Prosím o kontrolu logu - nejdou spustit programy

[Orcus]

Ano, pokračuj.

[Reklama]

[endysss]

Složka ANOTOIPGC je prázdná

Combofix hlásil následující problémy:
Unable to create a backup of the current registry file C/Wind/System32/config/system
Error restoring C/Wind./erdnt/subs/system to ...stejná cesta jako výše "...system"
RegReplaceKey 5 Přístup byl odepřen

ComboFix 15-09-01.01 - uzivatel 02.09.2015 10:58:23.3.8 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.16331.13592 [GMT 2:00]
Spuštěný z: c:\users\uzivatel\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\uzivatel\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\X-Rite Device Services Software Updater.job"
"d:\CDriver64.sys"
"d:\NTIOLib_X64.sys"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Free Window Registry Repair
c:\program files (x86)\Free Window Registry Repair\INSTALL.LOG
c:\program files (x86)\Free Window Registry Repair\MSN.ssk
c:\program files (x86)\Free Window Registry Repair\Regpair.url
c:\program files (x86)\Free Window Registry Repair\Settings.dat
c:\program files (x86)\Free Window Registry Repair\Silver.ssk
c:\program files (x86)\Google\Update
c:\program files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler64.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdateBroker.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdateComRegisterShell64.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdateHelper.msi
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdateWebPlugin.exe
c:\program files (x86)\Google\Update\1.3.28.13\goopdate.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_am.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ar.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_bg.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_bn.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ca.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_cs.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_da.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_de.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_el.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_en-GB.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_en.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_es-419.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_es.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_et.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_fa.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_fi.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_fil.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_fr.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_gu.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_hi.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_hr.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_hu.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_id.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_is.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_it.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_iw.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ja.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_kn.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ko.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_lt.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_lv.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ml.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_mr.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ms.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_nl.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_no.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_pl.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_pt-BR.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_pt-PT.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ro.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ru.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_sk.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_sl.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_sr.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_sv.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_sw.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ta.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_te.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_th.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_tr.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_uk.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ur.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_vi.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_zh-CN.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_zh-TW.dll
c:\program files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll
c:\program files (x86)\Google\Update\1.3.28.13\psmachine.dll
c:\program files (x86)\Google\Update\1.3.28.13\psmachine_64.dll
c:\program files (x86)\Google\Update\1.3.28.13\psuser.dll
c:\program files (x86)\Google\Update\1.3.28.13\psuser_64.dll
c:\program files (x86)\Google\Update\Download\{3C122445-AECE-4309-90B7-85A6AEF42AC0}\1.24.9931.5480\gsync.msi
c:\program files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.28.13\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\44.0.2403.157\44.0.2403.157_44.0.2403.155_chrome_updater.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\44.0.2403.157\44.0.2403.157_chrome_installer.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Google\Update\Install\{047389B9-6BC5-4BEC-BFDA-26CF3942792F}\42.0.2311.152_42.0.2311.135_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{06EC4283-8005-4959-9CB4-626BDE34DEE6}\43.0.2357.65_42.0.2311.152_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{1912BDD8-DB63-4E2A-AE6A-1917A7652E86}\44.0.2403.157_chrome_installer.exe
c:\program files (x86)\Google\Update\Install\{21DB6765-3473-48E8-81B4-90A599B806E0}\41.0.2272.118_41.0.2272.101_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{2546F36D-250E-4FB3-8C14-27149C82CAF9}\43.0.2357.124_43.0.2357.81_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{2E39D694-4F6A-413A-8848-B0D017775D98}\gsync.msi
c:\program files (x86)\Google\Update\Install\{2E39D694-4F6A-413A-8848-B0D017775D98}\gsync.msi.log
c:\program files (x86)\Google\Update\Install\{2E9230C7-D67E-485D-BF1C-756450453C1E}\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Install\{2FE3CA0A-294D-4BE3-BA44-1D780F3AA8C0}\41.0.2272.101_41.0.2272.89_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{314100B5-763C-4BC0-82DD-42BA7ECD640A}\gsync.msi
c:\program files (x86)\Google\Update\Install\{314100B5-763C-4BC0-82DD-42BA7ECD640A}\gsync.msi.log
c:\program files (x86)\Google\Update\Install\{68F437A8-3BE3-4601-91B5-7F6C1EEE8A56}\44.0.2403.125_43.0.2357.130_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{6C17F93A-1C20-43E4-9DAA-86F394315B1A}\40.0.2214.111_40.0.2214.94_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{A27A3320-7D72-45AF-8310-401B13038150}\42.0.2311.135_42.0.2311.90_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{A52E6112-833C-4374-AB11-E9162807CFC0}\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Install\{A57F51DA-A6A3-4878-ADBE-F7D8E9331EDF}\41.0.2272.89_41.0.2272.76_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{B2D42771-42FE-4238-8AD4-F0AFFD076144}\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Install\{B52C12FB-70E1-42A2-9E6D-FA66FD57FD00}\40.0.2214.115_40.0.2214.111_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{B5DA4CF6-02F1-4AD5-ABEF-EA8C09A04C84}\gsync.msi
c:\program files (x86)\Google\Update\Install\{B5DA4CF6-02F1-4AD5-ABEF-EA8C09A04C84}\gsync.msi.log
c:\program files (x86)\Google\Update\Install\{CFDF63F0-F79F-40E5-AB7C-740C5502832F}\43.0.2357.81_43.0.2357.65_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{D7DA523D-5E0E-402C-BDCD-6D0801FD8A51}\gsync.msi
c:\program files (x86)\Google\Update\Install\{D7DA523D-5E0E-402C-BDCD-6D0801FD8A51}\gsync.msi.log
c:\program files (x86)\Google\Update\Install\{D8384CD2-26FC-41FA-8DC8-330F8FDCB5A4}\43.0.2357.130_43.0.2357.124_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{DB21B670-689D-48E0-9187-BE793496CFFE}\44.0.2403.155_44.0.2403.130_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{DD39879D-E510-44B0-8A60-FF4E08FE3B29}\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Install\{E655F7CB-505E-4A67-B8B2-D13C56AE209E}\44.0.2403.157_44.0.2403.155_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{E8A5A11A-A9AB-4E2C-8FF0-A3B3EE28B174}\40.0.2214.94_40.0.2214.93_chrome_updater_b.exe
c:\program files (x86)\Google\Update\Install\{EBE2F411-D361-4027-B021-0ABA6E058B31}\41.0.2272.76_40.0.2214.115_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{F5F7D7DE-1F7B-4107-8623-EFF4ABD507D2}\42.0.2311.90_41.0.2272.118_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{F9B6798C-23C5-4335-902E-75B2695D96F1}\gsync.msi
c:\program files (x86)\Google\Update\Install\{F9B6798C-23C5-4335-902E-75B2695D96F1}\gsync.msi.log
c:\program files (x86)\Google\Update\Install\{FC4C9E99-45CC-4071-819E-4A4C64AA7367}\44.0.2403.130_44.0.2403.125_chrome_updater.exe
c:\program files (x86)\Tweaking.com
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\background.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\_KeyWords.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Google Chrome Cache 1 (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Google Chrome Cache 2 (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Google Chrome Cache 3 (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Memory Dump Files (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Mozilla Firefox Cache (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Remote Desktop Cache (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Remove .tmp Files (Scans Whole Drive).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Temporary Files (Improved - For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Temporary Internet Files Cache (Improved - For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Windows Error Reporting Files (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Windows Log Files.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Windows Prefetch.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Windows Temp Folder.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Windows Updates Download Cache.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\color_presets\_ReadMe.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CustomScripts\_Current.TweakingBat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CustomScripts\_Current.TweakingReg
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CustomScripts\_Current.TweakingVbs
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CustomScripts\_KeyWords.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CustomScripts\Defrag After Repairs.TweakingBat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CustomScripts\Get_Some_System_Info.TweakingVbs
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\file_list.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\file_permissions_excludes.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\file_permissions_profiles_excludes.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\ie.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\mdac.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\default.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\hklm.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\hku.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\profile.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\program_files.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\program_files_x86.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\programdata.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\services.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\windows.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\default.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\hklm.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\hku.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\profile.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\program_files.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\program_files_x86.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\programdata.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\services.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\windows.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\default.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\hklm.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\hku.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\profile.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\program_files.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\program_files_x86.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\programdata.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\services.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\windows.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\policy_cleanup.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\registry_backup_tool\color_presets\_ReadMe.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\registry_backup_tool\data.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\registry_backup_tool\change_log.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\registry_backup_tool\keywords.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\services_startup_10.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\services_startup_7.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\services_startup_8.1.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\services_startup_8.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\services_startup_vista.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\services_startup_xp.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\system_files_reg_list.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\changelog.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\_Readme.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Register System Files.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Remove Policies Set By Infections.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Remove Temp Files.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair bat Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair CD_DVD Missing_Not Working.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair cmd Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair com Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Directory Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Drive Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair exe Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair File Associations.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Folder Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Hosts File.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Icons.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair inf Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Internet Explorer.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair lnk _Shortcuts_ Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair MDAC_MS Jet.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair msc Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair MSI _Windows Installer_.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Network.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Performance Counters.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Print Spooler.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Proxy Settings.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair reg Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair scr Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Start Menu Icons Removed By Infections.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Volume Shadow Copy Service.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows 8_10 App Store _Completely Reset App Store_.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows 8_10 App Store.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows 8_10 Component Store.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows Firewall.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows New Submenu.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows Safe Mode.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows Sidebar_Gadgets.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows Snipping Tool.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows Updates.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair WMI.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Reset File Permissions.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Reset Registry Permissions.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Reset Service Permissions.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Restore Important Windows Services.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Restore UAC Settings.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Restore Windows 8_10 COM_ Unmarshalers.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Set Windows Services To Default Startup.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Unhide Non System Files.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\Uninstall\IRIMG1.JPG
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\Uninstall\IRIMG2.JPG
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\Uninstall\uninstall.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\Uninstall\uninstall.xml
c:\programdata\RogueKiller
c:\programdata\RogueKiller\config.ini
c:\programdata\RogueKiller\Logs\RKreport_DEL_08282015_154936.json
c:\programdata\RogueKiller\Logs\RKreport_DEL_08282015_154948.json
c:\programdata\RogueKiller\Logs\RKreport_DEL_08282015_154952.json
c:\programdata\RogueKiller\Logs\RKreport_SCN_08282015_094514.json
c:\programdata\RogueKiller\Logs\RKreport_SCN_08282015_101306.json
c:\programdata\RogueKiller\Logs\RKreport_SCN_08282015_155640.json
c:\programdata\RogueKiller\vt.cache
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_ctypes.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_elementtree.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_hashlib.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_multiprocessing.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_psutil_windows.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_socket.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_ssl.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_yappi.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\common.time34.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\hashobjs_ext.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\pyexpat.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\pysqlite2._sqlite.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\python27.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\pythoncom27.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\PyWinTypes27.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\select.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\unicodedata.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\usb_ext.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32api.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32com.shell.shell.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32crypt.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32event.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32file.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32gui.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32inet.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32pdh.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32pipe.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32process.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32profile.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32security.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32ts.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\windows._lib_cacheinvalidation.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._animate.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._controls_.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._core_.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._gdi_.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._html2.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._misc_.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._windows_.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._wizard.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wxbase30u_net_vc90.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wxbase30u_vc90.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wxmsw30u_adv_vc90.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wxmsw30u_core_vc90.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wxmsw30u_html_vc90.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wxmsw30u_webview_vc90.dll
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\X-Rite Device Services Software Updater.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-08-02 do 2015-09-02 )))))))))))))))))))))))))))))))
.
.
2015-09-02 09:01 . 2015-09-02 09:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-09-02 09:01 . 2015-09-02 09:01 -------- d-----w- c:\users\Ambience\AppData\Local\temp
2015-09-02 06:34 . 2015-09-02 06:34 -------- d-----w- c:\program files (x86)\Windows Phone
2015-08-31 09:08 . 2015-08-31 08:58 24064 ----a-w- c:\windows\zoek-delete.exe
2015-08-31 09:08 . 2015-09-02 09:01 -------- d-----w- c:\users\uzivatel\AppData\Local\Temp
2015-08-31 08:58 . 2015-08-31 09:06 -------- d-----w- C:\zoek_backup
2015-08-28 07:45 . 2015-08-28 13:51 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2015-08-28 06:07 . 2015-08-28 07:38 -------- d-----w- C:\AdwCleaner
2015-08-27 10:46 . 2015-08-27 10:46 -------- d-----w- c:\program files (x86)\ESET
2015-08-27 10:37 . 2015-06-05 08:22 364472 ----a-w- c:\windows\system32\aswBoot.exe
2015-08-27 10:16 . 2015-08-27 10:17 -------- d-----w- c:\users\Ambience\AppData\Roaming\Autodesk
2015-08-27 10:16 . 2015-08-27 10:16 -------- d-----w- c:\users\Ambience\AppData\Roaming\Syncios
2015-08-27 10:16 . 2015-08-27 10:16 -------- d-----w- c:\users\Ambience\AppData\Local\iSkysoft
2015-08-27 09:20 . 2015-08-27 09:20 -------- d-----w- C:\Anotopgc
2015-08-27 09:20 . 2015-08-27 09:20 -------- d-----w- c:\programdata\iSkysoft
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-08-28 06:11 . 2014-08-27 05:38 113880 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-06-29 05:48 . 2013-11-18 11:06 442264 ----a-w- c:\windows\system32\drivers\aswSP.sys
2015-06-18 06:41 . 2014-08-27 05:38 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-06-18 06:41 . 2014-08-27 05:38 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-06-18 06:41 . 2014-08-27 05:38 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-06-05 08:22 . 2015-06-05 08:22 43112 ----a-w- c:\windows\avastSS.scr
2015-06-05 08:22 . 2014-06-26 05:39 29168 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-06-05 08:22 . 2014-06-26 05:39 137288 ----a-w- c:\windows\system32\drivers\aswStm.sys
2015-06-05 08:22 . 2013-11-18 11:06 93528 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2015-06-05 08:22 . 2013-11-18 11:06 89944 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-06-05 08:22 . 2013-11-18 11:06 65736 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-06-05 08:22 . 2013-11-18 11:06 272248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-06-05 08:22 . 2013-11-18 11:06 1047320 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2010-08-26 15:33 . 2010-08-26 15:33 12091392 ----a-w- c:\program files (x86)\SketchUp.exe
2010-08-26 15:33 . 2010-08-26 15:33 1933312 ----a-w- c:\program files (x86)\ThumbsUp.dll
2010-08-26 15:31 . 2010-08-26 15:31 2736128 ----a-w- c:\program files (x86)\slapi.dll
2010-08-26 15:31 . 2010-08-26 15:31 2236416 ----a-w- c:\program files (x86)\SkpWriter.dll
2010-08-26 15:31 . 2010-08-26 15:31 192512 ----a-w- c:\program files (x86)\alchemyext.dll
2010-08-26 15:24 . 2010-08-26 15:24 380928 ----a-w- c:\program files (x86)\IGUtils.dll
2010-08-26 15:24 . 2010-08-26 15:24 819200 ----a-w- c:\program files (x86)\IGMath.dll
2010-08-26 15:24 . 2010-08-26 15:24 1724416 ----a-w- c:\program files (x86)\IGSg.dll
2010-08-26 15:24 . 2010-08-26 15:24 778240 ----a-w- c:\program files (x86)\IGAttrs.dll
2010-08-26 15:24 . 2010-08-26 15:24 3362816 ----a-w- c:\program files (x86)\IGGfx.dll
2010-08-26 15:24 . 2010-08-26 15:24 1597440 ----a-w- c:\program files (x86)\IGCore.dll
2010-08-26 15:23 . 2010-08-26 15:23 892998 ----a-w- c:\program files (x86)\msvcrt-ruby18.dll
2010-08-26 15:23 . 2010-08-26 15:23 339968 ----a-w- c:\program files (x86)\mpiwin32.dll
2010-08-26 15:23 . 2010-08-26 15:23 2752512 ----a-w- c:\program files (x86)\gdal16.dll
2010-08-26 15:23 . 2010-08-26 15:23 2359296 ----a-w- c:\program files (x86)\xerces-c_2_6.dll
2010-08-26 15:23 . 2010-08-26 15:23 986112 ----a-w- c:\program files (x86)\dbghelp.dll
2010-08-26 15:23 . 2010-08-26 15:23 8172184 ----a-w- c:\program files (x86)\DD_Db_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 701080 ----a-w- c:\program files (x86)\DD_Gi_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 565912 ----a-w- c:\program files (x86)\DD_Root_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 31384 ----a-w- c:\program files (x86)\SpatialIndex_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 119448 ----a-w- c:\program files (x86)\ModelerGeometry_3.02_8.drx
2010-08-26 15:23 . 2010-08-26 15:23 1057432 ----a-w- c:\program files (x86)\DD_Ge_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 94872 ----a-w- c:\program files (x86)\DD_Br_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 709272 ----a-w- c:\program files (x86)\DD_AcisBuilder_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 61440 ----a-w- c:\program files (x86)\BugSplatRc.dll
2010-08-26 15:23 . 2010-08-26 15:23 307864 ----a-w- c:\program files (x86)\DD_BrepRenderer_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 283288 ----a-w- c:\program files (x86)\DD_DbRoot_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 264328 ----a-w- c:\program files (x86)\BsSndRpt.exe
2010-08-26 15:23 . 2010-08-26 15:23 227408 ----a-w- c:\program files (x86)\BugSplat.dll
2010-08-26 15:23 . 2010-08-26 15:23 14488 ----a-w- c:\program files (x86)\DD_Alloc_3.02_8.dll
.
.
((((((((((((((((((((((((((((((((((((((((((((( AWF ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2015-07-29 22344224]
"MyScript InkRetriever"="C:/Program Files (x86)/Vision Objects/MyScript Studio/MyScript_GenericInkRetriever.exe" [2011-01-13 475136]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-05-20 291648]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"ADSK DLMSession"="c:\program files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe" [2013-02-01 1641368]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-06-05 5515496]
"iSkysoft Helper Compact.exe"="c:\program files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe" [2014-10-31 2066432]
"Syncios device service"="c:\program files (x86)\Syncios\SynciosDeviceService.exe" [2015-06-19 830464]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
IRIScan Button Manager.lnk - c:\program files (x86)\IRIScan\IRIScan Scanner\DocAction.exe /m [2014-6-13 192512]
penDirector.lnk - c:\program files (x86)\Anoto\penDirector\penDirector.exe [2010-4-9 741376]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
R2 ADExchange;ArcSoft Exchange Service;c:\program files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe;c:\program files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys;c:\windows\SYSNATIVE\Drivers\ssadadb.sys [x]
R3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 MSICDSetup;MSICDSetup;d:\cdriver64.sys;d:\CDriver64.sys [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;d:\ntiolib_x64.sys;d:\NTIOLib_X64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssadserd.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WsDrvInst;Wondershare Driver Install Service;c:\program files (x86)\iSkysoft\TunesOver\DriverInstall.exe;c:\program files (x86)\iSkysoft\TunesOver\DriverInstall.exe [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S2 Apple Mobile Device Service;Apple Mobile Device Service;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [x]
S2 mi-raysat_3dsMax2009_64;mental ray 3.6 Satellite for Autodesk 3ds Max 2009 64-bit 64-bit;c:\program files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe;c:\program files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe [x]
S2 mi-raysat_3dsmax2014_64;mental ray Satellite for Autodesk 3ds Max Design 2014 64-bit;d:\programy\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe;d:\programy\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe [x]
S2 PSI_SVC_2_x64;Protexis Licensing V2 x64;c:\program files\Common Files\Protexis\License Service\PsiService_2.exe;c:\program files\Common Files\Protexis\License Service\PsiService_2.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [x]
S2 xrdd.exe;X-Rite Device Services Manager;c:\program files (x86)\X-Rite\Devices\Services\xrdd.exe;c:\program files (x86)\X-Rite\Devices\Services\xrdd.exe [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{2D46B6DC-2207-486B-B523-A557E6D54B47}]
start [N/A]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-08-28 05:48 993608 ----a-w- c:\program files (x86)\Google\Chrome\Application\44.0.2403.157\Installer\chrmstp.exe
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveBlacklisted]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2015-07-29 07:23 775496 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSynced]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2015-07-29 07:23 775496 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSyncing]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2015-07-29 07:23 775496 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-06-05 08:22 722400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2013-01-15 6963272]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2013-06-05 2716960]
"Eraser"="c:\program files\Eraser\Eraser.exe" [2015-04-13 1084328]
.
------- Doplňkový sken -------
.
uLocal Page = %SystemRoot%\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\tz5ag4ju.default\
FF - prefs.js: browser.startup.homepage - about:home
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-238282651-631842576-424326393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSavePidlMRU\t*Y
]
"0"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"MRUListEx"=hex:08,00,00,00,07,00,00,00,05,00,00,00,06,00,00,00,04,00,00,00,01,
00,00,00,03,00,00,00,02,00,00,00,00,00,00,00,ff,ff,ff,ff
"1"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"2"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"3"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"4"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"5"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"6"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"7"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"8"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
c:\program files (x86)\Common Files\Anoto\Pen\Phal\Service\LPhal.exe
.
**************************************************************************
.
Celkový čas: 2015-09-02 11:10:05 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-09-02 09:10
ComboFix2.txt 2015-08-31 10:20
ComboFix3.txt 2015-08-31 09:22
.
Před spuštěním: Volných bajtů: 10 026 889 216
Po spuštění: 9 682 370 560
.
- - End Of File - - 91927F43BACAC473EED0C1192305D08B
A36C5E4F47E84449FF07ED3517B43A31

