Prosím o pomoc -vyskakující okno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

Mira2506
Level 2.5
Level 2.5
Příspěvky: 269
Registrován: listopad 06
Pohlaví: Muž

Re: Prosím o pomoc -vyskakující okno

Příspěvekod Mira2506 » 12 zář 2018 22:19

Zasílám log vypadá že nic nenalezl,ale okno s chybou se občas objeví.

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 12.09.18
Čas skenování: 22:16
Logovací soubor: b5dfdeb8-b6c8-11e8-9c77-00ff497f41f2.json

-Informace o softwaru-
Verze: 3.5.1.2522
Verze komponentů: 1.0.441
Aktualizovat verzi balíku komponent: 1.0.6795
Licence: Bezplatný

-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x64
Systém souborů: NTFS
Uživatel: Mira-PC\Mira

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 303165
Zjištěné hrozby: 0
(Nebyly zjištěny žádné škodlivé položky)
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 1 min, 44 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)



Reklama
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 38967
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o pomoc -vyskakující okno

Příspěvekod jaro3 » 12 zář 2018 23:10

Sophos Virus Removal Tool je praktický softwarový nástroj, který by mohl odstranit infekce, které antivirový program nedetekuje .
Stáhněte si ho zde z některého odkazu:
http://www.majorgeeks.com/files/details ... _tool.html
http://www.majorgeeks.com/mg/get/sophos ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,2.html

Viry mohou zpomalit počítač, nebo se snaží ukrást vaše data, a ani nevíte , že je máte. Co potřebujete, je rychlý a snadný způsob, jak je najít a zbavit se jich, pokud již máte antivirový program v počítači nainstalován , můžete nainstalovat i nástroj Sophos Virus Removal , který identifikuje a vyčistí zbylé infekce, které mohl Váš antivirový program přehlédnout.
K použití Sophos Virus Removal Tool na něj poklepejte a stiskněte tlačítko „Start scanning“ . Pak bude Sophos Virus Removal Tool vyhledávat a odstraňovat viry, které najde. Může být vyžadován restart.
Pokud byly nalezeny viry , tak po skenu klikni na „Details…“ a potom na „View log file“. Zkopíruj celý log a vlož ho sem. Potom zavři „threat detail“ a klikni na „Start cleanup“.
Jinak se log nachází zde:
C:\ProgramData\Sophos\Sophos Virus Removal Tool\Logs

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.adlice.com/download/roguekil ... HlwZT14ODY
64bit.:
http://www.adlice.com/download/roguekil ... HlwZT14NjQ
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7,8,10 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“
- Program skenuje procesy PC. Po proskenování klikni na „Open Report “ , v okně pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

další odkazy:
http://www.adlice.com/download/roguekiller/
http://www.bleepingcomputer.com/download/roguekiller/
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Mira2506
Level 2.5
Level 2.5
Příspěvky: 269
Registrován: listopad 06
Pohlaví: Muž

Re: Prosím o pomoc -vyskakující okno

Příspěvekod Mira2506 » 13 zář 2018 22:02

Zdravím zasílám první log z RogueKiller :

RogueKiller V12.13.0.0 (x64) [Sep 10 2018] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Webová stránka : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : Mira [Práva správce]
Started from : C:\Users\Mira\Downloads\RogueKiller_portable64.exe
Mód : Prohledat -- Datum : 09/13/2018 21:18:31 (Duration : 00:41:35)

