Prosim o kontrolu logu

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

skmirosk
nováček
Příspěvky: 9
Registrován: březen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod skmirosk » 07 bře 2018 21:31

Dobrý večer

- combofix som odinštaloval
-farbarecovery scan tool prebehol a prikladam logy

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 04.03.2018
Ran by Miro (07-03-2018 21:24:59)
Running from D:\STAHOVANIE
Microsoft® Windows Vista™ Home Premium (X86) (2008-12-17 00:46:35)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-396186892-2409389147-1617325887-500 - Administrator - Disabled)
Guest (S-1-5-21-396186892-2409389147-1617325887-501 - Limited - Disabled)
Miro (S-1-5-21-396186892-2409389147-1617325887-1000 - Administrator - Enabled) => C:\Users\Miro

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)


==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer GridVista (HKLM\...\GridVista) (Version: 2.68.622 - )
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}) (Version: 1.0 - Microsoft Corporation) Hidden
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\Activation Assistant for the 2007 Microsoft Office suites) (Version: - Microsoft Corporation)
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.22.87 - Adobe Systems Incorporated)
Adobe Flash Player 28 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated)
Adobe Flash Player 9 ActiveX (HKLM\...\ShockwaveFlash) (Version: 9 - Adobe Systems Incorporated)
Adobe Reader 8.1.0 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A81000000003}) (Version: 8.1.0 - Adobe Systems Incorporated)
Advanced Wheel Mouse 6.0.0.001 (HKLM\...\WheelMouse) (Version: - )
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - Alps Electric)
Any Video Converter 2.6.7 (HKLM\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Astroburn (HKLM\...\Astroburn) (Version: 1.0.8.0 - Disk Software Ltd)
AstroburnBar Toolbar (HKLM\...\AstroburnBar Toolbar) (Version: - )
AutoUpdate (HKLM\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.1 - )
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 18.2.2328 - AVAST Software)
Big Kahuna Reef 2 (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111310630}) (Version: - Oberon Media)
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v6.00.03 - TOSHIBA CORPORATION)
Cake Mania (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}) (Version: - Oberon Media)
Call Of Juarez: Bound In Blood (HKLM\...\{5CD887D4-D467-4915-889B-B838039823A9}_is1) (Version: - Mr.Kesha & Pirat.ca, Inc.)
Canon iP1300 (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP1300) (Version: - )
Crashday (HKLM\...\{9C27ADE1-EAFB-4BB7-9FE3-5DD9BA9A3DD2}) (Version: 0 - ATARI)
DB CIF Cam (HKLM\...\{83d96ed0-98aa-4515-8ddc-816f3efdd104}) (Version: 1.0 - My Company Name)
DivX Codec (HKLM\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.8.5 - DivX, Inc.)
Dynasty (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111473353}) (Version: - Oberon Media)
Elcomm (HKLM\...\Elcomm) (Version: - )
EsR 1.0 (HKLM\...\EsR) (Version: 1.0 - bhv Software GmbH & Co. KG)
Extra Video Converter Pro 6.53 (HKLM\...\Extra Video Converter Pro_is1) (Version: - Extra Software, Inc.)
FairUse Wizard 2 (HKLM\...\FairUse Wizard 2) (Version: (v2.8) - FairUse Wizard)
Fallout 3 (HKLM\...\{974C4B12-4D02-4879-85E0-61C95CC63E9E}) (Version: 1.00.0000 - Bethesda Softworks)
FlatOut Ultimate Carnage (HKLM\...\FlatOut Ultimate Carnage) (Version: - Empire Interactive)
FormatFactory 2.10 (HKLM\...\FormatFactory) (Version: 2.10 - Free Time)
Galapago (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version: - Oberon Media)
Gaming Mouse (HKLM\...\Gaming Mouse) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 49.0.2623.112 - Spoločnosť Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Intel(R) Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{26921B2E-3E62-47F9-A514-1FC4A83BD738}) (Version: 12.00.0004 - Intel(R) Corporation)
James Bond 007: Nightfire (HKLM\...\James Bond 007: Nightfire) (Version: - Electronic Arts)
JMicron JMB38X Flash Media Controller (HKLM\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.00.14.03 - JMicron Technology Corp.)
Launch Manager (HKLM\...\LManager) (Version: - )
Lenovo Mobile Assistant (HKLM\...\{BAE5A642-2B18-411F-A79A-D3B213385ACA}) (Version: 1.4.1.14200 - Lenovo)
LenovoUsbDriver 1.1.13 (HKLM\...\LenovoUsbDriver) (Version: 1.1.13 - Lenovo)
LightScribe 1.4.142.1 (HKLM\...\{CE386A4E-D0DA-4208-8235-BCE43275C694}) (Version: 1.4.142.1 - hxxp://www.lightscribe.com) Hidden
Lost Planet (HKLM\...\LOST PLANET *MULTI5* *RECOMPRESSED*_is1) (Version: - )
Luxor 2 (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11170417}) (Version: - Oberon Media)
Mafia (HKLM\...\{C72D7008-266D-4DD8-BF3C-296B736127F6}) (Version: 1.02 - )
Microsoft .NET Framework 3.5 (HKLM\...\Microsoft .NET Framework 3.5) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM\...\{4D243BA7-9AC4-46D1-90E5-EEB88974F501}) (Version: 2.0.687.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}) (Version: 2.0.687.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 2 (SP2) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}) (Version: - Microsoft)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6425.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Works (HKLM\...\{6D52C408-B09A-4520-9B18-475B81D393F1}) (Version: 08.05.0818 - Microsoft Corporation)
Mozilla Firefox 52.6.0 ESR (x86 sk) (HKLM\...\Mozilla Firefox 52.6.0 ESR (x86 sk)) (Version: 52.6.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 52.6.0.6592 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Mystery Case Files - Prime Suspects (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111271497}) (Version: - Oberon Media)
Mystery Case Files Ravenhearst (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112179547}) (Version: - Oberon Media)
Need for Speed - Shift (HKLM\...\{A45F3795-1527-47FA-BE1A-2DD242B439E5}_is1) (Version: - )
Nero 7 Ultra Edition (HKLM\...\{4908C75E-E5E2-43F7-B1DF-023CBA831051}) (Version: 7.02.2631 - Nero AG)
Next Video Converter 2.1.1 (HKLM\...\{2AD89908-0987-4B9E-8AB4-905899E4D754}_is1) (Version: - NextVideoSoft, Inc.)
NTI Backup NOW! 4.7 (HKLM\...\{67ADE9AF-5CD9-4089-8825-55DE4B366799}) (Version: 4 - NewTech Infosystems)
NTI CD & DVD-Maker (HKLM\...\{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}) (Version: 7 - NewTech Infosystems) Hidden
NTI CD & DVD-Maker (HKLM\...\InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}) (Version: 7 - NewTech Infosystems)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
NVIDIA Media Center Extensions (HKLM\...\{4BE15737-07C5-4705-9DFC-D9D533939942}) (Version: 1.00.0000 - )
NVIDIA PhysX (HKLM\...\{F9835182-794B-4F24-902A-E2CA9D43380F}) (Version: 9.10.0512 - NVIDIA Corporation)
NVIDIA PureVideo Decoder (HKLM\...\{055FEF8E-4B86-400F-A5C6-8FAC0042DCD9}) (Version: 1.00.0000 - )
OpenAL (HKLM\...\OpenAL) (Version: - )
PC Inspector File Recovery (HKLM\...\{0DD140D3-9563-481E-AA75-BA457CBDAEF2}) (Version: 4.0 - )
Philips Songbird (HKLM\...\Philips Songbird) (Version: 5.2.1953 (1953) - Koninklijke Philips Electronics N.V.)
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.30.0000 - CyberLink) Hidden
PowerDVD (HKLM\...\InstallShield_{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.30.0000 - CyberLink)
PowerProducer 3.72 (HKLM\...\{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 074324(3.7)_Vista_Acer - CyberLink Corporation)
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Race On (HKLM\...\Race On_is1) (Version: - SimBin)
Realtek 8169 8168 8101E 8102E Ethernet Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5717 - Realtek Semiconductor Corp.)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01 (HKLM\...\{59F6A514-9813-47A3-948C-8A155460CC2A}) (Version: 3.51.01 - )
Rockstar Games Social Club (HKLM\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Scorpions WinCheater (HKLM\...\Scorpions WinCheater 2.07 (s databází 96)_is1) (Version: - )
SDFormatter (HKLM\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Secret Service (HKLM\...\{30AEC4FE-6ED0-4E32-B54C-7F2119AB7273}) (Version: 1.0 - Activision Value) Hidden
Secret Service (HKLM\...\InstallShield_{30AEC4FE-6ED0-4E32-B54C-7F2119AB7273}) (Version: 1.0 - Activision Value)
Shellshock 2 (HKLM\...\Shellshock2) (Version: - )
Skype Toolbars (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.3.7555 - Skype Technologies S.A.)
Skype™ 5.3 (HKLM\...\{D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}) (Version: 5.3.120 - Skype Technologies S.A.)
SolSuite 2011 v11.0 (HKLM\...\SolSuite_is1) (Version: - TreeCardGames)
Sophos Virus Removal Tool (HKLM\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.6.1 - Sophos Limited)
Star Defender 3 (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111730193}) (Version: - Oberon Media)
Stranglehold (HKLM\...\{86EDEF11-EFE4-46CB-8B08-9CBD4A936B1F}) (Version: 1.00.0000 - Midway Home Entertainment Inc.)
Test Drive Unlimited 2 (HKLM\...\Test Drive Unlimited 2_is1) (Version: - Atari)
Tom Clancy's Rainbow Six Vegas 2 (HKLM\...\{FD416706-875C-4B0B-A23A-9E740DAE029E}) (Version: 1.00 - Ubisoft)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: - )
Treasures of the Deep (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111263673}) (Version: - Oberon Media)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player 2.0.8 (HKLM\...\VLC media player) (Version: 2.0.8 - VideoLAN)
WIDCOMM Bluetooth Software 6.0.1.4900 (HKLM\...\{03D1988F-469F-4843-8E6E-E5FE9D17889D}) (Version: 6.0.1.4900 - Broadcom Corporation)
Windows Driver Package - ENE (enecir) HIDClass (04/29/2008 2.5.0.0) (HKLM\...\5D38134BF8A10D640B30E6B014EECDBC5F881E3D) (Version: 04/29/2008 2.5.0.0 - ENE)
Windows Driver Package - MediaTek Inc. (wdm_usb) Ports (01/22/2015 3.0.1504.0) (HKLM\...\BD5E2A628C2263FAEC66A4BFF2E88B897427E4C3) (Version: 01/22/2015 3.0.1504.0 - MediaTek Inc.)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
XviD 1.2.-127 +SMP Alpha uninstall (HKLM\...\XviD_is1) (Version: 1.1 - XviD team (Koepi))
Zemana AntiMalware (HKLM\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.150 - Zemana Ltd.)
