)
HP DeskJet 3700 series Nápověda (HKLM-x32\...\{3F0E1790-4066-4B36-9F9C-6E1C7AC1BE80}) (Version: 40.0.0 - HP)
HP Dropbox Plugin (HKLM-x32\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP ProtectTools Security Manager (HKLM\...\HPProtectTools) (Version: 7.0.2.1213 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15430.4033 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPLJUTCore (HKLM-x32\...\{30DD7187-F392-4D83-8AED-D9A2DC64EF15}) (Version: 008.000.0001 - HP) Hidden
hppLaserJetService (HKLM-x32\...\{178F0383-A2F1-427C-9881-6EACB8728C76}) (Version: 009.033.00905 - Hewlett-Packard) Hidden
hppM1130M1210SeriesLaserJetService (HKLM-x32\...\{0E448256-D515-4C3E-A5BE-0A7B76CED5D4}) (Version: 001.003.00073 - Hewlett-Packard) Hidden
hppM125LaserJetService (HKLM-x32\...\{18D5B189-DBDD-4E57-A84B-58C7700E9BB0}) (Version: 001.032.00682 - Hewlett-Packard) Hidden
hppusgM1130M1210Series (HKLM-x32\...\{DA6CC3A5-1F5B-4068-8BFF-C597BB6B8158}) (Version: 1.0.0.2 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.6.0.1033 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.6.245 - Intel Corporation)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
LabelPrint (HKLM-x32\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.)
Light Image Resizer 4.0.4.3 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.0.4.3 - ObviousIdea)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 365 Business - cs-cz (HKLM\...\O365BusinessRetail - cs-cz) (Version: 16.0.12430.20184 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Support and Recovery Assistant for Office 365 (HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\dacae1bed46e81d5) (Version: 16.0.2514.4 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\Teams) (Version: 1.2.00.22654 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27027 (HKLM-x32\...\{39e28474-b67b-4209-af1b-e9ad0a83d8ca}) (Version: 14.16.27027.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 73.0 (x64 cs) (HKLM\...\Mozilla Firefox 73.0 (x64 cs)) (Version: 73.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 72.0.2.7321 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 9 Essentials (HKLM-x32\...\{8992d43a-9067-4c13-8e9c-fd97d39f89e4}) (Version: - Nero AG)
NirSoft ProduKey (HKLM-x32\...\NirSoft ProduKey) (Version: - )
NVIDIA Graphics Driver 311.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.10 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20184 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden
PDF Architect (HKLM-x32\...\{064A929A-4DE8-40CF-A901-BD40C14E4D25}) (Version: 1.1.83.9982 - pdfforge GmbH)
PDF Architect 6 (HKLM-x32\...\PDF Architect 6) (Version: 6.1.19.842 - pdfforge GmbH)
PDF Architect 6 Create Module (HKLM\...\{A0ACB885-7CDD-4E43-9109-E49CF70E4039}) (Version: 6.1.24.1862 - pdfforge GmbH) Hidden
PDF Architect 6 Edit Module (HKLM\...\{FC39343C-732F-433E-9929-F9D08BA73792}) (Version: 6.1.24.1862 - pdfforge GmbH) Hidden
PDF Architect 6 View Module (HKLM\...\{7FFD0E0F-478A-4393-BBB0-4B20FAF5F3B7}) (Version: 6.1.24.1862 - pdfforge GmbH) Hidden
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.2.33 - PDF Complete, Inc)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.5.1 - pdfforge GmbH)
PDP 2016.01 (HKLM-x32\...\Podnikový a domácí právník 2016_is1) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.6207 - CyberLink Corp.) Hidden
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.6207 - CyberLink Corp.)
Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.0.5223 - CyberLink Corp.) Hidden
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14044_17 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14044_17 - Samsung Electronics Co., Ltd.)
Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version: - )
Samsung PC Studio 3 (HKLM-x32\...\{C4A4722E-79F9-417C-BD72-8D359A090C97}) (Version: 3.2.1.71009 - Samsung Electronics Co., Ltd.)
Samsung PC Studio 3 (HKLM-x32\...\{C79A37F3-C076-48BE-B290-F4C8676ABD74}) (Version: 3.0.0.71009 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Seznam Software (HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\SeznamInstall) (Version: 2.1.32 - Seznam.cz)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Studie vylepšování produktu HP DeskJet 3700 series (HKLM\...\{D6FF350C-3BF6-403E-ACB7-A7FF503F99D4}) (Version: 40.2.1085.16354 - HP Inc.)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.22654 - Microsoft Corporation)
Theft Recovery for HP ProtectTools (HKLM-x32\...\{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.1.02 - Hewlett-Packard Company) Hidden
Theft Recovery for HP ProtectTools (HKLM-x32\...\InstallShield_{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.1.02 - Hewlett-Packard Company)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
WinZip 16.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240CD}) (Version: 16.0.9715 - WinZip Computing, S.L. )
WinZip 24.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C24121}) (Version: 24.0.13618 - Corel Corporation)
Základní software zařízení HP DeskJet 3700 series (HKLM\...\{29CFED6E-54E9-45D4-8C33-0DCE01203FD3}) (Version: 40.2.1085.16354 - HP Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3453386134-3950636445-3288212601-1002_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Safrovi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3453386134-3950636445-3288212601-1002_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll (Corel Corporation -> )
CustomCLSID: HKU\S-1-5-21-3453386134-3950636445-3288212601-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Safrovi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-10-16] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-10-16] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-10-16] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-10-16] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [PDFArchitect6_ManagerExt] -> {6508EEA0-C540-4420-AF21-64937A1536D0} => C:\Program Files\PDF Architect 6\context-menu.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1-x32: [PDFArchitectExtension] -> {DBDB3433-0E01-40CE-A026-D9F54FAC3CA9} => C:\Program Files (x86)\PDF Architect\ContextMenuExt.dll [2013-04-08] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2018-11-13] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-08-29] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [ImageResizerShellExt64] -> {C6193976-9333-4E73-96BA-7B21CA942187} => C:\Program Files (x86)\ObviousIdea\Image Resizer 4\RSZShell64.dll [2011-03-12] (ObviousIdea -> ObviousIdea SARL)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-08-29] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2013-01-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-08-29] (Corel Corporation -> WinZip Computing)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-07-26 09:51 - 2016-09-12 14:53 - 048936448 _____ () [File not signed] C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll
2013-02-21 19:06 - 2013-02-21 19:06 - 002043904 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeCoreEncryptionPlugin.dll
2013-02-21 19:02 - 2013-02-21 19:02 - 000126976 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHostInterface.dll
2013-02-21 19:03 - 2013-02-21 19:03 - 000141824 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHostInterface64.dll
2013-02-21 19:08 - 2013-02-21 19:08 - 001949696 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeProductDetectionPlugin.dll
2013-02-21 19:36 - 2013-02-21 19:36 - 002867200 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeHpDpHostPlugin.dll
2013-02-21 19:50 - 2013-02-21 19:50 - 003346432 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeHpFve64.dll
2013-02-21 19:34 - 2013-02-21 19:34 - 000053248 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeOpalATASec4SATA.dll
2013-02-21 19:31 - 2013-02-21 19:31 - 003035136 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeOpalEncryptionProviderPlugin.dll
2013-02-21 19:32 - 2013-02-21 19:32 - 002854912 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcEncryptionProviderPlugin.dll
2009-09-16 17:44 - 2009-09-16 17:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\Windows\System32\hptcpmib.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\Windows\System32\HpTcpMon.dll
2009-09-16 10:44 - 2009-09-16 10:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\Windows\System32\hpzjrd01.dll
2012-12-04 09:52 - 2012-12-04 09:52 - 000041472 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPHTTPProxy.dll
2012-12-04 09:51 - 2012-12-04 09:51 - 000073728 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPTools.dll
2012-12-04 09:52 - 2012-12-04 09:52 - 001219072 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\LEDMXMLObjects.dll
2013-09-30 23:23 - 2012-12-01 09:16 - 000365568 _____ (Hewlett-Packard) [File not signed] C:\Windows\System32\hpbprtmon.dll
2012-12-01 09:16 - 2012-12-01 09:16 - 000378880 _____ (Hewlett-Packard) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\hpbxjobsvr1203.dll
2012-12-04 09:51 - 2012-12-04 09:51 - 000034816 _____ (HP) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPServiceCommunicator.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\HPTcpMUI.dll
2014-07-20 11:26 - 2019-02-28 17:32 - 000116736 _____ (pdfforge GmbH) [File not signed] C:\Windows\System32\pdfcmon.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\sharepoint.com -> hxxps://zuzanasafrova-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2016-01-26 18:35 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\;C:\Program Files (x86)\Samsung\Samsung PC Studio 3\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\FileProtector\;C:\Program Files (x86)\Common Files\Acronis\FileProtector64\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Safrovi\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-3453386134-3950636445-3288212601-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\blabla\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 62.24.64.2 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [{559916B3-7D27-45DC-ADDF-183EA9FA0BAC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{65968643-4B81-4AFC-BB99-74DCF8CE391A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{01DFB311-54CD-4280-A56C-7D95CE754D69}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C2975667-57F4-4596-ABDF-A9ECA7D02F67}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{35789B79-6320-4E11-AE2D-31A8AEABCBDB}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{46782061-401E-43C6-B23F-1ED67AD3C2DB}] => (Allow) LPort=2869
FirewallRules: [{5E6F1A2B-BC1A-4CB3-917C-18D98F2256CE}] => (Allow) LPort=1900
FirewallRules: [{9A0B3C05-D7D0-4052-8F5E-372180E25C45}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9EE320AB-4C2A-4519-9558-68B969F3E9DF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B2A5557F-A431-4F9D-A12C-9DE2F60B0A69}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A346329F-A5C5-455D-89B5-0022F734B3D6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EE25F1B9-45B1-42D4-A30B-43C4228AFDF0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C0F866BE-229D-4C8E-9B53-1685BC9F011A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EC5B2022-447C-47A1-B980-D3C7512719DF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D0FF719A-E857-4044-B18B-A455A344D2FF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{1746CBC1-28A6-4EB8-8418-2EA015E670DF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F338FEE8-F5FA-472C-A11A-200C8F0B5297}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0C1D3535-07C0-4E63-8A71-3E101C80908F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4A01C587-A764-463F-B48C-F7E2626AD413}] => (Allow) C:\Program Files\HP\HP DeskJet 3700 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{2690AE43-DCA7-4325-96DB-8D42401C0175}] => (Allow) LPort=5357
FirewallRules: [{017B97D7-2B51-47F0-8C1C-976DA04BA313}] => (Allow) C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{10B7E4A6-BA85-4E8E-8C9A-F0AA7E0B53EF}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{96982D09-EDC1-46CA-B8ED-BDE97133907A}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{1EE87643-3AD9-425C-8E87-63AD066A5D69}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{12091E4F-AF64-4024-AA24-5BC3F1B910E9}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{E83CC07F-A426-4ED5-B4C4-4C90206E4907}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{2FD8E9B7-6B5C-4493-AC49-BFDC03E204C6}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{90A30515-A302-430D-AAE7-7CDC1A35028F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{A0E6B4C8-94AC-4D95-BA8B-C0B57B5F9C16}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{AE94346F-ED7C-4B9B-BBB8-600110B0EE47}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{DD9CA9D5-6AB9-4E6C-A4C8-31370D5EB09F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{663BAFE4-4201-4725-92B7-0DE9F5A27963}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{3BDAE5F5-8B2C-4BC4-A346-7154023A178F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{238E0CC4-9210-4C09-B139-5719AD7CD9A6}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{9BE1E1DC-3730-4794-84B2-28FCE47EEE6B}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{105DB1AF-2FF3-4ECE-A72E-CA9B80190AAF}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{B6CCAF90-C18A-4D17-B9FE-FDF27769D73B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
FirewallRules: [{BD296899-9476-40C3-B3B8-001184DBDDFF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
FirewallRules: [{370BE7D5-BE2B-4D7B-97F1-F3016AAA46AC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E377295B-BBFC-4E29-B839-8A91D885A69F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{02B744F6-5FDB-4884-BF02-20588896C8E6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C4E501AE-F328-4AA0-B0C0-4E327405A569}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{32E079A7-2135-49FD-908B-DBC135B410F4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{961B77A2-2226-433D-98DF-AE02C624C573}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
10-02-2020 20:00:22 Windows Update
10-02-2020 21:20:33 Windows Update
11-02-2020 20:00:23 Windows Update
11-02-2020 20:58:01 Windows Update
12-02-2020 15:42:27 Windows Update
12-02-2020 23:04:37 Windows Update
13-02-2020 20:00:22 Windows Update
13-02-2020 21:26:31 Windows Update
14-02-2020 20:00:17 Windows Update
14-02-2020 22:56:21 Windows Update
15-02-2020 20:00:34 Windows Update
15-02-2020 21:42:18 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/14/2020 02:50:51 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, mapi15://{S-1-5-21-3453386134-3950636445-3288212601-1002}/>.
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.
Kontext: aplikace Windows
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
Error: (02/14/2020 02:49:44 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:44 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Služba Windows Search nenačetla informace o úložišti vlastností.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Server indexu obsahu neaktualizoval nebo nenačetl informace kvůli chybě databáze. Zastavte a restartujte vyhledávací službu. Pokud potíže potrvají, vymažte index obsahu a proveďte znovu jeho procházení. V některých případech bude pravděpodobně nutné odstranit a znovu vytvořit index obsahu. (HRESULT : 0x8004117f) (0x8004117f)
System errors:
=============
Error: (02/16/2020 11:01:05 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 20.
Error: (02/16/2020 09:06:00 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
StarOpen
Error: (02/16/2020 09:04:26 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \SystemRoot\SysWow64\Drivers\StarOpen.SYS bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.
Error: (02/15/2020 09:42:59 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Error: (02/15/2020 09:42:57 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Error: (02/15/2020 09:42:57 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Error: (02/15/2020 09:42:57 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Error: (02/15/2020 09:42:57 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Windows Defender:
===================================
Date: 2014-12-16 18:56:53.533
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:1.189.1916.0
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:1.1.11202.0
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2014-12-16 18:56:53.533
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:
Předchozí verze modulu:1.1.11202.0
Zdroj aktualizace:Složka aktualizace podpisů
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2014-12-16 10:25:24.939
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:1.189.1916.0
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:1.1.11202.0
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2014-12-16 10:25:24.939
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:
Předchozí verze modulu:1.1.11202.0
Zdroj aktualizace:Složka aktualizace podpisů
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2014-12-16 07:42:40.930
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:1.189.1916.0
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:1.1.11202.0
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
==================== Memory info ===========================
BIOS: AMI 8.18 03/18/2013
Motherboard: PEGATRON CORPORATION 2AD5
Processor: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz
Percentage of memory in use: 64%
Total physical RAM: 8129.12 MB
Available physical RAM: 2852.69 MB
Total Virtual: 16256.38 MB
Available Virtual: 11123.42 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:1847.4 GB) (Free:1732 GB) NTFS
Drive d: (Elements) (Fixed) (Total:1862.98 GB) (Free:1473.78 GB) NTFS
Drive e: (HP_RECOVERY) (Fixed) (Total:15.41 GB) (Free:1.82 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive l: (VERBATIM HD) (Fixed) (Total:465.65 GB) (Free:451.32 GB) FAT32
\\?\Volume{f15a5144-66c7-11e3-a48e-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{afeccac7-2a23-11e3-978b-806e6f6e6963}\ (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: E3594632)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1847.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15.4 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=104 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 666ABBD5)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=0C)
==========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: D954268B)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosím o preventivní kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
prosím o preventivní kontrolu
,,Poctivost nelze rozdělit na kousky.Buď je a nebo není."(Honoré de Balzac)
Re: prosím o preventivní kontrolu
Ahoj 
Program Seznam Listicka a Seznam doplnky v prehliadacoch mas nainstalovane umyselne?
Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
Program Seznam Listicka a Seznam doplnky v prehliadacoch mas nainstalovane umyselne? Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
- Uloz na plochu a ukonci vsetky programy
- Spusti AdwCleaner ako spravca
- Odsuhlas licencne podmienky
- Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
- Nechaj zaskrtnute vsetky nalezy
- Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
- Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
- Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: prosím o preventivní kontrolu
Ahoj 
- děkuji za tvůj čas.
tvůj dotaz: Program Seznam Listicka a Seznam doplnky v prehliadacoch mas nainstalovane umyselne?
odpověď - mám SPEED DIAL - jako doplněk - ale už ani nevím jak jsem se k tomu dostala, ale vyhovuje mi z důvodu přehledu uložení stránek. Pokud působí mému PC problém
- (fakt) nerada, ale dám pryč na tvou radu.
Posílám tedy log
# -------------------------------
# Malwarebytes AdwCleaner 8.0.2.0
# -------------------------------
# Build: 01-27-2020
# Database: 2020-01-24.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-16-2020
# Duration: 00:00:03
# OS: Windows 7 Professional
# Cleaned: 10
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\Users\Safrovi\AppData\Roaming\Seznam.cz
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|seznam-listicka-distribuce
***** [ Chromium (and derivatives) ] *****
Deleted Seznam doplněk - Email
Deleted Seznam doplněk - Esko
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1312 octets] - [01/09/2018 11:26:08]
AdwCleaner[C00].txt - [1478 octets] - [01/09/2018 11:26:29]
AdwCleaner[S01].txt - [5478 octets] - [16/02/2020 22:03:02]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
- děkuji za tvůj čas.tvůj dotaz: Program Seznam Listicka a Seznam doplnky v prehliadacoch mas nainstalovane umyselne?
odpověď - mám SPEED DIAL - jako doplněk - ale už ani nevím jak jsem se k tomu dostala, ale vyhovuje mi z důvodu přehledu uložení stránek. Pokud působí mému PC problém
- (fakt) nerada, ale dám pryč na tvou radu.Posílám tedy log
# -------------------------------
# Malwarebytes AdwCleaner 8.0.2.0
# -------------------------------
# Build: 01-27-2020
# Database: 2020-01-24.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-16-2020
# Duration: 00:00:03
# OS: Windows 7 Professional
# Cleaned: 10
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\Users\Safrovi\AppData\Roaming\Seznam.cz
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|seznam-listicka-distribuce
***** [ Chromium (and derivatives) ] *****
Deleted Seznam doplněk - Email
Deleted Seznam doplněk - Esko
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1312 octets] - [01/09/2018 11:26:08]
AdwCleaner[C00].txt - [1478 octets] - [01/09/2018 11:26:29]
AdwCleaner[S01].txt - [5478 octets] - [16/02/2020 22:03:02]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
,,Poctivost nelze rozdělit na kousky.Buď je a nebo není."(Honoré de Balzac)
Re: prosím o preventivní kontrolu
Speed Dial je iny doplnok, ktory je OK. Ja som myslel doplnky od Seznam.cz:
Seznam doplněk - Email
Seznam doplněk - Esko
Tieto Seznam.cz doplnky su casto nainstalovane bez vedomia uzivatela (napr. pri instalacii inych programov). Podla logu z AdwCleaneru uz vsak boli zmazane.
Poprosim o obidva nove logy z FRST.
Seznam doplněk - Email
Seznam doplněk - Esko
Tieto Seznam.cz doplnky su casto nainstalovane bez vedomia uzivatela (napr. pri instalacii inych programov). Podla logu z AdwCleaneru uz vsak boli zmazane.
Poprosim o obidva nove logy z FRST.
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: prosím o preventivní kontrolu
Dobrý večer, OK - tak to jsem ráda, že mi Speed dial zůstane
Posílám logy:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-02-2020
Ran by Safrovi (17-02-2020 21:32:30)
Running from C:\Users\Safrovi\Desktop
Windows 7 Professional Service Pack 1 (X64) (2013-12-16 18:09:21)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3453386134-3950636445-3288212601-500 - Administrator - Disabled)
blabla (S-1-5-21-3453386134-3950636445-3288212601-1004 - Limited - Enabled) => C:\Users\blabla
Guest (S-1-5-21-3453386134-3950636445-3288212601-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3453386134-3950636445-3288212601-1003 - Limited - Enabled)
Safrovi (S-1-5-21-3453386134-3950636445-3288212601-1002 - Administrator - Enabled) => C:\Users\Safrovi
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: ESET Security (Enabled - Up to date) {333C65BB-8923-0EAA-C47E-C486E687BEFD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acronis True Image (HKLM-x32\...\{9BB8598B-C237-446F-AD4E-8F0FA6A93D10}) (Version: 22.6.15470 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{9BB8598B-C237-446F-AD4E-8F0FA6A93D10}Visible) (Version: 22.6.15470 - Acronis)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.330 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.330 - Adobe)
Advertising Center (HKLM-x32\...\{b2ec4a38-b545-4a00-8214-13fe0e915e6d}) (Version: 0.0.0.1 - Nero AG) Hidden
Alcor Micro USB Card Reader Driver (HKLM-x32\...\{0DEB2EEB-BE9A-44B1-9D90-183250B61785}) (Version: 20.13.3317.03143 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{0DEB2EEB-BE9A-44B1-9D90-183250B61785}) (Version: 20.13.3317.03143 - Alcor Micro Corp.)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 19.1.7734 - AVAST Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon MP280 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP280_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
CDex - Digital Audio CD Extractor and Converter (HKLM-x32\...\CDex) (Version: 2.21.0.2019 - CDex.mu)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Device Access Manager for HP ProtectTools (HKLM\...\{55B52830-024A-443E-AF61-61E1E71AFA1B}) (Version: 7.1.2.0 - Hewlett-Packard Company)
DirectX for Managed Code Update (Summer 2004) (HKLM-x32\...\{E9E34215-82EF-4909-BE2F-F581F0DC9062}) (Version: 9.02.2904 - Microsoft) Hidden
Doplněk Microsoft Outlook Hotmail Connector (64bitový) (HKLM\...\{95140000-007A-0405-1000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Drive Encryption For HP ProtectTools (HKLM\...\{27F1E086-5691-4EB8-8BA1-5CBA87D67EB5}) (Version: 7.0.40.35706 - Hewlett-Packard Company)
Dropbox (HKLM-x32\...\Dropbox) (Version: 82.4.155 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
Easy Poster Printer (HKLM-x32\...\{1B2A990F-B138-49A3-8916-706849DF903A}) (Version: 2.0.1 - GD Software)
ESET Security (HKLM\...\{B489BC2D-0079-4631-97BF-CA2378299D43}) (Version: 13.0.24.0 - ESET, spol. s r.o.)
File Sanitizer For HP ProtectTools (HKLM-x32\...\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}) (Version: 7.0.0.4 - Hewlett-Packard Company)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit PDF Editor (HKLM-x32\...\Foxit PDF Editor) (Version: - )
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.106 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
HD Tune Pro 5.70 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.0.1.100 - Huawei Technologies Co.,Ltd)
HP DeskJet 3700 series Nápověda (HKLM-x32\...\{3F0E1790-4066-4B36-9F9C-6E1C7AC1BE80}) (Version: 40.0.0 - HP)
HP Dropbox Plugin (HKLM-x32\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP ProtectTools Security Manager (HKLM\...\HPProtectTools) (Version: 7.0.2.1213 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15430.4033 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPLJUTCore (HKLM-x32\...\{30DD7187-F392-4D83-8AED-D9A2DC64EF15}) (Version: 008.000.0001 - HP) Hidden
hppLaserJetService (HKLM-x32\...\{178F0383-A2F1-427C-9881-6EACB8728C76}) (Version: 009.033.00905 - Hewlett-Packard) Hidden
hppM1130M1210SeriesLaserJetService (HKLM-x32\...\{0E448256-D515-4C3E-A5BE-0A7B76CED5D4}) (Version: 001.003.00073 - Hewlett-Packard) Hidden
hppM125LaserJetService (HKLM-x32\...\{18D5B189-DBDD-4E57-A84B-58C7700E9BB0}) (Version: 001.032.00682 - Hewlett-Packard) Hidden
hppusgM1130M1210Series (HKLM-x32\...\{DA6CC3A5-1F5B-4068-8BFF-C597BB6B8158}) (Version: 1.0.0.2 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.6.0.1033 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.6.245 - Intel Corporation)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
LabelPrint (HKLM-x32\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.)
Light Image Resizer 4.0.4.3 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.0.4.3 - ObviousIdea)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 365 Business - cs-cz (HKLM\...\O365BusinessRetail - cs-cz) (Version: 16.0.12430.20184 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Support and Recovery Assistant for Office 365 (HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\dacae1bed46e81d5) (Version: 16.0.2514.4 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\Teams) (Version: 1.2.00.22654 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27027 (HKLM-x32\...\{39e28474-b67b-4209-af1b-e9ad0a83d8ca}) (Version: 14.16.27027.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 73.0 (x64 cs) (HKLM\...\Mozilla Firefox 73.0 (x64 cs)) (Version: 73.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 72.0.2.7321 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 9 Essentials (HKLM-x32\...\{8992d43a-9067-4c13-8e9c-fd97d39f89e4}) (Version: - Nero AG)
NirSoft ProduKey (HKLM-x32\...\NirSoft ProduKey) (Version: - )
NVIDIA Graphics Driver 311.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.10 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20184 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden
PDF Architect (HKLM-x32\...\{064A929A-4DE8-40CF-A901-BD40C14E4D25}) (Version: 1.1.83.9982 - pdfforge GmbH)
PDF Architect 6 (HKLM-x32\...\PDF Architect 6) (Version: 6.1.19.842 - pdfforge GmbH)
PDF Architect 6 Create Module (HKLM\...\{A0ACB885-7CDD-4E43-9109-E49CF70E4039}) (Version: 6.1.24.1862 - pdfforge GmbH) Hidden
PDF Architect 6 Edit Module (HKLM\...\{FC39343C-732F-433E-9929-F9D08BA73792}) (Version: 6.1.24.1862 - pdfforge GmbH) Hidden
PDF Architect 6 View Module (HKLM\...\{7FFD0E0F-478A-4393-BBB0-4B20FAF5F3B7}) (Version: 6.1.24.1862 - pdfforge GmbH) Hidden
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.2.33 - PDF Complete, Inc)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.5.1 - pdfforge GmbH)
PDP 2016.01 (HKLM-x32\...\Podnikový a domácí právník 2016_is1) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.6207 - CyberLink Corp.) Hidden
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.6207 - CyberLink Corp.)
Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.0.5223 - CyberLink Corp.) Hidden
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14044_17 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14044_17 - Samsung Electronics Co., Ltd.)
Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version: - )
Samsung PC Studio 3 (HKLM-x32\...\{C4A4722E-79F9-417C-BD72-8D359A090C97}) (Version: 3.2.1.71009 - Samsung Electronics Co., Ltd.)