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 11 ¤¤¤
[PUP.InnovativeSolutions] (X86) HKEY_LOCAL_MACHINE\Software\Innovative Solutions -> Nalezeno
[PUP.InnovativeSolutions] (X64) HKEY_USERS\S-1-5-21-1499228950-2899849410-3283270387-1000\Software\Innovative Solutions -> Nalezeno
[PUP.InnovativeSolutions] (X86) HKEY_USERS\S-1-5-21-1499228950-2899849410-3283270387-1000\Software\Innovative Solutions -> Nalezeno
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\TRIXX (\??\C:\Users\Mira\AppData\Local\Temp\TRIXX.sys) -> Nalezeno
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet003\Services\TRIXX (\??\C:\Users\Mira\AppData\Local\Temp\TRIXX.sys) -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-1499228950-2899849410-3283270387-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.seznam.cz/ -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-1499228950-2899849410-3283270387-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.seznam.cz/ -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet003\Services\Tcpip\Parameters | DhcpNameServer : 10.1.0.255 10.1.0.1 ([][]) -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{C8440BA5-E49C-4024-9113-F114199C888F} | DhcpNameServer : 10.1.0.255 10.1.0.1 ([][]) -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet003\Services\Tcpip\Parameters\Interfaces\{C8440BA5-E49C-4024-9113-F114199C888F} | DhcpNameServer : 10.1.0.255 10.1.0.1 ([][]) -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet003\Services\Tcpip\Parameters\Interfaces\{E6578113-B5B1-4391-9784-73A21A56BF91} | DhcpNameServer : 10.1.0.255 10.1.0.1 ([][]) -> Nalezeno

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 5 ¤¤¤
[PUP.InnovativeSolutions][Složka] C:\ProgramData\Innovative Solutions -> Nalezeno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Roaming\Innovative Solutions -> Nalezeno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions -> Nalezeno
[PUP.InnovativeSolutions][Složka] C:\ProgramData\Innovative Solutions -> Nalezeno
[PUP.InnovativeSolutions][Složka] C:\Program Files (x86)\Innovative Solutions -> Nalezeno

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: WDC WD20EZRX-00D8PB0 ATA Device +++++
--- User ---
[MBR] b8d22ded3c01e08a5d338b6d879d9d59
[BSP] 64e1bc53e2deaebb373e17797a0302be : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: Samsung SSD 850 EVO 500GB ATA Device +++++
--- User ---
[MBR] 69271782198929180444e12eac78a6b3
[BSP] ae124a40f27f4756222985670ff10c68 : HP|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 472069 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive2: WDC WD15EARS-00S8B1 ATA Device +++++
--- User ---
[MBR] e4b24bde51331f3ad18bfb1c18580670
[BSP] 0283e81f571b58a451706e0d93c6b746 : Windows XP|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 1430796 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive3: WD My Book 1170 USB Device +++++
Error reading User MBR! ([57] Parametr není správný. )
Error reading LL1 MBR! ([79] ?asový limit semaforu vypr?el. )
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive4: WD Elements 25A3 USB Device +++++
--- User ---
[MBR] b749ca3279980e04af4acfc8f6e210f5
[BSP] 7fd284fb52c67c795cf1eb3c56d573d7 : Empty MBR Code
Partition table:
0 - Elements | Offset (sectors): 2048 | Size: 4769273 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive5: Generic USB SD Reader USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive6: Generic USB CF Reader USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive7: Generic USB SM Reader USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive8: Generic USB MS Reader USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive9: WD My Book 1140 USB Device +++++
--- User ---
[MBR] af116dacc9a4ea48ebfb7d375dc7b431
[BSP] 7dea2e83a66cdf3d5d37ece57b1484d3 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953836 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

Mira2506
Level 2.5
Level 2.5
Příspěvky: 269
Registrován: listopad 06
Pohlaví: Muž

Re: Prosím o pomoc -vyskakující okno

Příspěvekod Mira2506 » 13 zář 2018 22:45

Sophos jsem nainstaloval,ale po špuštění hlásí tuto chybu.
Nemáte oprávnění prohlížet přiložené soubory.

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 38967
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o pomoc -vyskakující okno

Příspěvekod jaro3 » 13 zář 2018 23:20

Tak to nech , vypadá to na bug , je Vás v poslední době víc..

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“,
po jeho skončení - vše zatrhni (dej zatržítka vlevo od nálezů , do bílých políček)
- pak klikni na "Remove Selected"
- Počkej, dokud Status box nezobrazí " Removal finished, please review result "
- Klikni na "Open report " a pak na " Open TXT“ a zkopíruj ten log a vlož obsah té zprávy prosím sem. Log je možno nalézt v C:\ProgramData\RogueKiller\Logs - Zavři RogueKiller.

Vypni antivir i firewall.
Stáhni Zoek.exe
http://download.bleepingcomputer.com/smeenk/zoek.exe

klik nahoře vpravo na .rar-file a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
-pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log Zkopíruj sem celý obsah toho logu.
Pokud budou problémy , spusť zoek v nouz. režimu.

