Prosím o kontrolu logu Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Zamčeno
inditarod
Level 1
Level 1
Příspěvky: 56
Registrován: červenec 16
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu

Příspěvekod inditarod » 07 srp 2016 14:29

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-08-2016
Ran by User (2016-08-06 17:15:16)
Running from C:\Users\User\Downloads
Windows 10 Home Version 1511 (X64) (2016-07-29 13:18:47)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1804479744-3448908533-1041230410-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1804479744-3448908533-1041230410-503 - Limited - Disabled)
Guest (S-1-5-21-1804479744-3448908533-1041230410-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1804479744-3448908533-1041230410-1003 - Limited - Enabled)
User (S-1-5-21-1804479744-3448908533-1041230410-1000 - Administrator - Enabled) => C:\Users\User

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 9.0.376.1 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 9.0.376.1 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.11.4.0 (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Aslain's WoT Modpack verze 9.15.1.06 (HKLM-x32\...\Aslains_WoT_Modpack_Installer_is1) (Version: 9.15.1.06 - Aslain)
Aslain's WoWs Modpack verze 0.4.9 (HKLM-x32\...\ASLAINSWARSHIPSTEST_is1) (Version: 0.4.9 - Aslain)
Aslain's XVM WoT Modpack verze 9.15.34 (HKLM-x32\...\ZRwTINhSZfduKONYrSCTiCiGPggQZdcLRvoAVxyCOXXpkHeC~1DC3968F_is1) (Version: 9.15.34 - Aslain)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
AVI ReComp 1.5.6 (HKLM-x32\...\AVI ReComp) (Version: 1.5.6 - Mateusz Gola (aka Prozac))
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - )
Bandicam (HKLM-x32\...\Bandicam) (Version: 3.1.1.1073 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Bullzip PDF Printer 7.2.0.1319 (HKLM\...\Bullzip PDF Printer_is1) (Version: 7.2.0.1319 - Bullzip)
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
CMDialog ActiveX Control DLL (x32 Version: 6.0.84.18 - Unknown) Hidden
CNTDesigner (HKLM-x32\...\CNTDesigner) (Version: - )
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
CorelDRAW Graphics Suite X3 (HKLM-x32\...\_{7C5123A9-30A8-4C44-89CA-A8C87A1FCC91}) (Version: - Corel Corporation)
CorelDRAW Graphics Suite X3 (x32 Version: 13.2 - Corel Corporation) Hidden
CZ (x32 Version: 13.0 - Corel Corporation) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd)
Dokan Library 0.6.0 (HKLM-x32\...\DokanLibrary) (Version: - )
Easy FLV Player 3 (HKLM-x32\...\Easy FLV Player_is1) (Version: - YoutubeGet Developer Team)
Emicsoft HD Video Converter (HKLM-x32\...\Emicsoft HD Video Converter_is1) (Version: - )
ESET Smart Security (HKLM\...\{B7DE9695-00B8-4935-97B5-A2CBFBA6A3F8}) (Version: 9.0.376.1 - ESET, spol. s r.o.)
Firebird 2.5.0.26074 (Win32) (HKLM-x32\...\FBDBServer_2_5_is1) (Version: 2.5.0.26074 - Firebird Project)
FireShot (HKLM-x32\...\FireShot) (Version: - )
FontNav (x32 Version: 5.0 - Corel Corporation) Hidden
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
FormApps Plug-in (HKLM-x32\...\{9a1d8d96-8b6f-4b5e-9281-abf022feb360}) (Version: 1.8.1259.51 - Software602 a.s.)
FormatFactory 3.5.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.5.0.0 - Format Factory)
Free Media Converter 2.96 (HKLM-x32\...\Free Media Converter_is1) (Version: - FreeMediaConverter.org)
Free OCR to Word 5.0.1 (HKLM-x32\...\Free OCR to Word_is1) (Version: - FreeOCRtoWord, Inc.)
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 4.15.0 - Futuremark Corporation)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7619.1252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GPL Ghostscript 8.71 Lite (HKLM-x32\...\GPL Ghostscript 8.71 Lite_is1) (Version: 8.71 - )
Guard.ICQ (HKLM-x32\...\Guard.Mail.ru) (Version: - Mail.ru) <==== ATTENTION
HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version: - )
IC_Katalog (HKLM-x32\...\IC_Katalog) (Version: 10.0.630.0 - Inter Cars)
ICQ7M (HKLM-x32\...\{781B39EC-2E18-41FC-9B00-B84E4FFCA85F}) (Version: 7.8 - ICQ)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
LAV Filters 0.63.0 (HKLM-x32\...\lavfilters_is1) (Version: 0.63.0 - Hendrik Leppkes)
LIVE gaming on Windows Runtime Version 1.0.6027 (HKLM-x32\...\{839916F4-D8B5-4407-BE6D-6D4EB9D96AF4}) (Version: 1.0.6027 - Microsoft Corporation)
Macromedia Dreamweaver 8 (HKLM-x32\...\{0837A661-FEC3-48B3-876C-91E7D32048A9}) (Version: 8.0.0.2734 - Macromedia)
Macromedia Extension Manager (HKLM-x32\...\{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}) (Version: 1.7.240 - Macromedia, Inc.)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Matroska Pack (HKLM-x32\...\Matroska Pack) (Version: - )
MediaInfo 0.7.62 (HKLM\...\MediaInfo) (Version: 0.7.62 - MediaArea.net)
MFCDLL Shared Library - Retail Version (x32 Version: 6.0.8665.0 - Unknown) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2010 pro studenty a domácnosti (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Report Viewer Redistributable 2008 SP1 (HKLM-x32\...\Microsoft Report Viewer Redistributable 2008 (KB971119)) (Version: - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
MKVtoolnix 4.9.1 (HKLM-x32\...\MKVtoolnix) (Version: 4.9.1 - Moritz Bunkus)
Mozilla Firefox 33.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 33.0.2 (x86 cs)) (Version: 33.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.2.0.6025 - Mozilla)
Mozilla Thunderbird 45.2.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 45.2.0 (x86 cs)) (Version: 45.2.0 - Mozilla)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSMAPI Controls (x32 Version: 6.0.81.69 - Unknown) Hidden
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 (x32 Version: 4.20.9818.0 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
Nero 7 Essentials (HKLM-x32\...\{C3CF41F1-0373-4DD7-BE99-F33B00E51029}) (Version: 7.03.1084 - Nero AG)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 368.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.39 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 368.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.39 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
OCCT 4.3.2 (HKLM-x32\...\OCCT) (Version: 4.3.2 - Ocbase.com)
Ovládací panel NVIDIA 358.91 (Version: 358.91 - NVIDIA Corporation) Hidden
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PC Translator (HKLM-x32\...\PC Translator) (Version: - )
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.4.1 - Frank Heindörfer, Philip Chinery)
PDF-XChange 4 Pro (HKLM\...\{E38531EE-318C-4EFB-A36B-1A57BFBDAB3C}_is1) (Version: 4.201.201.0 - Tracker Software Products Ltd)
PeaZip 4.9 (HKLM-x32\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: - Giorgio Tani)
Pedigree (HKLM-x32\...\Pedigree) (Version: vs. 4.11 - WinCanis Pedigree)
PoiEdit (HKLM-x32\...\PoiEdit) (Version: - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
Real Alternative 1.7.5 (HKLM-x32\...\RealAlt_is1) (Version: 1.7.5 - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.46.610.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6402 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 1.05.87 (8.9.2013) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.03.77.00(24.10.2013) - Samsung Electronics Co., Ltd.)
Samsung M267x 287x Series (HKLM-x32\...\Samsung M267x 287x Series) (Version: 1.24 (18.12.2013) - Samsung Electronics Co., Ltd.)
Samsung OCR Software (HKLM-x32\...\Samsung OCR Software) (Version: 1.00.14 (2.8.2013) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (x32 Version: 1.01.12.00 - Samsung Electronics Co., Ltd.) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd)
SOAP SDK Files (x32 Version: 3.00.1325.3 - Microsoft Corporation) Hidden
Software602 Form Filler (HKLM-x32\...\{C6E36857-F622-4DF5-B458-05752A4D13F0}) (Version: 4.13 - Software602 a.s.)
Software602 Print2PDF (HKLM-x32\...\{32C74893-0243-4235-A6F3-201F0E5D2C03}) (Version: 9.1.11.0421 - Software602 a.s.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
STORMWARE PDF Printer 10.1.0.1871 (HKLM\...\STORMWARE PDF Printer_is1) (Version: 10.1.0.1871 - STORMWARE)
STORMWARE POHODA CZ Mini (HKLM-x32\...\{9ADD16B4-3A27-4608-92AD-0F9D19BB9431}) (Version: 11200.103 - STORMWARE)