Samsung PC Studio 3 (HKLM-x32\...\{C79A37F3-C076-48BE-B290-F4C8676ABD74}) (Version: 3.0.0.71009 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Studie vylepšování produktu HP DeskJet 3700 series (HKLM\...\{D6FF350C-3BF6-403E-ACB7-A7FF503F99D4}) (Version: 40.2.1085.16354 - HP Inc.)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.22654 - Microsoft Corporation)
Theft Recovery for HP ProtectTools (HKLM-x32\...\{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.1.02 - Hewlett-Packard Company) Hidden
Theft Recovery for HP ProtectTools (HKLM-x32\...\InstallShield_{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.1.02 - Hewlett-Packard Company)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
WinZip 16.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240CD}) (Version: 16.0.9715 - WinZip Computing, S.L. )
WinZip 24.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C24121}) (Version: 24.0.13618 - Corel Corporation)
Základní software zařízení HP DeskJet 3700 series (HKLM\...\{29CFED6E-54E9-45D4-8C33-0DCE01203FD3}) (Version: 40.2.1085.16354 - HP Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3453386134-3950636445-3288212601-1002_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Safrovi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3453386134-3950636445-3288212601-1002_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll (Corel Corporation -> )
CustomCLSID: HKU\S-1-5-21-3453386134-3950636445-3288212601-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Safrovi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-10-16] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-10-16] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-10-16] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-10-16] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [PDFArchitect6_ManagerExt] -> {6508EEA0-C540-4420-AF21-64937A1536D0} => C:\Program Files\PDF Architect 6\context-menu.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1-x32: [PDFArchitectExtension] -> {DBDB3433-0E01-40CE-A026-D9F54FAC3CA9} => C:\Program Files (x86)\PDF Architect\ContextMenuExt.dll [2013-04-08] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2018-11-13] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-08-29] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [ImageResizerShellExt64] -> {C6193976-9333-4E73-96BA-7B21CA942187} => C:\Program Files (x86)\ObviousIdea\Image Resizer 4\RSZShell64.dll [2011-03-12] (ObviousIdea -> ObviousIdea SARL)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-08-29] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2013-01-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-08-29] (Corel Corporation -> WinZip Computing)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-07-26 09:51 - 2016-09-12 14:53 - 048936448 _____ () [File not signed] C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll
2013-02-21 19:06 - 2013-02-21 19:06 - 002043904 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeCoreEncryptionPlugin.dll
2013-02-21 19:02 - 2013-02-21 19:02 - 000126976 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHostInterface.dll
2013-02-21 19:03 - 2013-02-21 19:03 - 000141824 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHostInterface64.dll
2013-02-21 19:08 - 2013-02-21 19:08 - 001949696 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeProductDetectionPlugin.dll
2013-02-21 19:36 - 2013-02-21 19:36 - 002867200 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeHpDpHostPlugin.dll
2013-02-21 19:50 - 2013-02-21 19:50 - 003346432 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeHpFve64.dll
2013-02-21 19:34 - 2013-02-21 19:34 - 000053248 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeOpalATASec4SATA.dll
2013-02-21 19:31 - 2013-02-21 19:31 - 003035136 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeOpalEncryptionProviderPlugin.dll
2013-02-21 19:32 - 2013-02-21 19:32 - 002854912 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcEncryptionProviderPlugin.dll
2009-09-16 17:44 - 2009-09-16 17:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\Windows\System32\hptcpmib.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\Windows\System32\HpTcpMon.dll
2009-09-16 10:44 - 2009-09-16 10:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\Windows\System32\hpzjrd01.dll
2012-12-04 09:52 - 2012-12-04 09:52 - 000041472 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPHTTPProxy.dll
2012-12-04 09:51 - 2012-12-04 09:51 - 000073728 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPTools.dll
2012-12-04 09:52 - 2012-12-04 09:52 - 001219072 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\LEDMXMLObjects.dll
2013-09-30 23:23 - 2012-12-01 09:16 - 000365568 _____ (Hewlett-Packard) [File not signed] C:\Windows\System32\hpbprtmon.dll
2012-12-01 09:16 - 2012-12-01 09:16 - 000378880 _____ (Hewlett-Packard) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\hpbxjobsvr1203.dll
2012-12-04 09:51 - 2012-12-04 09:51 - 000034816 _____ (HP) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPServiceCommunicator.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\HPTcpMUI.dll
2014-07-20 11:26 - 2019-02-28 17:32 - 000116736 _____ (pdfforge GmbH) [File not signed] C:\Windows\System32\pdfcmon.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\sharepoint.com -> hxxps://zuzanasafrova-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2016-01-26 18:35 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\;C:\Program Files (x86)\Samsung\Samsung PC Studio 3\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\FileProtector\;C:\Program Files (x86)\Common Files\Acronis\FileProtector64\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Safrovi\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-3453386134-3950636445-3288212601-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\blabla\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 62.24.64.2 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [{559916B3-7D27-45DC-ADDF-183EA9FA0BAC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{65968643-4B81-4AFC-BB99-74DCF8CE391A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{01DFB311-54CD-4280-A56C-7D95CE754D69}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C2975667-57F4-4596-ABDF-A9ECA7D02F67}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{35789B79-6320-4E11-AE2D-31A8AEABCBDB}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{46782061-401E-43C6-B23F-1ED67AD3C2DB}] => (Allow) LPort=2869
FirewallRules: [{5E6F1A2B-BC1A-4CB3-917C-18D98F2256CE}] => (Allow) LPort=1900
FirewallRules: [{9A0B3C05-D7D0-4052-8F5E-372180E25C45}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9EE320AB-4C2A-4519-9558-68B969F3E9DF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B2A5557F-A431-4F9D-A12C-9DE2F60B0A69}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A346329F-A5C5-455D-89B5-0022F734B3D6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EE25F1B9-45B1-42D4-A30B-43C4228AFDF0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C0F866BE-229D-4C8E-9B53-1685BC9F011A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EC5B2022-447C-47A1-B980-D3C7512719DF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D0FF719A-E857-4044-B18B-A455A344D2FF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{1746CBC1-28A6-4EB8-8418-2EA015E670DF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F338FEE8-F5FA-472C-A11A-200C8F0B5297}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0C1D3535-07C0-4E63-8A71-3E101C80908F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4A01C587-A764-463F-B48C-F7E2626AD413}] => (Allow) C:\Program Files\HP\HP DeskJet 3700 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{2690AE43-DCA7-4325-96DB-8D42401C0175}] => (Allow) LPort=5357
FirewallRules: [{017B97D7-2B51-47F0-8C1C-976DA04BA313}] => (Allow) C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{10B7E4A6-BA85-4E8E-8C9A-F0AA7E0B53EF}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{96982D09-EDC1-46CA-B8ED-BDE97133907A}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{1EE87643-3AD9-425C-8E87-63AD066A5D69}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{12091E4F-AF64-4024-AA24-5BC3F1B910E9}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{E83CC07F-A426-4ED5-B4C4-4C90206E4907}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{2FD8E9B7-6B5C-4493-AC49-BFDC03E204C6}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{90A30515-A302-430D-AAE7-7CDC1A35028F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{A0E6B4C8-94AC-4D95-BA8B-C0B57B5F9C16}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{AE94346F-ED7C-4B9B-BBB8-600110B0EE47}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{DD9CA9D5-6AB9-4E6C-A4C8-31370D5EB09F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{663BAFE4-4201-4725-92B7-0DE9F5A27963}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{3BDAE5F5-8B2C-4BC4-A346-7154023A178F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{238E0CC4-9210-4C09-B139-5719AD7CD9A6}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{9BE1E1DC-3730-4794-84B2-28FCE47EEE6B}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{105DB1AF-2FF3-4ECE-A72E-CA9B80190AAF}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{B6CCAF90-C18A-4D17-B9FE-FDF27769D73B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
FirewallRules: [{BD296899-9476-40C3-B3B8-001184DBDDFF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
FirewallRules: [{370BE7D5-BE2B-4D7B-97F1-F3016AAA46AC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E377295B-BBFC-4E29-B839-8A91D885A69F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{02B744F6-5FDB-4884-BF02-20588896C8E6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C4E501AE-F328-4AA0-B0C0-4E327405A569}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{32E079A7-2135-49FD-908B-DBC135B410F4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{21F3328C-C9FE-41E3-932F-D913C4D9812C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
10-02-2020 20:00:22 Windows Update
10-02-2020 21:20:33 Windows Update
11-02-2020 20:00:23 Windows Update
11-02-2020 20:58:01 Windows Update
12-02-2020 15:42:27 Windows Update
12-02-2020 23:04:37 Windows Update
13-02-2020 20:00:22 Windows Update
13-02-2020 21:26:31 Windows Update
14-02-2020 20:00:17 Windows Update
14-02-2020 22:56:21 Windows Update
15-02-2020 20:00:34 Windows Update
15-02-2020 21:42:18 Windows Update
16-02-2020 20:00:13 Windows Update
16-02-2020 22:42:03 Windows Update
17-02-2020 08:51:00 Windows Update
17-02-2020 20:00:16 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/14/2020 02:50:51 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, mapi15://{S-1-5-21-3453386134-3950636445-3288212601-1002}/>.
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.
Kontext: aplikace Windows
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
Error: (02/14/2020 02:49:44 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:44 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Služba Windows Search nenačetla informace o úložišti vlastností.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Server indexu obsahu neaktualizoval nebo nenačetl informace kvůli chybě databáze. Zastavte a restartujte vyhledávací službu. Pokud potíže potrvají, vymažte index obsahu a proveďte znovu jeho procházení. V některých případech bude pravděpodobně nutné odstranit a znovu vytvořit index obsahu. (HRESULT : 0x8004117f) (0x8004117f)
System errors:
=============
Error: (02/17/2020 08:02:16 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Error: (02/17/2020 04:15:55 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
StarOpen
Error: (02/17/2020 04:12:10 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \SystemRoot\SysWow64\Drivers\StarOpen.SYS bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.
Error: (02/17/2020 08:52:35 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Acronis Nonstop Backup Service se po přijetí pokynu pro vypnutí neukončila správně.
Error: (02/17/2020 08:52:00 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Error: (02/17/2020 08:51:55 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Error: (02/17/2020 08:51:55 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Error: (02/17/2020 08:51:54 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Windows Defender:
===================================
Date: 2014-12-16 18:56:53.533
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:1.189.1916.0
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:1.1.11202.0
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2014-12-16 18:56:53.533
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:
Předchozí verze modulu:1.1.11202.0
Zdroj aktualizace:Složka aktualizace podpisů
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2014-12-16 10:25:24.939
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:1.189.1916.0
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:1.1.11202.0
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2014-12-16 10:25:24.939
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:
Předchozí verze modulu:1.1.11202.0
Zdroj aktualizace:Složka aktualizace podpisů
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2014-12-16 07:42:40.930
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:1.189.1916.0
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:1.1.11202.0
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
==================== Memory info ===========================
BIOS: AMI 8.18 03/18/2013
Motherboard: PEGATRON CORPORATION 2AD5
Processor: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz
Percentage of memory in use: 60%
Total physical RAM: 8129.12 MB
Available physical RAM: 3195.95 MB
Total Virtual: 16256.38 MB
Available Virtual: 11402.55 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:1847.4 GB) (Free:1716.93 GB) NTFS
Drive d: (Elements) (Fixed) (Total:1862.98 GB) (Free:1467.39 GB) NTFS
Drive e: (HP_RECOVERY) (Fixed) (Total:15.41 GB) (Free:1.82 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive l: (VERBATIM HD) (Fixed) (Total:465.65 GB) (Free:451.32 GB) FAT32
\\?\Volume{f15a5144-66c7-11e3-a48e-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{afeccac7-2a23-11e3-978b-806e6f6e6963}\ (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: E3594632)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1847.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15.4 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=104 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 666ABBD5)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=0C)
==========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: D954268B)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-02-2020
Ran by Safrovi (administrator) on SAFROVI-HP (Hewlett-Packard ) (17-02-2020 21:31:44)
Running from C:\Users\Safrovi\Desktop
Loaded Profiles: Safrovi & blabla (Available Profiles: Safrovi & blabla)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eOppFrame.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(HP) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [37888 2012-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard )
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-04-24] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [585296 2017-11-22] (Acronis International GmbH -> )
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [183088 2019-12-12] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-08-29] (Corel Corporation -> Corel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [290688 2012-11-06] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [File Sanitizer] => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [12310616 2012-03-09] (Softex Incorporated -> Hewlett-Packard)
HKLM-x32\...\Run: [HPUsageTrackingLEDM] => "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6210368 2019-10-02] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [4848280 2019-02-01] (Acronis International GmbH -> )
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [1194048 2018-02-01] (PDF Complete Inc. -> PDF Complete Inc)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2017-10-16] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Safrovi\AppData\Local\Microsoft\Teams\Update.exe [1780448 2019-06-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {2f9ac852-b98d-11e8-898d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {3284a34b-758a-11e9-a1b2-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {4e36c131-ad0a-11e9-b029-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {57534a6f-d565-11e9-9c68-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {59c4831f-1700-11e9-9153-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a1e4f604-4105-11ea-a01d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a9efed85-cbc1-11e8-ae84-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {db25b4cd-055d-11ea-9ba5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {df5be5f8-c755-11e9-a15e-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {e6f5612f-73d1-11e8-b1d5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {fd4be2bc-c405-11e9-8aaf-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [241664 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3453386134-3950636445-3288212601-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.106\Installer\chrmstp.exe [2020-02-16] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{438363A8-F486-4C37-834C-4955773CB3D3}] -> msiexec /fu {438363A8-F486-4C37-834C-4955773CB3D3} /qn
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{02AA8B83-49C5-482C-915A-B6824F665CCD}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{2A16DF2F-490B-4F2B-8C68-21EF46FCCC37}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{3ADC7042-51AF-4D0F-BD1D-4D6965A77323}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{57E84B57-5533-4624-AB49-E29C8C5489D6}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{70099717-17C8-4BD0-B3D4-FAF721AB1A62}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{FD2AB138-F9A8-4ab6-9095-EEE7AF8B6C28}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{8D90E7E9-6F48-4e24-85E0-596C8E6C4639}] -> c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCmsGPOClient.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{D75A25CD-0CCA-4C3C-A5E6-94039CC03B72}] -> c:\Windows\system32\DPLic.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2018-07-26]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2019-09-11]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
Startup: C:\Users\Safrovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2016-09-04]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (No File)
Startup: C:\Users\Safrovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledování výstrah kazety - HP DJ 3700 series.lnk [2020-02-17]
ShortcutAndArgument: Sledování výstrah kazety - HP DJ 3700 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP DeskJet 3700 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN8894P0JH06H8;CONNECTION=USB;MONITOR=1;
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {138808CF-24B3-4E17-9EF3-814FC0786F11} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-02-11] (Adobe Inc. -> Adobe)
Task: {2712CCD2-31C4-4AF6-BB29-39F99C50F9A1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe
Task: {27B46EFF-0948-40DC-AC64-98D5866D4E1F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {33D09E81-64D7-443A-AD4C-91032F4AE577} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-08-29] (Corel Corporation -> Corel Corporation)
Task: {38BF5B60-CCD2-4951-95D4-BE79C0F997CC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {445851A7-26E8-4982-B3A2-DDA3D0A5CA18} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {46B88247-BD25-4797-8AC2-82183F57EABD} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-08-29] (Corel Corporation -> Corel Corporation)
Task: {478D398B-F0EA-4FD5-8A9B-A3FFB2467432} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {485A5ACF-310A-4876-9C79-882487AF2A22} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {49EBA26C-4EE8-46F3-844E-F440C05DCCEF} - System32\Tasks\HPCustPartic.exe_{297A0A1F-DB47-440A-95A1-4F39DF89E680} => C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPCustPartic.exe [6438536 2016-12-19] (Hewlett Packard -> HP Inc.)
Task: {4CAAA2D6-E970-47EF-AE1E-DD69BBF5D37D} - System32\Tasks\GoogleUpdateTaskMachineCore1d041068d2d5829 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {6E67CECD-6725-4BE7-9705-4B368C885414} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {79B87823-5DED-474F-BCB6-2450E173C392} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1448832 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9109BFC4-51E9-4616-9047-8ACCFE32416B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_330_Plugin.exe [1458232 2020-02-11] (Adobe Inc. -> Adobe)
Task: {A039FC6C-9585-4199-A5F2-7E3545B8873D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115440 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {A45576EE-1065-400C-AF19-3A7CEAB87C8E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115440 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {B2976C52-D3DA-4BFA-B753-AF72952283DB} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [1659000 2019-07-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {B6A5FBDF-8B77-4D3C-8781-793EB00955F5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1354064 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {CBB2300D-9945-4F23-A3EF-C99F40162A68} - System32\Tasks\HPCeeScheduleForSafrovi => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: {D151EDBB-B5E3-472B-8B0C-454D2D01AE89} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-08-29] (Corel Corporation -> Corel Corporation)
Task: {D28F2FDB-99A6-497C-A0BF-475B08492BAA} - System32\Tasks\HPCeeScheduleForSAFROVI-HP$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: {DFE72EE2-5AD5-428F-A829-4DDC4B168CAA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {E0A95F6C-A4DF-43F6-AD23-CEC69F042387} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe
Task: {E4AB52C3-3748-40CB-B124-DB9929631CAB} - System32\Tasks\HPCustParticipation HP DeskJet 3700 series => C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPCustPartic.exe [6438536 2016-12-19] (Hewlett Packard -> HP Inc.)
