zpomalený PC-prosím o kontrolu logu

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

Korzarek
nováček
Příspěvky: 29
Registrován: leden 09
Pohlaví: Muž

zpomalený PC-prosím o kontrolu logu

Příspěvekod Korzarek » 04 pro 2017 14:16

Dobrý den,

prosím o kontrolu mého PC, výrazně zpomalil, zvláště při staru a potom při načítání jakékoliv stránky v prohlížečích (Mozilla i Explorer)
Děkuji moc

zde je log:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:07:33, on 4. 12. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18817)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\eva\Downloads\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://volny.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Run: [EaseUS EPM tray] C:\Program Files (x86)\EaseUS Partition Master 10.1\bin\EpmNews.exe
O4 - HKLM\..\Run: [EaseUS EPM Tray Agent] "C:\Program Files (x86)\EaseUS Partition Master 10.1\bin\TrayPopupE\TrayTipAgentE.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10020 bytes



Reklama
Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10504
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž

Re: zpomalený PC-prosím o kontrolu logu

Příspěvekod Orcus » 04 pro 2017 16:53

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.

===================================================

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

===================================================

Stáhni AdwCleaner (by Xplode)

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu klikni na tlačítko "Logfile" načež se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

===================================================

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
- Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:

Aktualizace Malwarebytes' Anti-Malware
Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec

- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na Kopírovat do schránky a a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.
Láska hřeje, ale uhlí je uhlí. :fire:



Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a jerabina

Pokud budete spokojeni , můžete podpořit naše fórum.

Korzarek
nováček
Příspěvky: 29
Registrován: leden 09
Pohlaví: Muž

Re: zpomalený PC-prosím o kontrolu logu

Příspěvekod Korzarek » 05 pro 2017 13:26

Ahoj,
Vše provedeno!

ATF Cleaner = OK
TFC = OK

AdwCleaner = OK

log:
# AdwCleaner 7.0.5.0 - Logfile created on Tue Dec 05 11:54:53 2017
# Updated on 2017/29/11 by Malwarebytes
# Database: 12-04-2017.1
# Running on Windows 8.1 (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.TweakBit, C:\ProgramData\BSD\DriverHive
PUP.Optional.TweakBit, C:\ProgramData\Application Data\BSD\DriverHive
PUP.Optional.TweakBit, C:\Users\All Users\BSD\DriverHive
PUP.Optional.Legacy, C:\ProgramData\BSD\DriverHiveEngine
PUP.Optional.Legacy, C:\ProgramData\Application Data\BSD\DriverHiveEngine
PUP.Optional.Legacy, C:\Users\All Users\BSD\DriverHiveEngine
PUP.Optional.Solvusoft, C:\ProgramData\Solvusoft
PUP.Optional.Solvusoft, C:\ProgramData\Application Data\Solvusoft
PUP.Optional.Solvusoft, C:\Windows\System32\config\systemprofile\AppData\Roaming\Solvusoft
PUP.Optional.Solvusoft, C:\Program Files (x86)\Solvusoft
PUP.Optional.Solvusoft, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Solvusoft
PUP.Optional.Solvusoft, C:\Users\All Users\Solvusoft
PUP.Optional.Solvusoft, C:\Users\eva\AppData\Roaming\Solvusoft
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc

***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########


Malwarebytes' Anti-Malware = OK

log:
Malwarebytes
http://www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 05.12.17
Čas skenování: 13:10
Logovací soubor: 461e3bce-d9b5-11e7-b457-90489a0be2f4.json
Správce: Ano

-Informace o softwaru-
Verze: 3.3.1.2183
Verze komponentů: 1.0.236
Aktualizovat verzi balíku komponent: 1.0.3414
Licence: Zkušební

-Systémová informace-
OS: Windows 8.1
CPU: x64
Systém souborů: NTFS
Uživatel: pc-eva\eva

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 263146
Zjištěné hrozby: 268
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 4 min, 12 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 26
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Solvusoft Suite\Logs, Žádná uživatelská akce, [7914], [461214],1.0.3414
PUP.Optional.WinThruster, C:\USERS\EVA\APPDATA\ROAMING\SOLVUSOFT\SOLVUSOFT SUITE, Žádná uživatelská akce, [7914], [461214],1.0.3414
PUP.Optional.WinThruster, C:\ProgramData\Solvusoft\Solvusoft Suite\Dumps, Žádná uživatelská akce, [7914], [461214],1.0.3414
PUP.Optional.WinThruster, C:\ProgramData\Solvusoft\Solvusoft Suite\Logs, Žádná uživatelská akce, [7914], [461214],1.0.3414
PUP.Optional.WinThruster, C:\PROGRAMDATA\SOLVUSOFT\SOLVUSOFT SUITE, Žádná uživatelská akce, [7914], [461214],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\settings, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\account, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\history, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\nav, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Documents, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\PROGRAM FILES (X86)\DRIVERDOC, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.WinThruster, C:\ProgramData\Solvusoft\Tray\Configurations, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\ProgramData\Solvusoft\Tray\Logs, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\ProgramData\Solvusoft\Tray\Menu, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\PROGRAMDATA\SOLVUSOFT\TRAY, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Logs, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Menu, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\USERS\EVA\APPDATA\ROAMING\SOLVUSOFT\TRAY, Žádná uživatelská akce, [7914], [461215],1.0.3414

Soubor: 242
PUP.Optional.WinThruster, C:\USERS\EVA\APPDATA\ROAMING\SOLVUSOFT\SOLVUSOFT SUITE\LOGS\Client.log.txt, Žádná uživatelská akce, [7914], [461214],1.0.3414
PUP.Optional.WinThruster, C:\PROGRAMDATA\SOLVUSOFT\SOLVUSOFT SUITE\LOGS\Installer.log.txt, Žádná uživatelská akce, [7914], [461214],1.0.3414
PUP.Optional.WinThruster, C:\ProgramData\Solvusoft\Solvusoft Suite\Logs\MachineId.log.txt, Žádná uživatelská akce, [7914], [461214],1.0.3414
PUP.Optional.WinThruster, C:\ProgramData\Solvusoft\Solvusoft Suite\Logs\Service.log.txt, Žádná uživatelská akce, [7914], [461214],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Documents\EULA.rtf, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\account\account_details.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\account\account_fullversion.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\account\account_mypage.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\account\account_productkey.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\account\account_productkeyhistory.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\account\account_renew.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\account\account_tabicon_accountsettings.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\account\account_tabicon_licensesettings.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\fb_active.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_da.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_th.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\about.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\arrow.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\arrow_up.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\bg_stretch.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\buy_full_version.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\check.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\check_30x27.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\check_44x40.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\connect_server.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\download.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\DV_box.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\error.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\expired.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\fb_over.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\frameimage.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\help.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\icon_info.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\icon_info_large.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\id_card.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\lightbox_pro.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\lightbox_trial.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\logo.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\pro.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\spinner_small.gif, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\support.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_bg.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_ch.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_cs.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_de.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_el.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_en.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_es.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_fi.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_fr.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_hu.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_it.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_ja.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_ko.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_nl.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_no.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_pl.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_pt.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_ru.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_se.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_sv.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_tw.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_vi.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\top_buy_zh.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\traffic_green.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\traffic_red.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\unipb.gif, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\update.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\warning.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\warning_30x27.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\global\warning_44x40.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\history\history_tabicon_history.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\history\history_tabicon_ignore.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\history\history_tabicon_restore.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\history\ignore_icon.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\history\restore_icon.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\nav\01.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\nav\02.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\nav\03.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\nav\04.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\nav\05.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\nav\navbg.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\nav\navbg_current.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\legend_overview_03.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\severity_bar_02.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\done_calender.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\done_scan.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\drivers_found.gif, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\legend_overview_01.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\legend_overview_01_active.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\legend_overview_02.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\legend_overview_02_active.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\legend_overview_03_active.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\legend_overview_04.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\legend_overview_04_active.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\legend_overview_05.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\legend_overview_05_active.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\pc_info.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\severity_bar_01.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\severity_bar_03.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\severity_bar_04.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\severity_bar_05.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\severity_bar_06.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\severity_bar_07.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\severity_bar_08.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\severity_bar_09.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\tip_curl.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\updatinglist_check.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\updatinglist_downloading.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\updatinglist_error.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\updatinglist_installing.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\updatinglist_process.gif, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\updatinglist_progress.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\overview\updatinglist_waiting.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\settings\settings_download.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\settings\settings_general.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\settings\settings_language.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\settings\settings_tabicon_general.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\settings\settings_tabicon_info.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\gfx\settings\settings_update.png, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\about_lightbox.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\account.css, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\account.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\activation_lightbox.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\buynowsmall_lightbox.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\buynow_lightbox.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\disabled_lightbox.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\error_lightbox.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\framework.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\global.css, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\history.css, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\history.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\info_lightbox.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\lastscan.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\layout.css, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\msg_lightbox.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\msg_lightbox_single_btn.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\msg_lightbox_w_option.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\overview.css, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\overview.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\restore_error_lightbox.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\settings.css, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\settings.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\trial_lightbox.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\update_lightbox.html, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Html\whitelabel.css, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_EL.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_BG.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_CS.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_DA.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_DE.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_EN-US.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_EN.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_ES.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_FI.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_FR.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_IT.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_JA.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_KO.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_NL.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_NO.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_PL.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_PT.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_RU.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_SV.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_TH.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc\Languages\Language_ZH.xml, Žádná uživatelská akce, [324], [331666],1.0.3414
PUP.Optional.WinThruster, C:\ProgramData\Solvusoft\Tray\Configurations\DVPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\ProgramData\Solvusoft\Tray\Configurations\TKTRAY.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\ProgramData\Solvusoft\Tray\Logs\CommonTrayInstaller.log.txt, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\ProgramData\Solvusoft\Tray\Menu\products_list.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\FDPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\RCPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\DLPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\DLPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\DLPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\DLPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\DVPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\DVPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\DVPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\DVPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\FDPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\FDPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\FDPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\lang.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\PWPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\PWPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\PWPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\PWPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\RCPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\RCPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\RCPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\SFPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\SFPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\SFPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\SFPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\SWPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\SWPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\SWPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\SWPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\VFPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\VFPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\VFPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\AutoInstall\VFPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Logs\Tray.log.txt, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Menu\products_list.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\SFPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\DLPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\DLPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\DLPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\DLPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\DVPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\DVPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\DVPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\DVPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\FDPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\FDPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\FDPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\FDPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\lang.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\PWPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\PWPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\PWPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\PWPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\RCPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\RCPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\RCPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\RCPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\SFPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\SFPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\SFPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\SWPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\SWPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\SWPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\SWPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\VFPRO.xml, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\VFPRO_DL_01-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\VFPRO_DL_02-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM\VFPRO_DL_03-825x338-72dpi.jpg, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM.list, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAY-DM.list_new, Žádná uživatelská akce, [7914], [461215],1.0.3414
PUP.Optional.WinThruster, C:\Users\eva\AppData\Roaming\Solvusoft\Tray\Updates\TKTRAYINFO-10019.list_new, Žádná uživatelská akce, [7914], [461215],1.0.3414

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)

---- položky, nalezené při skenu jsem zatím do karantény neukládal -------
---- při zavírání programu jsem zrušil proces čištění ----
Co dál?

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 37272
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: zpomalený PC-prosím o kontrolu logu

Příspěvekod jaro3 » 06 pro 2017 09:56

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce
klikni na „Scan“, po prohledání klikni na „ Clean

Program provede opravu, po automatickém restartu klikni na „Log Manager“ a pak poklepej na odpovídají log, (C:\AdwCleaner [C?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
https://downloads.malwarebytes.com/file/JRT-EOL
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.