[endysss]

Složka ANOTOIPGC je prázdná

Combofix hlásil následující problémy:
Unable to create a backup of the current registry file C/Wind/System32/config/system
Error restoring C/Wind./erdnt/subs/system to ...stejná cesta jako výše "...system"
RegReplaceKey 5 Přístup byl odepřen

ComboFix 15-09-01.01 - uzivatel 02.09.2015 10:58:23.3.8 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.16331.13592 [GMT 2:00]
Spuštěný z: c:\users\uzivatel\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\uzivatel\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\X-Rite Device Services Software Updater.job"
"d:\CDriver64.sys"
"d:\NTIOLib_X64.sys"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Free Window Registry Repair
c:\program files (x86)\Free Window Registry Repair\INSTALL.LOG
c:\program files (x86)\Free Window Registry Repair\MSN.ssk
c:\program files (x86)\Free Window Registry Repair\Regpair.url
c:\program files (x86)\Free Window Registry Repair\Settings.dat
c:\program files (x86)\Free Window Registry Repair\Silver.ssk
c:\program files (x86)\Google\Update
c:\program files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler64.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdateBroker.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdateComRegisterShell64.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdateHelper.msi
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\1.3.28.13\GoogleUpdateWebPlugin.exe
c:\program files (x86)\Google\Update\1.3.28.13\goopdate.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_am.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ar.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_bg.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_bn.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ca.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_cs.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_da.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_de.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_el.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_en-GB.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_en.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_es-419.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_es.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_et.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_fa.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_fi.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_fil.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_fr.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_gu.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_hi.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_hr.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_hu.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_id.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_is.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_it.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_iw.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ja.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_kn.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ko.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_lt.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_lv.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ml.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_mr.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ms.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_nl.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_no.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_pl.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_pt-BR.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_pt-PT.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ro.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ru.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_sk.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_sl.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_sr.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_sv.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_sw.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ta.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_te.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_th.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_tr.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_uk.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_ur.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_vi.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_zh-CN.dll
c:\program files (x86)\Google\Update\1.3.28.13\goopdateres_zh-TW.dll
c:\program files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll
c:\program files (x86)\Google\Update\1.3.28.13\psmachine.dll
c:\program files (x86)\Google\Update\1.3.28.13\psmachine_64.dll
c:\program files (x86)\Google\Update\1.3.28.13\psuser.dll
c:\program files (x86)\Google\Update\1.3.28.13\psuser_64.dll
c:\program files (x86)\Google\Update\Download\{3C122445-AECE-4309-90B7-85A6AEF42AC0}\1.24.9931.5480\gsync.msi
c:\program files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.28.13\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\44.0.2403.157\44.0.2403.157_44.0.2403.155_chrome_updater.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\44.0.2403.157\44.0.2403.157_chrome_installer.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Google\Update\Install\{047389B9-6BC5-4BEC-BFDA-26CF3942792F}\42.0.2311.152_42.0.2311.135_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{06EC4283-8005-4959-9CB4-626BDE34DEE6}\43.0.2357.65_42.0.2311.152_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{1912BDD8-DB63-4E2A-AE6A-1917A7652E86}\44.0.2403.157_chrome_installer.exe
c:\program files (x86)\Google\Update\Install\{21DB6765-3473-48E8-81B4-90A599B806E0}\41.0.2272.118_41.0.2272.101_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{2546F36D-250E-4FB3-8C14-27149C82CAF9}\43.0.2357.124_43.0.2357.81_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{2E39D694-4F6A-413A-8848-B0D017775D98}\gsync.msi
c:\program files (x86)\Google\Update\Install\{2E39D694-4F6A-413A-8848-B0D017775D98}\gsync.msi.log
c:\program files (x86)\Google\Update\Install\{2E9230C7-D67E-485D-BF1C-756450453C1E}\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Install\{2FE3CA0A-294D-4BE3-BA44-1D780F3AA8C0}\41.0.2272.101_41.0.2272.89_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{314100B5-763C-4BC0-82DD-42BA7ECD640A}\gsync.msi
c:\program files (x86)\Google\Update\Install\{314100B5-763C-4BC0-82DD-42BA7ECD640A}\gsync.msi.log
c:\program files (x86)\Google\Update\Install\{68F437A8-3BE3-4601-91B5-7F6C1EEE8A56}\44.0.2403.125_43.0.2357.130_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{6C17F93A-1C20-43E4-9DAA-86F394315B1A}\40.0.2214.111_40.0.2214.94_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{A27A3320-7D72-45AF-8310-401B13038150}\42.0.2311.135_42.0.2311.90_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{A52E6112-833C-4374-AB11-E9162807CFC0}\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Install\{A57F51DA-A6A3-4878-ADBE-F7D8E9331EDF}\41.0.2272.89_41.0.2272.76_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{B2D42771-42FE-4238-8AD4-F0AFFD076144}\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Install\{B52C12FB-70E1-42A2-9E6D-FA66FD57FD00}\40.0.2214.115_40.0.2214.111_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{B5DA4CF6-02F1-4AD5-ABEF-EA8C09A04C84}\gsync.msi
c:\program files (x86)\Google\Update\Install\{B5DA4CF6-02F1-4AD5-ABEF-EA8C09A04C84}\gsync.msi.log
c:\program files (x86)\Google\Update\Install\{CFDF63F0-F79F-40E5-AB7C-740C5502832F}\43.0.2357.81_43.0.2357.65_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{D7DA523D-5E0E-402C-BDCD-6D0801FD8A51}\gsync.msi
c:\program files (x86)\Google\Update\Install\{D7DA523D-5E0E-402C-BDCD-6D0801FD8A51}\gsync.msi.log
c:\program files (x86)\Google\Update\Install\{D8384CD2-26FC-41FA-8DC8-330F8FDCB5A4}\43.0.2357.130_43.0.2357.124_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{DB21B670-689D-48E0-9187-BE793496CFFE}\44.0.2403.155_44.0.2403.130_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{DD39879D-E510-44B0-8A60-FF4E08FE3B29}\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Install\{E655F7CB-505E-4A67-B8B2-D13C56AE209E}\44.0.2403.157_44.0.2403.155_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{E8A5A11A-A9AB-4E2C-8FF0-A3B3EE28B174}\40.0.2214.94_40.0.2214.93_chrome_updater_b.exe
c:\program files (x86)\Google\Update\Install\{EBE2F411-D361-4027-B021-0ABA6E058B31}\41.0.2272.76_40.0.2214.115_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{F5F7D7DE-1F7B-4107-8623-EFF4ABD507D2}\42.0.2311.90_41.0.2272.118_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{F9B6798C-23C5-4335-902E-75B2695D96F1}\gsync.msi
c:\program files (x86)\Google\Update\Install\{F9B6798C-23C5-4335-902E-75B2695D96F1}\gsync.msi.log
c:\program files (x86)\Google\Update\Install\{FC4C9E99-45CC-4071-819E-4A4C64AA7367}\44.0.2403.130_44.0.2403.125_chrome_updater.exe
c:\program files (x86)\Tweaking.com
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\background.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\_KeyWords.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Google Chrome Cache 1 (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Google Chrome Cache 2 (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Google Chrome Cache 3 (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Memory Dump Files (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Mozilla Firefox Cache (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Remote Desktop Cache (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Remove .tmp Files (Scans Whole Drive).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Temporary Files (Improved - For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Temporary Internet Files Cache (Improved - For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Windows Error Reporting Files (For Each User Profile).dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Windows Log Files.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Windows Prefetch.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Windows Temp Folder.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CleanMgrScripts\Windows Updates Download Cache.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\color_presets\_ReadMe.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CustomScripts\_Current.TweakingBat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CustomScripts\_Current.TweakingReg
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CustomScripts\_Current.TweakingVbs
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CustomScripts\_KeyWords.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CustomScripts\Defrag After Repairs.TweakingBat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\CustomScripts\Get_Some_System_Info.TweakingVbs
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\file_list.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\file_permissions_excludes.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\file_permissions_profiles_excludes.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\ie.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\mdac.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\default.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\hklm.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\hku.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\profile.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\program_files.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\program_files_x86.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\programdata.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\services.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\10\windows.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\default.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\hklm.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\hku.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\profile.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\program_files.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\program_files_x86.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\programdata.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\services.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\7\windows.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\default.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\hklm.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\hku.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\profile.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\program_files.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\program_files_x86.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\programdata.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\services.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\permissions\8\windows.7z
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\policy_cleanup.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\registry_backup_tool\color_presets\_ReadMe.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\registry_backup_tool\data.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\registry_backup_tool\change_log.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\registry_backup_tool\keywords.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\services_startup_10.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\services_startup_7.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\services_startup_8.1.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\services_startup_8.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\services_startup_vista.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\services_startup_xp.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\files\system_files_reg_list.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\changelog.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\_Readme.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Register System Files.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Remove Policies Set By Infections.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Remove Temp Files.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair bat Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair CD_DVD Missing_Not Working.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair cmd Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair com Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Directory Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Drive Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair exe Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair File Associations.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Folder Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Hosts File.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Icons.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair inf Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Internet Explorer.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair lnk _Shortcuts_ Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair MDAC_MS Jet.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair msc Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair MSI _Windows Installer_.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Network.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Performance Counters.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Print Spooler.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Proxy Settings.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair reg Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair scr Association.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Start Menu Icons Removed By Infections.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Volume Shadow Copy Service.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows 8_10 App Store _Completely Reset App Store_.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows 8_10 App Store.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows 8_10 Component Store.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows Firewall.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows New Submenu.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows Safe Mode.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows Sidebar_Gadgets.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows Snipping Tool.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair Windows Updates.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Repair WMI.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Reset File Permissions.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Reset Registry Permissions.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Reset Service Permissions.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Restore Important Windows Services.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Restore UAC Settings.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Restore Windows 8_10 COM_ Unmarshalers.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Set Windows Services To Default Startup.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\repairs_info\Unhide Non System Files.txt