Task: {E5BF0455-A10E-4C60-B907-492981E18937} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1354064 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {EB5A0D84-20DA-441B-B7B5-3F656A5E0783} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {F1019826-04D6-41D0-B679-76853A51979F} - System32\Tasks\GoogleUpdateTaskMachineUA1d041068ddfdf5e => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {F1E71B8B-665E-46ED-A943-A1624C3243BF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {F5230F97-CFE7-4929-A330-3A309680E2D8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 62.24.64.2 8.8.8.8 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{11C6231B-48B5-4393-9ADC-D8834B961E86}: [DhcpNameServer] 62.24.64.2 8.8.8.8 8.8.8.8 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3453386134-3950636445-3288212601-1004 -> {32D14CA0-5EF8-4F80-993B-2E368DFAD94D} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO: PDF Architect 6 Helper -> {9FD094B1-A4BF-415A-82AE-8C2845D0B769} -> C:\Program Files\PDF Architect 6\creator\plugins\IEAddin\creator-ie-helper.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-03-09] (Softex Incorporated -> Hewlett-Packard)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08] (pdfforge GmbH -> pdfforge GmbH)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: PDF Architect 6 Helper -> {9FD094B1-A4BF-415A-82AE-8C2845D0B769} -> C:\Program Files (x86)\PDF Architect 6\creator\plugins\IEAddin\creator-ie-helper.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - PDF Architect 6 Toolbar - {E8536605-CA24-4DFF-B1BC-316EE27F6DF7} - C:\Program Files\PDF Architect 6\creator\plugins\IEAddin\creator-ie-plugin.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
Toolbar: HKLM-x32 - PDF Architect 6 Toolbar - {E8536605-CA24-4DFF-B1BC-316EE27F6DF7} - C:\Program Files (x86)\PDF Architect 6\creator\plugins\IEAddin\creator-ie-plugin.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 9f48d6zo.default-1439536559487-1552502079990
FF ProfilePath: C:\Users\Safrovi\AppData\Roaming\Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 [2020-02-17]
FF Homepage: Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 -> hxxps://www.skolka-pripravy.cz; hxxps://www.eva.cz; hxxps://www.facebook.com; hxxps://www.csob.cz; hxxps://www.mesec.cz
FF NewTabOverride: Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 -> Enabled: {241ffcc1-cc25-47e9-86e6-ab5e79147952}
FF Extension: (Group Speed Dial) - C:\Users\Safrovi\AppData\Roaming\Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990\Extensions\admin@fastaddons.com_GroupSpeedDial.xpi [2020-02-17]
FF Extension: (Tlačítko „Uložit“ pro Pinterest) - C:\Users\Safrovi\AppData\Roaming\Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2020-01-11]
FF Extension: (FF Speed Dial - New Tab with Custom tiles) - C:\Users\Safrovi\AppData\Roaming\Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990\Extensions\{241ffcc1-cc25-47e9-86e6-ab5e79147952}.xpi [2019-03-13]
FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06] [Legacy]
FF HKLM\...\Firefox\Extensions: [pdf_architect_6_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 6\creator\plugins\FirefoxAddin\pdf_architect_6_conv_v.2@pdfforge.org.xpi
FF Extension: (PDF Architect 6 Creator) - C:\Program Files\PDF Architect 6\creator\plugins\FirefoxAddin\pdf_architect_6_conv_v.2@pdfforge.org.xpi [2018-09-18]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-09-30] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: (PDF Architect Converter For Firefox) - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2014-03-21] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_6_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 6\creator\plugins\FirefoxAddin\pdf_architect_6_conv_v.2@pdfforge.org.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> )
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [No File]
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-17] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: digitalpersona.com/ChromeDPAgent -> c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll [2012-07-21] (DigitalPersona, Inc. -> Digital Persona, Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-02-17]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default [2020-02-17]
CHR NewTab: Default -> "active": false,
"entry": "chrome-extension://ejbjamhkdedinncaeiackcdehpccoejm/pages/newtab.html"
,
"active": false,
"entry": "chrome-extension://blmojkbhnkkphngknkmgccmlenfaelkd/speeddial/html/newTab.html"
CHR Extension: (Dokumenty) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-24]
CHR Extension: (Disk Google) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-24]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-07-26]
CHR Extension: (YouTube) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-22]
CHR Extension: (Vyhledávání Google) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-05]
CHR Extension: (Speed Dial) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbjamhkdedinncaeiackcdehpccoejm [2019-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-13]
CHR Extension: (Gmail) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-14]
CHR Profile: C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-02-17]
CHR Profile: C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-17]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [2725920 2018-06-18] (Acronis International GmbH -> Acronis International GmbH)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [10287216 2019-07-25] (AVAST Software s.r.o. -> AVAST Software)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129712 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-10-02] (Dropbox, Inc -> Dropbox, Inc.)
R2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [494456 2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2245488 2019-12-12] (ESET, spol. s r.o. -> ESET)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477056 2012-11-19] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [174592 2012-12-04] (HP) [File not signed]
R2 HPFSService; c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [372824 2012-03-09] (Softex Incorporated -> Hewlett-Packard)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-12-27] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-12-10] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1327104 2013-02-21] () [File not signed]
S4 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2017-10-16] (Acronis International GmbH -> Acronis International GmbH)
S4 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2017-10-16] (Acronis International GmbH -> Acronis International GmbH)
S4 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1745344 2019-02-01] (Acronis International GmbH -> )
S4 PDF Architect 6; C:\Program Files\PDF Architect 6\ws.exe [2569976 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
S4 PDF Architect 6 Creator; C:\Program Files\PDF Architect 6\creator\common\creator-ws.exe [832248 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
S4 PDF Architect 6 Update Service; C:\Program Files\PDF Architect 6\updater-ws.exe [1665272 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
S4 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH -> pdfforge GmbH)
S4 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH -> pdfforge GmbH)
S4 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1795136 2018-02-01] (PDF Complete Inc. -> PDF Complete Inc)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [318464 2012-04-24] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 DAMDrv; C:\Windows\System32\DRIVERS\DAMDrv64.sys [64832 2012-11-09] (Hewlett-Packard Company -> Hewlett-Packard Company)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [149944 2019-10-28] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [103264 2019-10-28] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [189512 2019-10-28] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [50712 2019-10-28] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [79744 2019-12-12] (ESET, spol. s r.o. -> ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [64200 2019-12-12] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [116696 2019-12-12] (ESET, spol. s r.o. -> ESET)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 file_protector; C:\Windows\System32\DRIVERS\file_protector.sys [569392 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [379664 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28656 2013-04-30] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-02-15] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-02-17] (Malwarebytes Inc -> Malwarebytes)
R0 MfeEpeOpal; C:\Windows\System32\Drivers\MfeEpeOpal.sys [91176 2013-02-21] (McAfee, Inc. -> McAfee, Inc.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [158760 2013-02-21] (McAfee, Inc. -> McAfee, Inc.)
R3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () [File not signed]
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [536576 2012-04-24] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1310552 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [213336 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\Windows\System32\DRIVERS\tnd.sys [690520 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [331976 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 volume_tracker; C:\Windows\System32\DRIVERS\volume_tracker.sys [243472 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-17 21:31 - 2020-02-17 21:32 - 000040822 _____ C:\Users\Safrovi\Desktop\FRST.txt
2020-02-17 17:35 - 2020-02-17 17:35 - 001427951 _____ C:\Users\Safrovi\Downloads\pohadky_2019(1).pdf
2020-02-17 17:34 - 2020-02-17 17:34 - 001827983 _____ C:\Users\Safrovi\Downloads\zdarma_zima_2020.pdf
2020-02-17 17:25 - 2020-02-17 21:20 - 000001484 _____ C:\Users\Safrovi\Desktop\hajný básničky.txt
2020-02-17 16:13 - 2020-02-17 16:13 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-02-16 22:37 - 2020-02-16 22:37 - 000000093 _____ C:\Users\Safrovi\Desktop\služba IDOKLAD FAKTURA.txt
2020-02-16 21:56 - 2020-02-16 21:57 - 008356016 _____ (Malwarebytes) C:\Users\Safrovi\Desktop\adwcleaner_8.0.2.exe
2020-02-16 18:20 - 2020-02-16 18:20 - 000000154 _____ C:\Users\Safrovi\Desktop\odkazy.txt
2020-02-16 17:42 - 2020-02-16 17:42 - 000020113 _____ C:\Users\Safrovi\Downloads\2020057189.pdf
2020-02-16 11:20 - 2020-02-17 21:28 - 000050538 _____ C:\Users\Safrovi\Desktop\Addition.txt
2020-02-16 11:16 - 2020-02-17 21:20 - 002279424 _____ (Farbar) C:\Users\Safrovi\Desktop\FRST64.exe
2020-02-16 10:59 - 2020-02-16 10:59 - 001288408 _____ (Google LLC) C:\Users\Safrovi\Downloads\ChromeSetup.exe
2020-02-15 07:47 - 2020-02-15 07:47 - 000214496 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-02-14 17:52 - 2020-02-14 17:52 - 001099158 _____ C:\Users\Safrovi\Downloads\42.PROČ MÁŠ TAK VELKÉ UŠI, BABI ....pdf
2020-02-14 17:50 - 2020-02-14 17:50 - 005504824 _____ (ESET) C:\Users\Safrovi\Downloads\eset_smart_security_premium_live_installer.exe
2020-02-14 15:52 - 2020-02-14 15:53 - 000000000 ____D C:\Users\Safrovi\AppData\LocalLow\IGDump
2020-02-14 14:46 - 2020-02-14 14:46 - 000441816 _____ C:\Windows\system32\FNTCACHE.DAT
2020-02-13 18:04 - 2020-02-15 16:00 - 000000000 ____D C:\Users\Safrovi\Desktop\PROJEKT
2020-02-10 14:38 - 2020-02-10 14:38 - 000000000 ____D C:\Program Files\Bonjour
2020-02-10 14:38 - 2020-02-10 14:38 - 000000000 ____D C:\Program Files (x86)\Bonjour
2020-02-06 17:30 - 2020-02-06 17:43 - 000000000 ____D C:\Users\Safrovi\Downloads\TVARY
2020-02-05 18:06 - 2020-02-05 18:13 - 000000000 ____D C:\Users\Safrovi\Downloads\brusle
2020-02-05 08:03 - 2020-02-09 22:02 - 000003730 _____ C:\Users\Safrovi\Desktop\ovoce x zelenina.txt
2020-02-03 21:19 - 2020-02-03 21:19 - 000006789 _____ C:\Users\Safrovi\Downloads\3451_12_2019(1).xlsx
2020-02-03 20:13 - 2020-02-03 20:13 - 000002611 _____ C:\Users\Safrovi\Desktop\smuteční řeč.txt
2020-02-03 18:31 - 2020-02-03 18:31 - 003588168 _____ C:\Users\Safrovi\Downloads\vy_32_inovace_cj_1.04.pdf
2020-02-03 18:31 - 2020-02-03 18:31 - 003588168 _____ C:\Users\Safrovi\Downloads\vy_32_inovace_cj_1.04(1).pdf
2020-02-02 18:56 - 2020-02-02 18:56 - 000437073 _____ C:\Users\Safrovi\Downloads\zadost-o-prispevek-z-fondu-prevence-pro-pojistence.pdf
2020-02-02 18:38 - 2020-02-02 18:38 - 000171809 _____ C:\Users\Safrovi\Downloads\hb_zadost_urokova_sazba_576160-1_20190404_008.pdf
2020-02-02 18:38 - 2020-02-02 18:38 - 000148673 _____ C:\Users\Safrovi\Downloads\hb_oznameni_576160-1_20190404_149(1).pdf
2020-02-02 18:31 - 2020-02-02 18:31 - 000012851 _____ C:\Users\Safrovi\Downloads\hb_splatkovy_plan_576160-1_20200202.csv
2020-02-02 17:46 - 2020-02-02 17:47 - 000009038 _____ C:\Users\Safrovi\Desktop\OVOCE A ZELENINA.txt
2020-02-01 12:02 - 2020-02-01 12:02 - 008400857 _____ C:\Users\Safrovi\Downloads\6.pdf
2020-02-01 10:23 - 2020-02-01 10:23 - 000142676 _____ C:\Users\Safrovi\Downloads\Vypis_z_uctu_491306329_z_20200131.pdf
2020-01-31 17:14 - 2020-01-31 17:14 - 000127056 _____ C:\Users\Safrovi\Downloads\Vypis_z_uctu_491306329_z_20191231(1).pdf
2020-01-28 20:25 - 2020-01-28 20:25 - 000009616 _____ C:\Users\Safrovi\Downloads\comgate prosinec 2019 export transakcí Zuzana Šafrová .csv
2020-01-28 19:59 - 2020-01-28 19:59 - 000011787 _____ C:\Users\Safrovi\Downloads\Klientský portál export transakcí Zuzana Šafrová.csv
2020-01-27 19:59 - 2020-01-27 19:59 - 002346991 _____ C:\Users\Safrovi\Downloads\41. Sada - Karnevalové krátkohrátky, Máme rádi pohádky.pdf
2020-01-27 19:39 - 2020-01-27 19:39 - 004876371 _____ C:\Users\Safrovi\Downloads\40. -SADA ZÁSOBNÍKŮ -ZIMA, SILNICE ,ZVÍŘÁTKA.pdf
2020-01-27 18:16 - 2020-01-27 18:16 - 000000997 _____ C:\Users\Public\Desktop\HiSuite.lnk
2020-01-27 18:16 - 2020-01-27 18:16 - 000000997 _____ C:\ProgramData\Desktop\HiSuite.lnk
2020-01-27 18:16 - 2020-01-27 18:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2020-01-27 18:16 - 2020-01-27 18:16 - 000000000 ____D C:\Program Files (x86)\HiSuite
2020-01-26 11:08 - 2020-01-26 11:08 - 001514375 _____ C:\Users\Safrovi\Downloads\38. Co silnice vyprávěly.pdf
2020-01-26 11:08 - 2020-01-26 11:08 - 001466525 _____ C:\Users\Safrovi\Downloads\39. KARNEVALOVÉ KRÁTKOHRÁTKY.pdf
2020-01-23 19:57 - 2020-01-23 19:57 - 000000000 ____D C:\Users\Safrovi\Downloads\ZIMNÍ SPORTY
2020-01-23 18:05 - 2020-01-23 18:05 - 000244350 _____ C:\Users\Safrovi\Desktop\SK_Prihlaska_Clen_06.18(3).pdf
2020-01-23 18:01 - 2020-01-23 18:01 - 000298881 _____ C:\Users\Safrovi\Downloads\SK_Prihlaska_Clen_06.18(3).pdf
2020-01-22 18:52 - 2020-01-22 18:52 - 001522335 _____ C:\Users\Safrovi\Downloads\program_ceske_vanoce_0.pdf
2020-01-20 20:40 - 2020-01-20 20:41 - 000000000 ____D C:\Users\Safrovi\Downloads\KYTKY
2020-01-20 20:25 - 2020-01-20 20:25 - 000134883 _____ C:\Users\Safrovi\Downloads\Potvrzení o zaplaceném pojistném pro da_ové odpo_ty_0(2).pdf
2020-01-19 17:10 - 2020-01-19 17:10 - 000085658 _____ C:\Users\Safrovi\Downloads\Sieger-lineart.svg
2020-01-19 17:06 - 2020-01-19 17:06 - 003501958 _____ C:\Users\Safrovi\Downloads\3xy1_8ozd_140917.zip
2020-01-19 17:05 - 2020-01-19 17:05 - 000353386 _____ C:\Users\Safrovi\Downloads\korea_winter_olympic2.zip
2020-01-19 16:02 - 2020-01-19 16:02 - 000472692 _____ C:\Users\Safrovi\Downloads\Olympijské-kruhy-k-vybarvení.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-17 21:32 - 2016-11-18 22:53 - 000000000 ____D C:\FRST
2020-02-17 18:10 - 2015-11-06 08:51 - 000004478 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-02-17 18:04 - 2013-09-30 23:23 - 000000000 ____D C:\ProgramData\PDFC
2020-02-17 17:04 - 2020-01-13 18:38 - 000000000 ____D C:\Users\Safrovi\Desktop\HOTOVÉ PŘÍPRAVY
2020-02-17 16:21 - 2009-07-14 05:45 - 000031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-02-17 16:21 - 2009-07-14 05:45 - 000031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-02-17 16:18 - 2016-11-18 19:26 - 000000000 ____D C:\Users\Safrovi\AppData\LocalLow\Mozilla
2020-02-17 16:12 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-16 19:36 - 2013-12-19 10:59 - 000002302 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-16 19:36 - 2013-12-19 10:59 - 000002261 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-02-16 19:36 - 2013-12-19 10:59 - 000002261 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-02-16 15:02 - 2015-11-14 21:34 - 000000000 ____D C:\Users\Safrovi\Desktop\upravené obrázky
2020-02-15 15:42 - 2019-01-23 08:12 - 000000000 ____D C:\Users\Safrovi\Desktop\foto mobil
2020-02-15 15:35 - 2013-12-16 22:41 - 000000000 ____D C:\Users\Safrovi\AppData\Roaming\VSO
2020-02-15 07:44 - 2009-07-14 06:08 - 000032600 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2020-02-14 15:52 - 2019-12-10 07:31 - 000000000 ____D C:\Users\Safrovi\AppData\Local\cache
2020-02-13 21:27 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-02-12 15:47 - 2013-12-16 20:05 - 000000000 ____D C:\Windows\system32\MRT
2020-02-12 15:43 - 2013-12-16 20:05 - 120407888 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-02-12 14:11 - 2016-11-18 19:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-02-11 18:32 - 2018-03-13 18:32 - 000004536 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-02-11 18:32 - 2015-10-02 05:12 - 000004396 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-02-11 18:32 - 2013-09-30 23:19 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-02-11 18:32 - 2013-09-30 23:19 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-02-11 18:32 - 2013-09-30 23:19 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-02-11 18:32 - 2013-09-30 23:19 - 000000000 ____D C:\Windows\system32\Macromed
2020-02-10 14:39 - 2013-09-30 23:17 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-10 14:37 - 2018-09-01 20:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-02-10 14:30 - 2016-09-04 17:05 - 000002170 _____ C:\Users\Safrovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2020-02-10 14:30 - 2014-12-20 20:58 - 000000000 ___RD C:\Users\Safrovi\OneDrive
2020-02-09 19:31 - 2019-08-04 18:09 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-02-09 19:27 - 2015-07-22 00:10 - 000038113 ____H C:\Users\Safrovi\Downloads\.picasa.ini
2020-02-06 18:09 - 2013-09-30 22:41 - 000672158 _____ C:\Windows\system32\perfh005.dat
2020-02-06 18:09 - 2013-09-30 22:41 - 000142754 _____ C:\Windows\system32\perfc005.dat
2020-02-06 18:09 - 2009-07-14 06:13 - 001593238 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-06 07:29 - 2018-12-19 19:24 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d041068ddfdf5e
2020-02-06 07:29 - 2018-12-19 19:24 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d041068d2d5829