STORMWARE POHODA CZ Start (x32 Version: 2012 - STORMWARE) Hidden
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: - )
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Ulead PhotoImpact 12 (HKLM-x32\...\{11AFE21E-B193-430D-B57A-DFF7815BB962}) (Version: 12.0 - Ulead System)
Update Manager (x32 Version: 4.60 - Corel Corporation) Hidden
VobSub v2.23 (Remove Only) (HKLM-x32\...\VobSub) (Version: 2.23 - Gabest)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.2.0.42 - VSO Software)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1-2) (Version: 1.0.11.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.11.1 (Version: 1.0.11.1 - LunarG, Inc.) Hidden
War Thunder Launcher 1.0.1.446 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WinGet 3.0 (HKLM-x32\...\WinGet) (Version: 3.0 - Indentix)
WinX DVD Author 6.3.3 (HKLM-x32\...\WinX DVD Author_is1) (Version: - DigiartySoft, Inc.)
WinX DVD Ripper 5.5.5 (HKLM-x32\...\WinX DVD Ripper_is1) (Version: - Digiarty Software, Inc.)
World of Tanks (HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)
WSDReader verze 3.1 (HKLM-x32\...\{7487EA94-BA18-4406-9CD9-0A4F80AB7F2D}_is1) (Version: 3.1 - BC. Walter Masař)
XviD MPEG4 Video Codec (remove only) (HKLM-x32\...\XviD MPEG4 Video Codec) (Version: - )
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
Zobrazit uživatelskou příručku (HKLM-x32\...\View User Guide) (Version: 3.60.30 - )
Zoner Photo Studio 15 (HKLM\...\ZonerPhotoStudio15_CZ_is1) (Version: 15.0.1.4 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1804479744-3448908533-1041230410-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0FE93EDC-0702-47C4-9A1C-B27DCE83F299} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {148B1C9E-CF4C-4EA4-B5C5-4C6D9761087B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {14C299F8-1FF3-4F00-8CB3-5963C49CB4DD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {1888EAF0-EC9D-4B58-9B01-8EF2E79E9B46} - System32\Tasks\{F05652FC-868D-4493-B71E-D3982FB506F9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {1975665A-7B65-4E7E-BDBA-BB95DDB6F3E1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-14] (Adobe Systems Incorporated)
Task: {2E9F385F-E00F-428B-B6B4-A41E99E25FF1} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {3350DBF1-608D-4659-ACD1-143EAFEE2622} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {36663F78-BBDA-4CA2-A00A-D71C9DD325DC} - System32\Tasks\{FA9A21EB-F183-4A7A-AD66-ED087F315A72} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {36A6155B-9195-4C2D-A3F9-1203C6FAD6D2} - System32\Tasks\{40110FD2-90A3-4DE0-8AC9-7022555E8A64} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.8.0.158/cs/g ... Error=1603
Task: {38018467-2C5C-449D-AF57-D5CB27913E13} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {48A92C13-144C-4678-A0E4-7AEE7B315D1F} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {4AB6437F-789F-4816-B1E1-F556C2C72C25} - System32\Tasks\{36820862-FF20-4351-A03A-B7FF1E96300D} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {4CC66C9C-7108-441B-A3DC-567DBD3A2E6C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {5462F93A-FF1D-4909-9082-232F2B0A835E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {57286424-E578-4775-A19F-591FD068A127} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {5731E9F4-BA6B-4BD7-A67A-D0468C8CF5E9} - System32\Tasks\{6E157447-421A-452E-9E61-EB31D5C713C4} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {5C1D6E0F-4FC2-47C7-A542-22DFAACC771D} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {5D6DCDCC-B840-408C-A00D-D8BEFCC6BE21} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {6933919B-0777-47CA-889A-8711B149EB6D} - System32\Tasks\{B534BA6C-B10A-44E1-8CEC-8031A870C396} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {6A96F2BF-2054-471F-B11A-3B36F1B52A89} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8e5b6c59c298 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {6BD1DA25-A700-4D86-A837-4532269EAD97} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {6FC5A5AE-FA8E-464A-BF9A-B5E2E601BB28} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {78C91968-DF0D-466C-BAFD-6AC66FBD46BE} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {7B3C1AAF-8FCF-4409-BDAA-3BD27A80D18A} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {8C89D95C-06EC-448E-831E-24131D291F16} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {8D667869-9A35-4962-9F94-BBF2F8010AE7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {8EC18564-E2F0-4BB8-899B-2B4C73480F44} - System32\Tasks\{6196CEF4-63B1-44F3-BBD3-81C281031CF5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {930DA95E-41F0-472A-80ED-7F534E90C609} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {99FB7275-350A-4029-B64D-E5A80E664D7B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {9C8A7C94-AB99-4983-9521-D74DB3684E30} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {9E3EB3D3-E6E8-486B-9614-B4F0C2BD16EA} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {9E3F5520-3BC9-4423-A458-AEE4D3586FAC} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {9EA55512-8484-429B-822F-EAFE749EA919} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {A1F4F372-AF7B-42DA-A8A1-9B759732F8D3} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {A7F25356-CBE8-4415-9F27-42D4F360AF5B} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {AAB8C82E-FC4D-46E4-8C29-C07358188045} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {BF2B0F9A-0172-4F47-A40B-C726B502B618} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {C1D15A25-17CF-402E-B08D-C326C5025D46} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8e5b6b06147f => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {C81A4A01-AC9A-44CD-81AA-715B75FFA89D} - System32\Tasks\{8532E63B-F5DE-4164-A0E2-775FA1994412} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {D11870FE-DE2A-4446-BD5C-714FEEBB10E0} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {D545477D-6267-4A0A-A407-A213E599330B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {D58F7B89-71D2-496B-B568-77DF4CA874FC} - System32\Tasks\GoogleUpdateTaskMachineUA1cf6abb19f921a7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {DD072BCF-DABC-4128-889A-F84E7B1970AF} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {DF8440D7-599B-4908-BF34-246A1D30ED6A} - System32\Tasks\{9155A392-30C9-498D-B11F-78A1B4961B63} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E0E70D9B-7326-41EE-A39B-470F22E9C880} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {E4D942E4-ADC6-4792-9C87-CC7D39555296} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {E5205641-DD61-4D9A-82F7-D5F415C6D161} - System32\Tasks\{5495DF39-4288-490F-8DED-77423F336A9B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E7047541-40D8-4D9F-AC61-9CD349888D0A} - System32\Tasks\{6C274AF3-3340-43D4-B1B7-5163E51B65D2} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E77156DA-DA00-448D-9E97-FA2686A9E724} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {F1786A1B-D86A-4842-8C1A-18E37B725C3A} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {F4146E52-4013-4735-85D8-E9C66C7E59A1} - System32\Tasks\Core Temp Autostart User => E:\Coretemp\Core Temp.exe [2012-01-25] ()
Task: {F460EBB1-B94D-4BF5-931A-E2D9146B13BB} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {F5BBEA1E-C629-492D-9D6B-B5EE936421D9} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {F66295BD-68AE-4211-8C0A-3F85C03C7016} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F9E444B7-D61C-400D-9A8A-A429EEF3EBBF} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {FB563E44-5409-4608-9B49-EAAB721A0B12} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {FE4FF547-15D6-41F5-AEE5-E42E95D795E9} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {FE8477B0-17AD-49DD-801D-54B85A1574F2} - System32\Tasks\{4F39A165-F60F-489A-AD2A-55F75FF24C61} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8e5b6b06147f.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf6abb19f921a7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf8e5b6c59c298.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FireShot\FireShot Homepage.lnk -> hxxp://getfireshot.com/fireshot