Stáhni si Zemana AntiMalware Free z tohoto odkazu:
https://www.zemana.com/Download/AntiMal ... .Setup.exe
a ulož si ho na plochu.
Poklepej na tento soubor na ploše a postupuj podle pokynů k instalaci programu.
Přijmi licenci k používání programu EULA , pokud se nabídne.
Pokud je k dispozici aktualizace programu , klepni na tlačítko „Update now“ ( aktualizovat nyní).
Můžeš si zatrhnout i vytvoření bodu obnovy:
Klikni na ozubené kolečko , poté na „Skenování“ a zatrhni „vytvářet body obnovy“.
Vrať se zpět ( klikni na domeček).
Zavři všechny otevřené soubory, složky a prohlížeče
Neměň žádné nastavení. Klikni na „Skenovat“.
Po skenu lze vidět , zda jsou nějaké nákazy. Klikni na „Další“. Nákazy budou přemístěny do karantény.
Když je skenování dokončeno, objeví se tisková zpráva , zkopíruj sem celý obsah té zprávy.
Jinak můžeš zprávy vidět , když klikneš vpravo nahoře na „ zprávy“.


Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

ostatní zítra.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Mira2506
Level 2.5
Level 2.5
Příspěvky: 269
Registrován: listopad 06
Pohlaví: Muž

Re: Prosím o pomoc -vyskakující okno

Příspěvekod Mira2506 » 14 zář 2018 17:51

Posílám první sken:
RogueKiller V12.13.0.0 (x64) [Sep 10 2018] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Webová stránka : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno : Normální režim
Uživatel : Mira [Práva správce]
Started from : C:\Users\Mira\Downloads\RogueKiller_portable64.exe
Mód : Smazat -- Datum : 09/14/2018 16:52:48 (Duration : 00:39:35)

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 9 ¤¤¤
[PUP.InnovativeSolutions] (X86) HKEY_LOCAL_MACHINE\Software\Innovative Solutions -> Smazáno
[PUP.InnovativeSolutions] (X64) HKEY_USERS\S-1-5-21-1499228950-2899849410-3283270387-1000\Software\Innovative Solutions -> Smazáno
[PUP.InnovativeSolutions] (X86) HKEY_USERS\S-1-5-21-1499228950-2899849410-3283270387-1000\Software\Innovative Solutions -> Smazáno
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\TRIXX (\??\C:\Users\Mira\AppData\Local\Temp\TRIXX.sys) -> Smazáno
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet003\Services\TRIXX (\??\C:\Users\Mira\AppData\Local\Temp\TRIXX.sys) -> Smazáno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-1499228950-2899849410-3283270387-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.seznam.cz/ -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-1499228950-2899849410-3283270387-1000\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.seznam.cz/ -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{E6578113-B5B1-4391-9784-73A21A56BF91} | DhcpNameServer : 10.1.0.255 10.1.0.1 ([][]) -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet003\Services\Tcpip\Parameters\Interfaces\{E6578113-B5B1-4391-9784-73A21A56BF91} | DhcpNameServer : 10.1.0.255 10.1.0.1 ([][]) -> Nahrazeno ()