2020-02-01 10:38 - 2016-05-28 09:30 - 000086528 ___SH C:\Users\Safrovi\Thumbs.db
2020-01-31 21:49 - 2018-08-08 12:34 - 000000000 ____D C:\Users\Safrovi\Desktop\A 02 - JANCA
2020-01-31 15:56 - 2018-07-18 06:46 - 000000000 ____D C:\Users\Safrovi\Desktop\A 01 - KACKA
2020-01-28 21:13 - 2013-12-16 20:22 - 000000000 ____D C:\Users\Safrovi\AppData\Local\CrashDumps
2020-01-27 18:17 - 2018-02-16 10:37 - 000000000 ____D C:\Users\Safrovi\AppData\Local\Hisuite
2020-01-21 07:24 - 2013-12-16 19:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-02-17 18:29
==================== End of FRST.txt ========================
Posílám logy:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-02-2020
Ran by Safrovi (17-02-2020 21:32:30)
Running from C:\Users\Safrovi\Desktop
Windows 7 Professional Service Pack 1 (X64) (2013-12-16 18:09:21)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3453386134-3950636445-3288212601-500 - Administrator - Disabled)
blabla (S-1-5-21-3453386134-3950636445-3288212601-1004 - Limited - Enabled) => C:\Users\blabla
Guest (S-1-5-21-3453386134-3950636445-3288212601-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3453386134-3950636445-3288212601-1003 - Limited - Enabled)
Safrovi (S-1-5-21-3453386134-3950636445-3288212601-1002 - Administrator - Enabled) => C:\Users\Safrovi
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: ESET Security (Enabled - Up to date) {333C65BB-8923-0EAA-C47E-C486E687BEFD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acronis True Image (HKLM-x32\...\{9BB8598B-C237-446F-AD4E-8F0FA6A93D10}) (Version: 22.6.15470 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{9BB8598B-C237-446F-AD4E-8F0FA6A93D10}Visible) (Version: 22.6.15470 - Acronis)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.330 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.330 - Adobe)
Advertising Center (HKLM-x32\...\{b2ec4a38-b545-4a00-8214-13fe0e915e6d}) (Version: 0.0.0.1 - Nero AG) Hidden
Alcor Micro USB Card Reader Driver (HKLM-x32\...\{0DEB2EEB-BE9A-44B1-9D90-183250B61785}) (Version: 20.13.3317.03143 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{0DEB2EEB-BE9A-44B1-9D90-183250B61785}) (Version: 20.13.3317.03143 - Alcor Micro Corp.)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 19.1.7734 - AVAST Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon MP280 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP280_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
CDex - Digital Audio CD Extractor and Converter (HKLM-x32\...\CDex) (Version: 2.21.0.2019 - CDex.mu)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Device Access Manager for HP ProtectTools (HKLM\...\{55B52830-024A-443E-AF61-61E1E71AFA1B}) (Version: 7.1.2.0 - Hewlett-Packard Company)
DirectX for Managed Code Update (Summer 2004) (HKLM-x32\...\{E9E34215-82EF-4909-BE2F-F581F0DC9062}) (Version: 9.02.2904 - Microsoft) Hidden
Doplněk Microsoft Outlook Hotmail Connector (64bitový) (HKLM\...\{95140000-007A-0405-1000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Drive Encryption For HP ProtectTools (HKLM\...\{27F1E086-5691-4EB8-8BA1-5CBA87D67EB5}) (Version: 7.0.40.35706 - Hewlett-Packard Company)
Dropbox (HKLM-x32\...\Dropbox) (Version: 82.4.155 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
Easy Poster Printer (HKLM-x32\...\{1B2A990F-B138-49A3-8916-706849DF903A}) (Version: 2.0.1 - GD Software)
ESET Security (HKLM\...\{B489BC2D-0079-4631-97BF-CA2378299D43}) (Version: 13.0.24.0 - ESET, spol. s r.o.)
File Sanitizer For HP ProtectTools (HKLM-x32\...\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}) (Version: 7.0.0.4 - Hewlett-Packard Company)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit PDF Editor (HKLM-x32\...\Foxit PDF Editor) (Version: - )
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.106 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
HD Tune Pro 5.70 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.0.1.100 - Huawei Technologies Co.,Ltd)
HP DeskJet 3700 series Nápověda (HKLM-x32\...\{3F0E1790-4066-4B36-9F9C-6E1C7AC1BE80}) (Version: 40.0.0 - HP)
HP Dropbox Plugin (HKLM-x32\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP ProtectTools Security Manager (HKLM\...\HPProtectTools) (Version: 7.0.2.1213 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15430.4033 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPLJUTCore (HKLM-x32\...\{30DD7187-F392-4D83-8AED-D9A2DC64EF15}) (Version: 008.000.0001 - HP) Hidden
hppLaserJetService (HKLM-x32\...\{178F0383-A2F1-427C-9881-6EACB8728C76}) (Version: 009.033.00905 - Hewlett-Packard) Hidden
hppM1130M1210SeriesLaserJetService (HKLM-x32\...\{0E448256-D515-4C3E-A5BE-0A7B76CED5D4}) (Version: 001.003.00073 - Hewlett-Packard) Hidden
hppM125LaserJetService (HKLM-x32\...\{18D5B189-DBDD-4E57-A84B-58C7700E9BB0}) (Version: 001.032.00682 - Hewlett-Packard) Hidden
hppusgM1130M1210Series (HKLM-x32\...\{DA6CC3A5-1F5B-4068-8BFF-C597BB6B8158}) (Version: 1.0.0.2 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.6.0.1033 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.6.245 - Intel Corporation)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
LabelPrint (HKLM-x32\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.)
Light Image Resizer 4.0.4.3 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.0.4.3 - ObviousIdea)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 365 Business - cs-cz (HKLM\...\O365BusinessRetail - cs-cz) (Version: 16.0.12430.20184 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Support and Recovery Assistant for Office 365 (HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\dacae1bed46e81d5) (Version: 16.0.2514.4 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\Teams) (Version: 1.2.00.22654 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27027 (HKLM-x32\...\{39e28474-b67b-4209-af1b-e9ad0a83d8ca}) (Version: 14.16.27027.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 73.0 (x64 cs) (HKLM\...\Mozilla Firefox 73.0 (x64 cs)) (Version: 73.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 72.0.2.7321 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 9 Essentials (HKLM-x32\...\{8992d43a-9067-4c13-8e9c-fd97d39f89e4}) (Version: - Nero AG)
NirSoft ProduKey (HKLM-x32\...\NirSoft ProduKey) (Version: - )
NVIDIA Graphics Driver 311.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.10 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20184 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden
PDF Architect (HKLM-x32\...\{064A929A-4DE8-40CF-A901-BD40C14E4D25}) (Version: 1.1.83.9982 - pdfforge GmbH)
PDF Architect 6 (HKLM-x32\...\PDF Architect 6) (Version: 6.1.19.842 - pdfforge GmbH)
PDF Architect 6 Create Module (HKLM\...\{A0ACB885-7CDD-4E43-9109-E49CF70E4039}) (Version: 6.1.24.1862 - pdfforge GmbH) Hidden
PDF Architect 6 Edit Module (HKLM\...\{FC39343C-732F-433E-9929-F9D08BA73792}) (Version: 6.1.24.1862 - pdfforge GmbH) Hidden
PDF Architect 6 View Module (HKLM\...\{7FFD0E0F-478A-4393-BBB0-4B20FAF5F3B7}) (Version: 6.1.24.1862 - pdfforge GmbH) Hidden
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.2.33 - PDF Complete, Inc)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.5.1 - pdfforge GmbH)
PDP 2016.01 (HKLM-x32\...\Podnikový a domácí právník 2016_is1) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.6207 - CyberLink Corp.) Hidden
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.6207 - CyberLink Corp.)
Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.0.5223 - CyberLink Corp.) Hidden
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14044_17 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14044_17 - Samsung Electronics Co., Ltd.)
Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version: - )
Samsung PC Studio 3 (HKLM-x32\...\{C4A4722E-79F9-417C-BD72-8D359A090C97}) (Version: 3.2.1.71009 - Samsung Electronics Co., Ltd.)
Samsung PC Studio 3 (HKLM-x32\...\{C79A37F3-C076-48BE-B290-F4C8676ABD74}) (Version: 3.0.0.71009 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Studie vylepšování produktu HP DeskJet 3700 series (HKLM\...\{D6FF350C-3BF6-403E-ACB7-A7FF503F99D4}) (Version: 40.2.1085.16354 - HP Inc.)
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.22654 - Microsoft Corporation)
Theft Recovery for HP ProtectTools (HKLM-x32\...\{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.1.02 - Hewlett-Packard Company) Hidden
Theft Recovery for HP ProtectTools (HKLM-x32\...\InstallShield_{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.1.02 - Hewlett-Packard Company)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
WinZip 16.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240CD}) (Version: 16.0.9715 - WinZip Computing, S.L. )
WinZip 24.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C24121}) (Version: 24.0.13618 - Corel Corporation)
Základní software zařízení HP DeskJet 3700 series (HKLM\...\{29CFED6E-54E9-45D4-8C33-0DCE01203FD3}) (Version: 40.2.1085.16354 - HP Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3453386134-3950636445-3288212601-1002_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Safrovi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3453386134-3950636445-3288212601-1002_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll (Corel Corporation -> )
CustomCLSID: HKU\S-1-5-21-3453386134-3950636445-3288212601-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Safrovi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-10-16] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-10-16] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-10-16] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-10-16] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [PDFArchitect6_ManagerExt] -> {6508EEA0-C540-4420-AF21-64937A1536D0} => C:\Program Files\PDF Architect 6\context-menu.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1-x32: [PDFArchitectExtension] -> {DBDB3433-0E01-40CE-A026-D9F54FAC3CA9} => C:\Program Files (x86)\PDF Architect\ContextMenuExt.dll [2013-04-08] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2018-11-13] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-08-29] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [ImageResizerShellExt64] -> {C6193976-9333-4E73-96BA-7B21CA942187} => C:\Program Files (x86)\ObviousIdea\Image Resizer 4\RSZShell64.dll [2011-03-12] (ObviousIdea -> ObviousIdea SARL)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-08-29] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2013-01-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-08-29] (Corel Corporation -> WinZip Computing)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-07-26 09:51 - 2016-09-12 14:53 - 048936448 _____ () [File not signed] C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll
2013-02-21 19:06 - 2013-02-21 19:06 - 002043904 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeCoreEncryptionPlugin.dll
2013-02-21 19:02 - 2013-02-21 19:02 - 000126976 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHostInterface.dll
2013-02-21 19:03 - 2013-02-21 19:03 - 000141824 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHostInterface64.dll
2013-02-21 19:08 - 2013-02-21 19:08 - 001949696 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeProductDetectionPlugin.dll
2013-02-21 19:36 - 2013-02-21 19:36 - 002867200 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeHpDpHostPlugin.dll
2013-02-21 19:50 - 2013-02-21 19:50 - 003346432 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeHpFve64.dll
2013-02-21 19:34 - 2013-02-21 19:34 - 000053248 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeOpalATASec4SATA.dll
2013-02-21 19:31 - 2013-02-21 19:31 - 003035136 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeOpalEncryptionProviderPlugin.dll
2013-02-21 19:32 - 2013-02-21 19:32 - 002854912 _____ () [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcEncryptionProviderPlugin.dll
2009-09-16 17:44 - 2009-09-16 17:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\Windows\System32\hptcpmib.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\Windows\System32\HpTcpMon.dll
2009-09-16 10:44 - 2009-09-16 10:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\Windows\System32\hpzjrd01.dll
2012-12-04 09:52 - 2012-12-04 09:52 - 000041472 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPHTTPProxy.dll
2012-12-04 09:51 - 2012-12-04 09:51 - 000073728 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPTools.dll
2012-12-04 09:52 - 2012-12-04 09:52 - 001219072 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\LEDMXMLObjects.dll
2013-09-30 23:23 - 2012-12-01 09:16 - 000365568 _____ (Hewlett-Packard) [File not signed] C:\Windows\System32\hpbprtmon.dll
2012-12-01 09:16 - 2012-12-01 09:16 - 000378880 _____ (Hewlett-Packard) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\hpbxjobsvr1203.dll
2012-12-04 09:51 - 2012-12-04 09:51 - 000034816 _____ (HP) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPServiceCommunicator.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\HPTcpMUI.dll
2014-07-20 11:26 - 2019-02-28 17:32 - 000116736 _____ (pdfforge GmbH) [File not signed] C:\Windows\System32\pdfcmon.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\sharepoint.com -> hxxps://zuzanasafrova-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2016-01-26 18:35 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\;C:\Program Files (x86)\Samsung\Samsung PC Studio 3\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\FileProtector\;C:\Program Files (x86)\Common Files\Acronis\FileProtector64\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Safrovi\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-3453386134-3950636445-3288212601-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\blabla\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 62.24.64.2 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [{559916B3-7D27-45DC-ADDF-183EA9FA0BAC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{65968643-4B81-4AFC-BB99-74DCF8CE391A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{01DFB311-54CD-4280-A56C-7D95CE754D69}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C2975667-57F4-4596-ABDF-A9ECA7D02F67}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{35789B79-6320-4E11-AE2D-31A8AEABCBDB}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{46782061-401E-43C6-B23F-1ED67AD3C2DB}] => (Allow) LPort=2869
FirewallRules: [{5E6F1A2B-BC1A-4CB3-917C-18D98F2256CE}] => (Allow) LPort=1900
FirewallRules: [{9A0B3C05-D7D0-4052-8F5E-372180E25C45}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9EE320AB-4C2A-4519-9558-68B969F3E9DF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B2A5557F-A431-4F9D-A12C-9DE2F60B0A69}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A346329F-A5C5-455D-89B5-0022F734B3D6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EE25F1B9-45B1-42D4-A30B-43C4228AFDF0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C0F866BE-229D-4C8E-9B53-1685BC9F011A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EC5B2022-447C-47A1-B980-D3C7512719DF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D0FF719A-E857-4044-B18B-A455A344D2FF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{1746CBC1-28A6-4EB8-8418-2EA015E670DF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F338FEE8-F5FA-472C-A11A-200C8F0B5297}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0C1D3535-07C0-4E63-8A71-3E101C80908F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4A01C587-A764-463F-B48C-F7E2626AD413}] => (Allow) C:\Program Files\HP\HP DeskJet 3700 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{2690AE43-DCA7-4325-96DB-8D42401C0175}] => (Allow) LPort=5357
FirewallRules: [{017B97D7-2B51-47F0-8C1C-976DA04BA313}] => (Allow) C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{10B7E4A6-BA85-4E8E-8C9A-F0AA7E0B53EF}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{96982D09-EDC1-46CA-B8ED-BDE97133907A}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{1EE87643-3AD9-425C-8E87-63AD066A5D69}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{12091E4F-AF64-4024-AA24-5BC3F1B910E9}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{E83CC07F-A426-4ED5-B4C4-4C90206E4907}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{2FD8E9B7-6B5C-4493-AC49-BFDC03E204C6}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{90A30515-A302-430D-AAE7-7CDC1A35028F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{A0E6B4C8-94AC-4D95-BA8B-C0B57B5F9C16}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{AE94346F-ED7C-4B9B-BBB8-600110B0EE47}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{DD9CA9D5-6AB9-4E6C-A4C8-31370D5EB09F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{663BAFE4-4201-4725-92B7-0DE9F5A27963}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{3BDAE5F5-8B2C-4BC4-A346-7154023A178F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{238E0CC4-9210-4C09-B139-5719AD7CD9A6}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{9BE1E1DC-3730-4794-84B2-28FCE47EEE6B}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{105DB1AF-2FF3-4ECE-A72E-CA9B80190AAF}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{B6CCAF90-C18A-4D17-B9FE-FDF27769D73B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
FirewallRules: [{BD296899-9476-40C3-B3B8-001184DBDDFF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
FirewallRules: [{370BE7D5-BE2B-4D7B-97F1-F3016AAA46AC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E377295B-BBFC-4E29-B839-8A91D885A69F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{02B744F6-5FDB-4884-BF02-20588896C8E6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C4E501AE-F328-4AA0-B0C0-4E327405A569}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{32E079A7-2135-49FD-908B-DBC135B410F4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{21F3328C-C9FE-41E3-932F-D913C4D9812C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
10-02-2020 20:00:22 Windows Update
10-02-2020 21:20:33 Windows Update
11-02-2020 20:00:23 Windows Update
11-02-2020 20:58:01 Windows Update
12-02-2020 15:42:27 Windows Update
12-02-2020 23:04:37 Windows Update
13-02-2020 20:00:22 Windows Update
13-02-2020 21:26:31 Windows Update
14-02-2020 20:00:17 Windows Update
14-02-2020 22:56:21 Windows Update
15-02-2020 20:00:34 Windows Update
15-02-2020 21:42:18 Windows Update
16-02-2020 20:00:13 Windows Update
16-02-2020 22:42:03 Windows Update
17-02-2020 08:51:00 Windows Update
17-02-2020 20:00:16 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/14/2020 02:50:51 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, mapi15://{S-1-5-21-3453386134-3950636445-3288212601-1002}/>.