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\Uninstall\IRIMG1.JPG
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\Uninstall\IRIMG2.JPG
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\Uninstall\uninstall.dat
c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\Uninstall\uninstall.xml
c:\programdata\RogueKiller
c:\programdata\RogueKiller\config.ini
c:\programdata\RogueKiller\Logs\RKreport_DEL_08282015_154936.json
c:\programdata\RogueKiller\Logs\RKreport_DEL_08282015_154948.json
c:\programdata\RogueKiller\Logs\RKreport_DEL_08282015_154952.json
c:\programdata\RogueKiller\Logs\RKreport_SCN_08282015_094514.json
c:\programdata\RogueKiller\Logs\RKreport_SCN_08282015_101306.json
c:\programdata\RogueKiller\Logs\RKreport_SCN_08282015_155640.json
c:\programdata\RogueKiller\vt.cache
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_ctypes.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_elementtree.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_hashlib.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_multiprocessing.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_psutil_windows.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_socket.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_ssl.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\_yappi.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\common.time34.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\hashobjs_ext.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\pyexpat.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\pysqlite2._sqlite.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\python27.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\pythoncom27.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\PyWinTypes27.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\select.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\unicodedata.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\usb_ext.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32api.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32com.shell.shell.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32crypt.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32event.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32file.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32gui.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32inet.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32pdh.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32pipe.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32process.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32profile.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32security.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\win32ts.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\windows._lib_cacheinvalidation.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._animate.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._controls_.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._core_.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._gdi_.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._html2.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._misc_.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._windows_.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wx._wizard.pyd
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wxbase30u_net_vc90.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wxbase30u_vc90.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wxmsw30u_adv_vc90.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wxmsw30u_core_vc90.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wxmsw30u_html_vc90.dll
c:\users\uzivatel\AppData\Local\Temp\_MEI24402\wxmsw30u_webview_vc90.dll
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\X-Rite Device Services Software Updater.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-08-02 do 2015-09-02 )))))))))))))))))))))))))))))))
.
.
2015-09-02 09:01 . 2015-09-02 09:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-09-02 09:01 . 2015-09-02 09:01 -------- d-----w- c:\users\Ambience\AppData\Local\temp
2015-09-02 06:34 . 2015-09-02 06:34 -------- d-----w- c:\program files (x86)\Windows Phone
2015-08-31 09:08 . 2015-08-31 08:58 24064 ----a-w- c:\windows\zoek-delete.exe
2015-08-31 09:08 . 2015-09-02 09:01 -------- d-----w- c:\users\uzivatel\AppData\Local\Temp
2015-08-31 08:58 . 2015-08-31 09:06 -------- d-----w- C:\zoek_backup
2015-08-28 07:45 . 2015-08-28 13:51 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2015-08-28 06:07 . 2015-08-28 07:38 -------- d-----w- C:\AdwCleaner
2015-08-27 10:46 . 2015-08-27 10:46 -------- d-----w- c:\program files (x86)\ESET
2015-08-27 10:37 . 2015-06-05 08:22 364472 ----a-w- c:\windows\system32\aswBoot.exe
2015-08-27 10:16 . 2015-08-27 10:17 -------- d-----w- c:\users\Ambience\AppData\Roaming\Autodesk
2015-08-27 10:16 . 2015-08-27 10:16 -------- d-----w- c:\users\Ambience\AppData\Roaming\Syncios
2015-08-27 10:16 . 2015-08-27 10:16 -------- d-----w- c:\users\Ambience\AppData\Local\iSkysoft
2015-08-27 09:20 . 2015-08-27 09:20 -------- d-----w- C:\Anotopgc
2015-08-27 09:20 . 2015-08-27 09:20 -------- d-----w- c:\programdata\iSkysoft
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-08-28 06:11 . 2014-08-27 05:38 113880 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-06-29 05:48 . 2013-11-18 11:06 442264 ----a-w- c:\windows\system32\drivers\aswSP.sys
2015-06-18 06:41 . 2014-08-27 05:38 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-06-18 06:41 . 2014-08-27 05:38 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-06-18 06:41 . 2014-08-27 05:38 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-06-05 08:22 . 2015-06-05 08:22 43112 ----a-w- c:\windows\avastSS.scr
2015-06-05 08:22 . 2014-06-26 05:39 29168 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-06-05 08:22 . 2014-06-26 05:39 137288 ----a-w- c:\windows\system32\drivers\aswStm.sys
2015-06-05 08:22 . 2013-11-18 11:06 93528 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2015-06-05 08:22 . 2013-11-18 11:06 89944 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-06-05 08:22 . 2013-11-18 11:06 65736 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-06-05 08:22 . 2013-11-18 11:06 272248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-06-05 08:22 . 2013-11-18 11:06 1047320 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2010-08-26 15:33 . 2010-08-26 15:33 12091392 ----a-w- c:\program files (x86)\SketchUp.exe
2010-08-26 15:33 . 2010-08-26 15:33 1933312 ----a-w- c:\program files (x86)\ThumbsUp.dll
2010-08-26 15:31 . 2010-08-26 15:31 2736128 ----a-w- c:\program files (x86)\slapi.dll
2010-08-26 15:31 . 2010-08-26 15:31 2236416 ----a-w- c:\program files (x86)\SkpWriter.dll
2010-08-26 15:31 . 2010-08-26 15:31 192512 ----a-w- c:\program files (x86)\alchemyext.dll
2010-08-26 15:24 . 2010-08-26 15:24 380928 ----a-w- c:\program files (x86)\IGUtils.dll
2010-08-26 15:24 . 2010-08-26 15:24 819200 ----a-w- c:\program files (x86)\IGMath.dll
2010-08-26 15:24 . 2010-08-26 15:24 1724416 ----a-w- c:\program files (x86)\IGSg.dll
2010-08-26 15:24 . 2010-08-26 15:24 778240 ----a-w- c:\program files (x86)\IGAttrs.dll
2010-08-26 15:24 . 2010-08-26 15:24 3362816 ----a-w- c:\program files (x86)\IGGfx.dll
2010-08-26 15:24 . 2010-08-26 15:24 1597440 ----a-w- c:\program files (x86)\IGCore.dll
2010-08-26 15:23 . 2010-08-26 15:23 892998 ----a-w- c:\program files (x86)\msvcrt-ruby18.dll
2010-08-26 15:23 . 2010-08-26 15:23 339968 ----a-w- c:\program files (x86)\mpiwin32.dll
2010-08-26 15:23 . 2010-08-26 15:23 2752512 ----a-w- c:\program files (x86)\gdal16.dll
2010-08-26 15:23 . 2010-08-26 15:23 2359296 ----a-w- c:\program files (x86)\xerces-c_2_6.dll
2010-08-26 15:23 . 2010-08-26 15:23 986112 ----a-w- c:\program files (x86)\dbghelp.dll
2010-08-26 15:23 . 2010-08-26 15:23 8172184 ----a-w- c:\program files (x86)\DD_Db_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 701080 ----a-w- c:\program files (x86)\DD_Gi_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 565912 ----a-w- c:\program files (x86)\DD_Root_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 31384 ----a-w- c:\program files (x86)\SpatialIndex_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 119448 ----a-w- c:\program files (x86)\ModelerGeometry_3.02_8.drx
2010-08-26 15:23 . 2010-08-26 15:23 1057432 ----a-w- c:\program files (x86)\DD_Ge_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 94872 ----a-w- c:\program files (x86)\DD_Br_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 709272 ----a-w- c:\program files (x86)\DD_AcisBuilder_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 61440 ----a-w- c:\program files (x86)\BugSplatRc.dll
2010-08-26 15:23 . 2010-08-26 15:23 307864 ----a-w- c:\program files (x86)\DD_BrepRenderer_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 283288 ----a-w- c:\program files (x86)\DD_DbRoot_3.02_8.dll
2010-08-26 15:23 . 2010-08-26 15:23 264328 ----a-w- c:\program files (x86)\BsSndRpt.exe
2010-08-26 15:23 . 2010-08-26 15:23 227408 ----a-w- c:\program files (x86)\BugSplat.dll
2010-08-26 15:23 . 2010-08-26 15:23 14488 ----a-w- c:\program files (x86)\DD_Alloc_3.02_8.dll
.
.
((((((((((((((((((((((((((((((((((((((((((((( AWF ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2015-07-29 22344224]
"MyScript InkRetriever"="C:/Program Files (x86)/Vision Objects/MyScript Studio/MyScript_GenericInkRetriever.exe" [2011-01-13 475136]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-05-20 291648]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"ADSK DLMSession"="c:\program files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe" [2013-02-01 1641368]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-06-05 5515496]
"iSkysoft Helper Compact.exe"="c:\program files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe" [2014-10-31 2066432]
"Syncios device service"="c:\program files (x86)\Syncios\SynciosDeviceService.exe" [2015-06-19 830464]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
IRIScan Button Manager.lnk - c:\program files (x86)\IRIScan\IRIScan Scanner\DocAction.exe /m [2014-6-13 192512]
penDirector.lnk - c:\program files (x86)\Anoto\penDirector\penDirector.exe [2010-4-9 741376]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
R2 ADExchange;ArcSoft Exchange Service;c:\program files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe;c:\program files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys;c:\windows\SYSNATIVE\Drivers\ssadadb.sys [x]
R3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 MSICDSetup;MSICDSetup;d:\cdriver64.sys;d:\CDriver64.sys [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;d:\ntiolib_x64.sys;d:\NTIOLib_X64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssadserd.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WsDrvInst;Wondershare Driver Install Service;c:\program files (x86)\iSkysoft\TunesOver\DriverInstall.exe;c:\program files (x86)\iSkysoft\TunesOver\DriverInstall.exe [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S2 Apple Mobile Device Service;Apple Mobile Device Service;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [x]
S2 mi-raysat_3dsMax2009_64;mental ray 3.6 Satellite for Autodesk 3ds Max 2009 64-bit 64-bit;c:\program files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe;c:\program files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe [x]
S2 mi-raysat_3dsmax2014_64;mental ray Satellite for Autodesk 3ds Max Design 2014 64-bit;d:\programy\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe;d:\programy\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe [x]
S2 PSI_SVC_2_x64;Protexis Licensing V2 x64;c:\program files\Common Files\Protexis\License Service\PsiService_2.exe;c:\program files\Common Files\Protexis\License Service\PsiService_2.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [x]
S2 xrdd.exe;X-Rite Device Services Manager;c:\program files (x86)\X-Rite\Devices\Services\xrdd.exe;c:\program files (x86)\X-Rite\Devices\Services\xrdd.exe [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{2D46B6DC-2207-486B-B523-A557E6D54B47}]
start [N/A]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-08-28 05:48 993608 ----a-w- c:\program files (x86)\Google\Chrome\Application\44.0.2403.157\Installer\chrmstp.exe
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveBlacklisted]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2015-07-29 07:23 775496 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSynced]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2015-07-29 07:23 775496 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSyncing]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2015-07-29 07:23 775496 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-06-05 08:22 722400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2013-01-15 6963272]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2013-06-05 2716960]
"Eraser"="c:\program files\Eraser\Eraser.exe" [2015-04-13 1084328]
.
------- Doplňkový sken -------
.
uLocal Page = %SystemRoot%\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\tz5ag4ju.default\
FF - prefs.js: browser.startup.homepage - about:home
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-238282651-631842576-424326393-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSavePidlMRU\t*Y
]
"0"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"MRUListEx"=hex:08,00,00,00,07,00,00,00,05,00,00,00,06,00,00,00,04,00,00,00,01,
00,00,00,03,00,00,00,02,00,00,00,00,00,00,00,ff,ff,ff,ff
"1"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"2"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"3"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"4"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"5"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"6"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"7"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
"8"=hex:14,00,1f,50,e0,4f,d0,20,ea,3a,69,10,a2,d8,08,00,2b,30,30,9d,19,00,2f,
44,3a,5c,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,5e,00,31,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
c:\program files (x86)\Common Files\Anoto\Pen\Phal\Service\LPhal.exe
.
**************************************************************************
.
Celkový čas: 2015-09-02 11:10:05 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-09-02 09:10
ComboFix2.txt 2015-08-31 10:20
ComboFix3.txt 2015-08-31 09:22
.
Před spuštěním: Volných bajtů: 10 026 889 216
Po spuštění: 9 682 370 560
.
- - End Of File - - 91927F43BACAC473EED0C1192305D08B
A36C5E4F47E84449FF07ED3517B43A31