==================== Loaded Modules (Whitelisted) ==============

2014-10-02 12:19 - 2012-08-31 15:03 - 00288768 _____ () C:\WINDOWS\System32\HP1100LM.DLL
2015-07-15 15:25 - 2015-07-15 15:25 - 00022528 _____ () C:\WINDOWS\System32\ssa6mlm.dll
2014-10-02 12:22 - 2012-08-31 15:02 - 00074240 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\HP1100PP.DLL
2012-03-26 10:16 - 2010-12-02 01:13 - 00216576 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\Software602.dll
2011-01-10 14:49 - 2011-01-10 14:49 - 00014848 _____ () C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
2015-02-04 22:58 - 2015-02-04 22:58 - 00076152 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-07-29 13:50 - 2015-11-05 17:08 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-07-29 14:36 - 2016-07-29 14:36 - 02656408 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-29 14:36 - 2016-07-29 14:36 - 02656408 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-07-29 15:24 - 2016-07-29 15:24 - 00959168 _____ () C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-07-29 16:27 - 2016-07-29 16:27 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-04-27 08:15 - 2016-04-27 08:15 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-29 14:36 - 2016-07-29 14:36 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-07-29 14:36 - 2016-07-29 14:36 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-07-29 14:36 - 2016-07-29 14:36 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-07-29 14:36 - 2016-07-29 14:36 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-07-29 14:36 - 2016-07-29 14:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2012-03-09 09:58 - 2012-03-09 09:58 - 00462712 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2012-03-09 09:58 - 2012-03-09 09:58 - 00057208 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2016-07-29 16:27 - 2016-07-29 16:27 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-07-29 16:27 - 2016-07-29 16:28 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-05-25 16:36 - 2016-06-14 22:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2012-03-09 09:58 - 2012-03-09 09:58 - 00056696 _____ () C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrvPS.dll
2016-07-29 15:24 - 2016-07-29 15:24 - 00679624 _____ () C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2012-03-10 18:01 - 2004-07-26 18:11 - 00028672 ____N () C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\DetMethod.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:60466E88 [133]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-09-09 10:32 - 2016-08-06 11:47 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\User\Pictures\Vader_plocha.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\StartupApproved\Run: => "SpybotPostWindows10UpgradeReInstall"
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{A80DAFD2-A4AE-4A6B-8287-D45F5CA224DD}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{AD6CE950-ADF6-4752-9B0C-5ECDBA31A2D9}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{F61C2AA0-1567-4717-811F-C16A9FFAF5FE}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{482FA550-CF88-44B4-9736-677D31A3DFDD}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{A7BD0E15-F5DA-422F-A31F-06C3ED325B0B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{95A7F312-FA18-4AD7-9F22-06ECEF19CB91}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{787DD29A-B70F-47CB-9D8C-A7BCF084F5CE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{63A7F568-AB9E-45A5-B270-0C78FC42333F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{56A311AB-A519-425D-850A-1A418B9E5FF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{63BDEB4E-847C-4492-8D40-4DA8C106C660}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C3F71E25-0141-4713-B767-F8305D9599C1}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{99555F41-C22F-4D62-8726-692ACEC75D56}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{241C2BE8-0DC1-4375-AF5E-561C3095C84B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{DED20F29-DDFB-421C-9764-BF78B37A7BCF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{C3176574-101E-421F-A954-0B7A7B263C3C}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [{349C7EBA-0F83-45C3-A268-6DAA14253C60}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [{34BE0C59-5A39-4D5A-B2ED-8C7A9A8B1B2F}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe
FirewallRules: [{EAF2C684-34DC-4D9B-BD98-A66D0357C215}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe
FirewallRules: [{AF01C72E-57E8-4542-8FDE-6E1DF2D28FC6}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{E3FC043D-21A0-4159-B34F-4380E6314B2A}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{1A661FC1-056E-404D-A7FC-8058EE7FAB03}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{37DF17F9-64C0-41B6-AE8A-7F9E310A6476}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{9708F2E5-60DE-45F4-A869-D662FB127B49}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe
FirewallRules: [{D6B8D8E4-C39B-4F29-B8FE-89C7EEEBDA4D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe
FirewallRules: [{B727000E-23B0-4B42-BBF6-088DDDFB9508}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{873087D7-F42C-4335-9335-C573A8507187}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{FC8AF29F-AECE-42A1-AD49-3CBA8EA19471}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{95530989-0810-47C6-A892-9ED7FEA773BF}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{5A2A2F36-1BEE-490F-898F-306710F8C133}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{9D21CFE1-59FC-45F4-A717-6DB5906AE250}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{1F5135E8-A72B-4643-A2AA-51682FBEC8E5}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{D1735BD7-54FB-489B-BFE6-851FA7657F70}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{C8D72BF7-CCC6-44C4-A285-E5A9D9A67B6C}] => (Allow) C:\Windows\twain_32\Samsung\SLM287X\SCNSearch\USDAgent.exe
FirewallRules: [{60F100EF-C368-48A1-93C1-4A72690C3584}] => (Allow) C:\Windows\twain_32\Samsung\SLM287X\SCNSearch\USDAgent.exe
FirewallRules: [{B499C7E0-C1EC-4E33-95C4-9D483F47AA35}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{9C2DA0B4-05E3-4144-A151-11BF364A8046}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{DC7E4E43-9AD3-40F2-9409-9D6C09D98105}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{3481B1A2-92AB-4338-BBEF-F664F259A1E3}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{DB21DF83-31A4-4FAB-AC26-F7501B3CE9D6}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{D5D913E5-DD39-4BD5-9C70-C6776FC05514}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3DF48BE7-B8BA-400C-8069-CCD65FEE457A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{31ADB5B3-BECF-4C17-9E61-15FE79D2CD31}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{F5B21F70-AFBD-494E-8692-E38B48254166}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{2AB83FDB-D0C6-4B5B-939C-C325BC5C42DE}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{D9FBD2A6-BF35-4213-A64C-E90755AFEE0B}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{9189621B-F9E1-4482-9380-5C44F67EAA04}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{1CB8F7B0-5C10-4274-9B31-B513A6761C34}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{9ECDC384-D6DA-48D9-AB79-4303BC34A291}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{E731748F-9C8F-4393-9682-4D5EC75FBFA2}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{82F6AEEF-52FF-40A9-AD2A-CDF9372070F3}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe
FirewallRules: [{D6B050C7-F55B-49DB-A427-7B17DFB6018E}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe
FirewallRules: [{41A63632-F82D-4144-8B13-DECE81155192}] => (Allow) LPort=26675
FirewallRules: [{41996911-319C-4112-A034-6473D29F7235}] => (Allow) %systemroot%\WindowsMobile\wmdHost.exe
FirewallRules: [{70D4DB35-C37D-48AC-86D4-F6C087FD63A4}] => (Allow) %systemroot%\WindowsMobile\wmdHost.exe