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 5 ¤¤¤
[PUP.InnovativeSolutions][Složka] C:\ProgramData\Innovative Solutions -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\ProgramData\Innovative Solutions\Neosetup Updater\installer -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\ProgramData\Innovative Solutions\Neosetup Updater -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Roaming\Innovative Solutions -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Roaming\Innovative Solutions\DriverMax -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\038b75662205880be56a8ffa9930f830.kit -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\038b75662205880be56a8ffa9930f830.xml -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\1547ba864e4f003460aad99258712ada.kit -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\1547ba864e4f003460aad99258712ada.xml -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\a92ebd3aad3a5a25747e7c7b3dc259ef.dll -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\C7C961E5486DF30ABD78BB81F732C594.exe -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\1.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\102.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\103.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\11.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\12.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\14.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\15.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\17.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\18.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\19.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\20.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\21.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\22.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\24.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\27.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\28.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\29.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\30.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\31.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\32.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\33.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\34.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\35.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\36.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\37.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\38.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\39.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\41.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\42.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\43.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\44.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\45.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\47.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\48.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\49.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\50.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\51.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\52.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\57.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\59.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\67.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\70.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\71.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\76.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\77.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\78.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\79.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\8.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\80.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\81.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\82.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\83.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\84.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\85.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\87.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\88.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\89.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\9.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\91.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\93.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\94.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\95.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\97.ico -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache\99.ico -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup\cache -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Roaming\Innovative Solutions\Neosetup -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions\checker5 -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Downloded Drivers\69626e9d7647a79a9b8becf449a386e5.zip -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Downloded Drivers -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Dump -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\lastscan2.xml -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\mmc.xml -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Pictures -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\promo.xml -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\00d49df028b7aecc928d0472dad304e6.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\027325da8f0e1ce13bc4fe25ed71bec5.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\027b3b9d6ec1e730e76696057a6d8d2e.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\02dd24a23169571d4bd5577ba669b686.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\0d736a6e0334e0648605710e2ef9bd8a.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\129d0ce02daa8a15a6cd803cd6e201e8.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\14491d56574f383e3bc7c40cc0b5808c.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\184795251670e2d0d5c2afbe237b6c29.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\18eff65db0d713bfc93de00e466940fc.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\1d63d8db5156418d5d4febea4910daca.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\1d83ac2bcbf668e78591c3bfa92b174e.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\23deac0a3b842b8cf78a8924512d2cd9.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\2b6a543739c85137054055ce275b55e3.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\2d2070ecda81b6ab90ff35f5cfc6cd7b.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\33a27dbb574baf897fdad0006e640b6a.