[Orcus]

Složku ANOTOIPGC smaž.

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

====================================================

Vyčisti systém CCleanerem

====================================================

Stáhni si zde DelFix
http://general-changelog-team.fr/fr/dow ... e/9-delfix

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt

Co problémy? + nový log z HJT

[endysss]

Ještě prosím, mám to všechno mazat, přestože problémy stále přetrvávají? Viz. obrázek.

[jaro3]

Smaž.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

@echo off
reg save HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSavePidlMRU "%userprofile%\desktop\OpenSavePidlMRU3.hiv"
reg delete HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSavePidlMRU /f
reg add HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSavePidlMRU /f
reg save HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs "%userprofile%\desktop\RecentDocs.hiv"
reg delete HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs /f
reg add HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs /f
del %0

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: MRU.bat
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Najdi na ploše soubor MRU.bat , poklepej na něj , objeví se černé okno a zase se zavře.
Restartuj PC.

Popiš pak problémy.

[endysss]

# DelFix v1.011 - Logfile created 03/09/2015 at 11:41:49
# Updated 18/08/2015 by Xplode
# Username : uzivatel - PC-09092130003
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\Qoobox
Deleted : C:\Combofix
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\ComboFix.txt
Deleted : C:\zoek-results.log
Deleted : C:\Users\uzivatel\Desktop\JRT.txt
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware

~ Cleaning system restore ...


New restore point created !