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.
Kontext: aplikace Windows
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:48 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
Error: (02/14/2020 02:49:44 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/14/2020 02:49:44 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Služba Windows Search nenačetla informace o úložišti vlastností.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Server indexu obsahu neaktualizoval nebo nenačetl informace kvůli chybě databáze. Zastavte a restartujte vyhledávací službu. Pokud potíže potrvají, vymažte index obsahu a proveďte znovu jeho procházení. V některých případech bude pravděpodobně nutné odstranit a znovu vytvořit index obsahu. (HRESULT : 0x8004117f) (0x8004117f)
System errors:
=============
Error: (02/17/2020 08:02:16 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Error: (02/17/2020 04:15:55 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
StarOpen
Error: (02/17/2020 04:12:10 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \SystemRoot\SysWow64\Drivers\StarOpen.SYS bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.
Error: (02/17/2020 08:52:35 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Acronis Nonstop Backup Service se po přijetí pokynu pro vypnutí neukončila správně.
Error: (02/17/2020 08:52:00 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Error: (02/17/2020 08:51:55 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Error: (02/17/2020 08:51:55 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Error: (02/17/2020 08:51:54 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): NVIDIA - Display - 12/18/2017 12:00:00 AM - 23.21.13.8873.
Windows Defender:
===================================
Date: 2014-12-16 18:56:53.533
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:1.189.1916.0
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:1.1.11202.0
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2014-12-16 18:56:53.533
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:
Předchozí verze modulu:1.1.11202.0
Zdroj aktualizace:Složka aktualizace podpisů
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2014-12-16 10:25:24.939
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:1.189.1916.0
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:1.1.11202.0
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2014-12-16 10:25:24.939
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:
Předchozí verze modulu:1.1.11202.0
Zdroj aktualizace:Složka aktualizace podpisů
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2014-12-16 07:42:40.930
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:1.189.1916.0
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Úplné
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:1.1.11202.0
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
==================== Memory info ===========================
BIOS: AMI 8.18 03/18/2013
Motherboard: PEGATRON CORPORATION 2AD5
Processor: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz
Percentage of memory in use: 60%
Total physical RAM: 8129.12 MB
Available physical RAM: 3195.95 MB
Total Virtual: 16256.38 MB
Available Virtual: 11402.55 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:1847.4 GB) (Free:1716.93 GB) NTFS
Drive d: (Elements) (Fixed) (Total:1862.98 GB) (Free:1467.39 GB) NTFS
Drive e: (HP_RECOVERY) (Fixed) (Total:15.41 GB) (Free:1.82 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive l: (VERBATIM HD) (Fixed) (Total:465.65 GB) (Free:451.32 GB) FAT32
\\?\Volume{f15a5144-66c7-11e3-a48e-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{afeccac7-2a23-11e3-978b-806e6f6e6963}\ (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: E3594632)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1847.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15.4 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=104 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 666ABBD5)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=0C)
==========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: D954268B)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-02-2020
Ran by Safrovi (administrator) on SAFROVI-HP (Hewlett-Packard ) (17-02-2020 21:31:44)
Running from C:\Users\Safrovi\Desktop
Loaded Profiles: Safrovi & blabla (Available Profiles: Safrovi & blabla)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eOppFrame.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(HP) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [37888 2012-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard )
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-04-24] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [585296 2017-11-22] (Acronis International GmbH -> )
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [183088 2019-12-12] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-08-29] (Corel Corporation -> Corel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [290688 2012-11-06] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [File Sanitizer] => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [12310616 2012-03-09] (Softex Incorporated -> Hewlett-Packard)
HKLM-x32\...\Run: [HPUsageTrackingLEDM] => "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6210368 2019-10-02] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [4848280 2019-02-01] (Acronis International GmbH -> )
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [1194048 2018-02-01] (PDF Complete Inc. -> PDF Complete Inc)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2017-10-16] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Safrovi\AppData\Local\Microsoft\Teams\Update.exe [1780448 2019-06-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {2f9ac852-b98d-11e8-898d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {3284a34b-758a-11e9-a1b2-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {4e36c131-ad0a-11e9-b029-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {57534a6f-d565-11e9-9c68-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {59c4831f-1700-11e9-9153-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a1e4f604-4105-11ea-a01d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a9efed85-cbc1-11e8-ae84-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {db25b4cd-055d-11ea-9ba5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {df5be5f8-c755-11e9-a15e-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {e6f5612f-73d1-11e8-b1d5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {fd4be2bc-c405-11e9-8aaf-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [241664 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3453386134-3950636445-3288212601-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.106\Installer\chrmstp.exe [2020-02-16] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{438363A8-F486-4C37-834C-4955773CB3D3}] -> msiexec /fu {438363A8-F486-4C37-834C-4955773CB3D3} /qn
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{02AA8B83-49C5-482C-915A-B6824F665CCD}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{2A16DF2F-490B-4F2B-8C68-21EF46FCCC37}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{3ADC7042-51AF-4D0F-BD1D-4D6965A77323}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{57E84B57-5533-4624-AB49-E29C8C5489D6}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{70099717-17C8-4BD0-B3D4-FAF721AB1A62}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{FD2AB138-F9A8-4ab6-9095-EEE7AF8B6C28}] -> C:\Windows\system32\DPCrProv.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{8D90E7E9-6F48-4e24-85E0-596C8E6C4639}] -> c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCmsGPOClient.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{D75A25CD-0CCA-4C3C-A5E6-94039CC03B72}] -> c:\Windows\system32\DPLic.dll [2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2018-07-26]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2019-09-11]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
Startup: C:\Users\Safrovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2016-09-04]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (No File)
Startup: C:\Users\Safrovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledování výstrah kazety - HP DJ 3700 series.lnk [2020-02-17]
ShortcutAndArgument: Sledování výstrah kazety - HP DJ 3700 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP DeskJet 3700 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN8894P0JH06H8;CONNECTION=USB;MONITOR=1;
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {138808CF-24B3-4E17-9EF3-814FC0786F11} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-02-11] (Adobe Inc. -> Adobe)
Task: {2712CCD2-31C4-4AF6-BB29-39F99C50F9A1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe
Task: {27B46EFF-0948-40DC-AC64-98D5866D4E1F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {33D09E81-64D7-443A-AD4C-91032F4AE577} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-08-29] (Corel Corporation -> Corel Corporation)
Task: {38BF5B60-CCD2-4951-95D4-BE79C0F997CC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {445851A7-26E8-4982-B3A2-DDA3D0A5CA18} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {46B88247-BD25-4797-8AC2-82183F57EABD} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-08-29] (Corel Corporation -> Corel Corporation)
Task: {478D398B-F0EA-4FD5-8A9B-A3FFB2467432} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {485A5ACF-310A-4876-9C79-882487AF2A22} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {49EBA26C-4EE8-46F3-844E-F440C05DCCEF} - System32\Tasks\HPCustPartic.exe_{297A0A1F-DB47-440A-95A1-4F39DF89E680} => C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPCustPartic.exe [6438536 2016-12-19] (Hewlett Packard -> HP Inc.)
Task: {4CAAA2D6-E970-47EF-AE1E-DD69BBF5D37D} - System32\Tasks\GoogleUpdateTaskMachineCore1d041068d2d5829 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {6E67CECD-6725-4BE7-9705-4B368C885414} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {79B87823-5DED-474F-BCB6-2450E173C392} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1448832 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9109BFC4-51E9-4616-9047-8ACCFE32416B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_330_Plugin.exe [1458232 2020-02-11] (Adobe Inc. -> Adobe)
Task: {A039FC6C-9585-4199-A5F2-7E3545B8873D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115440 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {A45576EE-1065-400C-AF19-3A7CEAB87C8E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115440 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {B2976C52-D3DA-4BFA-B753-AF72952283DB} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [1659000 2019-07-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {B6A5FBDF-8B77-4D3C-8781-793EB00955F5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1354064 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {CBB2300D-9945-4F23-A3EF-C99F40162A68} - System32\Tasks\HPCeeScheduleForSafrovi => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: {D151EDBB-B5E3-472B-8B0C-454D2D01AE89} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2019-08-29] (Corel Corporation -> Corel Corporation)
Task: {D28F2FDB-99A6-497C-A0BF-475B08492BAA} - System32\Tasks\HPCeeScheduleForSAFROVI-HP$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: {DFE72EE2-5AD5-428F-A829-4DDC4B168CAA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {E0A95F6C-A4DF-43F6-AD23-CEC69F042387} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe
Task: {E4AB52C3-3748-40CB-B124-DB9929631CAB} - System32\Tasks\HPCustParticipation HP DeskJet 3700 series => C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPCustPartic.exe [6438536 2016-12-19] (Hewlett Packard -> HP Inc.)
Task: {E5BF0455-A10E-4C60-B907-492981E18937} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1354064 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {EB5A0D84-20DA-441B-B7B5-3F656A5E0783} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {F1019826-04D6-41D0-B679-76853A51979F} - System32\Tasks\GoogleUpdateTaskMachineUA1d041068ddfdf5e => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {F1E71B8B-665E-46ED-A943-A1624C3243BF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {F5230F97-CFE7-4929-A330-3A309680E2D8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 62.24.64.2 8.8.8.8 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{11C6231B-48B5-4393-9ADC-D8834B961E86}: [DhcpNameServer] 62.24.64.2 8.8.8.8 8.8.8.8 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3453386134-3950636445-3288212601-1004 -> {32D14CA0-5EF8-4F80-993B-2E368DFAD94D} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO: PDF Architect 6 Helper -> {9FD094B1-A4BF-415A-82AE-8C2845D0B769} -> C:\Program Files\PDF Architect 6\creator\plugins\IEAddin\creator-ie-helper.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2012-03-09] (Softex Incorporated -> Hewlett-Packard)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08] (pdfforge GmbH -> pdfforge GmbH)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: PDF Architect 6 Helper -> {9FD094B1-A4BF-415A-82AE-8C2845D0B769} -> C:\Program Files (x86)\PDF Architect 6\creator\plugins\IEAddin\creator-ie-helper.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - PDF Architect 6 Toolbar - {E8536605-CA24-4DFF-B1BC-316EE27F6DF7} - C:\Program Files\PDF Architect 6\creator\plugins\IEAddin\creator-ie-plugin.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
Toolbar: HKLM-x32 - PDF Architect 6 Toolbar - {E8536605-CA24-4DFF-B1BC-316EE27F6DF7} - C:\Program Files (x86)\PDF Architect 6\creator\plugins\IEAddin\creator-ie-plugin.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 9f48d6zo.default-1439536559487-1552502079990
FF ProfilePath: C:\Users\Safrovi\AppData\Roaming\Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 [2020-02-17]
FF Homepage: Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 -> hxxps://www.skolka-pripravy.cz; hxxps://www.eva.cz; hxxps://www.facebook.com; hxxps://www.csob.cz; hxxps://www.mesec.cz
FF NewTabOverride: Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990 -> Enabled: {241ffcc1-cc25-47e9-86e6-ab5e79147952}
FF Extension: (Group Speed Dial) - C:\Users\Safrovi\AppData\Roaming\Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990\Extensions\admin@fastaddons.com_GroupSpeedDial.xpi [2020-02-17]
FF Extension: (Tlačítko „Uložit“ pro Pinterest) - C:\Users\Safrovi\AppData\Roaming\Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2020-01-11]
FF Extension: (FF Speed Dial - New Tab with Custom tiles) - C:\Users\Safrovi\AppData\Roaming\Mozilla\Firefox\Profiles\9f48d6zo.default-1439536559487-1552502079990\Extensions\{241ffcc1-cc25-47e9-86e6-ab5e79147952}.xpi [2019-03-13]
FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06] [Legacy]
FF HKLM\...\Firefox\Extensions: [pdf_architect_6_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 6\creator\plugins\FirefoxAddin\pdf_architect_6_conv_v.2@pdfforge.org.xpi
FF Extension: (PDF Architect 6 Creator) - C:\Program Files\PDF Architect 6\creator\plugins\FirefoxAddin\pdf_architect_6_conv_v.2@pdfforge.org.xpi [2018-09-18]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-09-30] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: (PDF Architect Converter For Firefox) - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2014-03-21] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_6_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 6\creator\plugins\FirefoxAddin\pdf_architect_6_conv_v.2@pdfforge.org.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> )
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [No File]
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-17] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: digitalpersona.com/ChromeDPAgent -> c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll [2012-07-21] (DigitalPersona, Inc. -> Digital Persona, Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-02-17]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default [2020-02-17]
CHR NewTab: Default -> "active": false,
"entry": "chrome-extension://ejbjamhkdedinncaeiackcdehpccoejm/pages/newtab.html"
,
"active": false,
"entry": "chrome-extension://blmojkbhnkkphngknkmgccmlenfaelkd/speeddial/html/newTab.html"
CHR Extension: (Dokumenty) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-24]
CHR Extension: (Disk Google) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-24]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-07-26]
CHR Extension: (YouTube) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-22]
CHR Extension: (Vyhledávání Google) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-05]
CHR Extension: (Speed Dial) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbjamhkdedinncaeiackcdehpccoejm [2019-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-13]
CHR Extension: (Gmail) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-14]
CHR Profile: C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-02-17]
CHR Profile: C:\Users\Safrovi\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-17]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [2725920 2018-06-18] (Acronis International GmbH -> Acronis International GmbH)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [10287216 2019-07-25] (AVAST Software s.r.o. -> AVAST Software)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129712 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-10-02] (Dropbox, Inc -> Dropbox, Inc.)