==================== Restore Points =========================

05-08-2016 20:00:15 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/06/2016 05:02:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: User-PC)
Description: Balíček windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel se ukončil, protože jeho pozastavování trvalo moc dlouho.

Error: (08/06/2016 04:53:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NvStreamUserAgent.exe, verze: 7.1.2084.9592, časové razítko: 0x57605c64
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.306, časové razítko: 0x571af2eb
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002e909
ID chybujícího procesu: 0x1ab4
Čas spuštění chybující aplikace: 0xNvStreamUserAgent.exe0
Cesta k chybující aplikaci: NvStreamUserAgent.exe1
Cesta k chybujícímu modulu: NvStreamUserAgent.exe2
ID zprávy: NvStreamUserAgent.exe3
Úplný název chybujícího balíčku: NvStreamUserAgent.exe4
ID aplikace související s chybujícím balíčkem: NvStreamUserAgent.exe5

Error: (08/06/2016 04:52:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NvStreamUserAgent.exe, verze: 7.1.2084.9592, časové razítko: 0x57605c64
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.306, časové razítko: 0x571af2eb
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002e909
ID chybujícího procesu: 0xdc4
Čas spuštění chybující aplikace: 0xNvStreamUserAgent.exe0
Cesta k chybující aplikaci: NvStreamUserAgent.exe1
Cesta k chybujícímu modulu: NvStreamUserAgent.exe2
ID zprávy: NvStreamUserAgent.exe3
Úplný název chybujícího balíčku: NvStreamUserAgent.exe4
ID aplikace související s chybujícím balíčkem: NvStreamUserAgent.exe5

Error: (08/06/2016 04:52:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NvStreamUserAgent.exe, verze: 7.1.2084.9592, časové razítko: 0x57605c64
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.306, časové razítko: 0x571af2eb
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002e909
ID chybujícího procesu: 0x7f8
Čas spuštění chybující aplikace: 0xNvStreamUserAgent.exe0
Cesta k chybující aplikaci: NvStreamUserAgent.exe1
Cesta k chybujícímu modulu: NvStreamUserAgent.exe2
ID zprávy: NvStreamUserAgent.exe3
Úplný název chybujícího balíčku: NvStreamUserAgent.exe4
ID aplikace související s chybujícím balíčkem: NvStreamUserAgent.exe5

Error: (08/06/2016 04:52:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NvStreamUserAgent.exe, verze: 7.1.2084.9592, časové razítko: 0x57605c64
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.306, časové razítko: 0x571af2eb
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002e909
ID chybujícího procesu: 0x498
Čas spuštění chybující aplikace: 0xNvStreamUserAgent.exe0
Cesta k chybující aplikaci: NvStreamUserAgent.exe1
Cesta k chybujícímu modulu: NvStreamUserAgent.exe2
ID zprávy: NvStreamUserAgent.exe3
Úplný název chybujícího balíčku: NvStreamUserAgent.exe4
ID aplikace související s chybujícím balíčkem: NvStreamUserAgent.exe5

Error: (08/06/2016 04:51:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: User-PC)
Description: Aplikaci Microsoft.Windows.Photos_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2147023170. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (08/06/2016 01:36:52 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: User-PC)
Description: Aplikaci Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (08/06/2016 12:36:52 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: User-PC)
Description: Aplikaci Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (08/06/2016 12:24:51 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: User-PC)
Description: Aplikaci Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (08/06/2016 11:40:00 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: User-PC)
Description: Aplikaci Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.