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\3494eca36ee8d6f0a2a184de4e438ac0.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\34dace46f825326163b759ed8cff3731.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\374d03501e31e04984843d5bc6920a27.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\3d8249b59800a2393b82f597c184f9d4.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\3dc8ce704213d562d83ff3ba54a54994.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\3f313f74e29e0b2e4608950304f41ad7.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\3f9da1ce9450b44d499e32d2c3fac35d.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\42d8d75edafe0dcc50fba57f03f3c544.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\43f9b58734edc71afb9254d321be4ccb.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\4480ec8a945f026a9362cde663ae72e3.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\4e42ecbf6a1dd635b099af639a2b6ebe.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\4e7fc624d07a6f277c52892036b0fa6d.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\4f57f21a4e436ca5d21e0abe60c31f86.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\5113bac1f4206f9d77941c45e6a161a9.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\549368d982d08493b2c69365eaa87b39.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\55bdccd2c41cbdc1e664f1d2166094a1.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\5eb886c659b518d33d480aa2f4a13be7.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\656b61654e6bce8011534fd591f73fbd.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\6571a7ade5080148f5e43b47464c798c.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\6ebe97a2608e25c95f6eb6833871d38f.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\707954eb8de2dda3c8c554ae7a888f57.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\717af41c7fdcf2f49565adfe3700acb1.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\7a428a1de8eb27a07a5b47b8379876cd.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\7e6a3c80773f245dde407f2d5d88171b.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\7e71d3bfb2a949a5bbfde137f90a788d.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\828c9313c9853757b88b45b9866775d4.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\885f135e88a71db9074f71e39879ec4a.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\8b60cfb204058d67341c98bb3f2af393.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\90f9d72f0bf9e7e3310f0187842986c5.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\91ab33b19d8702779c77d93277b21754.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\92b0c1599032dc1ef3e9b2f1df767c4f.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\94ac352da78bcc5bb86368746eb605f0.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\94ff87217318f41004bbc3e44aa1d1ab.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\98ef35bb8ac62bd16e7c6163750934e8.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\9bef14f2072fbae29294ef82a8f93f98.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\9bf82562579fd6ccef2213ad0216c965.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\9e2b0de27e486b1645fbec338fffc20c.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\a37bc2e07bd2827c02b8869c02025196.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\a842341f2dfcfc5191a8d9e9b54de1c2.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\aa1c4d6f581b00ff79ac388b304dca2b.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\aaa5165cd5829a715d7bddd87e2ece60.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\ad79258c31e945b95b235402fa721e06.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\b4dea8535d1401d7f0c8648013cb7603.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\b7689553728c376c176d87767bcc0883.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\b923b2d6ef8012ee5d1dd1187b5b871a.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\bc41bce28942a2b638f100baf17012d7.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\bcd3bfa8e7893ea5bb69c76ae3d015b5.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\bf5eded5126ea6d9f5a574ba2e99ee8d.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\c27ca091d33b1ed0c4eb08ca8e871eba.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\c42e882e37e089fe6dc418161b9ced3a.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\c512f1146220592e0de7e3ee2699beea.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\c9992e35653880e97a666c9eb02983ed.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\d2fd38b69d402b49f7fa82f8328fb017.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\d6fa06fbd8bb4b3aaba8d81e22a875db.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\df1a776f110e16744d1248f303f9a3fa.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\e273b5028349ad37269e0150ea9d28c7.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\e3e5f36ced334c1e35145346bbf5d891.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\e8e32102cf6cd93517d669350133987b.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\e994ce1817aafaf39be73ed7d01eaa80.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\f074954ceaac27fbcc831b6aa2866b9b.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\f7aa118999ef8c304f13963f5ab56367.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\f8485d0172f781a5eff66d319d9adf0b.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\f8771704b6819373604a99da7ed182a0.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\f9b26f95481f4094cf8563d3f85bdff6.zip -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore\fe01adf07b6b239178d73fb961403460.zip -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Restore -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\TMP -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Agent -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\Backup -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\LastScan\0a111046167d0cac3b4f1b863c814c49.rez -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\LastScan\3d79537d460bd0e0b967eba7453d5664.rez -> Smazáno
[PUP.InnovativeSolutions][Soubor] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\LastScan\7aaebe6cd9d1a3bf4aa10932263ac299.rez -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax\LastScan -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions\DriverMax -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Users\Mira\AppData\Local\Innovative Solutions\Innovative Coupons -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\ProgramData\Innovative Solutions -> ERROR [3]
[PUP.InnovativeSolutions][Složka] C:\Program Files (x86)\Innovative Solutions -> Smazáno
[PUP.InnovativeSolutions][Složka] C:\Program Files (x86)\Innovative Solutions\DriverMax -> Smazáno