. spusť znovu Malwarebytes' Anti-Malware a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Sophos Virus Removal Tool je praktický softwarový nástroj, který by mohl odstranit infekce, které antivirový program nedetekuje .
Stáhněte si ho zde z některého odkazu:
http://www.majorgeeks.com/mg/get/sophos ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,2.html

Viry mohou zpomalit počítač, nebo se snaží ukrást vaše data, a ani nevíte , že je máte. Co potřebujete, je rychlý a snadný způsob, jak je najít a zbavit se jich, pokud již máte antivirový program v počítači nainstalován , můžete nainstalovat i nástroj Sophos Virus Removal , který identifikuje a vyčistí zbylé infekce, které mohl Váš antivirový program přehlédnout.
K použití Sophos Virus Removal Tool na něj poklepejte a stiskněte tlačítko „Start scanning“ . Pak bude Sophos Virus Removal Tool vyhledávat a odstraňovat viry, které najde. Může být vyžadován restart.


Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.adlice.com/download/roguekil ... HlwZT14ODY
64bit.:
http://www.adlice.com/download/roguekil ... HlwZT14NjQ
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7,8,10 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“
- Program skenuje procesy PC. Po proskenování klikni na „Open Report “ , v okně pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

další odkazy:
http://www.adlice.com/download/roguekiller/
http://www.bleepingcomputer.com/download/roguekiller/
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Korzarek
nováček
Příspěvky: 29
Registrován: leden 09
Pohlaví: Muž

Re: zpomalený PC-prosím o kontrolu logu

Příspěvekod Korzarek » 07 pro 2017 15:25

Ahoj, vše provedeno.

AdwCleaner = hotovo

log zde:

# AdwCleaner 7.0.5.0 - Logfile created on Wed Dec 06 10:35:22 2017
# Updated on 2017/29/11 by Malwarebytes
# Database: 12-06-2017.1
# Running on Windows 8.1 (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.TweakBit, C:\ProgramData\BSD\DriverHive
PUP.Optional.TweakBit, C:\ProgramData\Application Data\BSD\DriverHive
PUP.Optional.TweakBit, C:\Users\All Users\BSD\DriverHive
PUP.Optional.Legacy, C:\ProgramData\BSD\DriverHiveEngine
PUP.Optional.Legacy, C:\ProgramData\Application Data\BSD\DriverHiveEngine
PUP.Optional.Legacy, C:\Users\All Users\BSD\DriverHiveEngine
PUP.Optional.Solvusoft, C:\ProgramData\Solvusoft
PUP.Optional.Solvusoft, C:\ProgramData\Application Data\Solvusoft
PUP.Optional.Solvusoft, C:\Windows\System32\config\systemprofile\AppData\Roaming\Solvusoft
PUP.Optional.Solvusoft, C:\Program Files (x86)\Solvusoft
PUP.Optional.Solvusoft, C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Solvusoft
PUP.Optional.Solvusoft, C:\Users\All Users\Solvusoft
PUP.Optional.Solvusoft, C:\Users\eva\AppData\Roaming\Solvusoft
PUP.Optional.Solvusoft, C:\Program Files (x86)\DriverDoc

***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
C:/AdwCleaner/AdwCleaner[S0].txt - [1827 B] - [2017/12/5 11:54:53]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt ##########
---------------------------------------------------------------------------

JRT = hotovo

Zpráva o skenování:

log:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 8.1 x64
Ran by eva (Administrator) on st 06. 12. 2017 at 11:51:05,46
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

File System: 0
Registry: 3
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{7C82A5D5-8483-4AF3-8064-98DE5507A4F5} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{7C82A5D5-8483-4AF3-8064-98DE5507A4F5} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 06. 12. 2017 at 12:07:43,60
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
----------------------------------------------------------------------

Malwarebytes' Anti-Malware = hotovo, ŽÁDNOU HROZBU NENAŠEL

log:
Malwarebytes
http://www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 06.12.17
Čas skenování: 12:13
Logovací soubor: 6f55c84c-da76-11e7-848c-90489a0be2f4.json
Správce: Ano

-Informace o softwaru-
Verze: 3.3.1.2183
Verze komponentů: 1.0.236
Aktualizovat verzi balíku komponent: 1.0.3422
Licence: Zkušební

-Systémová informace-
OS: Windows 8.1
CPU: x64
Systém souborů: NTFS
Uživatel: pc-eva\eva

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 263317
Zjištěné hrozby: 0
(Nebyly zjištěny žádné škodlivé položky)
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 4 min, 52 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

(end)


--------------------------------------------------------------------
Sophos Virus Removal Tool = hotovo
nalezen 1 objekt, vyčištěno


log:
2017-12-06 11:31:11.788 Sophos Virus Removal Tool version 2.6.1
2017-12-06 11:31:11.788 Copyright (c) 2009-2017 Sophos Limited. All rights reserved.

2017-12-06 11:31:11.788 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove

them.

2017-12-06 11:31:11.788 Windows version 6.2 SP 0.0 build 9200 SM=0x300 PT=0x1 WOW64
2017-12-06 11:31:11.788 Checking for updates...
2017-12-06 11:31:11.948 Update progress: proxy server not available
2017-12-06 11:31:37.054 Downloading updates...
2017-12-06 11:31:37.064 Update progress: [I96736] sdds.svrt_10: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED

baseVersion=1
2017-12-06 11:31:37.064 Update progress: [I95020] sdds.svrt_10: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60

RECOMMENDED path=
2017-12-06 11:31:37.064 Update progress: [I22529] sdds.svrt_10: looking for supplements included from product C1A903B2-E63E-483b-982D-

04BB9C457C60 RECOMMENDED path=
2017-12-06 11:31:37.064 Update progress: [I49502] sdds.savi0910.xml: found supplement SAVIW32 LATEST path= baseVersion= [included from product

C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]
2017-12-06 11:31:37.064 Update progress: [I95020] sdds.savi0910.xml: looking for packages included from product SAVIW32 LATEST path=
2017-12-06 11:31:37.064 Update progress: [I22529] sdds.savi0910.xml: looking for supplements included from product SAVIW32 LATEST path=
2017-12-06 11:31:37.064 Update progress: [I49502] sdds.data0910.xml: found supplement IDE545 LATEST path= baseVersion= [included from product

SAVIW32 LATEST path=]
2017-12-06 11:31:37.064 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE545 LATEST path=
2017-12-06 11:31:37.064 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE545 LATEST path=
2017-12-06 11:31:37.064 Update progress: [I49502] sdds.data0910.xml: found supplement IDE546 LATEST path= baseVersion= [included from product

IDE545 LATEST path=]
2017-12-06 11:31:37.064 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE546 LATEST path=
2017-12-06 11:31:37.064 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE546 LATEST path=
2017-12-06 11:31:37.064 Update progress: [I49502] sdds.data0910.xml: found supplement IDE547 LATEST path= baseVersion= [included from product

IDE546 LATEST path=]
2017-12-06 11:31:37.064 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE547 LATEST path=
2017-12-06 11:31:37.064 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE547 LATEST path=
2017-12-06 11:31:37.064 Update progress: [I49502] sdds.data0910.xml: found supplement IDE548 LATEST path= baseVersion= [included from product

IDE547 LATEST path=]
2017-12-06 11:31:37.064 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE548 LATEST path=
2017-12-06 11:31:37.064 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE548 LATEST path=
2017-12-06 11:31:37.064 Update progress: [I49502] sdds.data0910.xml: found supplement IDE549 LATEST path= baseVersion= [included from product

IDE548 LATEST path=]
2017-12-06 11:31:37.064 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE549 LATEST path=
2017-12-06 11:31:37.064 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE549 LATEST path=
2017-12-06 11:31:37.064 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2017-12-06 11:31:37.939 Update progress: [I19463] Syncing product SAVIW32 LATEST path=
2017-12-06 11:31:37.939 Update progress: [I19463] Product download size 174235198 bytes
2017-12-06 11:32:14.233 Option all = no
2017-12-06 11:32:14.233 Option recurse = yes
2017-12-06 11:32:14.233 Option archive = no
2017-12-06 11:32:14.233 Option service = yes
2017-12-06 11:32:14.233 Option confirm = yes
2017-12-06 11:32:14.233 Option sxl = yes
2017-12-06 11:32:14.238 Option max-data-age = 35
2017-12-06 11:32:14.238 Option vdl-logging = yes
2017-12-06 11:32:14.313 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2017-12-06 11:32:14.313 Machine ID: 8532a2f6ba784d618627b7561ab22ec5
2017-12-06 11:32:14.328 Component SVRTcli.exe version 2.6.1
2017-12-06 11:32:14.328 Component control.dll version 2.6.1
2017-12-06 11:32:14.328 Component SVRTservice.exe version 2.6.1
2017-12-06 11:32:14.333 Component engine\osdp.dll version 1.44.1.2286
2017-12-06 11:32:14.333 Component engine\veex.dll version 3.68.6.2286
2017-12-06 11:32:14.333 Component engine\savi.dll version 9.0.7.2286
2017-12-06 11:32:14.333 Component rkdisk.dll version 1.5.31.1
2017-12-06 11:32:14.348 Version info: Product version 2.6.1
2017-12-06 11:32:14.348 Version info: Detection engine 3.68.6
2017-12-06 11:32:14.348 Version info: Detection data 5.44
2017-12-06 11:32:14.348 Version info: Build date 19. 9. 2017
2017-12-06 11:32:14.348 Version info: Data files added 472
2017-12-06 11:32:14.348 Version info: Last successful update (not yet updated)
2017-12-06 11:32:48.767 Update progress: [I19463] Syncing product IDE545 LATEST path=
2017-12-06 11:32:48.767 Update progress: [I19463] Product download size 2585002 bytes
2017-12-06 11:32:55.263 Update progress: [I19463] Syncing product IDE546 LATEST path=
2017-12-06 11:32:55.263 Update progress: [I19463] Product download size 3165416 bytes
2017-12-06 11:33:00.615 Update progress: [I19463] Syncing product IDE547 LATEST path=
2017-12-06 11:33:00.615 Update progress: [I19463] Product download size 4521286 bytes
2017-12-06 11:33:05.286 Update progress: [I19463] Syncing product IDE548 LATEST path=
2017-12-06 11:33:05.286 Update progress: [I19463] Product download size 114816 bytes
2017-12-06 11:33:05.576 Update progress: [I19463] Syncing product IDE549 LATEST path=
2017-12-06 11:33:06.141 Installing updates...
2017-12-06 11:33:08.371 Error level 1
2017-12-06 11:34:37.742 Update successful
2017-12-06 11:35:25.503 Option all = no
2017-12-06 11:35:25.503 Option recurse = yes
2017-12-06 11:35:25.503 Option archive = no
2017-12-06 11:35:25.503 Option service = yes
2017-12-06 11:35:25.503 Option confirm = yes
2017-12-06 11:35:25.503 Option sxl = yes
2017-12-06 11:35:25.513 Option max-data-age = 35
2017-12-06 11:35:25.513 Option vdl-logging = yes
2017-12-06 11:35:25.548 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2017-12-06 11:35:25.548 Machine ID: 8532a2f6ba784d618627b7561ab22ec5
2017-12-06 11:35:25.548 Component SVRTcli.exe version 2.6.1
2017-12-06 11:35:25.553 Component control.dll version 2.6.1
2017-12-06 11:35:25.553 Component SVRTservice.exe version 2.6.1
2017-12-06 11:35:25.553 Component engine\osdp.dll version 1.44.1.2286
2017-12-06 11:35:25.553 Component engine\veex.dll version 3.68.6.2286
2017-12-06 11:35:25.553 Component engine\savi.dll version 9.0.7.2286
2017-12-06 11:35:25.558 Component rkdisk.dll version 1.5.31.1
2017-12-06 11:35:25.558 Version info: Product version 2.6.1
2017-12-06 11:35:25.558 Version info: Detection engine 3.68.6
2017-12-06 11:35:25.558 Version info: Detection data 5.44
2017-12-06 11:35:25.558 Version info: Build date 19. 9. 2017
2017-12-06 11:35:25.558 Version info: Data files added 503
2017-12-06 11:35:25.558 Version info: Last successful update 6. 12. 2017 12:34:37