System errors:
=============
Error: (08/06/2016 04:59:03 PM) (Source: DCOM) (EventID: 10016) (User: User-PC)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}User-PCUserS-1-5-21-1804479744-3448908533-1041230410-1000LocalHost (pomocí LRPC)Microsoft.Windows.FeatureOnDemand.InsiderHub_10.0.10586.0_neutral_neutral_cw5n1h2txyewyS-1-15-2-4016783169-893401051-2237370320-274899566-412088533-2398988950-2155762795

Error: (08/06/2016 03:11:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Přístup k uživatelským datům_38420 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (08/06/2016 03:11:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Úložiště uživatelských dat_38420 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (08/06/2016 03:11:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Data kontaktů_38420 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (08/06/2016 03:11:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_38420 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (08/06/2016 02:18:35 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba NetTcpActivator závisí na službě NetTcpPortSharing, která neuspěla při spuštění v důsledku následující chyby:
%%1058 = Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (08/06/2016 02:17:19 PM) (Source: DCOM) (EventID: 10001) (User: User-PC)
Description: "C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppX4q1azgcmy0qhjw5hwy4c233sbca9jma9.mca31App.AppXcc14htf1fp3nt27stc0fcm9dshkn3y7m.mcaNení k dispoziciNení k dispozici

Error: (08/06/2016 02:17:19 PM) (Source: DCOM) (EventID: 10001) (User: User-PC)
Description: "C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppX4q1azgcmy0qhjw5hwy4c233sbca9jma9.mca31App.AppXcc14htf1fp3nt27stc0fcm9dshkn3y7m.mcaNení k dispoziciNení k dispozici

Error: (08/06/2016 02:17:19 PM) (Source: DCOM) (EventID: 10001) (User: User-PC)
Description: "C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppX4q1azgcmy0qhjw5hwy4c233sbca9jma9.mca31App.AppXcc14htf1fp3nt27stc0fcm9dshkn3y7m.mcaNení k dispoziciNení k dispozici

Error: (08/06/2016 02:17:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Přístup k uživatelským datům_39468 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.


CodeIntegrity:
===================================
Date: 2016-08-05 17:44:18.659
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-30 18:29:41.266
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2016-07-30 18:29:40.933
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2016-07-30 18:20:56.158
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2016-07-30 18:20:55.994
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2016-07-30 00:32:26.850
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-29 17:38:14.070
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-29 17:23:01.447
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-29 14:27:00.164
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-29 13:45:35.261
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: AMD FX(tm)-4100 Quad-Core Processor
Percentage of memory in use: 12%
Total physical RAM: 16366.11 MB
Available physical RAM: 14262.58 MB
Total Virtual: 32750.11 MB
Available Virtual: 30802.92 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:1396.73 GB) (Free:246.88 GB) NTFS
Drive d: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (Zaloha) (Fixed) (Total:298.08 GB) (Free:219.39 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: (Kennel) (Fixed) (Total:232.88 GB) (Free:71.67 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: D39CD39C)
Partition 1: (Active) - (Size=298.1 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: F26A1057)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1396.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 2 (Size: 232.9 GB) (Disk ID: 0FFAD385)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
Nahoru
Reklama
Top
Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu

Příspěvekod Orcus » 07 srp 2016 14:59

Odinstaluj:
Spybot - Search & Destroy
Google Toolbar

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.


Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [ISUSScheduler] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-02-16] (InstallShield Software Corporation)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2007-06-27] (Nero AG)
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\Run: [ISUSPM Startup] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-16] (InstallShield Software Corporation)
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [773728 2012-12-04] (ZONER software)
SearchScopes: HKU\S-1-5-21-1804479744-3448908533-1041230410-1000 -> DefaultScope {905A77E1-4154-4D2B-96E0-9C2386CFF965} URL = hxxp://start.funmoods.com/results.php?f=4&a=make&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1804479744-3448908533-1041230410-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1804479744-3448908533-1041230410-1000 -> {905A77E1-4154-4D2B-96E0-9C2386CFF965} URL = hxxp://start.funmoods.com/results.php?f=4&a=make&q={searchTerms}
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
DPF: HKLM {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shoc ... tor/sw.cab
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net ... plugin.cab
Edge HomeButtonPage: HKU\S-1-5-21-1804479744-3448908533-1041230410-1000 -> hxxps://www.seznam.cz/
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Extension: No Name - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\utrhvzc9.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => not found
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf8e5b6c59c298.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf6abb19f921a7.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8e5b6b06147f.job
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
C:\ProgramData\Spybot - Search & Destroy
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Task: {0FE93EDC-0702-47C4-9A1C-B27DCE83F299} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {148B1C9E-CF4C-4EA4-B5C5-4C6D9761087B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {14C299F8-1FF3-4F00-8CB3-5963C49CB4DD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {1888EAF0-EC9D-4B58-9B01-8EF2E79E9B46} - System32\Tasks\{F05652FC-868D-4493-B71E-D3982FB506F9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {1975665A-7B65-4E7E-BDBA-BB95DDB6F3E1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-14] (Adobe Systems Incorporated)
Task: {36663F78-BBDA-4CA2-A00A-D71C9DD325DC} - System32\Tasks\{FA9A21EB-F183-4A7A-AD66-ED087F315A72} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {36A6155B-9195-4C2D-A3F9-1203C6FAD6D2} - System32\Tasks\{40110FD2-90A3-4DE0-8AC9-7022555E8A64} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.8.0.158/cs/g ... Error=1603
Task: {4AB6437F-789F-4816-B1E1-F556C2C72C25} - System32\Tasks\{36820862-FF20-4351-A03A-B7FF1E96300D} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {4CC66C9C-7108-441B-A3DC-567DBD3A2E6C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {57286424-E578-4775-A19F-591FD068A127} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {5731E9F4-BA6B-4BD7-A67A-D0468C8CF5E9} - System32\Tasks\{6E157447-421A-452E-9E61-EB31D5C713C4} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {6933919B-0777-47CA-889A-8711B149EB6D} - System32\Tasks\{B534BA6C-B10A-44E1-8CEC-8031A870C396} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {6A96F2BF-2054-471F-B11A-3B36F1B52A89} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8e5b6c59c298 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {6FC5A5AE-FA8E-464A-BF9A-B5E2E601BB28} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {78C91968-DF0D-466C-BAFD-6AC66FBD46BE} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {7B3C1AAF-8FCF-4409-BDAA-3BD27A80D18A} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {8C89D95C-06EC-448E-831E-24131D291F16} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {8D667869-9A35-4962-9F94-BBF2F8010AE7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {8EC18564-E2F0-4BB8-899B-2B4C73480F44} - System32\Tasks\{6196CEF4-63B1-44F3-BBD3-81C281031CF5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {930DA95E-41F0-472A-80ED-7F534E90C609} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {9C8A7C94-AB99-4983-9521-D74DB3684E30} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {A1F4F372-AF7B-42DA-A8A1-9B759732F8D3} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {A7F25356-CBE8-4415-9F27-42D4F360AF5B} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {BF2B0F9A-0172-4F47-A40B-C726B502B618} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {C1D15A25-17CF-402E-B08D-C326C5025D46} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8e5b6b06147f => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {C81A4A01-AC9A-44CD-81AA-715B75FFA89D} - System32\Tasks\{8532E63B-F5DE-4164-A0E2-775FA1994412} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {D11870FE-DE2A-4446-BD5C-714FEEBB10E0} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {D58F7B89-71D2-496B-B568-77DF4CA874FC} - System32\Tasks\GoogleUpdateTaskMachineUA1cf6abb19f921a7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {DF8440D7-599B-4908-BF34-246A1D30ED6A} - System32\Tasks\{9155A392-30C9-498D-B11F-78A1B4961B63} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E0E70D9B-7326-41EE-A39B-470F22E9C880} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {E5205641-DD61-4D9A-82F7-D5F415C6D161} - System32\Tasks\{5495DF39-4288-490F-8DED-77423F336A9B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E7047541-40D8-4D9F-AC61-9CD349888D0A} - System32\Tasks\{6C274AF3-3340-43D4-B1B7-5163E51B65D2} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E77156DA-DA00-448D-9E97-FA2686A9E724} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {FB563E44-5409-4608-9B49-EAAB721A0B12} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {FE8477B0-17AD-49DD-801D-54B85A1574F2} - System32\Tasks\{4F39A165-F60F-489A-AD2A-55F75FF24C61} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8e5b6b06147f.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf6abb19f921a7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf8e5b6c59c298.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\ProgramData\Spybot - Search & Destroy
C:\Users\User\AppData\Roaming\inst.exe
C:\ProgramData\6CD4D6D72F.sys
C:\ProgramData\KGyGaAvL.sys
C:\ProgramData\.zreglib