Zuma Deluxe (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700}) (Version: - Oberon Media)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{00B7E0AB-817A-44AD-A04B-D1148D524136}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{026371C0-1B7C-11CF-9D53-00AA003C9CB6}\InprocServer32 -> C:\Windows\system32\comct232.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{030B4A80-1B7C-11CF-9D53-00AA003C9CB6}\InprocServer32 -> C:\Windows\system32\comct232.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{030B4A81-1B7C-11CF-9D53-00AA003C9CB6}\InprocServer32 -> C:\Windows\system32\comct232.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{030B4A82-1B7C-11CF-9D53-00AA003C9CB6}\InprocServer32 -> C:\Windows\system32\comct232.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{0713E8A2-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{0713E8A8-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{0713E8D2-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{0713E8D8-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{0BE35200-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> C:\Windows\system32\MFC40.DLL (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{0BE35201-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> C:\Windows\system32\MFC40.DLL (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{0BE35202-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> C:\Windows\system32\MFC40.DLL (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{1E216240-1B7D-11CF-9D53-00AA003C9CB6}\InprocServer32 -> C:\Windows\system32\comct232.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{1EFB6596-857C-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{1F6F8D20-1B7D-11CF-9D53-00AA003C9CB6}\InprocServer32 -> C:\Windows\system32\comct232.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{20C62CA0-15DA-101B-B9A8-444553540000}\InprocServer32 -> C:\Windows\system32\msmapi32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{20C62CAB-15DA-101B-B9A8-444553540000}\InprocServer32 -> C:\Windows\system32\msmapi32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{20DD1B9E-87C4-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\mscomct2.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{232E456A-87C3-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\mscomct2.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{2B11E9B0-9F09-11D0-9484-00A0C91110ED}\InprocServer32 -> C:\Windows\system32\msstdfmt.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{2C247F23-8591-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{35053A22-8589-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{373FF7F0-EB8B-11CD-8820-08002B2F4F5A}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{373FF7F4-EB8B-11CD-8820-08002B2F4F5A}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{38911D8E-E448-11D0-84A3-00DD01104159}\InprocServer32 -> C:\Windows\system32\comct332.ocx (Microsoft Corporation )
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{38911D90-E448-11D0-84A3-00DD01104159}\InprocServer32 -> C:\Windows\system32\comct332.ocx (Microsoft Corporation )
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{38911D92-E448-11D0-84A3-00DD01104159}\InprocServer32 -> C:\Windows\system32\comct332.ocx (Microsoft Corporation )
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{3C4F3BE3-47EB-101B-A3C9-08002B2F49FB}\InprocServer32 -> C:\Windows\system32\comdlg32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{3C4F3BE5-47EB-101B-A3C9-08002B2F49FB}\InprocServer32 -> C:\Windows\system32\comdlg32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{3C4F3BE7-47EB-101B-A3C9-08002B2F49FB}\InprocServer32 -> C:\Windows\system32\comdlg32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{3D5C6BF2-69A3-11D0-B393-00A0C9055D8E}\InprocServer32 -> C:\Windows\system32\msderun.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{586A6352-87C8-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\mscomct2.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{586A6353-87C8-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\mscomct2.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{586A6354-87C8-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\mscomct2.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{586A6355-87C8-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\mscomct2.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{586A6356-87C8-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\mscomct2.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{586A6357-87C8-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\mscomct2.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{586A6359-87C8-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\mscomct2.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{58DA8D8A-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{58DA8D8F-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{58DA8D93-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{58DA8D96-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{5ACBB955-5C57-11CF-8993-00AA00688B10}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{5ACBB956-5C57-11CF-8993-00AA00688B10}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{5ACBB957-5C57-11CF-8993-00AA00688B10}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{5ACBB958-5C57-11CF-8993-00AA00688B10}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{6027C2D4-FB28-11CD-8820-08002B2F4F5A}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{603C7E80-87C2-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\mscomct2.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{612A8628-0FB3-11CE-8747-524153480004}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{62823C20-41A3-11CE-9E8B-0020AF039CA3}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{648A5600-2C6E-101B-82B6-000000000014}\InprocServer32 -> C:\Windows\system32\mscomm32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{648A5604-2C6E-101B-82B6-000000000014}\InprocServer32 -> C:\Windows\system32\mscomm32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{66833FE6-8583-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{699DDBCC-DC7E-11D0-BCF7-00C04FC2FB86}\InprocServer32 -> C:\Windows\system32\msstdfmt.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{6B7E638F-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{6B7E6393-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{6B7E63A3-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1}\InprocServer32 -> C:\Windows\system32\TosBtShell.dll (TOSHIBA)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{6D835690-900B-11D0-9484-00A0C91110ED}\InprocServer32 -> C:\Windows\system32\msstdfmt.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{7629CFA2-3FE5-101B-A3C9-08002B2F49FB}\InprocServer32 -> C:\Windows\system32\comdlg32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{7629CFA4-3FE5-101B-A3C9-08002B2F49FB}\InprocServer32 -> C:\Windows\system32\comdlg32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{7C6E29BC-8B8B-4C3D-859E-AF6CD158BE0F}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{7DA06D40-54A0-11CF-A521-0080C77A7786}\InprocServer32 -> C:\Windows\system32\tabctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{88D969C0-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{88D969C1-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{88D969C2-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{88D969C3-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{88D969C4-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{88D969C5-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{88D969C6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{88D969C8-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{88D969C9-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{88D969CA-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{88D969D6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{8E3867A3-8586-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{99FF4677-FFC3-11D0-BD02-00C04FC2FB86}\InprocServer32 -> C:\Windows\system32\msstdfmt.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{9ED94440-E5E8-101B-B9B5-444553540000}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{9ED94444-E5E8-101B-B9B5-444553540000}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{B09DE715-87C1-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\mscomct2.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{B66834C6-2E60-11CE-8748-524153480004}\InprocServer32 -> C:\Windows\system32\comctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{BB1AE0D0-634E-11CF-8996-00AA00688B10}\InprocServer32 -> C:\Windows\system32\msmapi32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{BB1AE0D1-634E-11CF-8996-00AA00688B10}\InprocServer32 -> C:\Windows\system32\msmapi32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{BDC217C5-ED16-11CD-956C-0000C04E4C0A}\InprocServer32 -> C:\Windows\system32\tabctl32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{BDD1F04B-858B-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE32-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE33-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE34-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE35-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE36-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE37-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE38-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE39-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE3A-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE3B-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE3C-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE3D-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE3E-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE3F-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE40-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE41-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C27CCE42-8596-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{C74190B6-8589-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{D0FC8A81-2CB2-101B-82B6-000000000014}\InprocServer32 -> C:\Windows\system32\mscomm32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{DD9DA666-8594-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{E0DC8C80-3486-101B-82B6-000000000014}\InprocServer32 -> C:\Windows\system32\mscomm32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{F08DF954-8592-11D1-B16A-00C0F0283628}\InprocServer32 -> C:\Windows\system32\mscomctl.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{F9043C85-F6F2-101A-A3C9-08002B2F49FB}\InprocServer32 -> C:\Windows\system32\comdlg32.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-396186892-2409389147-1617325887-1000_Classes\CLSID\{FE38753A-44A3-11D1-B5B7-0000C09000C4}\InprocServer32 -> C:\Windows\system32\mscomct2.ocx (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-03-05] (AVAST Software)
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files\Zemana AntiMalware\ZAMShellExt32.dll [2018-03-06] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-03-05] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2008-09-16] ()
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-03-05] (AVAST Software)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2008-09-16] ()
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {A70C977A-BF00-412C-90B7-034C51DA2439} => C:\Windows\system32\nvcpl.dll [2008-09-24] (NVIDIA Corporation)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files\Zemana AntiMalware\ZAMShellExt32.dll [2018-03-06] ()
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-03-05] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2008-09-16] ()