########## - EOF - ##########

[endysss]

Vše vykonáno, ale problémy stále přetrvávají :(

[jerabina]

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit Farbar Recovery Scan Tool (FRST)
32bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
64bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
a ulož jej na plochu. ,pak spusť FRST jako správce
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[endysss]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:31-08-2015
Ran by uzivatel (administrator) on PC-09092130003 (04-09-2015 08:09:34)
Running from C:\Users\uzivatel\Desktop
Loaded Profiles: uzivatel (Available Profiles: uzivatel & Ambience)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
() C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe
() D:\Programy\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
(Anoto AB) C:\Program Files (x86)\Common Files\Anoto\Pen\Phal\Service\LPhal.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
() C:\Program Files (x86)\IRIScan\IRIScan Scanner\DocAction.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Autodesk, Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(iSkySoft) C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
() C:\Program Files (x86)\Syncios\SynciosDeviceService.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe InDesign CS6\InDesign.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6963272 2013-01-15] (Realtek Semiconductor)
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2716960 2013-06-05] ()
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1084328 2015-04-13] (The Eraser Project)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1641368 2013-02-01] (Autodesk, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-05] (Avast Software s.r.o.)
HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2066432 2014-10-31] (iSkySoft)
HKLM-x32\...\Run: [Syncios device service] => C:\Program Files (x86)\Syncios\SynciosDeviceService.exe [830464 2015-06-19] ()
HKU\S-1-5-21-238282651-631842576-424326393-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22344224 2015-07-29] (Google)
HKU\S-1-5-21-238282651-631842576-424326393-1000\...\Run: [MyScript InkRetriever] => C:\Program Files (x86)\Vision Objects\MyScript Studio\MyScript_GenericInkRetriever.exe [475136 2011-01-13] ()
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-06-05] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\IRIScan Button Manager.lnk [2014-06-13]
ShortcutTarget: IRIScan Button Manager.lnk -> C:\Program Files (x86)\IRIScan\IRIScan Scanner\DocAction.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\penDirector.lnk [2014-11-05]
ShortcutTarget: penDirector.lnk -> C:\Program Files (x86)\Anoto\penDirector\penDirector.exe (Anoto AB)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{6E76F763-DBEA-413C-A9EB-699419A56E71}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-238282651-631842576-424326393-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-238282651-631842576-424326393-1000\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-238282651-631842576-424326393-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKU\S-1-5-21-238282651-631842576-424326393-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-05] (Avast Software s.r.o.)
BHO-x32: PDFXChange 4.0 -> {42DFA04F-0F16-418e-B80C-AB97A5AFAD39} -> C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll [2011-09-16] (Tracker Softaware)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-12-12] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-05] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-12-12] (Oracle Corporation)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - PDFXChange 4.0 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD39} - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll [2011-09-16] (Tracker Softaware)

FireFox:
========
FF ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\tz5ag4ju.default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-17] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2000-01-01] (Tracker Software Products Ltd.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2000-01-01] (Tracker Software Products Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-17] ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2000-01-01] (Tracker Software Products Ltd.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-12-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-12-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-05-14] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-05-14] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2000-01-01] (Tracker Software Products Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-09-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-238282651-631842576-424326393-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2000-01-01] (Tracker Software Products Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2000-01-01] (Tracker Software Products Ltd.)
FF Extension: 20-20 3D Viewer - IKEA - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\tz5ag4ju.default\Extensions\2020Player_IKEA@2020Technologies.com [2014-03-27]
FF Extension: Adblock Plus - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\tz5ag4ju.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-08-12]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-11-18]

Chrome:
=======
CHR Profile: C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-31]
CHR Extension: (Google Docs) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-13]
CHR Extension: (Google Drive) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-13]
CHR Extension: (YouTube) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-13]
CHR Extension: (Google Search) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-13]
CHR Extension: (Google Sheets) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-31]
CHR Extension: (Avast Online Security) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-11-20]
CHR Extension: (Chrome Web Store Payments) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-16]
CHR Extension: (Gmail) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-13]
CHR HKU\S-1-5-21-238282651-631842576-424326393-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-05]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed]
R2 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [79360 2013-09-13] (Autodesk) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-05] (Avast Software s.r.o.)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4034896 2015-06-05] (Avast Software)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 mi-raysat_3dsMax2009_64; C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe [65536 2008-03-10] () [File not signed]
R2 mi-raysat_3dsmax2014_64; D:\Programy\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe [86016 2011-09-15] () [File not signed]
R2 PenRendezvous; C:\Program Files (x86)\Common Files\Anoto\Pen\Phal\Service\LPhal.exe [430080 2009-08-31] (Anoto AB) [File not signed]
R2 PenSup; C:\Program Files (x86)\Common Files\Anoto\Pen\Phal\Service\LPhal.exe [430080 2009-08-31] (Anoto AB) [File not signed]
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 WsDrvInst; C:\Program Files (x86)\iSkysoft\TunesOver\DriverInstall.exe [100032 2015-05-06] (Wondershare)
R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [82800 2013-04-03] (X-Rite Inc.)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-06-05] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-06-05] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-06-05] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-06-05] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-06-05] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-29] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-06-05] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-06-05] ()
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
S3 usbscan; C:\Windows\SysWOW64\DRIVERS\usbscan.sys [12400 1999-10-13] (Microsoft Corporation) [File not signed]
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-06-05] (Avast Software)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-04 08:08 - 2015-09-04 08:09 - 00019202 _____ C:\Users\uzivatel\Desktop\FRST.txt
2015-09-04 08:08 - 2015-09-04 08:09 - 00000000 ____D C:\FRST
2015-09-04 08:08 - 2015-09-04 08:08 - 00048333 _____ C:\Users\uzivatel\Desktop\Addition.txt
2015-09-04 08:08 - 2015-09-04 08:07 - 02188800 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2015-09-04 07:20 - 2015-09-04 07:20 - 00000000 ____D C:\Users\Ambience\AppData\Roaming\Apple Computer
2015-09-04 07:20 - 2015-09-04 07:20 - 00000000 ____D C:\Users\Ambience\AppData\Local\VirtualStore
2015-09-03 11:43 - 2015-09-04 07:20 - 00000112 _____ C:\Windows\setupact.log
2015-09-03 11:43 - 2015-09-03 11:43 - 00000000 _____ C:\Windows\setuperr.log
2015-09-03 11:43 - 2015-09-03 11:43 - 00000000 _____ C:\Users\uzivatel\Desktop\RecentDocs.hiv
2015-09-03 11:43 - 2015-09-03 11:43 - 00000000 _____ C:\Users\uzivatel\Desktop\OpenSavePidlMRU3.hiv
2015-09-03 11:41 - 2015-09-03 11:41 - 00000607 _____ C:\DelFix.txt
2015-09-03 11:39 - 2015-09-03 11:39 - 00000000 ____D C:\Záloha registrů
2015-09-02 08:34 - 2015-09-02 08:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Phone
2015-09-02 08:34 - 2015-09-02 08:34 - 00000000 ____D C:\Program Files (x86)\Windows Phone
2015-08-31 11:15 - 2015-09-03 11:36 - 00000000 ____D C:\Windows\erdnt
2015-08-31 11:08 - 2015-08-31 10:58 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-08-28 15:57 - 2015-08-28 15:57 - 00004638 _____ C:\Users\uzivatel\Desktop\rogue killer.txt
2015-08-28 11:30 - 2015-08-28 11:30 - 01494346 _____ C:\Users\uzivatel\Desktop\Etikety nové.ai
2015-08-28 09:45 - 2015-08-28 15:51 - 00037624 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-08-28 08:30 - 2015-08-31 07:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-27 13:32 - 2015-08-27 13:32 - 00000218 _____ C:\Users\uzivatel\AppData\Local\recently-used.xbel
2015-08-27 12:46 - 2015-08-27 12:46 - 00000000 ____D C:\Program Files (x86)\ESET
2015-08-27 12:37 - 2015-06-05 10:22 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-08-27 12:16 - 2015-08-27 12:17 - 00000000 ____D C:\Users\Ambience\Documents\Autodesk
2015-08-27 12:16 - 2015-08-27 12:17 - 00000000 ____D C:\Users\Ambience\AppData\Roaming\Autodesk
2015-08-27 12:16 - 2015-08-27 12:16 - 00000000 ____D C:\Users\Ambience\Documents\Syncios
2015-08-27 12:16 - 2015-08-27 12:16 - 00000000 ____D C:\Users\Ambience\AppData\Roaming\Syncios
2015-08-27 12:16 - 2015-08-27 12:16 - 00000000 ____D C:\Users\Ambience\AppData\Local\iSkysoft
2015-08-27 11:20 - 2015-08-27 11:20 - 00000000 ____D C:\ProgramData\iSkysoft
2015-08-07 15:13 - 2015-08-21 10:55 - 00000000 ____D C:\Users\uzivatel\Desktop\form

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-04 07:51 - 2010-11-21 11:27 - 11821404 _____ C:\Windows\system32\perfh005.dat
2015-09-04 07:51 - 2010-11-21 11:27 - 03955846 _____ C:\Windows\system32\perfc005.dat
2015-09-04 07:51 - 2009-07-14 07:13 - 00006252 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-04 07:42 - 2013-09-09 15:35 - 01861337 _____ C:\Windows\WindowsUpdate.log
2015-09-04 07:27 - 2009-07-14 06:45 - 00022928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-04 07:27 - 2009-07-14 06:45 - 00022928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-04 07:21 - 2013-09-16 10:03 - 00000000 ___RD C:\Users\uzivatel\Disk Google
2015-09-04 07:20 - 2013-11-18 13:06 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-09-04 07:20 - 2013-09-09 17:18 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-04 07:20 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-03 11:38 - 2014-02-14 15:15 - 00000000 ____D C:\Windows\Minidump
2015-09-03 11:38 - 2013-11-29 12:38 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\inkscape
2015-09-03 11:38 - 2013-10-02 13:03 - 00000000 ____D C:\Users\uzivatel\AppData\Local\CrashDumps
2015-09-02 11:08 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-08-31 11:22 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2015-08-31 07:47 - 2013-09-13 15:23 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-31 07:47 - 2013-09-13 15:23 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-31 07:39 - 2013-09-13 15:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-28 08:11 - 2014-08-27 07:38 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-08-28 07:48 - 2013-09-13 15:24 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-27 15:57 - 2013-09-09 15:35 - 00000000 ____D C:\Users\uzivatel\AppData\Local\VirtualStore
2015-08-27 14:05 - 2013-09-13 10:33 - 00000000 ____D C:\Autodesk
2015-08-27 13:54 - 2014-08-27 07:38 - 00001098 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-27 13:54 - 2014-08-27 07:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-27 13:54 - 2014-08-27 07:38 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-27 13:52 - 2014-03-10 11:35 - 00000000 ____D C:\Users\uzivatel\Documents\Visual Studio 2008
2015-08-27 13:52 - 2013-09-13 11:50 - 00000000 ____D C:\Users\uzivatel\AppData\Local\Microsoft Help
2015-08-27 13:35 - 2015-06-23 07:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Syncios
2015-08-27 13:35 - 2015-06-05 10:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2013
2015-08-27 13:35 - 2015-06-05 10:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-08-27 13:35 - 2015-05-14 09:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-27 13:35 - 2015-05-07 15:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Runtime Software
2015-08-27 13:35 - 2014-11-05 09:53 - 00000000 ____D C:\ProgramData\SafeNet Sentinel
2015-08-27 13:35 - 2014-11-05 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vision Objects
2015-08-27 13:35 - 2014-11-05 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anoto
2015-08-27 13:35 - 2014-11-05 09:53 - 00000000 ____D C:\ProgramData\anoto
2015-08-27 13:35 - 2014-11-05 09:53 - 00000000 ____D C:\Program Files (x86)\Anoto
2015-08-27 13:35 - 2014-11-05 09:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobile note taker
2015-08-27 13:35 - 2014-10-10 13:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
2015-08-27 13:35 - 2014-10-01 14:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IRIScan Scanner V4.3.0.1
2015-08-27 13:35 - 2014-06-25 15:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-27 13:35 - 2014-06-13 09:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IRIScan Express 3
2015-08-27 13:35 - 2014-05-14 14:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2014
2015-08-27 13:35 - 2014-04-10 11:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2015-08-27 13:35 - 2014-03-10 11:36 - 00000000 ____D C:\ProgramData\Protexis64
2015-08-27 13:35 - 2014-03-10 11:34 - 00000000 ____D C:\ProgramData\Corel
2015-08-27 13:35 - 2014-03-10 11:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X6 (64-Bit)
2015-08-27 13:35 - 2014-02-26 13:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DRPU ID Card Design Software
2015-08-27 13:35 - 2014-01-21 11:29 - 00000000 ____D C:\Users\Ambience
2015-08-27 13:35 - 2014-01-10 13:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
2015-08-27 13:35 - 2014-01-02 13:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ObviousIdea
2015-08-27 13:35 - 2013-11-08 11:32 - 00000000 ____D C:\ProgramData\PANTONE
2015-08-27 13:35 - 2013-11-08 10:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Codec Pack
2015-08-27 13:35 - 2013-10-18 10:14 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\vlc
2015-08-27 13:35 - 2013-10-18 10:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-27 13:35 - 2013-10-17 08:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zoner Photo Studio 12
2015-08-27 13:35 - 2013-09-27 08:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange 4 Pro
2015-08-27 13:35 - 2013-09-25 10:04 - 00000000 ____D C:\ProgramData\FLEXnet
2015-08-27 13:35 - 2013-09-25 08:47 - 00000000 ____D C:\ProgramData\Applications
2015-08-27 13:35 - 2013-09-20 08:28 - 00000000 ____D C:\ProgramData\OPHH
2015-08-27 13:35 - 2013-09-19 13:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-27 13:35 - 2013-09-19 09:22 - 00000000 ____D C:\Users\uzivatel\AppData\Local\Akamai
2015-08-27 13:35 - 2013-09-16 10:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-08-27 13:35 - 2013-09-13 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-27 13:35 - 2013-09-13 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google SketchUp 8
2015-08-27 13:35 - 2013-09-13 12:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chaos Group
2015-08-27 13:35 - 2013-09-13 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2015-08-27 13:35 - 2013-09-13 12:04 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2015-08-27 13:35 - 2013-09-13 11:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-08-27 13:35 - 2013-09-09 16:16 - 00000000 ____D C:\totalcmd
2015-08-27 13:35 - 2013-09-09 16:15 - 00000000 ____D C:\ProgramData\Adobe
2015-08-27 13:35 - 2013-09-09 16:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2015-08-27 13:35 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-27 13:35 - 2009-07-14 05:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-27 13:35 - 2009-07-14 05:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-27 13:34 - 2015-06-17 15:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSkysoft
2015-08-27 13:34 - 2013-09-13 12:05 - 00000000 ____D C:\ProgramData\Autodesk
2015-08-27 13:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2015-08-27 12:37 - 2015-06-05 10:23 - 00001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-08-27 12:37 - 2013-09-09 15:35 - 00000000 ____D C:\Users\uzivatel
2015-08-27 12:17 - 2014-02-26 11:30 - 00172456 _____ C:\Users\Ambience\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-27 12:17 - 2014-01-21 11:29 - 00000000 ____D C:\Users\Ambience\AppData\Local\Autodesk
2015-08-27 11:20 - 2013-09-10 06:49 - 00172456 _____ C:\Users\uzivatel\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-27 09:18 - 2013-09-13 11:41 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-08-27 08:37 - 2014-11-05 09:52 - 00000000 ____D C:\ProgramData\Vision Objects
2015-08-27 08:37 - 2013-11-08 11:32 - 00000000 ____D C:\ProgramData\X-Rite
2015-08-05 15:31 - 2015-06-29 15:12 - 00000198 ____H C:\Users\uzivatel\Documents\Výkres1.dwl2
2015-08-05 15:31 - 2015-06-29 15:12 - 00000048 ____H C:\Users\uzivatel\Documents\Výkres1.dwl