(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusť FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

+

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému.

Toto otestuj na Virustotal:
C:\WINDOWS\system32\MTF.dll
C:\WINDOWS\SysWOW64\MTF.dll

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.
Láska hřeje, ale uhlí je uhlí. :fire:


Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.
Nahoru
inditarod
Level 1
Level 1
Příspěvky: 56
Registrován: červenec 16
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu

Příspěvekod inditarod » 07 srp 2016 19:56

Orcus píše:Odinstaluj:
Spybot - Search & Destroy
Google Toolbar


Google Toolbar jsem odstranil, ale Spyboot v compu nemám. Byl tam, ale odinstaloval jsem go už dávno...

Co tedy s tím?
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu

Příspěvekod jaro3 » 07 srp 2016 21:32

Udělej ten script ,co psal kolega , přidal jsem tam ten Spybot.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
inditarod
Level 1
Level 1
Příspěvky: 56
Registrován: červenec 16
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu

Příspěvekod inditarod » 08 srp 2016 14:42

Fix result of Farbar Recovery Scan Tool (x64) Version: 03-08-2016
Ran by User (2016-08-08 14:35:16) Run:1
Running from C:\Users\User\Downloads
Loaded Profiles: User (Available Profiles: User)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [ISUSScheduler] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-02-16] (InstallShield Software Corporation)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2007-06-27] (Nero AG)
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\Run: [ISUSPM Startup] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-16] (InstallShield Software Corporation)
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [773728 2012-12-04] (ZONER software)
SearchScopes: HKU\S-1-5-21-1804479744-3448908533-1041230410-1000 -> DefaultScope {905A77E1-4154-4D2B-96E0-9C2386CFF965} URL = hxxp://start.funmoods.com/results.php?f=4&a=make&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1804479744-3448908533-1041230410-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1804479744-3448908533-1041230410-1000 -> {905A77E1-4154-4D2B-96E0-9C2386CFF965} URL = hxxp://start.funmoods.com/results.php?f=4&a=make&q={searchTerms}
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
DPF: HKLM {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shoc ... tor/sw.cab
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net ... plugin.cab
Edge HomeButtonPage: HKU\S-1-5-21-1804479744-3448908533-1041230410-1000 -> hxxps://www.seznam.cz/
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Extension: No Name - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\utrhvzc9.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => not found
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf8e5b6c59c298.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf6abb19f921a7.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8e5b6b06147f.job
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
C:\ProgramData\Spybot - Search & Destroy
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Task: {0FE93EDC-0702-47C4-9A1C-B27DCE83F299} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {148B1C9E-CF4C-4EA4-B5C5-4C6D9761087B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {14C299F8-1FF3-4F00-8CB3-5963C49CB4DD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {1888EAF0-EC9D-4B58-9B01-8EF2E79E9B46} - System32\Tasks\{F05652FC-868D-4493-B71E-D3982FB506F9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {1975665A-7B65-4E7E-BDBA-BB95DDB6F3E1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-14] (Adobe Systems Incorporated)
Task: {36663F78-BBDA-4CA2-A00A-D71C9DD325DC} - System32\Tasks\{FA9A21EB-F183-4A7A-AD66-ED087F315A72} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {36A6155B-9195-4C2D-A3F9-1203C6FAD6D2} - System32\Tasks\{40110FD2-90A3-4DE0-8AC9-7022555E8A64} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.8.0.158/cs/g ... Error=1603
Task: {4AB6437F-789F-4816-B1E1-F556C2C72C25} - System32\Tasks\{36820862-FF20-4351-A03A-B7FF1E96300D} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {4CC66C9C-7108-441B-A3DC-567DBD3A2E6C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {57286424-E578-4775-A19F-591FD068A127} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {5731E9F4-BA6B-4BD7-A67A-D0468C8CF5E9} - System32\Tasks\{6E157447-421A-452E-9E61-EB31D5C713C4} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {6933919B-0777-47CA-889A-8711B149EB6D} - System32\Tasks\{B534BA6C-B10A-44E1-8CEC-8031A870C396} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {6A96F2BF-2054-471F-B11A-3B36F1B52A89} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8e5b6c59c298 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {6FC5A5AE-FA8E-464A-BF9A-B5E2E601BB28} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {78C91968-DF0D-466C-BAFD-6AC66FBD46BE} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {7B3C1AAF-8FCF-4409-BDAA-3BD27A80D18A} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {8C89D95C-06EC-448E-831E-24131D291F16} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {8D667869-9A35-4962-9F94-BBF2F8010AE7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {8EC18564-E2F0-4BB8-899B-2B4C73480F44} - System32\Tasks\{6196CEF4-63B1-44F3-BBD3-81C281031CF5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {930DA95E-41F0-472A-80ED-7F534E90C609} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {9C8A7C94-AB99-4983-9521-D74DB3684E30} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {A1F4F372-AF7B-42DA-A8A1-9B759732F8D3} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {A7F25356-CBE8-4415-9F27-42D4F360AF5B} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {BF2B0F9A-0172-4F47-A40B-C726B502B618} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {C1D15A25-17CF-402E-B08D-C326C5025D46} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8e5b6b06147f => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {C81A4A01-AC9A-44CD-81AA-715B75FFA89D} - System32\Tasks\{8532E63B-F5DE-4164-A0E2-775FA1994412} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {D11870FE-DE2A-4446-BD5C-714FEEBB10E0} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {D58F7B89-71D2-496B-B568-77DF4CA874FC} - System32\Tasks\GoogleUpdateTaskMachineUA1cf6abb19f921a7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {DF8440D7-599B-4908-BF34-246A1D30ED6A} - System32\Tasks\{9155A392-30C9-498D-B11F-78A1B4961B63} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E0E70D9B-7326-41EE-A39B-470F22E9C880} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {E5205641-DD61-4D9A-82F7-D5F415C6D161} - System32\Tasks\{5495DF39-4288-490F-8DED-77423F336A9B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E7047541-40D8-4D9F-AC61-9CD349888D0A} - System32\Tasks\{6C274AF3-3340-43D4-B1B7-5163E51B65D2} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E77156DA-DA00-448D-9E97-FA2686A9E724} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {FB563E44-5409-4608-9B49-EAAB721A0B12} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {FE8477B0-17AD-49DD-801D-54B85A1574F2} - System32\Tasks\{4F39A165-F60F-489A-AD2A-55F75FF24C61} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8e5b6b06147f.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf6abb19f921a7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf8e5b6c59c298.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\ProgramData\Spybot - Search & Destroy
C:\Users\User\AppData\Roaming\inst.exe
C:\ProgramData\6CD4D6D72F.sys
C:\ProgramData\KGyGaAvL.sys
C:\ProgramData\.zreglib