2017-12-06 12:10:07.914 Could not open C:\hiberfil.sys
2017-12-06 12:10:28.204 Could not open C:\pagefile.sys
2017-12-06 13:00:40.787 Could not open C:\swapfile.sys
2017-12-06 13:09:11.062 Could not open C:\System Volume Information\{05f87121-c216-11e7-82ca-90489a0be2f4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2017-12-06 13:09:11.067 Could not open C:\System Volume Information\{2cb67c0e-d469-11e7-82cb-90489a0be2f4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2017-12-06 13:09:11.072 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
2017-12-06 13:09:11.077 Could not open C:\System Volume Information\{6b2daa25-d8f3-11e7-82cf-90489a0be2f4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2017-12-06 13:09:11.082 Could not open C:\System Volume Information\{7c25287e-cd5a-11e7-82cb-90489a0be2f4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2017-12-06 13:09:11.087 Could not open C:\System Volume Information\{7c252afa-cd5a-11e7-82cb-90489a0be2f4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2017-12-06 13:09:11.092 Could not open C:\System Volume Information\{7d3fd30a-d526-11e7-82cc-90489a0be2f4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2017-12-06 13:09:11.097 Could not open C:\System Volume Information\{914892f7-da71-11e7-82d1-90489a0be2f4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2017-12-06 13:40:24.311 Could not open C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
2017-12-06 13:40:24.326 Could not open C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
2017-12-06 13:40:40.765 Could not open C:\Windows\System32\config\BBI
2017-12-06 13:40:41.200 Could not open C:\Windows\System32\config\RegBack\DEFAULT
2017-12-06 13:40:41.225 Could not open C:\Windows\System32\config\RegBack\SAM
2017-12-06 13:40:41.240 Could not open C:\Windows\System32\config\RegBack\SECURITY
2017-12-06 13:40:41.275 Could not open C:\Windows\System32\config\RegBack\SOFTWARE
2017-12-06 13:40:41.300 Could not open C:\Windows\System32\config\RegBack\SYSTEM
2017-12-06 15:30:21.200 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\Jarmark J\Kutíkova_udělátka\PEKO kalkulátor

____.xls
2017-12-06 15:33:54.634 >>> Virus 'W32/GetCodec-A' found in file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Kutík

\Léto s Radiem OK\OK_08.08._16.15.WMA
2017-12-06 15:33:54.634 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:33:54.634 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:34:32.158 >>> Virus 'W32/GetCodec-A' found in file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Kutík

\Léto s Radiem OK\OK_23.07._08.15.wma
2017-12-06 15:34:32.163 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:34:32.163 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:35:07.057 >>> Virus 'W32/GetCodec-A' found in file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Kutík

\Léto s Radiem OK\OK_23.07._12.15.wma
2017-12-06 15:35:07.057 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:35:07.057 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:35:46.378 >>> Virus 'W32/GetCodec-A' found in file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Kutík

\Léto s Radiem OK\OK_23.07._16.15.wma
2017-12-06 15:35:46.378 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:35:46.378 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:36:41.702 >>> Virus 'W32/GetCodec-A' found in file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Kutík

\Prac\Záloha J\Leto_s_Radiem_OK_2007\Reklama\OK_08.08._16.15.WMA
2017-12-06 15:36:41.702 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:36:41.702 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:37:20.880 >>> Virus 'W32/GetCodec-A' found in file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Kutík

\Prac\Záloha J\Leto_s_Radiem_OK_2007\Reklama\OK_23.07._08.15.wma
2017-12-06 15:37:20.880 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:37:20.880 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:37:53.743 >>> Virus 'W32/GetCodec-A' found in file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Kutík

\Prac\Záloha J\Leto_s_Radiem_OK_2007\Reklama\OK_23.07._12.15.wma
2017-12-06 15:37:53.748 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:37:53.748 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:38:20.809 >>> Virus 'W32/GetCodec-A' found in file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Kutík

\Prac\Záloha J\Leto_s_Radiem_OK_2007\Reklama\OK_23.07._16.15.wma
2017-12-06 15:38:20.809 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:38:20.809 >>> Virus 'W32/GetCodec-A' found in file HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Windows

\CurrentVersion\Internet Settings\Zones\3\1609
2017-12-06 15:38:22.869 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Kutík\Premiový systém

2011\Erhebung der Umsatze FB- Poprad HK.xls
2017-12-06 15:38:22.909 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Kutík\Premiový systém

2011\Pramie_Plan_2011.xls
2017-12-06 15:39:35.261 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy\Mzdy

2003\Platy 2003 pro CCS.xls
2017-12-06 15:39:35.426 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy\Mzdy

2004\platy 2004.xls
2017-12-06 15:39:35.516 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy\Mzdy

2005\2005 mzdy - Bx 336.xls
2017-12-06 15:39:35.566 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy\Mzdy

2005\data mzdy 2005.xls
2017-12-06 15:39:35.596 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy\Mzdy

2005\Zdrav. prohlídky313.xls
2017-12-06 15:39:35.721 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy\Mzdy

2006\platy 2006 - KALKULACE, NÁVRH.xls
2017-12-06 15:39:35.746 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy\Mzdy

2006\platy_2006_zdroj.xls
2017-12-06 15:39:35.791 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2007\data2007.xls
2017-12-06 15:39:35.821 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2007\platy 2007 - KALKULACE, NÁVRH.xls
2017-12-06 15:39:35.911 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2008\data2008.xls
2017-12-06 15:39:35.946 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2008\Kalkulace ročních premií za 2007.xls
2017-12-06 15:39:36.041 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2008\Mustr platy 2008 336.xls
2017-12-06 15:39:36.111 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2008\Plán mezd HK2 _1.xls
2017-12-06 15:39:36.181 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2009\data2009.xls
2017-12-06 15:39:36.276 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2010\data2010.xls
2017-12-06 15:39:36.336 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2010\Hodinové průměry_336_3Q.2010.xls
2017-12-06 15:39:36.441 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2011\data2011.xls
2017-12-06 15:39:36.486 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2011\Mzdy 336_2011.xls
2017-12-06 15:39:36.506 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2012\data2012.xls
2017-12-06 15:39:36.661 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2013\data2013.xls
2017-12-06 15:39:36.895 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2013\data2013.xlsm
2017-12-06 15:39:37.220 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2014\data2014.xlsm
2017-12-06 15:39:37.516 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2015\data2015.do 08.xlsm
2017-12-06 15:39:37.526 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Mzdy

\Mzdy_2015\data2015.xlsm
2017-12-06 15:39:40.196 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Personální

\Exekuce 336 Hradec Králové.xls
2017-12-06 15:39:40.351 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Personální

\Hodnocení TL - MA Bewertung NB 11.2011.xls
2017-12-06 15:39:40.371 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Personální

\Hodnocení TL - MA Bewertung NB.xls
2017-12-06 15:39:40.401 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Personální

\Hodnotenie OP Days_pro_ML.xls
2017-12-06 15:39:42.606 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Personální

\Organigram 336 od 1.9.2014.xlsx
2017-12-06 15:39:42.671 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Personální

\Organigram 336 plán OP 2010-2011.xls
2017-12-06 15:39:43.231 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Personální

\Průměrné hodinové mzdy.xls
2017-12-06 15:39:49.221 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\2008\PREMIE_336_01.2008.xls
2017-12-06 15:39:49.906 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\2008\PREMIE_336_04.2008.xls
2017-12-06 15:39:50.117 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\2008\PREMIE_336_05.2008.xls
2017-12-06 15:39:50.947 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\2008\PREMIE_336_10.2008.xls
2017-12-06 15:39:51.062 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\2008\PREMIE_336_11.2008.xls
2017-12-06 15:39:51.452 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\2008\Průměry 336.xls
2017-12-06 15:39:52.157 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\2008\Přeúčt. PEKO_z336_na333_10.2008.xls
2017-12-06 15:39:52.187 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\2008\Přeúčt. PEKO_z336_na333_11.2008.xls
2017-12-06 15:39:52.402 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\2009\Kalkulace ročních premií za 2008.xls
2017-12-06 15:39:57.228 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\2011\Pramien_FV_201105_REG.xls
2017-12-06 15:39:57.273 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\2011\Pramien_FV_201107.xls
2017-12-06 15:39:58.754 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\2011\Přesčasy k proplacení, přestavba 4.2011.xls
2017-12-06 15:40:05.835 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\Archiv 2004-2007\2004 srazky OH - Bx 336.xls
2017-12-06 15:40:05.885 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\Archiv 2004-2007\2005 srazky OH - Bx 336.xls
2017-12-06 15:40:06.075 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\Archiv 2004-2007\OSOH 1-4_2004.xls
2017-12-06 15:40:07.146 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\Archiv 2004-2007\Přesčas. hodiny za přestavbu.xls
2017-12-06 15:40:07.176 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\Archiv 2004-2007\Roční prémie 2003.xls
2017-12-06 15:40:10.176 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\Přeúčt. PEKO\2009-2010\Přeúčt._PEKO_Reg3 Škráček_11.2010.xls
2017-12-06 15:40:13.012 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Ondra\Prémie - OSOH