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {16BB5C22-2C56-4E3E-91BB-CCFA20084AA2} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-03-05] (AVAST Software)
Task: {257CD818-000F-4189-83EF-A14E6C2318E0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
Task: {732F7BB7-6B38-4F50-8332-CC2920962139} - System32\Tasks\lenovo mobile auto run => C:\Program Files\MagicPlus\MagicPlus_helper.exe [2016-03-22] (Lenovo)
Task: {9B6C9E31-DB1E-44B8-9985-3D64F8A28A6D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-03-05] (AVAST Software)
Task: {CD67BC4B-8214-44CD-A822-05FB73697759} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
Task: {D771FC6A-B4D8-4A8D-BC19-D39120E77ADC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-02-06] (Adobe Systems Incorporated)
Task: {F55271EC-82CB-4B57-8E22-06009DC93C54} - System32\Tasks\{8B598DEB-ED8B-4B95-A944-AE22069463EF} => C:\Program Files\Skype\\Phone\Skype.exe [2011-06-15] (Skype Technologies S.A.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-03-05 14:32 - 2018-03-05 14:32 - 000287960 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-03-05 14:32 - 2018-03-05 14:32 - 000280280 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2018-03-06 20:47 - 2018-03-06 20:47 - 005826192 _____ () C:\Program Files\AVAST Software\Avast\defs\18030604\algo.dll
2018-03-05 14:32 - 2018-03-05 14:32 - 000756952 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2018-03-05 14:32 - 2018-03-05 14:32 - 000172760 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-03-05 14:32 - 2018-03-05 14:32 - 000964824 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-03-05 14:32 - 2018-03-05 14:32 - 000475352 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-03-05 14:32 - 2018-03-05 14:32 - 000339672 _____ () C:\Program Files\AVAST Software\Avast\streamback_avast.dll
2018-03-07 20:36 - 2018-03-07 20:36 - 005826192 _____ () C:\Program Files\AVAST Software\Avast\defs\18030706\algo.dll
2008-04-30 19:13 - 2008-04-30 19:13 - 000200704 _____ () C:\Program Files\Intel\WiFi\bin\IWMSPROV.DLL
2008-12-17 20:57 - 2008-12-17 20:57 - 000066872 _____ () C:\Windows\system32\PnkBstrA.exe
2008-12-17 20:57 - 2008-12-17 20:57 - 000107832 _____ () C:\Windows\system32\PnkBstrB.exe
2008-12-26 15:09 - 2007-02-07 16:29 - 000173616 _____ () C:\Program Files\CyberLink\Shared Files\RichVideo.exe
2007-03-29 13:02 - 2007-03-29 13:02 - 000126976 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2007-08-23 05:24 - 2003-06-07 06:30 - 000057344 _____ () C:\Program Files\Launch Manager\PowerUtl.dll
2011-01-25 09:48 - 2011-01-25 09:48 - 000380416 _____ () C:\Program Files\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
2018-03-05 14:32 - 2018-03-05 14:32 - 048936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-03-05 14:32 - 2018-03-05 14:32 - 000275160 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2005-07-22 21:30 - 2005-07-22 21:30 - 000065536 _____ () C:\Windows\system32\TosCommAPI.dll
2007-03-29 12:42 - 2007-03-29 12:42 - 000389120 _____ () C:\Windows\system32\btwhidcs.DLL