R2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [494456 2012-07-21] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2245488 2019-12-12] (ESET, spol. s r.o. -> ESET)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477056 2012-11-19] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [174592 2012-12-04] (HP) [File not signed]
R2 HPFSService; c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [372824 2012-03-09] (Softex Incorporated -> Hewlett-Packard)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-12-27] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-12-10] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1327104 2013-02-21] () [File not signed]
S4 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2017-10-16] (Acronis International GmbH -> Acronis International GmbH)
S4 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2017-10-16] (Acronis International GmbH -> Acronis International GmbH)
S4 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1745344 2019-02-01] (Acronis International GmbH -> )
S4 PDF Architect 6; C:\Program Files\PDF Architect 6\ws.exe [2569976 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
S4 PDF Architect 6 Creator; C:\Program Files\PDF Architect 6\creator\common\creator-ws.exe [832248 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
S4 PDF Architect 6 Update Service; C:\Program Files\PDF Architect 6\updater-ws.exe [1665272 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
S4 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH -> pdfforge GmbH)
S4 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH -> pdfforge GmbH)
S4 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1795136 2018-02-01] (PDF Complete Inc. -> PDF Complete Inc)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [318464 2012-04-24] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 DAMDrv; C:\Windows\System32\DRIVERS\DAMDrv64.sys [64832 2012-11-09] (Hewlett-Packard Company -> Hewlett-Packard Company)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [149944 2019-10-28] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [103264 2019-10-28] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [189512 2019-10-28] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [50712 2019-10-28] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [79744 2019-12-12] (ESET, spol. s r.o. -> ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [64200 2019-12-12] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [116696 2019-12-12] (ESET, spol. s r.o. -> ESET)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 file_protector; C:\Windows\System32\DRIVERS\file_protector.sys [569392 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [379664 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28656 2013-04-30] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-02-15] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-02-17] (Malwarebytes Inc -> Malwarebytes)
R0 MfeEpeOpal; C:\Windows\System32\Drivers\MfeEpeOpal.sys [91176 2013-02-21] (McAfee, Inc. -> McAfee, Inc.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [158760 2013-02-21] (McAfee, Inc. -> McAfee, Inc.)
R3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () [File not signed]
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [536576 2012-04-24] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1310552 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [213336 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\Windows\System32\DRIVERS\tnd.sys [690520 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [331976 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 volume_tracker; C:\Windows\System32\DRIVERS\volume_tracker.sys [243472 2019-09-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-17 21:31 - 2020-02-17 21:32 - 000040822 _____ C:\Users\Safrovi\Desktop\FRST.txt
2020-02-17 17:35 - 2020-02-17 17:35 - 001427951 _____ C:\Users\Safrovi\Downloads\pohadky_2019(1).pdf
2020-02-17 17:34 - 2020-02-17 17:34 - 001827983 _____ C:\Users\Safrovi\Downloads\zdarma_zima_2020.pdf
2020-02-17 17:25 - 2020-02-17 21:20 - 000001484 _____ C:\Users\Safrovi\Desktop\hajný básničky.txt
2020-02-17 16:13 - 2020-02-17 16:13 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-02-16 22:37 - 2020-02-16 22:37 - 000000093 _____ C:\Users\Safrovi\Desktop\služba IDOKLAD FAKTURA.txt
2020-02-16 21:56 - 2020-02-16 21:57 - 008356016 _____ (Malwarebytes) C:\Users\Safrovi\Desktop\adwcleaner_8.0.2.exe
2020-02-16 18:20 - 2020-02-16 18:20 - 000000154 _____ C:\Users\Safrovi\Desktop\odkazy.txt
2020-02-16 17:42 - 2020-02-16 17:42 - 000020113 _____ C:\Users\Safrovi\Downloads\2020057189.pdf
2020-02-16 11:20 - 2020-02-17 21:28 - 000050538 _____ C:\Users\Safrovi\Desktop\Addition.txt
2020-02-16 11:16 - 2020-02-17 21:20 - 002279424 _____ (Farbar) C:\Users\Safrovi\Desktop\FRST64.exe
2020-02-16 10:59 - 2020-02-16 10:59 - 001288408 _____ (Google LLC) C:\Users\Safrovi\Downloads\ChromeSetup.exe
2020-02-15 07:47 - 2020-02-15 07:47 - 000214496 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-02-14 17:52 - 2020-02-14 17:52 - 001099158 _____ C:\Users\Safrovi\Downloads\42.PROČ MÁŠ TAK VELKÉ UŠI, BABI ....pdf
2020-02-14 17:50 - 2020-02-14 17:50 - 005504824 _____ (ESET) C:\Users\Safrovi\Downloads\eset_smart_security_premium_live_installer.exe
2020-02-14 15:52 - 2020-02-14 15:53 - 000000000 ____D C:\Users\Safrovi\AppData\LocalLow\IGDump
2020-02-14 14:46 - 2020-02-14 14:46 - 000441816 _____ C:\Windows\system32\FNTCACHE.DAT
2020-02-13 18:04 - 2020-02-15 16:00 - 000000000 ____D C:\Users\Safrovi\Desktop\PROJEKT
2020-02-10 14:38 - 2020-02-10 14:38 - 000000000 ____D C:\Program Files\Bonjour
2020-02-10 14:38 - 2020-02-10 14:38 - 000000000 ____D C:\Program Files (x86)\Bonjour
2020-02-06 17:30 - 2020-02-06 17:43 - 000000000 ____D C:\Users\Safrovi\Downloads\TVARY
2020-02-05 18:06 - 2020-02-05 18:13 - 000000000 ____D C:\Users\Safrovi\Downloads\brusle
2020-02-05 08:03 - 2020-02-09 22:02 - 000003730 _____ C:\Users\Safrovi\Desktop\ovoce x zelenina.txt
2020-02-03 21:19 - 2020-02-03 21:19 - 000006789 _____ C:\Users\Safrovi\Downloads\3451_12_2019(1).xlsx
2020-02-03 20:13 - 2020-02-03 20:13 - 000002611 _____ C:\Users\Safrovi\Desktop\smuteční řeč.txt
2020-02-03 18:31 - 2020-02-03 18:31 - 003588168 _____ C:\Users\Safrovi\Downloads\vy_32_inovace_cj_1.04.pdf
2020-02-03 18:31 - 2020-02-03 18:31 - 003588168 _____ C:\Users\Safrovi\Downloads\vy_32_inovace_cj_1.04(1).pdf
2020-02-02 18:56 - 2020-02-02 18:56 - 000437073 _____ C:\Users\Safrovi\Downloads\zadost-o-prispevek-z-fondu-prevence-pro-pojistence.pdf
2020-02-02 18:38 - 2020-02-02 18:38 - 000171809 _____ C:\Users\Safrovi\Downloads\hb_zadost_urokova_sazba_576160-1_20190404_008.pdf
2020-02-02 18:38 - 2020-02-02 18:38 - 000148673 _____ C:\Users\Safrovi\Downloads\hb_oznameni_576160-1_20190404_149(1).pdf
2020-02-02 18:31 - 2020-02-02 18:31 - 000012851 _____ C:\Users\Safrovi\Downloads\hb_splatkovy_plan_576160-1_20200202.csv
2020-02-02 17:46 - 2020-02-02 17:47 - 000009038 _____ C:\Users\Safrovi\Desktop\OVOCE A ZELENINA.txt
2020-02-01 12:02 - 2020-02-01 12:02 - 008400857 _____ C:\Users\Safrovi\Downloads\6.pdf
2020-02-01 10:23 - 2020-02-01 10:23 - 000142676 _____ C:\Users\Safrovi\Downloads\Vypis_z_uctu_491306329_z_20200131.pdf
2020-01-31 17:14 - 2020-01-31 17:14 - 000127056 _____ C:\Users\Safrovi\Downloads\Vypis_z_uctu_491306329_z_20191231(1).pdf
2020-01-28 20:25 - 2020-01-28 20:25 - 000009616 _____ C:\Users\Safrovi\Downloads\comgate prosinec 2019 export transakcí Zuzana Šafrová .csv
2020-01-28 19:59 - 2020-01-28 19:59 - 000011787 _____ C:\Users\Safrovi\Downloads\Klientský portál export transakcí Zuzana Šafrová.csv
2020-01-27 19:59 - 2020-01-27 19:59 - 002346991 _____ C:\Users\Safrovi\Downloads\41. Sada - Karnevalové krátkohrátky, Máme rádi pohádky.pdf
2020-01-27 19:39 - 2020-01-27 19:39 - 004876371 _____ C:\Users\Safrovi\Downloads\40. -SADA ZÁSOBNÍKŮ -ZIMA, SILNICE ,ZVÍŘÁTKA.pdf
2020-01-27 18:16 - 2020-01-27 18:16 - 000000997 _____ C:\Users\Public\Desktop\HiSuite.lnk
2020-01-27 18:16 - 2020-01-27 18:16 - 000000997 _____ C:\ProgramData\Desktop\HiSuite.lnk
2020-01-27 18:16 - 2020-01-27 18:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2020-01-27 18:16 - 2020-01-27 18:16 - 000000000 ____D C:\Program Files (x86)\HiSuite
2020-01-26 11:08 - 2020-01-26 11:08 - 001514375 _____ C:\Users\Safrovi\Downloads\38. Co silnice vyprávěly.pdf
2020-01-26 11:08 - 2020-01-26 11:08 - 001466525 _____ C:\Users\Safrovi\Downloads\39. KARNEVALOVÉ KRÁTKOHRÁTKY.pdf
2020-01-23 19:57 - 2020-01-23 19:57 - 000000000 ____D C:\Users\Safrovi\Downloads\ZIMNÍ SPORTY
2020-01-23 18:05 - 2020-01-23 18:05 - 000244350 _____ C:\Users\Safrovi\Desktop\SK_Prihlaska_Clen_06.18(3).pdf
2020-01-23 18:01 - 2020-01-23 18:01 - 000298881 _____ C:\Users\Safrovi\Downloads\SK_Prihlaska_Clen_06.18(3).pdf
2020-01-22 18:52 - 2020-01-22 18:52 - 001522335 _____ C:\Users\Safrovi\Downloads\program_ceske_vanoce_0.pdf
2020-01-20 20:40 - 2020-01-20 20:41 - 000000000 ____D C:\Users\Safrovi\Downloads\KYTKY
2020-01-20 20:25 - 2020-01-20 20:25 - 000134883 _____ C:\Users\Safrovi\Downloads\Potvrzení o zaplaceném pojistném pro da_ové odpo_ty_0(2).pdf
2020-01-19 17:10 - 2020-01-19 17:10 - 000085658 _____ C:\Users\Safrovi\Downloads\Sieger-lineart.svg
2020-01-19 17:06 - 2020-01-19 17:06 - 003501958 _____ C:\Users\Safrovi\Downloads\3xy1_8ozd_140917.zip
2020-01-19 17:05 - 2020-01-19 17:05 - 000353386 _____ C:\Users\Safrovi\Downloads\korea_winter_olympic2.zip
2020-01-19 16:02 - 2020-01-19 16:02 - 000472692 _____ C:\Users\Safrovi\Downloads\Olympijské-kruhy-k-vybarvení.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-17 21:32 - 2016-11-18 22:53 - 000000000 ____D C:\FRST
2020-02-17 18:10 - 2015-11-06 08:51 - 000004478 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-02-17 18:04 - 2013-09-30 23:23 - 000000000 ____D C:\ProgramData\PDFC
2020-02-17 17:04 - 2020-01-13 18:38 - 000000000 ____D C:\Users\Safrovi\Desktop\HOTOVÉ PŘÍPRAVY
2020-02-17 16:21 - 2009-07-14 05:45 - 000031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-02-17 16:21 - 2009-07-14 05:45 - 000031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-02-17 16:18 - 2016-11-18 19:26 - 000000000 ____D C:\Users\Safrovi\AppData\LocalLow\Mozilla
2020-02-17 16:12 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-16 19:36 - 2013-12-19 10:59 - 000002302 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-16 19:36 - 2013-12-19 10:59 - 000002261 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-02-16 19:36 - 2013-12-19 10:59 - 000002261 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-02-16 15:02 - 2015-11-14 21:34 - 000000000 ____D C:\Users\Safrovi\Desktop\upravené obrázky
2020-02-15 15:42 - 2019-01-23 08:12 - 000000000 ____D C:\Users\Safrovi\Desktop\foto mobil
2020-02-15 15:35 - 2013-12-16 22:41 - 000000000 ____D C:\Users\Safrovi\AppData\Roaming\VSO
2020-02-15 07:44 - 2009-07-14 06:08 - 000032600 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2020-02-14 15:52 - 2019-12-10 07:31 - 000000000 ____D C:\Users\Safrovi\AppData\Local\cache
2020-02-13 21:27 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-02-12 15:47 - 2013-12-16 20:05 - 000000000 ____D C:\Windows\system32\MRT
2020-02-12 15:43 - 2013-12-16 20:05 - 120407888 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-02-12 14:11 - 2016-11-18 19:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-02-11 18:32 - 2018-03-13 18:32 - 000004536 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-02-11 18:32 - 2015-10-02 05:12 - 000004396 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-02-11 18:32 - 2013-09-30 23:19 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-02-11 18:32 - 2013-09-30 23:19 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-02-11 18:32 - 2013-09-30 23:19 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-02-11 18:32 - 2013-09-30 23:19 - 000000000 ____D C:\Windows\system32\Macromed
2020-02-10 14:39 - 2013-09-30 23:17 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-10 14:37 - 2018-09-01 20:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-02-10 14:30 - 2016-09-04 17:05 - 000002170 _____ C:\Users\Safrovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2020-02-10 14:30 - 2014-12-20 20:58 - 000000000 ___RD C:\Users\Safrovi\OneDrive
2020-02-09 19:31 - 2019-08-04 18:09 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-02-09 19:27 - 2015-07-22 00:10 - 000038113 ____H C:\Users\Safrovi\Downloads\.picasa.ini
2020-02-06 18:09 - 2013-09-30 22:41 - 000672158 _____ C:\Windows\system32\perfh005.dat
2020-02-06 18:09 - 2013-09-30 22:41 - 000142754 _____ C:\Windows\system32\perfc005.dat
2020-02-06 18:09 - 2009-07-14 06:13 - 001593238 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-06 07:29 - 2018-12-19 19:24 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d041068ddfdf5e
2020-02-06 07:29 - 2018-12-19 19:24 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d041068d2d5829
2020-02-01 10:38 - 2016-05-28 09:30 - 000086528 ___SH C:\Users\Safrovi\Thumbs.db
2020-01-31 21:49 - 2018-08-08 12:34 - 000000000 ____D C:\Users\Safrovi\Desktop\A 02 - JANCA
2020-01-31 15:56 - 2018-07-18 06:46 - 000000000 ____D C:\Users\Safrovi\Desktop\A 01 - KACKA
2020-01-28 21:13 - 2013-12-16 20:22 - 000000000 ____D C:\Users\Safrovi\AppData\Local\CrashDumps
2020-01-27 18:17 - 2018-02-16 10:37 - 000000000 ____D C:\Users\Safrovi\AppData\Local\Hisuite
2020-01-21 07:24 - 2013-12-16 19:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-02-17 18:29
==================== End of FRST.txt ========================
,,Poctivost nelze rozdělit na kousky.Buď je a nebo není."(Honoré de Balzac)
Re: prosím o preventivní kontrolu
Otvor poznamkovy blok (Win+R -> notepad -> enter)
- Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:
Kód: Vybrat vše
Start CloseProcesses: CreateRestorePoint: PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {2f9ac852-b98d-11e8-898d-54bef72455b2} - K:\HiSuiteDownLoader.exe HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {3284a34b-758a-11e9-a1b2-54bef72455b2} - K:\HiSuiteDownLoader.exe HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {4e36c131-ad0a-11e9-b029-54bef72455b2} - K:\HiSuiteDownLoader.exe HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {57534a6f-d565-11e9-9c68-54bef72455b2} - K:\HiSuiteDownLoader.exe HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {59c4831f-1700-11e9-9153-54bef72455b2} - K:\HiSuiteDownLoader.exe HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a1e4f604-4105-11ea-a01d-54bef72455b2} - K:\HiSuiteDownLoader.exe HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a9efed85-cbc1-11e8-ae84-54bef72455b2} - K:\HiSuiteDownLoader.exe HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {db25b4cd-055d-11ea-9ba5-54bef72455b2} - K:\HiSuiteDownLoader.exe HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {df5be5f8-c755-11e9-a15e-54bef72455b2} - K:\HiSuiteDownLoader.exe HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {e6f5612f-73d1-11e8-b1d5-54bef72455b2} - K:\HiSuiteDownLoader.exe HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {fd4be2bc-c405-11e9-8aaf-54bef72455b2} - K:\HiSuiteDownLoader.exe SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [No File] FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File] FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File] CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] S3 dbx; system32\DRIVERS\dbx.sys [X] FirewallRules: [{B6CCAF90-C18A-4D17-B9FE-FDF27769D73B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File FirewallRules: [{BD296899-9476-40C3-B3B8-001184DBDDFF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File Hosts: EmptyTemp: End - Uloz na plochu s nazvom fixlist.txt