\Přeúčt. PEKO\Přestavba HK\Přeúčt._PEKO_z HK_na přestavbuHK_04.2011.xls
2017-12-06 15:40:15.128 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2007\PEKO - výpočet mezd.xls
2017-12-06 15:40:19.258 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2008\platy 2008 - KALKULACE, NÁVRH.xls
2017-12-06 15:40:19.688 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2009\336 Hradec Kralove.xls
2017-12-06 15:40:19.708 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2009\336.xls
2017-12-06 15:40:20.896 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2010\PEKO_336 v1.2.xls
2017-12-06 15:40:20.916 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2010\PEKO_336 v1.xls
2017-12-06 15:40:20.936 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2010\platy 2010 - KALKULACE, NÁVRH.xls.xls
2017-12-06 15:40:21.166 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2011\PEKO SUMME CZ 336 z 14.10..xls
2017-12-06 15:40:21.196 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2011\PEKO SUMME CZ 336_ z 21.10..xls
2017-12-06 15:40:21.256 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2011\plán NEU z 1.2011\336_Hradec_Kralove II.xls
2017-12-06 15:40:21.301 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2011\plán NEU z 1.2011\PEKO SUMME CZ 336_ z 1.2011.xls
2017-12-06 15:40:22.201 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2012\Přípravné soubory\.PEKO2012_336.xls
2017-12-06 15:40:22.287 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2012\Přípravné soubory\.PEKOod 1.2012_336.xls
2017-12-06 15:40:22.647 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2012\Přípravné soubory\Mzdy - data2011.xls
2017-12-06 15:40:22.912 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2012\Přípravné soubory\PEKO2012_336z mailu.xls
2017-12-06 15:40:23.732 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2013\PEKO\336(16.11.2012).xls
2017-12-06 15:40:23.752 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2013\PEKO\336(21.11.2012).xls
2017-12-06 15:40:23.942 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2013\PEKO\Estimate 8.2013\HK_Modulace Mzdy na plán 2013 v.8.2013 pro PŠ.xls
2017-12-06 15:40:23.992 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2013\PEKO\Estimate 8.2013\Modulace Mzdy na plán 2013 v.1.2013.xls
2017-12-06 15:40:24.017 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2013\PEKO\Estimate 8.2013\Modulace Mzdy na plán 2013 v.8.2013.xls
2017-12-06 15:40:24.242 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2013\PEKO\Modulace Mzdy 2013 v.15.11..xls
2017-12-06 15:40:24.277 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2013\PEKO\Modulace Mzdy 2013 v.21.11..xls
2017-12-06 15:40:24.332 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2013\PEKO\Modulace Mzdy na final plán 2013 v.1.2013.xls
2017-12-06 15:40:26.478 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2014\Modulace Mzdy na 10-12.2014.xlsx
2017-12-06 15:40:26.503 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2014\Modulace Mzdy na 2014.xlsx
2017-12-06 15:40:26.513 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2014\Modulace Mzdy na 9-12.2014.xlsx
2017-12-06 15:40:28.425 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2015\Příprava\336_peko.xlsx
2017-12-06 15:40:28.910 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2015\Příprava\Modulace Mzdy na 2015 (II).xlsx
2017-12-06 15:40:28.990 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2015\Příprava\Modulace Mzdy na 2015 (III).xlsx
2017-12-06 15:40:29.020 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2015\Příprava\Modulace Mzdy na 2015 (III.).xlsx
2017-12-06 15:40:29.045 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2015\Příprava\Modulace Mzdy na 2015 (IV orig.).xlsx
2017-12-06 15:40:29.080 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2015\Příprava\Modulace Mzdy na 2015 (IV.).xlsx
2017-12-06 15:40:29.100 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2015\Příprava\Modulace Mzdy na 2015 (průměry).xlsx
2017-12-06 15:40:29.130 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2015\Příprava\Modulace Mzdy na 2015 (V.).xlsx
2017-12-06 15:40:29.160 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2015\Příprava\Modulace Mzdy na 2015.xlsx
2017-12-06 15:40:29.185 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\SBMARKT\Markt 336\Plánování\Plánování

2015\Příprava\Navýšení mezd 336 - 2015.xlsx
2017-12-06 15:54:59.262 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\archiv\archiv

\CZ_SK_2013_04.xls
2017-12-06 15:54:59.717 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\archiv\archiv

\KUKA_zákazníci_336.xls
2017-12-06 15:55:00.797 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\archiv\archiv\Roční bonusy

2013.xls
2017-12-06 15:55:01.197 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\archiv\archiv\Výměna karet

\db_cz_vymena_kariet_final.xls
2017-12-06 15:55:01.232 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\archiv\archiv\Výměna karet

\VÝMĚNA KARET HK.xls
2017-12-06 15:55:01.473 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\archiv\archiv\Záloha

KUKA_zákazníci_336..xlk
2017-12-06 15:55:02.253 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\archiv\KUKA_zákazníci_336(zal

11.12.).xlsx
2017-12-06 15:55:02.278 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\archiv\KUKA_zákazníci_336(zal

4.1.14).xlsx
2017-12-06 15:55:02.403 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\archiv\KUKA_zákazníci_336(zal

6.8.2014).xlsx
2017-12-06 15:55:02.428 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\archiv\KUKA_zákazníci_336(zal

9.11.2014).xlsx
2017-12-06 15:55:02.463 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\archiv\KUKA_zákazníci_336

(zal14.10.2013).xlsx
2017-12-06 15:55:02.493 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\archiv\KUKA_zákazníci_336.xlsx
2017-12-06 15:55:07.169 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\KUKA_zákazníci_336 (mrtvé

karty).xlsx
2017-12-06 15:55:07.224 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\KUKA_zákazníci_336.xlsx
2017-12-06 15:55:08.094 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\Nástěnka\CZ_SK_2013_12.xlsx
2017-12-06 15:55:20.233 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\Prac\CZ_010413-

280214_cele_zuctovacie_obdobie.xlsx
2017-12-06 15:55:20.263 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\Prac\CZ_SK_2013_12.xlsx
2017-12-06 15:55:21.078 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\Prac\KUKA_zákazníci_336

(17.3.2015).xlsx
2017-12-06 15:55:21.163 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\Prac\KUKA_zákazníci_336(zal

22.07.2014).xlsx
2017-12-06 15:55:23.979 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\Roční bonusy 2013.xls
2017-12-06 15:55:24.424 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\VÝMĚNA KARET HK.xls
2017-12-06 15:55:24.439 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\Záloha KUKA_zákazníci_336.xlk
2017-12-06 15:55:24.454 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\Záloha KUKA_zákazníci_336b.xlk
2017-12-06 15:55:24.469 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\KUKA\Záloha Záloha

KUKA_zákazníci_336.xlk
2017-12-06 16:02:29.893 Password protected file D:\Obnovené Transcend\Zálohy\bauMax 21.11.2015\PC Kutik\Spool\Personalistika

\FTEpodTL_2013_CZ.xlsx
2017-12-06 16:16:27.393 Could not open D:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
2017-12-06 16:16:27.398 Could not open D:\System Volume Information\{c62476ff-3d02-11e6-82aa-90489a0be2f4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2017-12-06 16:16:27.403 Could not open LOGICAL:0004:00000000
2017-12-06 16:16:27.403 Could not open E:\

2017-12-06 16:16:51.869 The following items will be cleaned up:
2017-12-06 16:16:51.869 W32/GetCodec-A

--------------------------------------------
RogueKiller = hotovo

!!! Našel 6 chyb v registrech a 1 ve webovém prohlížeči, tak jsem je rovnou odstranil - viz log !!!


log:
RogueKiller V12.11.27.0 (x64) [Dec 4 2017] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Webová stránka : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 8.1 (6.3.9600) 64 bits version
Spuštěno : Normální režim
Uživatel : eva [Práva správce]
Started from : C:\Users\eva\Desktop\RogueKiller_portable64.exe
Mód : Smazat -- Datum : 12/07/2017 11:43:15 (Duration : 02:21:37)

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 6 ¤¤¤
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Internet Explorer\Main | Start Page :

http://volny.cz/ -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Internet Explorer\Main | Start Page :

http://volny.cz/ -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS ->

Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS ->

Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL :

http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL :

http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤

¤¤¤ Webové prohlížeče : 1 ¤¤¤
[PUM.HomePage][Firefox:Config] i63ez4q9.default : user_pref("browser.startup.homepage", "http://volny.cz/"); -> Nahrazeno (about:home)

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST750LM022 HN-M750MBB +++++
--- User ---
[MBR] 84bd831d933cf88277695673f6067da0
[BSP] 2361410594d945d6a3d06193a32afa35 : Empty|VT.Unknown MBR Code
Partition table:
0 - [SYSTEM][MAN-MOUNT] Ba | Offset (sectors): 2048 | Size: 400 MB
1 - [MAN-MOUNT] EF | Offset (sectors): 821248 | Size: 260 MB
2 - [MAN-MOUNT] Mi | Offset (sectors): 1353728 | Size: 240 MB
3 - | Offset (sectors): 1845248 | Size: 150000 MB
4 - | Offset (sectors): 309045248 | Size: 548924 MB
5 - [SYSTEM] Ba | Offset (sectors): 1433241600 | Size: 15579 MB
User = LL1 ... OK
User = LL2 ... OK

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 37272
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: zpomalený PC-prosím o kontrolu logu

Příspěvekod jaro3 » 07 pro 2017 18:57

Vypni antivir i firewall.
Stáhni Zoek.exe
http://download.bleepingcomputer.com/smeenk/zoek.exe
http://leteckaposta.cz/415997425
klik nahoře vpravo na .rar-file a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
-pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log Zkopíruj sem celý obsah toho logu.
Pokud budou problémy , spusť zoek v nouz. režimu.

Stáhni si Zemana AntiMalware Free z tohoto odkazu:
https://www.zemana.com/Download/AntiMal ... .Setup.exe
a ulož si ho na plochu.
Poklepej na tento soubor na ploše a postupuj podle pokynů k instalaci programu.
Přijmi licenci k používání programu EULA , pokud se nabídne.
Pokud je k dispozici aktualizace programu , klepni na tlačítko „Update now“ ( aktualizovat nyní).
Můžeš si zatrhnout i vytvoření bodu obnovy:
Klikni na ozubené kolečko , poté na „Skenování“ a zatrhni „vytvářet body obnovy“.
Vrať se zpět ( klikni na domeček).
Zavři všechny otevřené soubory, složky a prohlížeče
Neměň žádné nastavení. Klikni na „Skenovat“.
Po skenu lze vidět , zda jsou nějaké nákazy. Klikni na „Další“. Nákazy budou přemístěny do karantény.
Když je skenování dokončeno, objeví se tisková zpráva , zkopíruj sem celý obsah té zprávy.
Jinak můžeš zprávy vidět , když klikneš vpravo nahoře na „ zprávy“.



Vlož nový log z HJT + informuj o problémech.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Korzarek
nováček
Příspěvky: 29
Registrován: leden 09
Pohlaví: Muž

Re: zpomalený PC-prosím o kontrolu logu

Příspěvekod Korzarek » 08 pro 2017 12:36

Ahoj,

ZOEK = hotovo

Zoek.exe v5.0.0.1 Updated 24-October-2017
Tool run by eva on p  08. 12. 2017 at 10:19:44,66.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\eva\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================
8. 12. 2017 10:24:28 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== FireFox Fix ======================
Deleted from C:\Users\eva\AppData\Roaming\Mozilla\Firefox\Profiles\i63ez4q9.default\prefs.js:
user_pref("browser.startup.homepage", "https://www.volny.cz");

Added to C:\Users\eva\AppData\Roaming\Mozilla\Firefox\Profiles\i63ez4q9.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\eva\AppData\Roaming\Mozilla\Firefox\Profiles\i63ez4q9.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================
ProfilePath: C:\Users\eva\AppData\Roaming\Mozilla\Firefox\Profiles\i63ez4q9.default
- Undetermined - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi

==== Firefox Plugins ======================

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://volny.cz/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{036C376D-363F-4535-AC8F-03ABBEFDB22C}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMNTDFJS
HKLM\SearchScopes\{7C82A5D5-8483-4AF3-8064-98DE5507A4F5} - http://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMNTDFJS
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{036C376D-363F-4535-AC8F-03ABBEFDB22C} - http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC

==== Reset Google Chrome ======================
C:\Users\eva\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\eva\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\eva\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\eva\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\eva\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\eva\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\eva\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================
C:\Users\eva\AppData\Local\Mozilla\Firefox\Profiles\i63ez4q9.default\cache2 emptied successfully
C:\Users\eva\AppData\Roaming\Mozilla\Firefox\Profiles\i63ez4q9.default\storage\default\https+++www.youtube.com\cache emptied successfully

==== Empty Chrome Cache ======================
C:\Users\eva\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully

==== Empty All Java Cache ======================
No Java Cache Found

==== C:\zoek_backup content ======================
C:\zoek_backup (files=0 folders=0 0 bytes)

==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\eva\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\eva\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied

==== EOF on p  08. 12. 2017 at 10:31:59,12 ======================

------------------------------

ZEMANA = hotovo

Zemana AntiMalware 2.74.2.150 (instalační verze)