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKLM\...\cmdfile\DefaultIcon: %SystemRoot%\System32\imageres.dll,-68 <==== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 11:23 - 2018-03-06 23:55 - 000000027 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-396186892-2409389147-1617325887-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Miro\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta programu Windows Fotogaléria.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [{DD98B59C-F0FA-442D-A85E-75E3A9634C10}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{A7E1C4FC-3441-4445-93F2-51D6B2E0FEB5}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{4C1E4D38-9CFB-45C6-AF28-6133CCDDBFB1}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{FF0F52E0-6A6D-4F9E-91E8-4BDFCCDCAF4E}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{A7EF9ED4-93DA-4E31-92AA-34AF56CAFE7E}] => (Allow) D:\hry\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe
FirewallRules: [{E1D6B912-E292-4D2E-BDA6-6C6429D27410}] => (Allow) D:\hry\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe
FirewallRules: [{D904E5B0-7239-4DE9-8890-32FCD83E51A4}] => (Allow) D:\hry\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Launcher.exe
FirewallRules: [{89432BFC-2881-4421-B486-9A11582D8268}] => (Allow) D:\hry\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Launcher.exe
FirewallRules: [TCP Query User{E05C73D4-E11B-433B-8D04-06D6C9C1286D}C:\program files\toshiba\bluetooth toshiba stack\tosbtpcs.exe] => (Allow) C:\program files\toshiba\bluetooth toshiba stack\tosbtpcs.exe
FirewallRules: [UDP Query User{7DDD178A-264A-42EA-9C0F-78645803B260}C:\program files\toshiba\bluetooth toshiba stack\tosbtpcs.exe] => (Allow) C:\program files\toshiba\bluetooth toshiba stack\tosbtpcs.exe
FirewallRules: [{877B57A2-4D3D-4E15-B83E-0E91542E661D}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{06403895-2CBE-45E6-A873-0F95A955F417}] => (Allow) D:\programy\CyberLink\PowerDVD\PowerDVD.EXE
FirewallRules: [{E1C48B12-F087-4CE2-817A-C96DC5D7D173}] => (Allow) D:\hry\FlatOut Ultimate Carnage\Fouc.exe
FirewallRules: [{71A9E08C-DFC9-4EC4-8953-66EE7313386F}] => (Allow) D:\hry\FlatOut Ultimate Carnage\Fouc.exe
FirewallRules: [{F08EEB39-FDBB-4D9A-A440-60474F347F00}] => (Allow) D:\hry\THQ\Frontlines-Fuel of War\Binaries\FFOW.exe
FirewallRules: [{FAE4A279-6DD2-43D5-94BC-121BE915D247}] => (Allow) D:\hry\THQ\Frontlines-Fuel of War\Binaries\FFOW.exe
FirewallRules: [TCP Query User{BC6C9957-A8DD-4BF0-A648-06AF2E8637B2}D:\hry\xider\esr\game.exe] => (Block) D:\hry\xider\esr\game.exe
FirewallRules: [UDP Query User{3CF76913-75B9-4C24-94FE-E3E9B331993F}D:\hry\xider\esr\game.exe] => (Block) D:\hry\xider\esr\game.exe
FirewallRules: [{13F8F3E8-35A9-4BE5-AC72-C493AEBB1025}] => (Allow) D:\hry\Midway Home Entertainment\Stranglehold\Binaries\Retail-Stranglehold.exe
FirewallRules: [{B88E64F5-4E21-4817-BBC5-09A3A88AC271}] => (Allow) D:\hry\Midway Home Entertainment\Stranglehold\Binaries\Retail-Stranglehold.exe
FirewallRules: [TCP Query User{1575EFED-B09D-4E6E-9E53-CDEB6D85DF15}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{A632EA49-85CD-4479-BF3E-2E8BC65320D8}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{57CBF670-E9DA-4D9A-9162-7525B839E378}D:\hry\tdu2\uplauncher.exe] => (Block) D:\hry\tdu2\uplauncher.exe
FirewallRules: [UDP Query User{5C58C4ED-3E7E-4839-A39F-E6D7C0A668DC}D:\hry\tdu2\uplauncher.exe] => (Block) D:\hry\tdu2\uplauncher.exe
FirewallRules: [TCP Query User{8048630A-07FA-4B96-B53F-4C0BA0B9889A}D:\hry\tdu2\testdrive2.exe] => (Allow) D:\hry\tdu2\testdrive2.exe
FirewallRules: [UDP Query User{6ED99175-FAB4-40E6-B4F3-3040B96F111F}D:\hry\tdu2\testdrive2.exe] => (Allow) D:\hry\tdu2\testdrive2.exe
FirewallRules: [{5D81BEE2-587F-4654-9597-B815B79069FD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{DF850E7B-3E7E-4369-B9D4-37A9628A305F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{882709FA-7E16-4F26-994C-1DC912F28CD4}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{8DDCE645-57A6-4926-88DD-C5466029AA78}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{2A00302B-4E69-4A13-A4FC-24DA631AD459}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{0D47B0BE-656F-44F0-B87E-C10443D9E536}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{0228517D-E515-4BD4-9A25-1DA70E4A1FA2}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{AD8E60AA-8CA5-467D-97D0-BAF1849E80BC}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{0B896E79-0F97-4FED-BB86-D6CC72DEADCF}C:\program files\magicplus\magicplus.exe] => (Block) C:\program files\magicplus\magicplus.exe
FirewallRules: [UDP Query User{4387F4BE-1CD1-4ECE-8336-9836BBEEABA1}C:\program files\magicplus\magicplus.exe] => (Block) C:\program files\magicplus\magicplus.exe

==================== Restore Points =========================

05-03-2018 20:50:34 JRT Pre-Junkware Removal
06-03-2018 17:13:14 Installed Sophos Virus Removal Tool.

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/07/2018 09:23:37 PM) (Source: WerSvc) (EventID: 5007) (User: )
Description: The target file for the Windows Feedback Platform (a DLL file containing the list of problems on this computer that require additional data collection for diagnosis) could not be parsed. The error code was 8014FFF9.