==================== Files in the root of some directories =======

2010-08-26 17:31 - 2010-08-26 17:31 - 0192512 _____ () C:\Program Files (x86)\alchemyext.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0264328 _____ (BugSplat, LLC) C:\Program Files (x86)\BsSndRpt.exe
2010-08-26 17:23 - 2010-08-26 17:23 - 0227408 _____ (BugSplat, LLC) C:\Program Files (x86)\BugSplat.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0061440 _____ (BugSplat, LLC) C:\Program Files (x86)\BugSplatRc.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0986112 _____ (Microsoft Corporation) C:\Program Files (x86)\dbghelp.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0709272 _____ (Open Design Alliance Inc. ('Open Design')) C:\Program Files (x86)\DD_AcisBuilder_3.02_8.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0014488 _____ (Open Design Alliance Inc. ('Open Design')) C:\Program Files (x86)\DD_Alloc_3.02_8.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0307864 _____ (Open Design Alliance Inc. ('Open Design')) C:\Program Files (x86)\DD_BrepRenderer_3.02_8.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0094872 _____ (Open Design Alliance Inc. ('Open Design')) C:\Program Files (x86)\DD_Br_3.02_8.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0283288 _____ (Open Design Alliance Inc. ('Open Design')) C:\Program Files (x86)\DD_DbRoot_3.02_8.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 8172184 _____ (Open Design Alliance Inc. ('Open Design')) C:\Program Files (x86)\DD_Db_3.02_8.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 1057432 _____ (Open Design Alliance Inc. ('Open Design')) C:\Program Files (x86)\DD_Ge_3.02_8.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0701080 _____ (Open Design Alliance Inc. ('Open Design')) C:\Program Files (x86)\DD_Gi_3.02_8.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0565912 _____ (Open Design Alliance Inc. ('Open Design')) C:\Program Files (x86)\DD_Root_3.02_8.dll
2010-08-26 17:22 - 2010-08-26 17:22 - 0000924 _____ () C:\Program Files (x86)\drivers.ini
2010-08-26 17:23 - 2010-08-26 17:23 - 2752512 _____ (OSGeo) C:\Program Files (x86)\gdal16.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0000320 _____ () C:\Program Files (x86)\glcards.dat
2010-08-26 17:24 - 2010-08-26 17:24 - 0778240 _____ () C:\Program Files (x86)\IGAttrs.dll
2010-08-26 17:24 - 2010-08-26 17:24 - 1597440 _____ () C:\Program Files (x86)\IGCore.dll
2010-08-26 17:24 - 2010-08-26 17:24 - 3362816 _____ () C:\Program Files (x86)\IGGfx.dll
2010-08-26 17:24 - 2010-08-26 17:24 - 0819200 _____ () C:\Program Files (x86)\IGMath.dll
2010-08-26 17:24 - 2010-08-26 17:24 - 1724416 _____ () C:\Program Files (x86)\IGSg.dll
2010-08-26 17:24 - 2010-08-26 17:24 - 0380928 _____ () C:\Program Files (x86)\IGUtils.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0119448 _____ (Open Design Alliance Inc. ('Open Design')) C:\Program Files (x86)\ModelerGeometry_3.02_8.drx
2010-08-26 17:23 - 2010-08-26 17:23 - 0339968 _____ (MARX Software Security) C:\Program Files (x86)\mpiwin32.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0892998 _____ () C:\Program Files (x86)\msvcrt-ruby18.dll
2010-08-26 17:33 - 2010-08-26 17:33 - 12091392 _____ (Google, Inc.) C:\Program Files (x86)\SketchUp.exe
2010-08-26 17:31 - 2010-08-26 17:31 - 2236416 _____ (Google, Inc.) C:\Program Files (x86)\SkpWriter.dll
2010-08-26 17:31 - 2010-08-26 17:31 - 2736128 _____ () C:\Program Files (x86)\slapi.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 0031384 _____ (Open Design Alliance Inc. ('Open Design')) C:\Program Files (x86)\SpatialIndex_3.02_8.dll
2010-08-26 17:33 - 2010-08-26 17:33 - 1933312 _____ (Google, Inc.) C:\Program Files (x86)\ThumbsUp.dll
2010-08-26 17:23 - 2010-08-26 17:23 - 2359296 _____ (Apache Software Foundation) C:\Program Files (x86)\xerces-c_2_6.dll
2014-09-19 14:21 - 2014-09-19 14:21 - 0000132 _____ () C:\Users\uzivatel\AppData\Roaming\Adobe Formát AIFF CS6 – předvolby
2013-10-10 13:58 - 2015-05-20 14:12 - 0000132 _____ () C:\Users\uzivatel\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2013-09-16 10:43 - 2015-05-13 16:02 - 0000132 _____ () C:\Users\uzivatel\AppData\Roaming\Filtr IIIExport Adobe CS6 – předvolby
2014-06-25 09:22 - 2014-06-25 09:22 - 0001480 _____ () C:\Users\uzivatel\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2015-08-27 13:32 - 2015-08-27 13:32 - 0000218 _____ () C:\Users\uzivatel\AppData\Local\recently-used.xbel
2013-09-25 09:47 - 2013-09-25 09:47 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-02 10:02