-------------------------------------------------------
Scan Result : Dokončeno
Scan Date : 2017/12/8
Operating System : Windows 8.1 64-bit
Processor : 4X Intel(R) Pentium(R) CPU N3530 @ 2.16GHz
BIOS Mode : UEFI
CUID : 123DA2180C0511B4AB196B
Scan Type : Skenování systému
Duration : 8m 54s
Scanned Objects : 44844
Detected Objects : 1
Excluded Objects : 0
Read Level : SCSI
Auto Upload : Zapnuto
Detect All Extensions : Vypnuto
Scan Documents : Vypnuto
Domain Info : WORKGROUP,0,2

Detected Objects
-------------------------------------------------------
Firefox Homepage
Status : Skenováno
Object : https://www.volny.cz
MD5 : -
Publisher : -
Size : -
Version : -
Detection : Podezřelé nastavení prohlížeče
Cleaning Action : Opravit
Related Objects :
Nastavení prohlížeče - Firefox Homepage


Cleaning Result
-------------------------------------------------------
Cleaned : 1
Reported as safe : 0
Failed : 0
------------------------------------

HIJACK = hotovo
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:59:44, on 8. 12. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18817)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\eva\Downloads\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Run: [EaseUS EPM tray] C:\Program Files (x86)\EaseUS Partition Master 10.1\bin\EpmNews.exe
O4 - HKLM\..\Run: [EaseUS EPM Tray Agent] "C:\Program Files (x86)\EaseUS Partition Master 10.1\bin\TrayPopupE\TrayTipAgentE.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 13 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAM Controller Service (ZAMSvc) - Copyright 2017. - C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe

--
End of file - 10244 bytes

-----------------------------------------------

Celý systém se o trochu zrychlil, Explorer staruje jak víno, Mozilla je proti IE v náběhu trochu pomalejší (ale oproti předchozímu stavu se také zrychlila). Má asi trochu problém domovskou stránkou http://www.volny.cz a chvilku trvá, než ji načte a zobrazí. I Scan ZEMANA vyhodnotil domovskou stránu http://www.volny.cz jako podezřelou, což trochu nechápu. Asi nic vážného, jen to tu Mozillu při prvním startu trochu zdržuje.
Pro srovnání:
pokud je v Mozille jako startovací nastavena prázdná stránka, start + načtení trvá cca 8 sec.
Pokud nastavím domovskou http://www.volny.cz, trvá první start Mozilly a spuštění cca 13 sec (8 sec program samotný + dalších 5 sec načtení volny.cz). Což mi přijde docela dlouho, ale asi je to logický.

Takže z mé strany asi vše, pokud tě ještě něco napadne, napiš.
V každém případě moc dík za tvoji pomoc :-)

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 37272
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: zpomalený PC-prosím o kontrolu logu

Příspěvekod jaro3 » 08 pro 2017 17:55

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,


mě to trvá tak 4-5s , než se to celé načte.
jinak servery s koncovkou .cz to bere jako podezřelé , jen google ap. ne , asi úlitba jim.

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Korzarek
nováček
Příspěvky: 29
Registrován: leden 09
Pohlaví: Muž

Re: zpomalený PC-prosím o kontrolu logu

Příspěvekod Korzarek » 11 pro 2017 10:23

Omlouvám se za zdržení, byl jsem mimo PC.

HJT = fixnuto 6 položek dle instrukcí.

FrSt = hotovo.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-12-2017
Ran by eva (administrator) on PC-EVA (11-12-2017 10:02:28)
Running from C:\Users\eva\Desktop
Loaded Profiles: eva (Available Profiles: eva)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7510896 2014-01-14] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2803440 2013-12-13] (Synaptics Incorporated)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-11-28] (AVAST Software)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-10-08] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [EaseUS EPM tray] => C:\Program Files (x86)\EaseUS Partition Master 10.1\bin\EpmNews.exe [2086568 2014-03-06] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files (x86)\EaseUS Partition Master 10.1\bin\TrayPopupE\TrayTipAgentE.exe [254024 2014-02-13] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2780361901-421723416-4218663682-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-06] (Skype Technologies S.A.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{06BE0B01-6BF9-4BE3-8C7B-EA360CB32382}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A9A1E2E3-5A59-40A5-8598-21360D4CABFD}: [DhcpNameServer] 188.122.222.222 188.122.222.223

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://volny.cz/
HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
SearchScopes: HKLM -> {7C82A5D5-8483-4AF3-8064-98DE5507A4F5} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20] (IvoSoft)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH)

FireFox:
========
FF DefaultProfile: i63ez4q9.default
FF ProfilePath: C:\Users\eva\AppData\Roaming\Mozilla\Firefox\Profiles\i63ez4q9.default [2017-12-11]
FF Homepage: Mozilla\Firefox\Profiles\i63ez4q9.default -> about:home
FF Extension: (Adblock Plus) - C:\Users\eva\AppData\Roaming\Mozilla\Firefox\Profiles\i63ez4q9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-11-12]
FF Extension: (Disable Media WMF NV12 format) - C:\Users\eva\AppData\Roaming\Mozilla\Firefox\Profiles\i63ez4q9.default\features\{a80338fb-84a1-4a53-84c9-af50e6ff5fb5}\disable-media-wmf-nv12@mozilla.org.xpi [2017-11-28] [Lagacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll [2017-11-28] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-11-28] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-04-26] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-04-26] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7549928 2017-11-28] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-11-28] (AVAST Software)
R2 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-10-18] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [298760 2013-10-18] (CyberLink)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2014-01-13] (Hewlett-Packard Company) [File not signed]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-10-08] (Hewlett-Packard Development Company, L.P.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10945264 2017-12-05] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [183584 2017-11-28] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [321032 2017-11-28] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [198968 2017-11-28] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343288 2017-11-28] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57728 2017-11-28] (AVAST Software s.r.o.)
S3 aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [121272 2017-12-03] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [47008 2017-11-28] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-13] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [148288 2017-11-28] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110376 2017-11-28] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84416 2017-11-28] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1026232 2017-11-28] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [455376 2017-11-28] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [203976 2017-11-28] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [364464 2017-11-28] (AVAST Software)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] () [File not signed]
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] () [File not signed]
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2017-11-01] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] () [File not signed]
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] () [File not signed]
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193464 2017-12-08] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\DRIVERS\farflt.sys [110016 2017-12-08] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [46008 2017-12-08] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-12-08] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [94144 2017-12-11] (Malwarebytes)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2014-01-23] (Intel Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [291544 2014-01-04] (Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-24] (Ralink Technology, Corp.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29936 2013-12-13] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2013-12-13] (Synaptics Incorporated)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)
R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2017-12-08] (Zemana Ltd.)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2017-12-08] (Zemana Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)
2017-12-11 10:02 - 2017-12-11 10:04 - 000015178 _____ C:\Users\eva\Desktop\FRST.txt
2017-12-11 10:02 - 2017-12-11 10:02 - 000000000 ____D C:\FRST
2017-12-11 10:00 - 2017-12-11 10:00 - 002390528 _____ (Farbar) C:\Users\eva\Desktop\FRST64.exe
2017-12-11 09:59 - 2017-12-11 09:59 - 000000000 ____D C:\Users\eva\Downloads\backups
2017-12-08 10:43 - 2017-12-11 10:04 - 000219186 _____ C:\Windows\ZAM.krnl.trace
2017-12-08 10:43 - 2017-12-11 10:04 - 000200291 _____ C:\Windows\ZAM_Guard.krnl.trace
2017-12-08 10:43 - 2017-12-08 10:43 - 000203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zam64.sys
2017-12-08 10:42 - 2017-12-08 10:43 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2017-12-08 10:42 - 2017-12-08 10:42 - 000203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard64.sys
2017-12-08 10:42 - 2017-12-08 10:42 - 000001167 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2017-12-08 10:42 - 2017-12-08 10:42 - 000000000 ____D C:\Users\eva\AppData\Local\Zemana
2017-12-08 10:42 - 2017-12-08 10:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2017-12-08 10:40 - 2017-12-08 10:40 - 006625600 _____ (Zemana Ltd. ) C:\Users\eva\Downloads\Zemana.AntiMalware.Setup.exe
2017-12-08 10:32 - 2017-12-08 10:32 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-12-08 10:31 - 2017-12-11 00:15 - 000094144 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-12-08 10:31 - 2017-12-08 10:31 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-12-08 10:31 - 2017-12-08 10:31 - 000193464 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2017-12-08 10:31 - 2017-12-08 10:31 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-12-08 10:31 - 2017-12-08 10:31 - 000046008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-12-08 10:28 - 2017-12-08 10:19 - 000024064 _____ C:\Windows\zoek-delete.exe
2017-12-08 10:19 - 2017-12-08 10:19 - 000000000 ____D C:\zoek_backup
2017-12-08 10:18 - 2017-12-08 10:18 - 001313792 _____ C:\Users\eva\Downloads\zoek.exe
2017-12-07 16:56 - 2017-12-07 16:56 - 000000000 ____D C:\Users\eva\AppData\Local\Adobe
2017-12-07 15:40 - 2017-12-07 15:40 - 000000000 ____D C:\Users\eva\AppData\Local\CrashDumps
2017-12-07 15:37 - 2017-12-07 15:37 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2017-12-07 15:34 - 2017-12-07 15:34 - 000000000 ____D C:\Users\eva\AppData\Local\TeamViewer
2017-12-07 15:33 - 2017-12-07 15:33 - 000000990 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 13.lnk
2017-12-07 15:33 - 2017-12-07 15:33 - 000000978 _____ C:\Users\Public\Desktop\TeamViewer 13.lnk
2017-12-07 11:43 - 2017-12-07 11:43 - 000028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2017-12-07 11:42 - 2017-12-07 15:19 - 000000000 ____D C:\ProgramData\RogueKiller
2017-12-07 11:39 - 2017-12-07 11:40 - 026851912 _____ (Adlice Software) C:\Users\eva\Desktop\RogueKiller_portable64.exe
2017-12-06 12:31 - 2017-12-06 12:31 - 000000000 ____D C:\ProgramData\Sophos
2017-12-06 12:30 - 2017-12-06 12:30 - 000002775 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2017-12-06 12:30 - 2017-12-06 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2017-12-06 12:29 - 2017-12-06 12:29 - 000000000 ____D C:\Program Files (x86)\Sophos
2017-12-06 12:23 - 2017-12-06 12:25 - 183163664 _____ (Sophos Limited) C:\Users\eva\Downloads\Sophos Virus Removal Tool.exe
2017-12-06 11:46 - 2017-12-06 11:47 - 001790024 _____ (Malwarebytes) C:\Users\eva\Downloads\JRT.exe
2017-12-06 11:19 - 2017-12-06 11:19 - 008172032 _____ (Malwarebytes) C:\Users\eva\Desktop\AdwCleaner.exe
2017-12-06 11:15 - 2017-12-06 11:15 - 000000000 ___HD C:\$AV_ASW
2017-12-05 13:06 - 2017-12-05 13:06 - 000001890 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-12-05 13:06 - 2017-12-05 13:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-12-05 13:05 - 2017-12-05 13:05 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-12-05 13:05 - 2017-12-05 13:05 - 000000000 ____D C:\Program Files\Malwarebytes
2017-12-05 13:05 - 2017-11-01 08:54 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-12-05 13:03 - 2017-12-05 13:03 - 078346672 _____ (Malwarebytes ) C:\Users\eva\Downloads\mb3-setup-consumer-3.3.1.2183.exe
2017-12-05 12:43 - 2017-12-06 11:44 - 000000000 ____D C:\AdwCleaner
2017-12-05 12:41 - 2017-12-05 12:41 - 000000000 ____D C:\Users\eva\AppData\Local\CyberLink
2017-12-05 12:41 - 2017-12-05 12:41 - 000000000 ____D C:\Users\eva\AppData\Local\CEF
2017-12-05 12:29 - 2017-12-05 12:29 - 000448512 _____ (OldTimer Tools) C:\Users\eva\Downloads\TFC.exe
2017-12-05 12:17 - 2017-12-05 12:17 - 000050688 _____ (Atribune.org) C:\Users\eva\Downloads\ATF-Cleaner.exe
2017-12-04 13:56 - 2017-12-04 13:57 - 000388608 _____ (Trend Micro Inc.) C:\Users\eva\Downloads\hijackthis.exe
2017-12-04 13:28 - 2017-12-03 18:09 - 000121272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2017-11-29 12:06 - 2017-10-16 19:38 - 002013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-11-29 12:06 - 2017-10-14 09:38 - 025731584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-11-29 12:06 - 2017-10-14 09:23 - 004168704 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-11-29 12:06 - 2017-10-14 09:13 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-11-29 12:06 - 2017-10-14 09:09 - 005979648 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-11-29 12:06 - 2017-10-14 08:30 - 015266816 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-11-29 12:06 - 2017-10-14 08:21 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-11-29 12:06 - 2017-10-14 08:14 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-11-29 12:06 - 2017-10-14 08:09 - 001544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-11-29 12:06 - 2017-10-14 08:05 - 015431680 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-11-29 12:06 - 2017-10-14 07:50 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-11-29 12:06 - 2017-10-14 07:33 - 004542464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-11-29 12:06 - 2017-10-14 07:28 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-11-29 12:06 - 2017-10-14 07:14 - 013317632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-11-29 12:06 - 2017-10-14 07:10 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-11-29 12:06 - 2017-10-14 07:07 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-11-29 12:06 - 2017-10-10 16:38 - 003631616 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-11-29 12:06 - 2017-10-10 16:11 - 002749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-11-29 12:06 - 2017-09-08 18:14 - 003084288 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2017-11-29 12:06 - 2017-09-08 17:50 - 002471424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2017-11-29 12:06 - 2017-09-06 22:17 - 000461144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2017-11-29 12:06 - 2017-09-06 22:17 - 000443224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2017-11-29 12:06 - 2017-08-11 02:39 - 002779136 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2017-11-29 12:06 - 2017-08-11 02:30 - 002464256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2017-11-29 12:06 - 2016-01-09 02:38 - 000091992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2017-11-29 12:06 - 2015-10-11 07:34 - 000027992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2017-11-29 12:06 - 2015-10-10 19:41 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2017-11-29 12:05 - 2017-10-17 20:11 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-11-29 12:05 - 2017-10-14 14:04 - 001548624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-11-29 12:05 - 2017-10-14 09:11 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-11-29 12:05 - 2017-10-14 09:01 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-11-29 12:05 - 2017-10-14 08:36 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-11-29 12:05 - 2017-10-14 08:31 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-11-29 12:05 - 2017-10-14 08:30 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-11-29 12:05 - 2017-10-14 08:30 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-11-29 12:05 - 2017-10-14 08:29 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-11-29 12:05 - 2017-10-14 08:27 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-11-29 12:05 - 2017-10-14 07:58 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-11-29 12:05 - 2017-10-14 07:53 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-11-29 12:05 - 2017-10-14 07:45 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-11-29 12:05 - 2017-10-14 07:28 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-11-29 12:05 - 2017-10-14 07:25 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-11-29 12:05 - 2017-10-14 07:24 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-11-29 12:05 - 2017-10-14 07:24 - 000331776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-11-29 12:05 - 2017-10-14 07:23 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-11-29 12:05 - 2017-10-14 07:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-11-29 12:05 - 2017-10-10 17:36 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2017-11-29 12:05 - 2017-10-10 16:38 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll
2017-11-29 12:05 - 2017-10-10 16:08 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll
2017-11-29 12:05 - 2017-10-05 08:17 - 000380248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2017-11-29 12:05 - 2017-09-15 00:52 - 000986968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2017-11-29 12:05 - 2017-09-08 04:31 - 000685440 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-11-29 12:05 - 2017-09-08 04:28 - 000507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-11-29 12:05 - 2017-09-07 22:31 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\mgmtapi.dll
2017-11-29 12:05 - 2017-09-07 20:20 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mgmtapi.dll
2017-11-29 12:05 - 2017-09-07 18:20 - 000513456 _____ C:\Windows\SysWOW64\locale.nls
2017-11-29 12:05 - 2017-09-07 18:20 - 000513456 _____ C:\Windows\system32\locale.nls
2017-11-29 12:05 - 2017-09-07 14:40 - 000995272 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-11-29 12:05 - 2017-09-07 14:40 - 000922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-11-29 12:05 - 2017-09-07 00:07 - 000158552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2017-11-29 12:05 - 2017-09-06 15:14 - 000166400 _____ (Microsoft Corporation) C:\Windows\system32\regsvc.dll
2017-11-29 12:05 - 2015-10-10 19:41 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2017-11-28 19:51 - 2017-11-28 19:50 - 000365168 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-11-28 19:51 - 2017-11-28 19:50 - 000183584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2017-11-28 17:15 - 2017-11-28 18:34 - 000007630 _____ C:\Users\eva\AppData\Local\resmon.resmoncfg