Error: (03/07/2018 08:37:02 PM) (Source: usbperf) (EventID: 2004) (User: )
Description: Usbperf data collection failed. Collect function called with usupported Query Type.

Error: (03/07/2018 08:36:03 PM) (Source: usbperf) (EventID: 2004) (User: )
Description: Usbperf data collection failed. Collect function called with usupported Query Type.

Error: (03/07/2018 08:35:34 PM) (Source: Perflib) (EventID: 1017) (User: )
Description: Disabled performance counter data collection from the "PolicyAgent" service because the performance counter library for that service has generated one or more errors. The errors that forced this action have been written to the application event log. Correct the errors before enabling the performance counters for this service.

Error: (03/07/2018 08:35:34 PM) (Source: Perflib) (EventID: 1005) (User: )
Description: Unable to locate the open procedure "OpenIPSecPerformanceData" in DLL "C:\Windows\System32\ipsecsvc.dll" for the "PolicyAgent" service. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (03/07/2018 08:35:33 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "PNRPsvc" in DLL "C:\Windows\system32\pnrpperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (03/07/2018 08:35:33 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: The Collect Procedure for the "EmdCache" service in DLL "C:\Windows\system32\emdmgmt.dll" generated an exception or returned an invalid status. The performance data returned by the counter DLL will not be returned in the Perf Data Block. The first four bytes (DWORD) of the Data section contains the exception code or status code.

Error: (03/07/2018 08:35:33 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "DFSR" in DLL "C:\Windows\System32\DfsrPerf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.


System errors:
=============
Error: (03/07/2018 09:23:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba XAudioService sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (03/07/2018 08:34:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Ricoh xD-Picture Card Driver zlyhalo kvôli nasledujúcej chybe:
Služba sa nedá spustiť, pretože je vypnutá, alebo nemá priradené žiadne zapnuté zariadenia.

Error: (03/07/2018 08:34:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby rimsptsk zlyhalo kvôli nasledujúcej chybe:
Služba sa nedá spustiť, pretože je vypnutá, alebo nemá priradené žiadne zapnuté zariadenia.

Error: (03/07/2018 08:34:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby rimmptsk zlyhalo kvôli nasledujúcej chybe:
Služba sa nedá spustiť, pretože je vypnutá, alebo nemá priradené žiadne zapnuté zariadenia.

Error: (03/07/2018 08:34:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Micro Star SCM zlyhalo kvôli nasledujúcej chybe:
Systém nemôže nájsť zadaný súbor.

Error: (03/07/2018 08:34:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby int15 zlyhalo kvôli nasledujúcej chybe:
Systém nemôže nájsť zadanú cestu.

Error: (03/07/2018 12:15:23 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Internet Connection Sharing (ICS) sa pri spustení zablokovala.

Error: (03/07/2018 12:13:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Ricoh xD-Picture Card Driver zlyhalo kvôli nasledujúcej chybe:
Služba sa nedá spustiť, pretože je vypnutá, alebo nemá priradené žiadne zapnuté zariadenia.


CodeIntegrity:
===================================

Date: 2016-08-14 00:59:31.568
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-16 15:41:14.131
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-15 20:34:45.254
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-15 12:02:30.020
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-14 17:15:37.426
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-14 15:04:58.098
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-06 17:02:08.458
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-06 17:01:09.490
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz
Percentage of memory in use: 41%
Total physical RAM: 3070.38 MB
Available physical RAM: 1793.82 MB
Total Virtual: 6304.18 MB
Available Virtual: 5297.65 MB

==================== Drives ================================

Drive c: (ACER) (Fixed) (Total:48.83 GB) (Free:15.3 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Nový zväzok) (Fixed) (Total:249.26 GB) (Free:128.55 GB) NTFS


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 298.1 GB) (Disk ID: F1FADDC8)
Partition 1: (Active) - (Size=48.8 GB) - (Type=0C)
Partition 2: (Not Active) - (Size=249.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================



DRUHÝ LOG v ĎALŠEJ SPRÁVE

Reklama
skmirosk
nováček
Příspěvky: 9
Registrován: březen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod skmirosk » 07 bře 2018 21:32