==================== End of FRST.txt ============================

[endysss]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:31-08-2015
Ran by uzivatel (2015-09-04 08:09:47)
Running from C:\Users\uzivatel\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-238282651-631842576-424326393-500 - Administrator - Disabled)
Ambience (S-1-5-21-238282651-631842576-424326393-1001 - Limited - Enabled) => C:\Users\Ambience
Guest (S-1-5-21-238282651-631842576-424326393-501 - Limited - Disabled)
uzivatel (S-1-5-21-238282651-631842576-424326393-1000 - Administrator - Enabled) => C:\Users\uzivatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.0.1.152 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe InDesign CS6 (HKLM-x32\...\{CFB770D7-8D43-1014-922B-CC2715FADE3F}) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.3 64-bit (HKLM\...\{2DD71ACB-552D-402C-9529-7906ACB95C30}) (Version: 5.3.1 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-238282651-631842576-424326393-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
Anoto penDirector 1.4.0.0 (HKLM-x32\...\Anoto_penDirector) (Version: 1.4.0.0 - Anoto AB)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AutoCAD Architecture 2014 – Čeština (Czech) (Version: 7.5.17.0 - Autodesk) Hidden
AutoCAD Architecture 2014 Language Pack – Čeština (Czech) (Version: 7.5.17.0 - Autodesk) Hidden
Autodesk 3ds Max 2009 64-bit (HKLM\...\{EC2280DF-BBAF-0409-9359-BCCD15545FFB}) (Version: 11.0 - Autodesk)
Autodesk 3ds Max Design 2014 (HKLM\...\Autodesk 3ds Max Design 2014) (Version: 16.2.475.0 - Autodesk)
Autodesk 3ds Max Design 2014 (Version: 16.2.475.0 - Autodesk) Hidden
Autodesk 3ds Max Design 2014 64-bit Populate Data (HKLM\...\{2BCAFE22-BE25-4437-815C-54596D630397}) (Version: 1.0.0.1 - Autodesk)
Autodesk 3ds Max Design 2014 SP2 (HKLM\...\Autodesk 3ds Max Design 2014 HF1) (Version: 16.2.475.0 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk)
Autodesk AutoCAD Architecture 2014 – Čeština (Czech) (HKLM\...\AutoCAD Architecture 2014 – Čeština (Czech)) (Version: 7.5.17.0 - Autodesk)
Autodesk Backburner 2008.1 (HKLM-x32\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 2008.1 - Autodesk, Inc.)
Autodesk CAD Manager Tools (HKLM\...\{5783F2D7-0111-0409-0110-0060B0CE6BBA}) (Version: 16.0.0.65 - Autodesk)
Autodesk Composite 2014 (HKLM\...\Autodesk Composite 2014) (Version: 9.0.0.0 - Autodesk)
Autodesk Composite 2014 (Version: 9.0.0.0 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Download Manager (HKLM-x32\...\{2F48C80C-3A76-495A-A4B5-C0CC946FEEBD}) (Version: 2.0.6.0 - Autodesk, Inc.)
Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.32.600 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.32.600 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2014 (HKLM-x32\...\{A0633D4E-5AF2-4E3E-A70A-FE9C2BD8A958}) (Version: 4.0.32.600 - Autodesk)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.11.0 - Autodesk)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
Corel Graphics - Windows Shell Extension (HKLM\...\_{EBDC2D0D-1E26-4EF2-BB48-C7E18F7800C6}) (Version: 16.0.0.707 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 16.0.707 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 16.0.707 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Capture (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Common (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Connect (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Custom Data (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - CZ (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Draw (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Filters (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - FontNav (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - IPM (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Photozoom Plugin (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Redist (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Setup Files (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VBA (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VideoBrowser (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VSTA (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Writing Tools (x64) (Version: 16.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 (64-Bit) (HKLM\...\_{BDBFAC49-8877-472F-876B-75ADB7DBC955}) (Version: 16.0.0.707 - Corel Corporation)
CorelDRAW Graphics Suite X6 (x64) (Version: 16.0 - Corel Corporation) Hidden
Eraser 6.2.0.2969 (HKLM\...\{66AB13EA-E7D2-4CFC-9B66-8E9EE44C89EE}) (Version: 6.2.2969 - The Eraser Project)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)
FBX Plugin 2009.0 for Max 2009 64 (HKLM\...\FBX Plugin 2009.0 for Max 2009 64) (Version: - )
FormatFactory 3.2.1.0 (HKLM-x32\...\FormatFactory) (Version: 3.2.1.0 - Free Time)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.1.2.1224 - Foxit Corporation)
GetDataBack Simple (HKLM-x32\...\{D06B8000-52B4-4D0B-A003-DA83ED982B51}) (Version: 1.02.000 - Runtime Software)
Google Drive (HKLM-x32\...\{12ADFB82-D5A3-43E4-B2F4-FCD9B690315B}) (Version: 1.24.9931.5480 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.157 - Google Inc.)
Google SketchUp Pro 8 (HKLM-x32\...\{3AB65E95-37D6-4DD7-8862-29AED3AFD54B}) (Version: 3.0.3117 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
Inkscape 0.48.4 (HKLM-x32\...\Inkscape) (Version: 0.48.4 - )
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
IRIScan (HKLM-x32\...\{7F629A95-EFD3-439B-9FC6-964798AFAC25}) (Version: 3.1.0 - )
IRIScan Scanner (HKLM-x32\...\{77A0D715-8509-45E9-A39E-691F19666FD7}) (Version: V4.3.0 - )
iSkysoft TunesOver ( Version 3.6.3 ) (HKLM-x32\...\{84A89F3A-B59A-4324-8598-3611853769C8}_is1) (Version: 3.6.3 - iSkysoft)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Light Image Resizer 4.0.4.3 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.0.4.3 - ObviousIdea)
Malwarebytes Anti-Malware verze 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Mobile note taker 3.0 (HKLM-x32\...\{322940D5-1CE1-4ADF-8A59-7FB4B3CB9A9E}) (Version: 3.0.1.0 - STAEDTLER Mars GmbH & Co. KG)
Mozilla Firefox 40.0.3 (x86 cs) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 cs)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3.5716 - Mozilla)
MyScript Anoto InkRetriever 1.0 (HKLM-x32\...\MyScript Anoto InkRetriever 1.0_is1) (Version: 1.0.0.8 - Vision Objects)
MyScript Studio cs_CZ pack 1.2 (HKLM-x32\...\MyScript Studio cs_CZ pack 1.2_is1) (Version: 1.2.0.200 - Vision Objects)
MyScript Studio Notes Edition 1.2 (HKLM-x32\...\MyScript Studio 1.2_is1) (Version: 1.2.0.336 - Vision Objects)
Nero 12 Essentials OEM.a01 (HKLM-x32\...\{2AC099EA-CC1C-4E4E-BDFC-0353DCF13DD0}) (Version: 12.5.00400 - Nero AG)
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
NVIDIA nView 140.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 140.54 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 311.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.66 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 311.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.66 - NVIDIA Corporation)
Ovládací panel NVIDIA 311.66 (Version: 311.66 - NVIDIA Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PDF-XChange 4 Pro (HKLM\...\{E38531EE-318C-4EFB-A36B-1A57BFBDAB3C}_is1) (Version: 4.198.198.0 - Tracker Software Products Ltd)
penDirectorMergeModules (x32 Version: 1.4.0.0 - Anoto AB) Hidden
PhotoFiltre 7 (HKU\S-1-5-21-238282651-631842576-424326393-1000\...\PhotoFiltre 7) (Version: - )
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{447CDCE5-F555-429B-BFA6-642C3C6D684F}) (Version: 3.1.2 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{0DF7096B-715A-4233-8633-C7A16ED6D616}) (Version: 3.1.2 - Apple Inc.)
Prerequisite installer (x32 Version: 12.0.0002 - Nero AG) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6823 - Realtek Semiconductor Corp.)
SketchUp 2013 (HKLM-x32\...\{72B622C9-AA10-47D7-A10C-377CF9BC8502}) (Version: 13.0.4124 - Trimble Navigation Limited)
SketchUp 2014 (HKLM-x32\...\{A608A8D3-E77C-4BEE-8F2A-F8124F5F0FE2}) (Version: 14.0.4900 - Trimble Navigation Limited)
SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)
Syncios verze 4.2.8 (HKLM-x32\...\{068A5D84-8419-4BDE-9689-FE65F412EFBB}_is1) (Version: 4.2.8 - Anvsoft, Inc.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
VLC media player 2.1.0 (HKLM-x32\...\VLC media player) (Version: 2.1.0 - VideoLAN)
V-Ray for 3dsmax 2009 for x64 (HKLM\...\V-Ray for 3dsmax 2009 for x64) (Version: 1.50.SP2 - Chaos Group Ltd)
V-Ray for 3dsmax 2014 for x64 (HKLM\...\V-Ray for 3dsmax 2014 for x64) (Version: 2.40.04 - Chaos Software Ltd)
Windows Phone app for desktop (HKLM-x32\...\{CE9BDD0F-BAF3-474D-B6D8-15B84BDAB229}) (Version: 1.1.2726.0 - Microsoft Corporation)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
X-Rite Device Services Manager (HKLM-x32\...\{E7F08812-2995-4915-AFD4-E572B231DE75}) (Version: 2.3.72 - X-Rite)
Zoner Photo Studio 12 (HKLM-x32\...\ZonerPhotoStudio12_CZ_is1) (Version: 12.0.1.4 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-238282651-631842576-424326393-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> D:\Programy\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-238282651-631842576-424326393-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> D:\Programy\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-238282651-631842576-424326393-1000_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL (ZONER software)
CustomCLSID: HKU\S-1-5-21-238282651-631842576-424326393-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> D:\Programy\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-238282651-631842576-424326393-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> D:\Programy\AutoCAD 2014\cs-CZ\acadficn.dll (Autodesk, Inc.)

==================== Restore Points =========================

03-09-2015 13:09:54 Naplánovaný kontrolní bod

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-09-02 11:08 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {54CB5195-E11F-4653-BF41-BAF58B42C25F} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-08-27] (Avast Software s.r.o.)
Task: {5BE1402C-C89C-4FBA-A301-8AF610557776} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {5C7ABB4B-0367-4C8F-8F90-B7C59115D02B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {6B978B34-0C02-4E6E-A493-0424A4FA8F36} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-23] (Piriform Ltd)
Task: {C9FEB373-1F0C-43D4-814E-47F3758C63F0} - System32\Tasks\X-Rite Device Services Software Updater => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe [2013-04-03] (X-Rite Inc.)
Task: {EA1DE79E-E0D6-461F-9AD9-A469D5F42D1E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Loaded Modules (Whitelisted) ==============