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-12-11 10:00 - 2016-11-27 19:11 - 000000000 ____D C:\Users\eva\AppData\LocalLow\Mozilla
2017-12-11 09:56 - 2014-09-22 18:38 - 000000000 ____D C:\Users\eva\AppData\Roaming\Skype
2017-12-11 09:50 - 2014-09-22 14:59 - 000000000 ____D C:\Users\eva\Documents\Youcam
2017-12-10 23:56 - 2014-09-22 19:49 - 000000000 ____D C:\Users\eva\AppData\Roaming\vlc
2017-12-08 12:41 - 2014-09-22 15:03 - 000003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2780361901-421723416-4218663682-1001
2017-12-08 12:21 - 2017-01-29 18:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-12-08 12:21 - 2016-09-05 17:31 - 000001178 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-12-08 12:21 - 2016-09-05 17:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-12-08 10:45 - 2014-09-22 14:57 - 000000000 ____D C:\Users\eva
2017-12-08 10:37 - 2014-03-09 07:03 - 000768392 _____ C:\Windows\system32\perfh005.dat
2017-12-08 10:37 - 2014-03-09 07:03 - 000166490 _____ C:\Windows\system32\perfc005.dat
2017-12-08 10:37 - 2013-08-26 07:09 - 001883104 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-08 10:37 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
2017-12-08 10:30 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-08 10:30 - 2013-08-22 15:44 - 000485040 _____ C:\Windows\system32\FNTCACHE.DAT
2017-12-07 16:23 - 2014-09-22 16:07 - 000000000 ____D C:\Users\eva\AppData\Roaming\ClassicShell
2017-12-07 15:37 - 2015-12-04 18:08 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2017-12-07 15:33 - 2014-09-22 19:32 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2017-12-07 15:27 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2017-12-07 14:03 - 2013-08-22 16:36 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2017-12-06 11:37 - 2017-03-01 16:49 - 000000000 ____D C:\ProgramData\BSD
2017-12-04 14:11 - 2017-02-09 18:23 - 000004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-12-04 13:58 - 2014-09-22 14:58 - 000000000 ____D C:\Users\eva\AppData\Local\VirtualStore
2017-12-04 13:09 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\NDF
2017-12-03 18:23 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache
2017-12-02 23:16 - 2014-09-24 17:41 - 000000000 ____D C:\Windows\system32\MRT
2017-12-02 23:04 - 2017-10-12 14:31 - 127017032 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-12-02 23:03 - 2014-09-24 17:41 - 127017032 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-12-01 23:54 - 2017-04-18 08:28 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-29 17:50 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp
2017-11-29 12:50 - 2014-05-27 19:39 - 000000000 ____D C:\Program Files (x86)\CyberLink
2017-11-29 12:50 - 2014-03-08 23:15 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-11-29 12:50 - 2014-03-08 23:05 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2017-11-29 11:43 - 2017-04-27 18:11 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-29 11:43 - 2017-04-27 18:11 - 000002210 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-11-29 11:40 - 2016-07-24 14:15 - 000000000 ____D C:\Users\eva\AppData\LocalLow\Adblock Plus for IE
2017-11-28 20:21 - 2014-09-22 18:38 - 000000000 ____D C:\ProgramData\Skype
2017-11-28 20:15 - 2014-12-25 17:12 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-11-28 19:53 - 2014-11-02 19:16 - 000455376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-11-28 19:50 - 2014-11-02 19:16 - 001026232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-11-28 19:50 - 2014-11-02 19:16 - 000455384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys.151189520185904
2017-11-28 19:50 - 2014-11-02 19:16 - 000364464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-11-28 19:50 - 2014-11-02 19:16 - 000203976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-11-28 19:50 - 2014-11-02 19:16 - 000148288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-11-28 19:50 - 2014-11-02 19:16 - 000110376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-11-28 19:50 - 2014-11-02 19:16 - 000084416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-11-28 19:50 - 2014-11-02 19:16 - 000047008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-11-28 19:49 - 2017-02-09 18:23 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-11-28 19:49 - 2017-02-09 18:23 - 000321032 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-11-28 19:49 - 2017-02-09 18:23 - 000198968 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-11-28 19:49 - 2017-02-09 18:23 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-11-28 19:36 - 2016-02-06 10:21 - 000001945 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2017-11-28 19:35 - 2017-01-08 13:25 - 000004372 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-11-28 19:35 - 2016-01-03 14:10 - 000003384 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-11-28 19:35 - 2016-01-03 14:10 - 000003256 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-11-28 19:35 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-11-28 19:35 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\Macromed
2017-11-28 19:21 - 2013-08-22 16:36 - 000000000 __RSD C:\Windows\Media
2017-11-28 19:21 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\PolicyDefinitions
2017-11-28 19:20 - 2014-09-22 16:14 - 000000000 ____D C:\Users\eva\AppData\Roaming\GHISLER
2017-11-28 19:20 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\ADFS
2017-11-28 19:18 - 2017-03-15 23:58 - 000000000 ___RD C:\Program Files (x86)\Skype
2017-11-28 19:13 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
2017-11-28 19:08 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\registration
2017-11-28 19:03 - 2016-09-05 17:31 - 000000000 ____D C:\Users\eva\AppData\Roaming\Mozilla
2017-11-28 19:03 - 2016-09-05 17:31 - 000000000 ____D C:\Users\eva\AppData\Local\Mozilla
2017-11-28 19:03 - 2016-01-03 14:11 - 000000000 ____D C:\Users\eva\AppData\LocalLow\Google
2017-11-28 18:55 - 2016-08-20 09:02 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2017-11-28 18:53 - 2014-05-27 19:41 - 000000000 ____D C:\ProgramData\CyberLink

==================== Files in the root of some directories =======

2017-11-28 17:15 - 2017-11-28 18:34 - 000007630 _____ () C:\Users\eva\AppData\Local\resmon.resmoncfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-12-08 12:41
==================== End of FRST.txt ============================