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04.03.2018
Ran by Miro (administrator) on MIRO-PC1 (07-03-2018 21:24:27)
Running from D:\STAHOVANIE
Loaded Profiles: Miro (Available Profiles: Miro)
Platform: Microsoft® Windows Vista™ Home Premium (X86) Language: Slovenčina (Slovensko)
Internet Explorer Version 7 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\Windows\System32\PnkBstrA.exe
() C:\Windows\System32\PnkBstrB.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(TOSHIBA CORPORATION) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
(Copyright 2017.) C:\Program Files\Zemana AntiMalware\ZAM.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Cyberlink Corp.) D:\programy\CyberLink\PowerDVD\PDVDServ.exe
() C:\Program Files\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
(Copyright 2017.) C:\Program Files\Zemana AntiMalware\ZAM.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
(C. Ghisler & Co.) C:\totalcmd\TOTALCMD.EXE
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmplayer.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [40048 2007-03-08] (Adobe Systems Incorporated)
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [752136 2007-06-27] (Dritek System Inc.)
HKLM\...\Run: [WarReg_PopUp] => C:\Acer\WR_PopUp\WarReg_PopUp.exe [57344 2006-11-05] (Acer Inc.)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [159744 2007-06-06] (Alps Electric Co., Ltd.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [6335008 2008-10-13] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2008-10-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [ITSecMng] => C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [75136 2007-09-28] ( TOSHIBA CORPORATION)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [178712 2008-04-15] (Intel Corporation)
HKLM\...\Run: [RemoteControl] => D:\programy\CyberLink\PowerDVD\PDVDServ.exe [71216 2007-02-07] (Cyberlink Corp.)
HKLM\...\Run: [LanguageShortcut] => D:\programy\CyberLink\PowerDVD\Language\Language.exe [54832 2007-02-07] ()
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [Philips Device Listener] => C:\Program Files\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [380416 2011-01-25] ()
HKLM\...\Run: [MagicPlusHelper] => C:\Program Files\MagicPlus\MagicPlus_helper.exe [2499208 2016-03-22] (Lenovo)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [245608 2018-03-05] (AVAST Software)
HKLM\...\Run: [ZAM] => C:\Program Files\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-396186892-2409389147-1617325887-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\daemon.exe [691656 2009-04-23] (DT Soft Ltd)
HKU\S-1-5-21-396186892-2409389147-1617325887-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125440 2006-11-02] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk [2008-12-18]
ShortcutTarget: Bluetooth Manager.lnk -> C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2008-12-17]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Miro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2010-01-23]
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{9CE44EFB-0077-4380-9BA6-080EBBF51643}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{AACB1843-E626-4E78-9F4A-CBE496F87B11}: [DhcpNameServer] 192.168.100.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
SearchScopes: HKLM -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-396186892-2409389147-1617325887-1000 -> {A0789094-A5EA-40A7-B02B-7ABAEEE48EC6} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-396186892-2409389147-1617325887-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-03-05] (AVAST Software)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2001-06-20] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Miro\AppData\Roaming\Philips-Songbird\Profiles\3f3i7ogu.default [2018-03-06]
FF Homepage: Philips-Songbird\Profiles\3f3i7ogu.default -> about:home
FF NewTab: Philips-Songbird\Profiles\3f3i7ogu.default -> about:newtab
FF NetworkProxy: Philips-Songbird\Profiles\3f3i7ogu.default -> no_proxies_on", "127.0.0.1;localhost"
FF Extension: (QuickTime Playback) - C:\Users\Miro\AppData\Roaming\Philips-Songbird\Profiles\3f3i7ogu.default\Extensions\quicktime@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (Windows Media Playback) - C:\Users\Miro\AppData\Roaming\Philips-Songbird\Profiles\3f3i7ogu.default\Extensions\windowsmedia@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (Artwork Extras) - C:\Program Files\Philips\Philips Songbird\extensions\albumart@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (CD Rip Support) - C:\Program Files\Philips\Philips Songbird\extensions\cd-rip@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (AAC Decoding Support) - C:\Program Files\Philips\Philips Songbird\extensions\ewaacdec@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (MP3 Encoding Support) - C:\Program Files\Philips\Philips Songbird\extensions\ewmp3enc@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (File association) - C:\Program Files\Philips\Philips Songbird\extensions\fileassociation@philips.com [2011-12-16] [Legacy] [not signed]
FF Extension: (Philips GoGear Device Manager) - C:\Program Files\Philips\Philips Songbird\extensions\gogear@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (gonzo) - C:\Program Files\Philips\Philips Songbird\extensions\gonzo@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (Gracenote Metadata Lookup Provider) - C:\Program Files\Philips\Philips Songbird\extensions\gracenote@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (Slovak (sk) Language Pack) - C:\Program Files\Philips\Philips Songbird\extensions\langpack-sk@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (mashTape) - C:\Program Files\Philips\Philips Songbird\extensions\mashTape@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (MSC Device Support) - C:\Program Files\Philips\Philips Songbird\extensions\msc@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (MTP Device Support) - C:\Program Files\Philips\Philips Songbird\extensions\mtp@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (Philips addon manager) - C:\Program Files\Philips\Philips Songbird\extensions\philips-addon-manager@philips.com [2011-12-16] [Legacy] [not signed]
FF Extension: (Philips auto msc-mtp switch) - C:\Program Files\Philips\Philips Songbird\extensions\philips-msc-mtp-switch@philips.com [2011-12-16] [Legacy] [not signed]
FF Extension: (Philips Skin) - C:\Program Files\Philips\Philips Songbird\extensions\philips-skin@philips.com [2011-12-16] [Legacy] [not signed]
FF Extension: (Philips UI) - C:\Program Files\Philips\Philips Songbird\extensions\philips-ui@philips.com [2011-12-16] [Legacy] [not signed]
FF Extension: (Purple Rain) - C:\Program Files\Philips\Philips Songbird\extensions\purplerain@songbirdnest.com [2011-12-16] [Legacy] [not signed]
FF Extension: (Philips Promotions) - C:\Program Files\Philips\Philips Songbird\extensions\philips-promotions@philips.com [2011-12-16] [Legacy] [not signed]
FF Extension: (Philips Branding) - C:\Program Files\Philips\Philips Songbird\extensions\philips-branding@philips.com [2011-12-16] [Legacy] [not signed]
FF Extension: (LikeMusic) - C:\Program Files\Philips\Philips Songbird\extensions\philips-likemusic@philips.com [2011-12-16] [Legacy] [not signed]
FF ProfilePath: C:\Users\Miro\AppData\Roaming\Mozilla\Firefox\Profiles\fcedv45x.default [2018-03-07]
FF Homepage: Mozilla\Firefox\Profiles\fcedv45x.default -> about:home
FF NewTab: Mozilla\Firefox\Profiles\fcedv45x.default -> about:newtab
FF Session Restore: Mozilla\Firefox\Profiles\fcedv45x.default -> is enabled.
FF Extension: (Avast SafePrice) - C:\Users\Miro\AppData\Roaming\Mozilla\Firefox\Profiles\fcedv45x.default\Extensions\sp@avast.com.xpi [2018-03-06]
FF Extension: (Avast Online Security) - C:\Users\Miro\AppData\Roaming\Mozilla\Firefox\Profiles\fcedv45x.default\Extensions\wrc@avast.com.xpi [2018-03-05]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_28_0_0_161.dll [2018-02-06] ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2007-11-07] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-17] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-07-30] (VideoLAN)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2018-02-06] (Adobe Systems Incorporated) [File not signed]
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5909888 2018-03-05] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [303728 2018-03-05] (AVAST Software)
R2 EvtEng; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [815104 2008-04-30] (Intel(R) Corporation) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2007-01-17] (Hewlett-Packard Company) [File not signed]
S3 NBService; D:\programy\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [File not signed]
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [66872 2008-12-17] ()
R2 PnkBstrB; C:\Windows\system32\PnkBstrB.exe [107832 2008-12-17] ()
R2 RegSrvc; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [466944 2008-04-30] (Intel(R) Corporation) [File not signed]
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [173616 2007-02-07] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [265912 2007-08-22] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
S2 CLTNetCnService; "C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon [X]
S2 Micro Star SCM; C:\Program Files\System Control Manager\MSIService.exe [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Angelnt; C:\Windows\System32\Drivers\ANGELNT.SYS [51072 2010-01-23] (Identcode Ltd.) [File not signed]
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [167040 2018-03-05] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriverx.sys [185432 2018-03-05] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidshx.sys [157368 2018-03-05] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswblogx.sys [276688 2018-03-05] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbunivx.sys [50336 2018-03-05] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [169536 2018-03-05] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [42808 2018-03-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [124392 2018-03-05] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr.sys [70576 2018-03-05] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [70816 2018-03-05] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [783608 2018-03-05] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [391856 2018-03-05] (AVAST Software)
S3 aswStmXP; C:\Windows\System32\drivers\aswStmXP.sys [205344 2018-03-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [310784 2018-03-05] (AVAST Software)
R1 DritekPortIO; C:\Program Files\Launch Manager\DPortIO.sys [20112 2006-11-02] (Dritek System Inc.)
R3 NTIDrvr; C:\Windows\System32\DRIVERS\NTIDrvr.sys [6144 2007-08-22] (NewTech Infosystems, Inc.) [File not signed]
R1 nvport; C:\Windows\system32\Drivers\nvport.sys [4608 2006-05-05] (NVIDIA Corporation.) [File not signed]
S3 pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [47360 2009-02-15] (VSO Software) [File not signed]
R3 pfc; C:\Windows\System32\drivers\pfc.sys [9856 2006-03-29] (Padus, Inc.) [File not signed]
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [721904 2009-10-25] ()
S3 SQTECH905C; C:\Windows\System32\Drivers\Capt905c.sys [29056 2007-05-03] (Service & Quality Technology.) [File not signed]
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [118904 2015-11-04] (MBB)
R3 whfltr2k; C:\Windows\System32\DRIVERS\whfltr2k.sys [6784 2007-01-25] ()
R1 ZAM; C:\Windows\System32\drivers\zam32.sys [181496 2018-03-06] (Zemana Ltd.)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard32.sys [181496 2018-03-06] (Zemana Ltd.)
R2 {95808DC4-FA4A-4c74-92FE-5B863F82066B}; D:\programy\CyberLink\PowerDVD\000.fcl [13560 2006-11-02] (Cyberlink Corp.)
U3 am2p9qfl; C:\Windows\system32\Drivers\am2p9qfl.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
U5 AppMgmt; C:\Windows\system32\svchost.exe [22016 2006-11-02] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 igfx; system32\DRIVERS\igdkmd32.sys [X]
S2 int15; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys [X]
S3 int15.sys; \??\C:\AcerSW\int15.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-07 21:24 - 2018-03-07 21:24 - 000000000 ____D C:\FRST
2018-03-07 21:23 - 2018-03-07 21:23 - 000000000 ___SD C:\32788R22FWJFW
2018-03-07 20:34 - 2018-03-07 20:34 - 000000000 ____D C:\Users\Miro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD
2018-03-06 23:59 - 2018-03-06 23:59 - 000009694 _____ C:\ComboFix.txt
2018-03-06 22:40 - 2018-03-07 21:23 - 000000000 ____D C:\Windows\erdnt
2018-03-06 22:29 - 2018-03-07 21:24 - 000064551 _____ C:\Windows\ZAM.krnl.trace
2018-03-06 22:29 - 2018-03-07 21:24 - 000051215 _____ C:\Windows\ZAM_Guard.krnl.trace
2018-03-06 22:29 - 2018-03-06 22:29 - 000181496 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard32.sys
2018-03-06 22:29 - 2018-03-06 22:29 - 000181496 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zam32.sys
2018-03-06 22:29 - 2018-03-06 22:29 - 000001691 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2018-03-06 22:29 - 2018-03-06 22:29 - 000000000 ____D C:\Users\Miro\AppData\Local\Zemana
2018-03-06 22:29 - 2018-03-06 22:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2018-03-06 22:29 - 2018-03-06 22:29 - 000000000 ____D C:\Program Files\Zemana AntiMalware
2018-03-06 22:28 - 2018-03-06 22:17 - 006625600 _____ (Zemana Ltd. ) C:\Users\Miro\Desktop\Zemana.AntiMalware.Setup.exe
2018-03-06 22:23 - 2018-03-06 22:15 - 000024064 _____ C:\Windows\zoek-delete.exe
2018-03-06 22:15 - 2018-03-06 22:15 - 000000000 ____D C:\zoek_backup
2018-03-06 22:15 - 2018-03-06 22:13 - 001168896 _____ C:\Users\Miro\Desktop\zoek.exe
2018-03-06 18:14 - 2018-03-06 18:14 - 000024688 _____ C:\Windows\system32\Drivers\TrueSight.sys
2018-03-06 18:13 - 2018-03-06 22:13 - 000000000 ____D C:\ProgramData\RogueKiller
2018-03-06 17:15 - 2018-03-06 17:15 - 000000000 ____D C:\ProgramData\Sophos
2018-03-06 17:14 - 2018-03-06 17:14 - 000001978 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2018-03-06 17:14 - 2018-03-06 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2018-03-06 17:14 - 2018-03-06 17:14 - 000000000 ____D C:\Program Files\Sophos
2018-03-06 17:11 - 2018-03-06 17:02 - 022583880 _____ (Adlice Software) C:\Users\Miro\Desktop\RogueKiller_portable32.exe
2018-03-05 20:56 - 2018-03-05 20:56 - 000003930 _____ C:\Users\Miro\Desktop\JRT.txt
2018-03-05 20:49 - 2018-03-05 20:49 - 001790024 _____ (Malwarebytes) C:\Users\Miro\Desktop\JRT.exe
2018-03-05 20:42 - 2018-03-05 20:42 - 000000000 ____D C:\Users\Miro\AppData\Local\GHISLER
2018-03-05 19:51 - 2018-03-05 17:41 - 008222496 _____ (Malwarebytes) C:\Users\Miro\Desktop\AdwCleaner.exe
2018-03-05 17:49 - 2018-03-05 17:49 - 000000000 ____D C:\Users\Miro\AppData\Local\CEF
2018-03-05 17:44 - 2018-03-05 20:00 - 000000000 ____D C:\AdwCleaner
2018-03-05 17:40 - 2018-03-05 17:40 - 000000000 ____D C:\Users\Miro\AppData\Local\Macromedia
2018-03-05 17:37 - 2018-03-05 17:37 - 000070496 _____ C:\Users\Miro\AppData\Local\GDIPFONTCACHEV1.DAT
2018-03-05 14:37 - 2018-03-05 14:37 - 000000000 ____D C:\Users\Miro\AppData\Roaming\AVAST Software
2018-03-05 14:34 - 2018-03-05 14:34 - 000001793 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2018-03-05 14:34 - 2018-03-05 14:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-03-05 14:33 - 2018-03-05 14:33 - 000000000 ____D C:\bb75a9b370686b794bbe3989
2018-03-05 14:32 - 2018-03-05 14:32 - 000783608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000391856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000319392 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-03-05 14:32 - 2018-03-05 14:32 - 000310784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000276688 _____ (AVAST Software) C:\Windows\system32\Drivers\aswblogx.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000205344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStmXP.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000185432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000169536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000167040 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000157368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidshx.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000124392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000070816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000070576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000050336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbunivx.sys
2018-03-05 14:32 - 2018-03-05 14:32 - 000042808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-03-05 14:31 - 2018-03-05 14:31 - 000000000 ____D C:\Program Files\AVAST Software
2018-03-05 13:12 - 2018-03-05 13:12 - 000000000 ____D C:\ac7a5dcec146b6e42de99645ae
2018-03-04 22:24 - 2018-03-04 22:24 - 000000000 ____D C:\ab1cdc872175b466019da3c9
2018-03-04 17:04 - 2018-03-04 17:05 - 007302848 _____ (AVAST Software) C:\Users\Public\Desktop\avast_free_antivirus_setup_online.exe
2018-03-04 16:08 - 2018-03-04 16:08 - 000000000 ____D C:\08ff66fd2ef897c8a2
2018-02-20 13:28 - 2018-02-20 13:28 - 000000000 ____D C:\88a537bf71a51b88d2