2015-02-13 04:20 - 2015-02-13 04:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-02-13 04:20 - 2015-02-13 04:20 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2008-03-10 00:08 - 2008-03-10 00:08 - 00065536 _____ () C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe
2011-09-15 06:19 - 2011-09-15 06:19 - 00086016 _____ () D:\Programy\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
2013-09-09 17:17 - 2013-05-14 15:53 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-06-13 09:20 - 2012-03-09 14:48 - 00192512 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\DocAction.exe
2015-06-23 07:36 - 2015-06-19 14:51 - 00830464 _____ () C:\Program Files (x86)\Syncios\SynciosDeviceService.exe
2015-06-05 10:22 - 2015-06-05 10:22 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-06-05 10:22 - 2015-06-05 10:22 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-09-03 15:43 - 2015-09-03 15:43 - 02964480 _____ () C:\Program Files\AVAST Software\Avast\defs\15090300\algo.dll
2015-09-04 07:20 - 2015-09-04 07:20 - 02964480 _____ () C:\Program Files\AVAST Software\Avast\defs\15090301\algo.dll
2013-03-02 15:45 - 2013-03-02 15:45 - 01588224 _____ () C:\Program Files (x86)\X-Rite\Devices\rm200\GoldenEye.dll
2013-01-07 18:40 - 2013-01-07 18:40 - 02633728 _____ () C:\Program Files (x86)\X-Rite\Devices\colormunki\colormunki.dll
2014-06-13 09:20 - 2012-03-09 15:14 - 00036864 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\AmCommonLib.dll
2014-06-13 09:20 - 2012-07-09 17:01 - 00086016 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\DocuRes.dll
2014-06-13 09:20 - 2008-08-27 17:58 - 00045056 _____ () C:\Program Files (x86)\Common Files\iMpacct\EdgeFillRsc.dll
2014-06-13 09:20 - 2006-05-15 15:24 - 00122938 _____ () C:\Program Files (x86)\Common Files\iMpacct\CommonFunc.dll
2014-06-13 09:20 - 2012-03-09 14:50 - 00159744 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\Scan.dll
2014-06-13 09:20 - 2012-02-21 18:02 - 00090112 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\ScanRes.dll
2014-06-13 09:20 - 2012-04-24 11:52 - 00147456 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\ScanProcess.dll
2014-06-13 09:20 - 2009-06-25 10:00 - 00897024 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\EncryptPdf.dll
2014-06-13 09:20 - 2012-05-16 12:29 - 00061440 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\PlkMsg.dll
2014-06-13 09:20 - 2012-03-28 18:03 - 00081920 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\PlkMsgRes.dll
2014-06-13 09:20 - 2012-03-09 14:48 - 00098304 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\Filing.DLL
2014-06-13 09:20 - 2012-03-09 15:14 - 00090216 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\FormatManager.dll
2014-06-13 09:20 - 2012-03-12 14:37 - 00053248 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\FormatManagerRes.dll
2014-06-13 09:20 - 2011-08-16 09:56 - 00049152 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\FilingRes.dll
2014-06-13 09:20 - 2012-03-09 15:14 - 00102400 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\ScanOCR\Custom.DLL
2014-06-13 09:20 - 2012-02-21 18:17 - 00049152 _____ () C:\Program Files (x86)\IRIScan\IRIScan Scanner\ScanOCR\CustomRes.dll
2015-06-05 10:22 - 2015-06-05 10:22 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-06-17 15:53 - 2014-10-31 16:40 - 01498112 _____ () C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\DAQExp.dll
2015-06-17 15:53 - 2014-05-19 17:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\CBSCreateVC.dll
2015-06-17 16:03 - 2015-06-19 14:51 - 00397824 _____ () C:\Program Files (x86)\Syncios\DuiLib.dll
2015-06-17 16:03 - 2013-03-01 10:30 - 00059904 _____ () C:\Program Files (x86)\Syncios\zlib.dll
2015-06-17 16:03 - 2013-03-01 10:30 - 00526848 _____ () C:\Program Files (x86)\Syncios\sqlite3.dll
2015-02-13 04:20 - 2015-02-13 04:20 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2015-02-13 04:20 - 2015-02-13 04:20 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-06-23 07:36 - 2014-01-06 11:24 - 00671744 _____ () C:\Program Files (x86)\Syncios\hashab.dll
2015-02-13 04:20 - 2015-02-13 04:20 - 00237352 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2015-09-04 07:21 - 2015-09-04 07:21 - 00098816 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32api.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00110080 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\pywintypes27.dll
2015-09-04 07:21 - 2015-09-04 07:21 - 00364544 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\pythoncom27.dll
2015-09-04 07:21 - 2015-09-04 07:21 - 00045568 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\_socket.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 01161216 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\_ssl.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00320512 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32com.shell.shell.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00713216 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\_hashlib.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 01176576 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\wx._core_.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00806400 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\wx._gdi_.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00816128 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\wx._windows_.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 01067008 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\wx._controls_.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00733184 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\wx._misc_.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00682496 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\pysqlite2._sqlite.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00087552 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\_ctypes.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00119808 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32file.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00108544 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32security.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00007168 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\hashobjs_ext.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00068096 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\usb_ext.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00167936 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32gui.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00018432 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32event.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00128512 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\_elementtree.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00127488 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\pyexpat.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00013824 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\common.time34.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00036864 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\_psutil_windows.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00038912 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32inet.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00011264 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32crypt.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00077312 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\wx._html2.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00027136 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\_multiprocessing.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00020480 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\_yappi.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00035840 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32process.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00686080 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\unicodedata.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00123392 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\wx._wizard.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00024064 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32pipe.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00010240 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\select.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00025600 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32pdh.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00525640 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\windows._lib_cacheinvalidation.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00017408 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32profile.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00022528 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\win32ts.pyd
2015-09-04 07:21 - 2015-09-04 07:21 - 00078848 _____ () C:\Users\uzivatel\AppData\Local\Temp\_MEI32042\wx._animate.pyd
2012-03-28 19:10 - 2012-03-28 19:10 - 00067216 _____ () C:\Program Files (x86)\Adobe\Adobe InDesign CS6\ASLSupport.dll
2012-03-28 12:18 - 2012-03-28 12:18 - 00374960 _____ () C:\Program Files (x86)\Adobe\Adobe InDesign CS6\Plug-ins\Filters\Sangam Readers\Reader For PageMaker.smrd
2012-03-28 12:18 - 2012-03-28 12:18 - 00123056 _____ () C:\Program Files (x86)\Adobe\Adobe InDesign CS6\PMFileReader.dll
2012-03-28 12:18 - 2012-03-28 12:18 - 00050352 _____ () C:\Program Files (x86)\Adobe\Adobe InDesign CS6\ALDFS32CJK.dll
2012-03-28 12:18 - 2012-03-28 12:18 - 00046256 _____ () C:\Program Files (x86)\Adobe\Adobe InDesign CS6\ALDVM32CJK.dll
2012-03-28 12:18 - 2012-03-28 12:18 - 00070776 _____ () C:\Program Files (x86)\Adobe\Adobe InDesign CS6\unihan.dll
2012-03-09 16:26 - 2012-03-09 16:26 - 00100352 _____ () C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\zlib1.dll
2015-08-28 07:48 - 2015-08-18 07:23 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.157\libglesv2.dll
2015-08-28 07:48 - 2015-08-18 07:23 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.157\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-238282651-631842576-424326393-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\uzivatel\AppData\Local\Akamai\netsession_win.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{C8D5ADFA-584A-45F6-AC88-A7810B993106}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\monitor.exe
FirewallRules: [{FDA23D8F-FAEC-4E8C-95AB-F62B448ACC73}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\monitor.exe
FirewallRules: [{3BDE0F26-2BB8-45ED-A514-CE9D38EB814A}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\manager.exe
FirewallRules: [{F2318ABB-0FEF-4E8B-9980-1884A4BD4A99}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\manager.exe
FirewallRules: [{DBE07476-591A-4B83-9EB2-B2AD36FC89EC}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\server.exe
FirewallRules: [{0D5AE6DC-A37C-4621-8D3B-9E4CC4A72609}] => (Allow) C:\Program Files (x86)\Autodesk\Backburner\server.exe
FirewallRules: [TCP Query User{9000C301-5859-47C6-A322-B730B5661096}C:\program files (x86)\sketchup.exe] => (Allow) C:\program files (x86)\sketchup.exe
FirewallRules: [UDP Query User{B1D317DE-3401-49FD-8E50-2A564A9FC6A3}C:\program files (x86)\sketchup.exe] => (Allow) C:\program files (x86)\sketchup.exe
FirewallRules: [TCP Query User{C3A73A49-9768-477F-955F-93A2E2E4A9DC}C:\users\uzivatel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\uzivatel\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{5959244A-9315-463F-A91D-75F9A3B8FA51}C:\users\uzivatel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\uzivatel\appdata\local\akamai\netsession_win.exe
FirewallRules: [{B4357EEC-240C-446F-9D1A-8DE651D44457}] => (Block) C:\users\uzivatel\appdata\local\akamai\netsession_win.exe
FirewallRules: [{7FA76718-C794-45B3-B277-56B7F308B86A}] => (Block) C:\users\uzivatel\appdata\local\akamai\netsession_win.exe
FirewallRules: [{D70C0FD8-CB49-46AC-BAB3-2D5DC94E1559}] => (Allow) D:\Programy\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
FirewallRules: [{141D16F4-E58A-421A-8B72-F810A3115391}] => (Allow) D:\Programy\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe
FirewallRules: [{86EDE6DE-DF63-4BA3-9BDC-04160C627BD3}] => (Allow) D:\Programy\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64.exe
FirewallRules: [{881949C9-E83C-43AA-8A72-FF60C566FD63}] => (Allow) D:\Programy\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64.exe
FirewallRules: [{112DD8D7-E1C1-4E4C-9F05-3010356C1B52}] => (Allow) LPort=50248
FirewallRules: [{D4976A0E-F8C9-41D4-A9E2-0D3BEE002E4D}] => (Allow) LPort=5454
FirewallRules: [TCP Query User{5F866A3B-201F-43D2-ABA0-1387C684C5C2}D:\programy\3ds max design 2014\3dsmax.exe] => (Allow) D:\programy\3ds max design 2014\3dsmax.exe
FirewallRules: [UDP Query User{97BD6DF0-F46A-4D6B-8050-94875FB76677}D:\programy\3ds max design 2014\3dsmax.exe] => (Allow) D:\programy\3ds max design 2014\3dsmax.exe
FirewallRules: [TCP Query User{18682CBA-18DF-4219-A4AF-333949313122}C:\program files\chaos group\v-ray\rt for 3ds max 2014 for x64\bin\vray.exe] => (Allow) C:\program files\chaos group\v-ray\rt for 3ds max 2014 for x64\bin\vray.exe
FirewallRules: [UDP Query User{ED069FEB-3E79-4725-A359-10F4F3759667}C:\program files\chaos group\v-ray\rt for 3ds max 2014 for x64\bin\vray.exe] => (Allow) C:\program files\chaos group\v-ray\rt for 3ds max 2014 for x64\bin\vray.exe
FirewallRules: [{89489DAC-13D0-4922-9887-CC3DDCE7C220}] => (Block) C:\program files\chaos group\v-ray\rt for 3ds max 2014 for x64\bin\vray.exe
FirewallRules: [{0C01C19F-C5BF-4DC0-B312-9BE469490DCC}] => (Block) C:\program files\chaos group\v-ray\rt for 3ds max 2014 for x64\bin\vray.exe
FirewallRules: [TCP Query User{1E9E2040-3D51-4FF4-AB8E-A65FE3151835}C:\program files (x86)\staedtler\easy note taker.exe] => (Allow) C:\program files (x86)\staedtler\easy note taker.exe
FirewallRules: [UDP Query User{0E962CD2-40FA-49AC-A8F1-CF4AD18A5A74}C:\program files (x86)\staedtler\easy note taker.exe] => (Allow) C:\program files (x86)\staedtler\easy note taker.exe
FirewallRules: [{3FBE8A4D-47D6-47E2-BB38-335C00298219}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{81D31612-9539-4FB7-B8A4-78B9B450C1E6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{74527A56-E4F5-499F-A8A1-58B6D77C31B5}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{CB775329-2079-4A3F-B7F6-DAB0EBC58EA1}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{90EFDCF4-3C80-4602-938B-AB1BC03D8BE9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FE2CB7B1-F089-4C6A-BC60-C756990C18BD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5C48B6CB-B214-471D-A8B8-41BDBAD73263}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{1EE2B6C3-861E-4ECA-8C13-4C65498BD307}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E2CDA4C9-64EC-42C2-8D09-0B365F63DBBC}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{6BBE3EA9-EA4B-48EE-ABB2-2BB94DED4E67}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{024C7434-0B2A-46D8-8D7C-DB2D14EC6DAE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/04/2015 07:51:17 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error: (09/04/2015 07:51:17 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (09/04/2015 07:51:17 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (09/04/2015 07:47:06 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error: (09/04/2015 07:47:06 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (09/04/2015 07:47:06 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (09/04/2015 07:42:12 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.

Error: (09/04/2015 07:42:12 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (09/04/2015 07:42:12 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Hodnota řetězce výkonu v registru výkonu je poškozena, pokud proces Performance zprostředkovatele čítače rozšíření. Hodnotu BaseIndex z registru výkonu obsahuje první hodnota DWORD datové části. Hodnotu LastCounter obsahuje druhá hodnota DWORD a hodnotu LastHelp obsahuje třetí hodnota DWORD datové části.

Error: (09/04/2015 07:27:13 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo. První hodnota DWORD v datové oblasti obsahuje kód chyby.


System errors:
=============
Error: (09/02/2015 11:11:08 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (09/02/2015 11:02:04 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (09/02/2015 11:02:01 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (09/02/2015 11:01:27 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Error: (09/02/2015 11:01:27 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Error: (09/02/2015 10:59:45 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (09/02/2015 10:58:07 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Error: (09/02/2015 10:58:07 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Error: (09/02/2015 10:58:06 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba mental ray Satellite for Autodesk 3ds Max Design 2014 64-bit byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/02/2015 10:58:06 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba mental ray 3.6 Satellite for Autodesk 3ds Max 2009 64-bit 64-bit byla neočekávaně ukončena. Tento stav nastal již 1krát.


Microsoft Office:
=========================
Error: (02/16/2015 02:59:28 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 861 seconds with 540 seconds of active time. This session ended with a crash.


CodeIntegrity:
===================================
Date: 2015-09-02 11:01:27.162
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-09-02 11:01:27.130
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-09-02 11:01:27.099
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-09-02 11:01:27.068
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-09-02 10:58:07.980
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-09-02 10:58:07.949
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-09-02 10:58:07.902
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-09-02 10:58:07.871
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-08-31 11:18:46.784
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-08-31 11:18:46.753
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Percentage of memory in use: 18%
Total physical RAM: 16331.33 MB
Available physical RAM: 13359.73 MB
Total Virtual: 32660.84 MB
Available Virtual: 29397.07 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.69 GB) (Free:22.2 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:715.19 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 931.5 GB) (Disk ID: 7029E55B)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or (Size: 111.8 GB) (Disk ID: F5340861)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[jaro3]

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-238282651-631842576-424326393-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-238282651-631842576-424326393-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [No File]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
ask: {5BE1402C-C89C-4FBA-A301-8AF610557776} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {EA1DE79E-E0D6-461F-9AD9-A469D5F42D1E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Users\uzivatel\AppData\Local\Temp\_MEI32042

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\Program Files (x86)\alchemyext.dll
C:\Program Files (x86)\drivers.ini
C:\Program Files (x86)\gdal16.dll
C:\Program Files (x86)\glcards.dat
C:\Program Files (x86)\IGAttrs.dll
C:\Program Files (x86)\IGCore.dll
C:\Program Files (x86)\IGGfx.dll
C:\Program Files (x86)\IGMath.dll
C:\Program Files (x86)\IGSg.dll
C:\Program Files (x86)\IGUtils.dll
C:\Program Files (x86)\ModelerGeometry_3.02_8.drx
C:\Program Files (x86)\mpiwin32.dll
C:\Program Files (x86)\msvcrt-ruby18.dll
C:\Program Files (x86)\SketchUp.exe
C:\Program Files (x86)\SkpWriter.dll
C:\Program Files (x86)\slapi.dll
C:\Program Files (x86)\SpatialIndex_3.02_8.dll
C:\Program Files (x86)\ThumbsUp.dll
C:\Program Files (x86)\xerces-c_2_6.dll
C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/


Ty jednotlivé soubory v Program Files tam nemají co dělat.