- Spusti znovu FRST a klikni na Fix
- Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
- Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: prosím o preventivní kontrolu
Ok - provedeno a posílám
Fix result of Farbar Recovery Scan Tool (x64) Version: 16-02-2020
Ran by Safrovi (18-02-2020 20:10:03) Run:2
Running from C:\Users\Safrovi\Desktop
Loaded Profiles: Safrovi & blabla (Available Profiles: Safrovi & blabla)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {2f9ac852-b98d-11e8-898d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {3284a34b-758a-11e9-a1b2-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {4e36c131-ad0a-11e9-b029-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {57534a6f-d565-11e9-9c68-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {59c4831f-1700-11e9-9153-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a1e4f604-4105-11ea-a01d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a9efed85-cbc1-11e8-ae84-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {db25b4cd-055d-11ea-9ba5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {df5be5f8-c755-11e9-a15e-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {e6f5612f-73d1-11e8-b1d5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {fd4be2bc-c405-11e9-8aaf-54bef72455b2} - K:\HiSuiteDownLoader.exe
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
S3 dbx; system32\DRIVERS\dbx.sys [X]
FirewallRules: [{B6CCAF90-C18A-4D17-B9FE-FDF27769D73B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
FirewallRules: [{BD296899-9476-40C3-B3B8-001184DBDDFF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
Hosts:
EmptyTemp:
End
*****************
Processes closed successfully.
Restore point was successfully created.
========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========
Count : 2650
Average :
Sum : 3847795858
Maximum :
Minimum :
Property : Length
Fix result of Farbar Recovery Scan Tool (x64) Version: 16-02-2020
Ran by Safrovi (18-02-2020 20:10:03) Run:2
Running from C:\Users\Safrovi\Desktop
Loaded Profiles: Safrovi & blabla (Available Profiles: Safrovi & blabla)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {2f9ac852-b98d-11e8-898d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {3284a34b-758a-11e9-a1b2-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {4e36c131-ad0a-11e9-b029-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {57534a6f-d565-11e9-9c68-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {59c4831f-1700-11e9-9153-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a1e4f604-4105-11ea-a01d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a9efed85-cbc1-11e8-ae84-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {db25b4cd-055d-11ea-9ba5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {df5be5f8-c755-11e9-a15e-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {e6f5612f-73d1-11e8-b1d5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {fd4be2bc-c405-11e9-8aaf-54bef72455b2} - K:\HiSuiteDownLoader.exe
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
S3 dbx; system32\DRIVERS\dbx.sys [X]
FirewallRules: [{B6CCAF90-C18A-4D17-B9FE-FDF27769D73B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
FirewallRules: [{BD296899-9476-40C3-B3B8-001184DBDDFF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
Hosts:
EmptyTemp:
End
*****************
Processes closed successfully.
Restore point was successfully created.
========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========
Count : 2650
Average :
Sum : 3847795858
Maximum :
Minimum :
Property : Length
,,Poctivost nelze rozdělit na kousky.Buď je a nebo není."(Honoré de Balzac)
Re: prosím o preventivní kontrolu
Fixlist nie je uplny. Skontroluj, ci je naozaj skopirovany cely. Ak ano, pozri sa do adresara C:\FRST\Logs a posli vsetky fixlogy, ktore sa tam nachadzaju.
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: prosím o preventivní kontrolu
aha - omlouvám se a posílám znovu
Fix result of Farbar Recovery Scan Tool (x64) Version: 16-02-2020
Ran by Safrovi (18-02-2020 20:10:03) Run:2
Running from C:\Users\Safrovi\Desktop
Loaded Profiles: Safrovi & blabla (Available Profiles: Safrovi & blabla)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {2f9ac852-b98d-11e8-898d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {3284a34b-758a-11e9-a1b2-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {4e36c131-ad0a-11e9-b029-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {57534a6f-d565-11e9-9c68-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {59c4831f-1700-11e9-9153-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a1e4f604-4105-11ea-a01d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a9efed85-cbc1-11e8-ae84-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {db25b4cd-055d-11ea-9ba5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {df5be5f8-c755-11e9-a15e-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {e6f5612f-73d1-11e8-b1d5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {fd4be2bc-c405-11e9-8aaf-54bef72455b2} - K:\HiSuiteDownLoader.exe
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
S3 dbx; system32\DRIVERS\dbx.sys [X]
FirewallRules: [{B6CCAF90-C18A-4D17-B9FE-FDF27769D73B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
FirewallRules: [{BD296899-9476-40C3-B3B8-001184DBDDFF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
Hosts:
EmptyTemp:
End
*****************
Processes closed successfully.
Restore point was successfully created.
========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========
Count : 2650
Average :
Sum : 3847795858
Maximum :
Minimum :
Property : Length
========= End of Powershell: =========
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2f9ac852-b98d-11e8-898d-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3284a34b-758a-11e9-a1b2-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4e36c131-ad0a-11e9-b029-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{57534a6f-d565-11e9-9c68-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{59c4831f-1700-11e9-9153-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a1e4f604-4105-11ea-a01d-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9efed85-cbc1-11e8-ae84-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{db25b4cd-055d-11ea-9ba5-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{df5be5f8-c755-11e9-a15e-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e6f5612f-73d1-11e8-b1d5-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fd4be2bc-c405-11e9-8aaf-54bef72455b2} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0 => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\olfeabkoenfaoljndfecamgilllcpiak => removed successfully
HKLM\System\CurrentControlSet\Services\dbx => removed successfully
dbx => service removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B6CCAF90-C18A-4D17-B9FE-FDF27769D73B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BD296899-9476-40C3-B3B8-001184DBDDFF}" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 12582912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 30655412 B
Java, Flash, Steam htmlcache => 1172 B
Windows/system/drivers => 1228935177 B
Edge => 0 B
Chrome => 16280769 B
Firefox => 1115561924 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 256 B
LocalService => 256 B
NetworkService => 256 B
Safrovi => 1012255468 B
blabla => 1012255468 B
RecycleBin => 51566 B
EmptyTemp: => 4.1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:11:33 ====
- omlouvám se a posílám znovuFix result of Farbar Recovery Scan Tool (x64) Version: 16-02-2020
Ran by Safrovi (18-02-2020 20:10:03) Run:2
Running from C:\Users\Safrovi\Desktop
Loaded Profiles: Safrovi & blabla (Available Profiles: Safrovi & blabla)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {2f9ac852-b98d-11e8-898d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {3284a34b-758a-11e9-a1b2-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {4e36c131-ad0a-11e9-b029-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {57534a6f-d565-11e9-9c68-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {59c4831f-1700-11e9-9153-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a1e4f604-4105-11ea-a01d-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {a9efed85-cbc1-11e8-ae84-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {db25b4cd-055d-11ea-9ba5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {df5be5f8-c755-11e9-a15e-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {e6f5612f-73d1-11e8-b1d5-54bef72455b2} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\...\MountPoints2: {fd4be2bc-c405-11e9-8aaf-54bef72455b2} - K:\HiSuiteDownLoader.exe
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
CHR HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
S3 dbx; system32\DRIVERS\dbx.sys [X]
FirewallRules: [{B6CCAF90-C18A-4D17-B9FE-FDF27769D73B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
FirewallRules: [{BD296899-9476-40C3-B3B8-001184DBDDFF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe No File
Hosts:
EmptyTemp:
End
*****************
Processes closed successfully.
Restore point was successfully created.
========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========
Count : 2650
Average :
Sum : 3847795858
Maximum :
Minimum :
Property : Length
========= End of Powershell: =========
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2f9ac852-b98d-11e8-898d-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3284a34b-758a-11e9-a1b2-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4e36c131-ad0a-11e9-b029-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{57534a6f-d565-11e9-9c68-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{59c4831f-1700-11e9-9153-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a1e4f604-4105-11ea-a01d-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9efed85-cbc1-11e8-ae84-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{db25b4cd-055d-11ea-9ba5-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{df5be5f8-c755-11e9-a15e-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e6f5612f-73d1-11e8-b1d5-54bef72455b2} => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fd4be2bc-c405-11e9-8aaf-54bef72455b2} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0 => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf => removed successfully
HKU\S-1-5-21-3453386134-3950636445-3288212601-1002\SOFTWARE\Google\Chrome\Extensions\olfeabkoenfaoljndfecamgilllcpiak => removed successfully
HKLM\System\CurrentControlSet\Services\dbx => removed successfully
dbx => service removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B6CCAF90-C18A-4D17-B9FE-FDF27769D73B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BD296899-9476-40C3-B3B8-001184DBDDFF}" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 12582912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 30655412 B
Java, Flash, Steam htmlcache => 1172 B
Windows/system/drivers => 1228935177 B
Edge => 0 B
Chrome => 16280769 B
Firefox => 1115561924 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 256 B
LocalService => 256 B
NetworkService => 256 B
Safrovi => 1012255468 B
blabla => 1012255468 B
RecycleBin => 51566 B
EmptyTemp: => 4.1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:11:33 ====
,,Poctivost nelze rozdělit na kousky.Buď je a nebo není."(Honoré de Balzac)
Re: prosím o preventivní kontrolu
Plocha ma cca 3 GB, co je vela. Odporucam presunut vsetky subory a zlozky z plochy do dokumentov a na ploche nechat iba odkazy/zastupcov. Prilis velka velkost plochy moze sposobit spomalenie systemu. Ako to vyzera s PC? Su nejake problemy?Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: prosím o preventivní kontrolu
Děkuji za reakci.
Pc se zdá rychleji reaguje - nabíhá - S tou plochou to tuším a musím pořešit. Udělám si úklidový den plochy PC
Jinak nic závažného nebo ohrožujícího?
Pc se zdá rychleji reaguje - nabíhá
- S tou plochou to tuším a musím pořešit. Udělám si úklidový den plochy PC Jinak nic závažného nebo ohrožujícího?
,,Poctivost nelze rozdělit na kousky.Buď je a nebo není."(Honoré de Balzac)
Re: prosím o preventivní kontrolu
Nic zavadene, logy vyzeraju OK. Tak este upraceme po pouzitych nastrojoch:
- Stiahni DelFix: https://toolslib.net/downloads/finish/2-delfix/
- Uloz na plochu a spusti
- Nechaj oznacenu moznost "Remove disinfection tools"
- Klikni na "Run"
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: prosím o preventivní kontrolu
Ok - hotovo
# DelFix v1.013 - Logfile created 21/02/2020 at 14:55:34
# Updated 17/04/2016 by Xplode
# Username : Safrovi - SAFROVI-HP
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
~ Removing disinfection tools ...
Deleted : C:\_OTM
Deleted : C:\RSIT
Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\Safrovi\Desktop\adwcleaner_8.0.2.exe
Deleted : C:\Users\Safrovi\Desktop\FRST64.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
########## - EOF - ##########
# DelFix v1.013 - Logfile created 21/02/2020 at 14:55:34
# Updated 17/04/2016 by Xplode
# Username : Safrovi - SAFROVI-HP
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
~ Removing disinfection tools ...
Deleted : C:\_OTM
Deleted : C:\RSIT
Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\Safrovi\Desktop\adwcleaner_8.0.2.exe
Deleted : C:\Users\Safrovi\Desktop\FRST64.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
########## - EOF - ##########
,,Poctivost nelze rozdělit na kousky.Buď je a nebo není."(Honoré de Balzac)
Re: prosím o preventivní kontrolu
OK, to by bolo vsetko, ak uz nie su ziadne problemy
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: prosím o preventivní kontrolu
děkuji za pomoc a ochotu 
Příspěvek odeslán
Díky a dobrou
Příspěvek odeslán
Díky a dobrou
,,Poctivost nelze rozdělit na kousky.Buď je a nebo není."(Honoré de Balzac)
Přispějete na provoz fóra?