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-07 21:20 - 2016-11-18 20:45 - 000000000 ____D C:\Users\Miro\AppData\LocalLow\Mozilla
2018-03-07 20:34 - 2008-12-18 00:33 - 000027744 _____ C:\ProgramData\nvModes.001
2018-03-07 20:34 - 2006-11-02 14:01 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-03-07 20:34 - 2006-11-02 13:47 - 000005056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2018-03-07 20:34 - 2006-11-02 13:47 - 000005056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2018-03-07 00:20 - 2006-11-02 14:01 - 000032600 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-03-07 00:18 - 2011-03-02 15:14 - 000115116 _____ C:\Windows\system32\perfh01B.dat
2018-03-07 00:18 - 2011-03-02 15:14 - 000029968 _____ C:\Windows\system32\perfc01B.dat
2018-03-07 00:18 - 2006-11-02 12:18 - 000000000 ____D C:\Windows\inf
2018-03-07 00:18 - 2006-11-02 11:33 - 000913410 _____ C:\Windows\system32\PerfStringBackup.INI
2018-03-06 23:55 - 2006-11-02 11:23 - 000000215 _____ C:\Windows\system.ini
2018-03-06 23:41 - 2008-12-18 00:33 - 000027744 _____ C:\ProgramData\nvModes.dat
2018-03-06 22:31 - 2008-12-17 01:52 - 000000000 ____D C:\Users\Miro
2018-03-05 20:14 - 2009-01-01 23:42 - 000608124 _____ C:\Windows\ntbtlog.txt
2018-03-05 19:44 - 2008-12-17 01:52 - 000000000 ____D C:\Program Files\Yahoo!
2018-03-05 14:32 - 2017-12-06 14:50 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2018-03-05 14:30 - 2014-10-16 18:34 - 000000000 ____D C:\ProgramData\AVAST Software
2018-03-05 08:50 - 2008-12-31 18:18 - 000000000 ____D C:\Program Files\AstroburnBar
2018-02-06 15:44 - 2013-10-18 15:11 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2018-02-06 15:44 - 2013-10-18 15:11 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2018-02-06 15:44 - 2007-08-22 22:34 - 000000000 ____D C:\Windows\system32\Macromed