Korzarek
nováček
Příspěvky: 29
Registrován: leden 09
Pohlaví: Muž

Re: zpomalený PC-prosím o kontrolu logu

Příspěvekod Korzarek » 11 pro 2017 10:25

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-12-2017
Ran by eva (11-12-2017 10:06:08)
Running from C:\Users\eva\Desktop
Windows 8.1 (Update) (X64) (2014-09-22 13:57:26)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2780361901-421723416-4218663682-500 - Administrator - Disabled)
eva (S-1-5-21-2780361901-421723416-4218663682-1001 - Administrator - Enabled) => C:\Users\eva
Guest (S-1-5-21-2780361901-421723416-4218663682-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{36381D51-CC5E-4698-A0CC-E939C75EC9D8}) (Version: 1.5 - Eyeo GmbH)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.8.2318 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.19 - Piriform)
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.5.3303 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.5.3416 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.2.3418 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.2.3618 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden
EaseUS Partition Master 10.1 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Fotogaléria (HKLM-x32\...\{08466673-3905-4437-93E8-34A221B7CA4E}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Fotogalerie (HKLM-x32\...\{AEA7CE08-09DC-4186-99FD-66A26F3B8B21}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Google Earth Pro (HKLM-x32\...\{ECF2E224-42F5-4E50-B58E-94CA70E85697}) (Version: 7.3.0.3832 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Documentation (HKLM-x32\...\{F29E3AA8-CF19-4452-92B7-F1FE31CD11C5}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7372.4698 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{8C696B4B-6AB1-44BC-9416-96EAC474CABE}) (Version: 7.5.2.12 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{C78E8F51-3EAD-4F0C-83F0-EF371075E0B4}) (Version: 1.0.10 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3408 - Intel Corporation)
Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.70.305.16316 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
M3 Data Recovery Free version 5.2 (HKLM-x32\...\{6C88A66C-ECDA-4825-A582-8225626630CC}}_is1) (Version: 5.2 - M3 Data Recovery)
Malwarebytes verze 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Mediatek Bluetooth (HKLM\...\{16BCAEDC-C115-1729-07C4-7A0091C699A6}) (Version: 11.0.749.0 - Mediatek)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{379A0618-EF50-423C-9637-EEB2D25A4BB4}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{3C5F91EF-5C0B-4D13-BCBE-0FC6FC3ED7F9}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{45898170-E68C-4F02-AA35-C2186BF347A3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{CFBFE244-6269-41DC-85B6-86F99C88ED02}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 57.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 57.0.2 (x64 cs)) (Version: 57.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 57.0.2.6549 - Mozilla)
Ralink RT3290 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.37.0 - Mediatek)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29075 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7156 - Realtek Semiconductor Corp.)
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.6.1 - Sophos Limited)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.4.0 - Synaptics Incorporated)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.5640 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.3 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
XnView 2.35 (HKLM-x32\...\XnView_is1) (Version: 2.35 - Gougelet Pierre-e)
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.150 - Zemana Ltd.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-28] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-28] (AVAST Software)
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2017-12-08] ()
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-28] (AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2013-10-16] (Cyberlink)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2013-10-16] (Cyberlink)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-28] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-02-18] (Intel Corporation)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2017-12-08] ()
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-28] (AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\Windows\system32\StartMenuHelper64.dll [2014-04-20] (IvoSoft)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {09739EF7-6D94-4C8E-BCAC-892E392EE2BD} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.)
Task: {21C1A9AA-0084-48B5-9402-7E8515240D1C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-06-10] (Piriform Ltd)
Task: {3447AC04-32E1-46ED-BCE1-BBA04F4F4148} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05] (CyberLink)
Task: {3611296C-C67D-4F72-BE4A-175464024F3C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-11-28] (AVAST Software)
Task: {48DE1431-97D7-4B6E-9D79-F3C7CE1B7324} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-28] (Adobe Systems Incorporated)
Task: {4E003E44-B98E-40DA-98AF-49800195E919} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-11-29] (Hewlett-Packard Company)
Task: {63B78224-6E70-47D1-BB6B-11C49B881A4E} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2013-12-18] (CyberLink Corp.)
Task: {69B0E4C8-6931-486C-A32C-3A95E68B4EAE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company)
Task: {6A0F5C31-EC29-404C-BADA-7842F53BFD2C} - System32\Tasks\SafeZone scheduled Autoupdate 1452777929 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {70D40892-78B9-4488-8115-5CC31B7E678A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company)
Task: {77C4EC07-3906-4961-897D-302A69B9855B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2017-12-07] (AVAST Software)
Task: {7F69A261-D226-4726-8882-1CB90F53C01E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
Task: {86E5614B-31B5-4AB3-8F99-72BDD95BEC1E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-03] (Google Inc.)
Task: {9A552706-D7BD-4AAA-B884-1C7A138B49B2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
Task: {9F572452-56C7-4392-8DD7-955498459DD4} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {B2D1F462-4B79-471F-B640-AA2842791F49} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-12-13] (Synaptics Incorporated)
Task: {DF066D29-B815-4DE9-ABF7-0117EA7C3E20} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-03] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2017-12-05 13:06 - 2017-11-01 08:55 - 002299344 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-12-05 13:05 - 2017-11-01 08:54 - 002358736 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2014-05-27 19:45 - 2013-08-05 08:49 - 000627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-08-05 14:48 - 2013-08-05 14:48 - 000016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2017-11-28 19:50 - 2017-11-28 19:50 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-11-28 19:50 - 2017-11-28 19:50 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
2017-07-14 09:00 - 2017-07-14 09:00 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-11-28 19:50 - 2017-11-28 19:50 - 000237808 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-11-28 19:50 - 2017-11-28 19:50 - 000244584 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-11-28 19:49 - 2017-11-28 19:49 - 000235816 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-12-08 10:25 - 2017-12-08 10:25 - 000000753 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2780361901-421723416-4218663682-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKLM\...\StartupApproved\Run32: => "EaseUS EPM tray"
HKLM\...\StartupApproved\Run32: => "EaseUS EPM Tray Agent"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{CF922705-DAEF-4510-9EC5-E5114F4B77E0}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2C1A99C1-B528-4920-A050-1931EFF52BC7}] => (Allow) LPort=2869
FirewallRules: [{9A947BC4-1DEA-4DB2-96EC-3EA1BC1ED03D}] => (Allow) LPort=1900
FirewallRules: [{86B91D82-3C00-4865-BAA4-EDCAB43300A6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{10A8A6B9-6D5C-4F25-80BA-1B3078BF5B26}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{504DEFB0-F66D-4284-9FCA-921F23B5CCA4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{2EFA0984-6588-43D6-8EDE-1CEEC18C5ACE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [TCP Query User{6A850791-DA6B-48A0-B5CC-90C01DE94234}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{84759BBD-658E-48AA-8D4E-D58DB5979144}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{83595F42-815F-47E3-89A9-94CE15158425}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3F390E4B-8E68-41FD-AAA5-2526DE9B85B7}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
FirewallRules: [{6254657D-4ED9-416C-9520-CE69D0CBFEA1}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe
FirewallRules: [{17A2D693-6227-450B-8562-ED8D4BFA492A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{E4A211F6-CE2B-4948-90E8-95CA3B4817BC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{28E6AB6F-675C-478B-8DFB-02869944B29F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{1F1B8D03-BA62-4305-92DE-023D94A5F22C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5464DFAD-0693-4EC6-A857-E98FA8DF7A03}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Restore Points =========================

18-11-2017 17:36:58 Windows Update
28-11-2017 11:15:08 Windows Update
28-11-2017 18:40:36 Operace obnovení
29-11-2017 13:44:16 Po vyčištění systému CCleanerem
02-12-2017 23:00:41 Windows Update
05-12-2017 12:11:59 Pred operacemi PC-help
06-12-2017 11:51:17 JRT Pre-Junkware Removal
08-12-2017 10:22:59 zoek.exe restore point

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/08/2017 05:18:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program vlc.exe verze 2.2.3.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 5c4

Čas spuštění: 01d370400f0c0be8

Čas ukončení: 30

Cesta k aplikaci: C:\Program Files (x86)\VideoLAN\VLC\vlc.exe

ID hlášení: 64c66fdb-dc33-11e7-82d3-90489a0be2f4

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (12/07/2017 03:40:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: iexplore.exe, verze: 11.0.9600.18817, časové razítko: 0x59b1994e
Název chybujícího modulu: IEFRAME.dll, verze: 11.0.9600.18838, časové razítko: 0x59e1bc88
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000002678af
ID chybujícího procesu: 0x1704
Čas spuštění chybující aplikace: 0x01d36f693a244241
Cesta k chybující aplikaci: C:\Program Files\Internet Explorer\iexplore.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\IEFRAME.dll
ID zprávy: 91fbaa09-db5c-11e7-82d2-90489a0be2f4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/07/2017 02:04:44 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (12/07/2017 02:04:44 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (12/06/2017 06:30:28 PM) (Source: Winlogon) (EventID: 4005) (User: )
Description: Proces přihlášení do systému Windows byl neočekávaně ukončen.

Error: (12/06/2017 06:30:28 PM) (Source: Winlogon) (EventID: 4005) (User: )
Description: Proces přihlášení do systému Windows byl neočekávaně ukončen.

Error: (12/06/2017 06:30:28 PM) (Source: Winlogon) (EventID: 4005) (User: )
Description: Proces přihlášení do systému Windows byl neočekávaně ukončen.

Error: (12/05/2017 12:06:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: pc-eva)
Description: Aplikaci windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (12/05/2017 12:06:02 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: pc-eva)
Description: Aplikaci windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (12/05/2017 12:06:00 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: pc-eva)
Description: Aplikaci windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.


System errors:
=============
Error: (12/11/2017 12:20:09 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CyberLink PowerDVD 12 Media Server Service byla neočekávaně ukončena. Tento stav nastal již 7krát.

Error: (12/10/2017 11:31:17 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10

Error: (12/10/2017 11:31:17 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10

Error: (12/10/2017 11:30:56 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10

Error: (12/10/2017 11:30:56 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10

Error: (12/10/2017 11:30:55 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10

Error: (12/10/2017 11:30:55 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem TLS: 10. Stav chyby Windows SChannel: 10

Error: (12/10/2017 11:21:49 PM) (Source: DCOM) (EventID: 10010) (User: pc-eva)
Description: Server {1B1F472E-3221-4826-97DB-2C2324D389AE} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/10/2017 11:21:18 PM) (Source: DCOM) (EventID: 10010) (User: pc-eva)
Description: Server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/10/2017 06:51:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CyberLink PowerDVD 12 Media Server Service byla neočekávaně ukončena. Tento stav nastal již 6krát.


CodeIntegrity:
===================================
Date: 2017-09-22 12:13:10.057
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-09-22 12:13:08.622
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-09-22 12:13:07.171
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-09-22 12:13:05.660
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-09-22 12:13:04.159
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-09-22 12:13:02.657
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-09-22 12:13:00.895
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-09-22 12:12:59.303
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-09-22 12:12:57.753
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-09-22 12:12:56.006
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU N3530 @ 2.16GHz
Percentage of memory in use: 50%
Total physical RAM: 3984.27 MB
Available physical RAM: 1967.22 MB
Total Virtual: 4688.27 MB
Available Virtual: 2368.8 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:146.48 GB) (Free:97.93 GB) NTFS
Drive d: (Data) (Fixed) (Total:536.06 GB) (Free:85.92 GB) NTFS
Drive x: (RECOVERY) (Fixed) (Total:15.21 GB) (Free:1.5 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 79030F63)

Partition: GPT.

==================== End of Addition.txt ============================


Ještě otázka:
nemám vypnout nějaké procesy, které na pozadí možná běží zbytečně? Mám na mysli např.
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe (bude pak fungovat kamera na Skype?)

Dík

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 37272
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: zpomalený PC-prosím o kontrolu logu

Příspěvekod jaro3 » 11 pro 2017 17:57

Můžeš vyzkoušet , ale asi bych to nechal , pokud často používáš kameru.