*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ISUSScheduler => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\Software\Microsoft\Windows\CurrentVersion\Run\\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => value removed successfully
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ISUSPM Startup => value removed successfully
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Zoner Photo Studio Autoupdate => value removed successfully
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
"HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{905A77E1-4154-4D2B-96E0-9C2386CFF965}" => key removed successfully
HKCR\CLSID\{905A77E1-4154-4D2B-96E0-9C2386CFF965} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => key not found.
HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => key not found.
HKCR\Wow6432Node\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value not found.
HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value not found.
HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => key not found.
"HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{166B1BCA-3F9C-11CF-8075-444553540000}" => key removed successfully
HKCR\CLSID\{166B1BCA-3F9C-11CF-8075-444553540000} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}" => key removed successfully
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main\\HomeButtonPage => value removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll => not found.
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\utrhvzc9.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} => path removed successfully
HKLM\Software\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => value removed successfully
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => value removed successfully
HKU\S-1-5-21-1804479744-3448908533-1041230410-1000\Software\Mozilla\SeaMonkey\Extensions\\mozilla_cc2@internetdownloadmanager.com => value removed successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\ngpampappnmepgilojfohadhhmbhlaek" => key removed successfully
idsvc => service removed successfully
wpcsvc => service removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf8e5b6c59c298.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf6abb19f921a7.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8e5b6b06147f.job => moved successfully
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\ProgramData\Spybot - Search & Destroy => moved successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\\SystemComponent => value not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}\\SystemComponent => value removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}\\SystemComponent => value not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0FE93EDC-0702-47C4-9A1C-B27DCE83F299}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0FE93EDC-0702-47C4-9A1C-B27DCE83F299}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{148B1C9E-CF4C-4EA4-B5C5-4C6D9761087B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{148B1C9E-CF4C-4EA4-B5C5-4C6D9761087B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{14C299F8-1FF3-4F00-8CB3-5963C49CB4DD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{14C299F8-1FF3-4F00-8CB3-5963C49CB4DD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1888EAF0-EC9D-4B58-9B01-8EF2E79E9B46}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1888EAF0-EC9D-4B58-9B01-8EF2E79E9B46}" => key removed successfully
C:\WINDOWS\System32\Tasks\{F05652FC-868D-4493-B71E-D3982FB506F9} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F05652FC-868D-4493-B71E-D3982FB506F9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1975665A-7B65-4E7E-BDBA-BB95DDB6F3E1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1975665A-7B65-4E7E-BDBA-BB95DDB6F3E1}" => key removed successfully
C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{36663F78-BBDA-4CA2-A00A-D71C9DD325DC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{36663F78-BBDA-4CA2-A00A-D71C9DD325DC}" => key removed successfully
C:\WINDOWS\System32\Tasks\{FA9A21EB-F183-4A7A-AD66-ED087F315A72} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FA9A21EB-F183-4A7A-AD66-ED087F315A72}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{36A6155B-9195-4C2D-A3F9-1203C6FAD6D2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{36A6155B-9195-4C2D-A3F9-1203C6FAD6D2}" => key removed successfully
C:\WINDOWS\System32\Tasks\{40110FD2-90A3-4DE0-8AC9-7022555E8A64} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{40110FD2-90A3-4DE0-8AC9-7022555E8A64}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4AB6437F-789F-4816-B1E1-F556C2C72C25}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4AB6437F-789F-4816-B1E1-F556C2C72C25}" => key removed successfully
C:\WINDOWS\System32\Tasks\{36820862-FF20-4351-A03A-B7FF1E96300D} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{36820862-FF20-4351-A03A-B7FF1E96300D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4CC66C9C-7108-441B-A3DC-567DBD3A2E6C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4CC66C9C-7108-441B-A3DC-567DBD3A2E6C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{57286424-E578-4775-A19F-591FD068A127}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{57286424-E578-4775-A19F-591FD068A127}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5731E9F4-BA6B-4BD7-A67A-D0468C8CF5E9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5731E9F4-BA6B-4BD7-A67A-D0468C8CF5E9}" => key removed successfully
C:\WINDOWS\System32\Tasks\{6E157447-421A-452E-9E61-EB31D5C713C4} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6E157447-421A-452E-9E61-EB31D5C713C4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6933919B-0777-47CA-889A-8711B149EB6D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6933919B-0777-47CA-889A-8711B149EB6D}" => key removed successfully
C:\WINDOWS\System32\Tasks\{B534BA6C-B10A-44E1-8CEC-8031A870C396} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B534BA6C-B10A-44E1-8CEC-8031A870C396}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6A96F2BF-2054-471F-B11A-3B36F1B52A89}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A96F2BF-2054-471F-B11A-3B36F1B52A89}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1cf8e5b6c59c298 => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1cf8e5b6c59c298" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6FC5A5AE-FA8E-464A-BF9A-B5E2E601BB28}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6FC5A5AE-FA8E-464A-BF9A-B5E2E601BB28}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{78C91968-DF0D-466C-BAFD-6AC66FBD46BE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78C91968-DF0D-466C-BAFD-6AC66FBD46BE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-Weekend" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7B3C1AAF-8FCF-4409-BDAA-3BD27A80D18A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7B3C1AAF-8FCF-4409-BDAA-3BD27A80D18A}" => key removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\ReindexSearchRoot" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8C89D95C-06EC-448E-831E-24131D291F16}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C89D95C-06EC-448E-831E-24131D291F16}" => key removed successfully
C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CreateChoiceProcessTask" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8D667869-9A35-4962-9F94-BBF2F8010AE7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8D667869-9A35-4962-9F94-BBF2F8010AE7}" => key removed successfully
C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8EC18564-E2F0-4BB8-899B-2B4C73480F44}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8EC18564-E2F0-4BB8-899B-2B4C73480F44}" => key removed successfully
C:\WINDOWS\System32\Tasks\{6196CEF4-63B1-44F3-BBD3-81C281031CF5} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6196CEF4-63B1-44F3-BBD3-81C281031CF5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{930DA95E-41F0-472A-80ED-7F534E90C609}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{930DA95E-41F0-472A-80ED-7F534E90C609}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9C8A7C94-AB99-4983-9521-D74DB3684E30}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9C8A7C94-AB99-4983-9521-D74DB3684E30}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A1F4F372-AF7B-42DA-A8A1-9B759732F8D3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1F4F372-AF7B-42DA-A8A1-9B759732F8D3}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A7F25356-CBE8-4415-9F27-42D4F360AF5B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A7F25356-CBE8-4415-9F27-42D4F360AF5B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BF2B0F9A-0172-4F47-A40B-C726B502B618}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BF2B0F9A-0172-4F47-A40B-C726B502B618}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C1D15A25-17CF-402E-B08D-C326C5025D46}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C1D15A25-17CF-402E-B08D-C326C5025D46}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cf8e5b6b06147f => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1cf8e5b6b06147f" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C81A4A01-AC9A-44CD-81AA-715B75FFA89D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C81A4A01-AC9A-44CD-81AA-715B75FFA89D}" => key removed successfully
C:\WINDOWS\System32\Tasks\{8532E63B-F5DE-4164-A0E2-775FA1994412} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8532E63B-F5DE-4164-A0E2-775FA1994412}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D11870FE-DE2A-4446-BD5C-714FEEBB10E0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D11870FE-DE2A-4446-BD5C-714FEEBB10E0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D58F7B89-71D2-496B-B568-77DF4CA874FC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D58F7B89-71D2-496B-B568-77DF4CA874FC}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1cf6abb19f921a7 => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1cf6abb19f921a7" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DF8440D7-599B-4908-BF34-246A1D30ED6A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF8440D7-599B-4908-BF34-246A1D30ED6A}" => key removed successfully
C:\WINDOWS\System32\Tasks\{9155A392-30C9-498D-B11F-78A1B4961B63} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9155A392-30C9-498D-B11F-78A1B4961B63}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0E70D9B-7326-41EE-A39B-470F22E9C880}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0E70D9B-7326-41EE-A39B-470F22E9C880}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E5205641-DD61-4D9A-82F7-D5F415C6D161}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E5205641-DD61-4D9A-82F7-D5F415C6D161}" => key removed successfully
C:\WINDOWS\System32\Tasks\{5495DF39-4288-490F-8DED-77423F336A9B} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5495DF39-4288-490F-8DED-77423F336A9B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E7047541-40D8-4D9F-AC61-9CD349888D0A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E7047541-40D8-4D9F-AC61-9CD349888D0A}" => key removed successfully
C:\WINDOWS\System32\Tasks\{6C274AF3-3340-43D4-B1B7-5163E51B65D2} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6C274AF3-3340-43D4-B1B7-5163E51B65D2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E77156DA-DA00-448D-9E97-FA2686A9E724}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E77156DA-DA00-448D-9E97-FA2686A9E724}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FB563E44-5409-4608-9B49-EAAB721A0B12}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB563E44-5409-4608-9B49-EAAB721A0B12}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FE8477B0-17AD-49DD-801D-54B85A1574F2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FE8477B0-17AD-49DD-801D-54B85A1574F2}" => key removed successfully
C:\WINDOWS\System32\Tasks\{4F39A165-F60F-489A-AD2A-55F75FF24C61} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4F39A165-F60F-489A-AD2A-55F75FF24C61}" => key removed successfully
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf8e5b6b06147f.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf6abb19f921a7.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf8e5b6c59c298.job => not found.
"C:\ProgramData\Spybot - Search & Destroy" => not found.
C:\Users\User\AppData\Roaming\inst.exe => moved successfully
C:\ProgramData\6CD4D6D72F.sys => moved successfully
C:\ProgramData\KGyGaAvL.sys => moved successfully
C:\ProgramData\.zreglib => moved successfully