==================== Files in the root of some directories =======

2009-02-15 19:17 - 2009-02-15 19:24 - 000011114 _____ () C:\ProgramData\MainApp.dll
2009-02-15 19:15 - 2009-03-03 11:22 - 000081920 _____ () C:\Users\Miro\AppData\Roaming\ezpinst.exe
2009-02-15 19:15 - 2009-03-03 11:22 - 000007176 _____ () C:\Users\Miro\AppData\Roaming\pcouffin.cat
2009-02-15 19:15 - 2009-03-03 11:22 - 000001144 _____ () C:\Users\Miro\AppData\Roaming\pcouffin.inf
2009-02-15 19:16 - 2009-03-03 11:22 - 000000033 _____ () C:\Users\Miro\AppData\Roaming\pcouffin.log
2009-02-15 19:15 - 2009-03-03 11:22 - 000047360 _____ (VSO Software) C:\Users\Miro\AppData\Roaming\pcouffin.sys
2008-12-17 20:57 - 2008-12-17 20:57 - 000022328 _____ () C:\Users\Miro\AppData\Roaming\PnkBstrK.sys
2011-08-21 10:23 - 2011-08-21 10:23 - 000024206 _____ () C:\Users\Miro\AppData\Roaming\UserTile.png

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-03-07 20:40

==================== End of FRST.txt ============================

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod jaro3 » 07 bře 2018 23:00

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 04.03.2018
Ran by Miro (07-03-2018 21:24:59)
Running from D:\STAHOVANIE


přemísti frst.exe na plochu!! Nikdy nespouštěj ze složky. potom by totiž nefungoval jakýkoliv script.



Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
Task: {257CD818-000F-4189-83EF-A14E6C2318E0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
Task: {CD67BC4B-8214-44CD-A822-05FB73697759} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
HKLM\...\cmdfile\DefaultIcon: %SystemRoot%\System32\imageres.dll,-68 <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-396186892-2409389147-1617325887-1000 -> {A0789094-A5EA-40A7-B02B-7ABAEEE48EC6} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-396186892-2409389147-1617325887-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/s ... wflash.cab
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
U3 am2p9qfl; C:\Windows\system32\Drivers\am2p9qfl.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
U5 AppMgmt; C:\Windows\system32\svchost.exe [22016 2006-11-02] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
C:\32788R22FWJFW
C:\ProgramData\MainApp.dll

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

skmirosk
nováček
Příspěvky: 9
Registrován: březen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod skmirosk » 07 bře 2018 23:17

Frst som premiestnil na plochu, potom som urobil fixlist.txt podľa pokynov. po ukončení FRST sa urobil reštart počítača.

tu je fixlog.txt ktorý sa vytvoril na ploche.





Fix result of Farbar Recovery Scan Tool (x86) Version: 04.03.2018
Ran by Miro (07-03-2018 23:08:44) Run:1
Running from C:\Users\Miro\Desktop
Loaded Profiles: Miro (Available Profiles: Miro)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
Task: {257CD818-000F-4189-83EF-A14E6C2318E0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
Task: {CD67BC4B-8214-44CD-A822-05FB73697759} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
HKLM\...\cmdfile\DefaultIcon: %SystemRoot%\System32\imageres.dll,-68 <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-396186892-2409389147-1617325887-1000 -> {A0789094-A5EA-40A7-B02B-7ABAEEE48EC6} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-396186892-2409389147-1617325887-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/s ... wflash.cab
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
U3 am2p9qfl; C:\Windows\system32\Drivers\am2p9qfl.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
U5 AppMgmt; C:\Windows\system32\svchost.exe [22016 2006-11-02] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
C:\32788R22FWJFW
C:\ProgramData\MainApp.dll

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{257CD818-000F-4189-83EF-A14E6C2318E0}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{257CD818-000F-4189-83EF-A14E6C2318E0}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CD67BC4B-8214-44CD-A822-05FB73697759}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CD67BC4B-8214-44CD-A822-05FB73697759}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
HKLM\Software\Classes\cmdfile\DefaultIcon\\Default => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}" => removed successfully.
HKLM\Software\Classes\CLSID\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} => not found
"HKU\S-1-5-21-396186892-2409389147-1617325887-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A0789094-A5EA-40A7-B02B-7ABAEEE48EC6}" => removed successfully.
HKLM\Software\Classes\CLSID\{A0789094-A5EA-40A7-B02B-7ABAEEE48EC6} => not found
"HKU\S-1-5-21-396186892-2409389147-1617325887-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}" => removed successfully.
HKLM\Software\Classes\CLSID\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} => not found
"HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553540000}" => removed successfully.
"HKLM\Software\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}" => removed successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck" => removed successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki" => removed successfully.
"HKLM\System\CurrentControlSet\Services\am2p9qfl" => removed successfully.
am2p9qfl => service removed successfully.
"HKLM\System\CurrentControlSet\Services\AppMgmt" => removed successfully.
AppMgmt => service removed successfully.
"HKLM\System\CurrentControlSet\Services\catchme" => removed successfully.
catchme => service removed successfully.
C:\32788R22FWJFW => moved successfully
C:\ProgramData\MainApp.dll => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10413 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13544106 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 371594 B
Edge => 0 B
Chrome => 0 B
Firefox => 30436622 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 33058 B
Public => 0 B
ProgramData => 0 B
systemprofile => 692 B
LocalService => 692 B
NetworkService => 33125 B
Miro => 16567783 B

RecycleBin => 0 B
EmptyTemp: => 58.2 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 23:09:17 ====

Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu logu

Příspěvekod Orcus » 08 bře 2018 08:18

Co problemy?
Láska hřeje, ale uhlí je uhlí. :fire:



Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 8 hostů