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce
klikni na „Scan“, po prohledání klikni na „ Clean

Program provede opravu, po automatickém restartu klikni na „Log Manager“ a pak poklepej na odpovídají log, (C:\AdwCleaner [C?].txt) , jeho obsah sem celý vlož.

nedal si log z něj po výmazu..

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
SearchScopes: HKLM -> {7C82A5D5-8483-4AF3-8064-98DE5507A4F5} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
C:\Users\eva\AppData\Local\resmon.resmoncfg
Task: {86E5614B-31B5-4AB3-8F99-72BDD95BEC1E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-03] (Google Inc.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.


Stáhni si Memtest:

Políčko , ve kterém je napsáno:
All unused RAM , změň na 2048.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.
V případě vyšších kapacit RAM je třeba Memtest spustit několikrát , pro 2GB ( jednotlivá největší kapacita RAM) 2x , pro 4GB 3x , pro 8Gb 4x ap.
poklepej na Memtest , pak znovu a znovu , do políček všech Memtestů napiš 2048 , pak dej u všech Memtestů "Start".

Ještě zkontrolovat HDD na chyby ,popř. zkusit jeho defragmentaci ..

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Korzarek
nováček
Příspěvky: 29
Registrován: leden 09
Pohlaví: Muž

Re: zpomalený PC-prosím o kontrolu logu

Příspěvekod Korzarek » 12 pro 2017 10:54

OK, kameru tedy nechám běžet.
Zde jsou zpracované úkoly:

# AdwCleaner 7.0.5.0 - Logfile created on Mon Dec 11 18:36:57 2017
# Updated on 2017/29/11 by Malwarebytes
# Database: 12-11-2017.1
# Running on Windows 8.1 (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
PUP.Optional.Legacy, C:\Users\eva\AppData\Roaming\Mozilla\Firefox\Profiles\i63ez4q9.default\invalidprefs.js
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
C:/AdwCleaner/AdwCleaner[C0].txt - [1882 B] - [2017/12/6 10:37:27]
C:/AdwCleaner/AdwCleaner[S0].txt - [1827 B] - [2017/12/5 11:54:53]
C:/AdwCleaner/AdwCleaner[S1].txt - [1895 B] - [2017/12/6 10:35:22]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt ##########
a po čištění:
# AdwCleaner 7.0.5.0 - Logfile created on Mon Dec 11 18:40:33 2017
# Updated on 2017/29/11 by Malwarebytes
# Running on Windows 8.1 (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****
No malicious services deleted.
***** [ Folders ] *****
No malicious folders deleted.
***** [ Files ] *****
Deleted: C:\Users\eva\AppData\Roaming\Mozilla\Firefox\Profiles\i63ez4q9.default\invalidprefs.js
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
No malicious registry entries deleted.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[C0].txt - [1882 B] - [2017/12/6 10:37:27]
C:/AdwCleaner/AdwCleaner[S0].txt - [1827 B] - [2017/12/5 11:54:53]
C:/AdwCleaner/AdwCleaner[S1].txt - [1895 B] - [2017/12/6 10:35:22]
C:/AdwCleaner/AdwCleaner[S2].txt - [1229 B] - [2017/12/11 18:36:57]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt ##########
---------------------------------------------------------------------------

FRST
Fix result of Farbar Recovery Scan Tool (x64) Version: 09-12-2017
Ran by eva (11-12-2017 19:50:47) Run:1
Running from C:\Users\eva\Desktop
Loaded Profiles: eva (Available Profiles: eva)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
SearchScopes: HKLM -> {7C82A5D5-8483-4AF3-8064-98DE5507A4F5} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
C:\Users\eva\AppData\Local\resmon.resmoncfg
Task: {86E5614B-31B5-4AB3-8F99-72BDD95BEC1E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update

\GoogleUpdate.exe [2016-01-03] (Google Inc.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7C82A5D5-8483-4AF3-8064-98DE5507A4F5}" => removed successfully
HKLM\Software\Classes\CLSID\{7C82A5D5-8483-4AF3-8064-98DE5507A4F5} => key not found
C:\Users\eva\AppData\Local\resmon.resmoncfg => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{86E5614B-31B5-4AB3-8F99-72BDD95BEC1E}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{86E5614B-31B5-4AB3-8F99-72BDD95BEC1E}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc" => removed successfully
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc" => removed successfully

=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 12897133 B
Java, Flash, Steam htmlcache => 1194 B
Windows/system/drivers => 5356 B
Edge => 0 B
Chrome => 641177 B
Firefox => 62549824 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 9044 B
NetworkService => 0 B
eva => 297199879 B

RecycleBin => 0 B
EmptyTemp: => 364 MB temporary data Removed.

================================
The system needed a reboot.
==== End of Fixlog 19:51:51 ====
-------------------------------------------------------------------


MEMTest = hotovo,
snad jsem tě dobře pochopil, spustil jsem ten program souběžně ve 3 oknech, běželo to 2,5 hodiny a zcela bez chyb (0 errors).
-------------------------------------------------------------------

CrystalDiskInfo 7.5.0 (C) 2008-2017 hiyohiyo
Crystal Dew World : https://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 8.1 [6.3 Build 9600] (x64)
Date : 2017/12/12 10:45:45

-- Controller Map ----------------------------------------------------------
+ Intel(R) Pentium(R) processor N- and J-series / Intel(R) Celeron(R) processor N- and J-series AHCI - 0F23 [ATA]
- ST750LM022 HN-M750MBB
- hp DVDRAM GU90N
- Řadič prostorů úložišť [SCSI]

-- Disk List ---------------------------------------------------------------
(1) ST750LM022 HN-M750MBB : 750,1 GB [0/0/0, pd1] - st

----------------------------------------------------------------------------
(1) ST750LM022 HN-M750MBB
----------------------------------------------------------------------------
Model : ST750LM022 HN-M750MBB
Firmware : 2BA30001
Serial Number : S31PJ9GF407870
Disk Size : 750,1 GB (8,4/137,4/750,1/750,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 1465149168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 1899 hod.
Power On Count : 2625 krát
Temperature : 29 C (84 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0080h [OFF]
AAM Level : ----
Drive Letter : C: D: X:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000BB3 Počet chyb čtení
02 252 252 __0 000000000000 Průchodnost disku
03 _93 _91 _25 000000000968 Čas na roztočení ploten
04 _98 _98 __0 000000000A3F Počet spuštění/zastavení
05 252 252 _10 000000000000 Počet přemapovaných sektorů
07 252 252 _51 000000000000 Počet chybných hledání
08 252 252 _15 000000000000 Čas potřebný na vyhledání
09 100 100 __0 00000000076B Hodin v činnosti
0A 252 252 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 0000000000EB Počet pokusů o překalibrování
0C _98 _98 __0 000000000A41 Počet cyklů zapnutí zařízení
B5 100 100 __0 00000010ED1B Specifický pro výrobce
B7 252 252 _10 000000000000 Specifický pro výrobce
B8 252 252 _48 000000000000 Ukončovacích chyb
BA 252 252 __0 000000000000 Specifický pro výrobce
BB 100 100 __0 000000000BB3 Ohlášeno neopravitelných chyb
BC 252 252 __0 000000000000 Časový limit příkazu
BE _71 _53 _40 002F000D001D Teplota toku vzduchu
BF 100 100 __0 000000000175 Počet udalostí zaznamenaných otřesovým senzorem
C0 252 252 __0 000000000000 Počet vypnutí disku
C1 _98 _98 __0 0000000061D6 Počet cyklů načítání/vymazání
C2 _64 _53 __0 002F000D001D Teplota
C3 100 100 __0 000000000000 Počet oprav chybného čtení
C4 252 252 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 252 100 __0 000000000000 Počet podezřelých sektorů
C6 252 252 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 0000000012CF Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 5333 3150 4A39 4746 3430 3738 3730 2020 2020 2020
020: 0000 8000 0004 3242 4133 3030 3031 5354 3735 304C
030: 4D30 3232 2048 4E2D 4D37 3530 4D42 4220 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0000
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0D0E 0004 004C 0048
080: 03FF 0028 706B 7C69 6123 7069 BC41 6123 407F 0051
090: 0051 0080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 66F0 5754 0000 0000 0000 0000 6003 0000 5000 4CF2
110: 0CF7 906E 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 107F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0400 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 83A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 64 64 B3 0B 00 00 00 00 00 02 27
010: 00 FC FC 00 00 00 00 00 00 00 03 23 00 5D 5B 68
020: 09 00 00 00 00 00 04 32 00 62 62 3F 0A 00 00 00
030: 00 00 05 33 00 FC FC 00 00 00 00 00 00 00 07 2F
040: 00 FC FC 00 00 00 00 00 00 00 08 25 00 FC FC 00
050: 00 00 00 00 00 00 09 32 00 64 64 6B 07 00 00 00
060: 00 00 0A 33 00 FC FC 00 00 00 00 00 00 00 0B 32
070: 00 64 64 EB 00 00 00 00 00 00 0C 32 00 62 62 41
080: 0A 00 00 00 00 00 B5 22 00 64 64 1B ED 10 00 00
090: 00 00 B7 32 00 FC FC 00 00 00 00 00 00 00 B8 33
0A0: 00 FC FC 00 00 00 00 00 00 00 BA 32 00 FC FC 00
0B0: 00 00 00 00 00 00 BB 32 00 64 64 B3 0B 00 00 00
0C0: 00 00 BC 32 00 FC FC 00 00 00 00 00 00 00 BE 02
0D0: 00 47 35 1D 00 0D 00 2F 00 00 BF 22 00 64 64 75
0E0: 01 00 00 00 00 00 C0 22 00 FC FC 00 00 00 00 00
0F0: 00 00 C1 32 00 62 62 D6 61 00 00 00 00 00 C2 02
100: 00 40 35 1D 00 0D 00 2F 00 00 C3 3A 00 64 64 00
110: 00 00 00 00 00 00 C4 32 00 FC FC 00 00 00 00 00
120: 00 00 C5 32 00 FC 64 00 00 00 00 00 00 00 C6 30
130: 00 FC FC 00 00 00 00 00 00 00 C7 36 00 C8 C8 00
140: 00 00 00 00 00 00 C8 2A 00 64 64 CF 12 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 60 27 00 51
170: 03 00 01 00 02 A8 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 B1

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 00 00 00 00 00 00 00 00 00 00 02 00
010: 00 00 00 00 00 00 00 00 00 00 03 19 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 0A 00 00 00 00 00 00 00 00 00 00 07 33
040: 00 00 00 00 00 00 00 00 00 00 08 0F 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 33 00 00 00 00 00 00 00 00 00 00 0B 00
070: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
080: 00 00 00 00 00 00 B5 00 00 00 00 00 00 00 00 00
090: 00 00 B7 0A 00 00 00 00 00 00 00 00 00 00 B8 30
0A0: 00 00 00 00 00 00 00 00 00 00 BA 00 00 00 00 00
0B0: 00 00 00 00 00 00 BB 00 00 00 00 00 00 00 00 00
0C0: 00 00 BC 00 00 00 00 00 00 00 00 00 00 00 BE 28
0D0: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
0E0: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
0F0: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
100: 00 00 00 00 00 00 00 00 00 00 C3 00 00 00 00 00
110: 00 00 00 00 00 00 C4 00 00 00 00 00 00 00 00 00
120: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
130: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
140: 00 00 00 00 00 00 C8 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 C5


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot], DotNetDotCom.org [Bot] a 1 host