The system needed a reboot.

==== End of Fixlog 14:35:58 ====
Nahoru
inditarod
Level 1
Level 1
Příspěvky: 56
Registrován: červenec 16
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu

Příspěvekod inditarod » 08 srp 2016 14:51

https://www.virustotal.com/cs/file/6045 ... 470660499/
Nahoru
inditarod
Level 1
Level 1
Příspěvky: 56
Registrován: červenec 16
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu

Příspěvekod inditarod » 08 srp 2016 14:53

https://www.virustotal.com/cs/file/60ee ... 470660740/
Nahoru
Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu

Příspěvekod Orcus » 08 srp 2016 15:47

Co problémy?
Láska hřeje, ale uhlí je uhlí. :fire:


Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.
Nahoru
inditarod
Level 1
Level 1
Příspěvky: 56
Registrován: červenec 16
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu

Příspěvekod inditarod » 08 srp 2016 16:38

Občas mi blbne ten prohlížeč Edge. Hlásí chyby při stahování souborů, občas zamrzne, neotevře další záložku a pod.
Jinak zatím asi nic podstatného...
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu

Příspěvekod jaro3 » 08 srp 2016 19:47

pokud si nedělal čistou instalaci , tak se často vyskytují různé problémy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
inditarod
Level 1
Level 1
Příspěvky: 56
Registrován: červenec 16
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu

Příspěvekod inditarod » 09 srp 2016 01:19

V každém případě velké díky za pomoc... :thumbup:
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o kontrolu logu

Příspěvekod jaro3 » 09 srp 2016 09:04

zkus si vyčistit v edge cache , historii dočasné soubory.

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt



Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Zamčeno

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 82 hostů