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: Samsung SSD 850 EVO 500GB ATA Device +++++
--- User ---
[MBR] 69271782198929180444e12eac78a6b3
[BSP] ae124a40f27f4756222985670ff10c68 : HP|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 472069 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: WDC WD20EZRX-00D8PB0 ATA Device +++++
--- User ---
[MBR] b8d22ded3c01e08a5d338b6d879d9d59
[BSP] 64e1bc53e2deaebb373e17797a0302be : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive2: WDC WD15EARS-00S8B1 ATA Device +++++
--- User ---
[MBR] e4b24bde51331f3ad18bfb1c18580670
[BSP] 0283e81f571b58a451706e0d93c6b746 : Windows XP|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 1430796 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive5: Generic USB SD Reader USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive6: Generic USB CF Reader USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive7: Generic USB SM Reader USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

+++++ PhysicalDrive8: Generic USB MS Reader USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

Mira2506
Level 2.5
Level 2.5
Příspěvky: 269
Registrován: listopad 06
Pohlaví: Muž

Re: Prosím o pomoc -vyskakující okno

Příspěvekod Mira2506 » 14 zář 2018 19:00

Zasílám log zoek:

Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by Mira on p  14.09.2018 at 17:52:58,00.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Mira\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

14.9.2018 17:55:34 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\CNT deleted successfully
C:\PROGRA~2\Codemasters deleted successfully
C:\PROGRA~2\Far Cry 5 deleted successfully
C:\PROGRA~2\Malwarebytes Anti-Malware deleted successfully
C:\PROGRA~2\Mastiff deleted successfully
C:\PROGRA~2\Mp3tag deleted successfully
C:\PROGRA~2\Rising Research deleted successfully
C:\PROGRA~2\SQUARE ENIX deleted successfully
C:\PROGRA~2\Ubisoft deleted successfully
C:\PROGRA~2\VS Revo Group deleted successfully
C:\PROGRA~2\WnSoft PicturesToExe deleted successfully
C:\PROGRA~2\Wondershare deleted successfully
C:\PROGRA~2\Yawcam deleted successfully
C:\PROGRA~2\COMMON~1\IObit deleted successfully
C:\PROGRA~2\COMMON~1\MicroWorld deleted successfully
C:\Program Files\Boris FX, Inc deleted successfully
C:\Program Files\Fighters deleted successfully
C:\Program Files\HitmanPro deleted successfully
C:\Program Files\Norton Security Scan deleted successfully
C:\Program Files\TrueCrypt deleted successfully
C:\Program Files\Unlocker deleted successfully
C:\Program Files\Common Files\Symantec Shared deleted successfully
C:\PROGRA~3\AMD deleted successfully
C:\PROGRA~3\Anvsoft deleted successfully
C:\PROGRA~3\EasyMP3Downloader deleted successfully
C:\PROGRA~3\Freemake deleted successfully
C:\PROGRA~3\Movavi Video Converter 16 deleted successfully
C:\PROGRA~3\Nokia deleted successfully
C:\PROGRA~3\PCSettings deleted successfully
C:\PROGRA~3\{13CFD044-61E4-4EAC-AD61-02536D961216} deleted successfully
C:\Users\Mira\AppData\Roaming\.minecraft deleted successfully
C:\Users\Mira\AppData\Roaming\EasyMP3Downloader deleted successfully
C:\Users\Mira\AppData\Roaming\Electron deleted successfully
C:\Users\Mira\AppData\Roaming\Malwarebytes deleted successfully
C:\Users\Mira\AppData\Roaming\NeroDigital(TM) deleted successfully
C:\Users\Mira\AppData\Roaming\Nokia deleted successfully
C:\Users\Mira\AppData\Roaming\Nokia Suite deleted successfully
C:\Users\Mira\AppData\Roaming\Publish Providers deleted successfully
C:\Users\Mira\AppData\Roaming\QuickScan deleted successfully
C:\Users\Mira\AppData\Roaming\Windows Live Writer deleted successfully
C:\Users\Mira\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Mira\AppData\Local\EmieSiteList deleted successfully
C:\Users\Mira\AppData\Local\EmieUserList deleted successfully
C:\Users\Mira\AppData\Local\GHISLER deleted successfully
C:\Users\Mira\AppData\Local\PACE Anti-Piracy deleted successfully
C:\Users\Mira\AppData\Local\Skype deleted successfully
C:\Users\Mira\AppData\Local\uTorrent deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1499228950-2899849410-3283270387-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\light_plugin_F88CEF8523DE460F9FA1D6E48BF8D340@kaspersky.com deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\light_plugin_F88CEF8523DE460F9FA1D6E48BF8D340@kaspersky.com deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Mira\AppData\Roaming\TomTom\HOME\Profiles\7h1j5yzb.default\prefs.js:

Added to C:\Users\Mira\AppData\Roaming\TomTom\HOME\Profiles\7h1j5yzb.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\PROGRA~2\CNT not found
C:\PROGRA~2\Codemasters not found
C:\PROGRA~2\Far Cry 5 not found
C:\PROGRA~2\Mastiff not found
C:\PROGRA~2\Mp3tag not found
C:\PROGRA~2\Rising Research not found
C:\PROGRA~2\SQUARE ENIX not found
C:\PROGRA~2\Ubisoft not found
C:\PROGRA~2\VS Revo Group not found
C:\PROGRA~2\WnSoft PicturesToExe not found
C:\PROGRA~2\Wondershare not found
C:\PROGRA~2\Yawcam not found
C:\PROGRA~3\{13CFD044-61E4-4EAC-AD61-02536D961216} not found
C:\Users\Mira\AppData\Local\VS Revo Group deleted
C:\Users\Mira\AppData\Local\Wondershare deleted
C:\Users\Mira\AppData\Roaming\Metadefender-Local deleted
C:\Users\Mira\AppData\Roaming\DVDVideoSoft deleted
C:\Users\Mira\.android deleted
C:\PROGRA~2\Tripwire Interactive deleted
C:\PROGRA~2\COMMON~1\Wondershare deleted
C:\found.000 deleted
C:\Users\Mira\AppData\Roaming\MIRA-PC.MTBF.txt deleted
C:\Users\Mira\AppData\Roaming\pcouffin.log deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Mira\AppData\Local\infection.log deleted
C:\Users\Mira\AppData\Local\Thinstall deleted
C:\Users\Mira\AppData\Local\BearShare deleted
C:\Users\Mira\AppData\Local\CrashRpt deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crash Bandicoot N Sane Trilogy deleted
C:\Users\Mira\Downloads\70 Bundle Glitch and RGB Split Trans.-www.aehive.club.zip deleted
C:\Users\Mira\AppData\LocalLow\mediabarbs deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\Mira\Desktop\VSO Downloader 5.lnk deleted
C:\Users\Mira\AppData\Roaming\Fighters deleted
C:\PROGRA~3\Fighters deleted
"C:\Users\Mira\AppData\Local\LumaEmu" deleted
"C:\Users\Mira\AppData\Local\{60A32085-D8BB-4D6B-B9D6-BB30F399C319}" deleted
"C:\Users\Mira\AppData\Local\{D7B1E8F4-B252-49FC-AAE1-D77BEB91FC59}" deleted
"C:\Users\Mira\AppData\Roaming\.ptbt0" deleted
"C:\Users\Mira\AppData\Roaming\hugin\camlens.db" deleted
"C:\Users\Mira\AppData\Roaming\hugin" deleted

==== Orphaned Tasks deleted from Registry ======================

Norton Product Installer deleted
{119AEE78-5687-413F-8F83-B666D81AF31D} deleted
{8FF52F83-FA10-4A4E-8F25-36C609A48551} deleted
{938FEB95-28D7-4928-B99B-BE6C00D31894} deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Mira\AppData\Roaming\TomTom\HOME\Profiles\7h1j5yzb.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Fake Chromium Profiles Check ======================

Fake profile C:\Users\Default\AppData\Local\Google\Chrome deleted

==== Chromium Look ======================

Google Chrome Version: 69.0.3497.92

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
amkpcclbbgegoafihnpgomddadjhcadd - https://chrome.google.com/webstore/deta ... ddadjhcadd[]
iikflkcanblccfahdhdonehdalibjnif - No path found[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[14.05.2013 13:27]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - No path found[]

Ask Toolbar - Mira\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aaaalipaokhkccgmgkdglfinfnfhflko
Comodo Drag&Drop Service - Mira\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneodkojaglhnkkdbbdnmmmgimlcaogo
Comodo Web Inspector - Mira\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdngekjahnmlkinegnhdmmbcfnmbclnn
PrivDog - Mira\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
Comodo Media Downloader - Mira\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dihmnpngfonlhjmgkflpnibiaaliendo
Chrome Media Router - Mira\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Chromium Fix ======================

C:\Users\Mira\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aaaalipaokhkccgmgkdglfinfnfhflko deleted successfully
C:\Users\Mira\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_aaaalipaokhkccgmgkdglfinfnfhflko_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Search Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"=""
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
HKCU\SearchScopes\{6D71E837-701A-45BD-AB70-07E0F187F01D} - https://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{BC8B7843-E978-4B7F-A3B4-4B53D0B21224} - http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
HKCU\Wow6432Node\SearchScopes "DefaultScope"=""
HKCU\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\Wow6432Node\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

==== Reset Google Chrome ======================

C:\Users\Mira\AppData\Local\Comodo\Dragon\User Data\Default\Preferences was reset successfully
C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Preferences.bad was reset successfully
C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Preferences.old was reset successfully
C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Mira\AppData\Local\Google\Chrome\User Data\System Profile\Preferences was reset successfully
C:\Users\Mira\AppData\Local\Google\Chrome\User Data\System Profile\Secure Preferences was reset successfully
C:\Users\Mira\Appdata\Roaming\Opera Software\Opera Stable\Preferences will be reset at reboot
C:\Users\Mira\AppData\Local\Comodo\Dragon\User Data\Default\Web Data was reset successfully
C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Web Data will be reset at reboot
C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal will be reset at reboot
C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Web Data.ReadOnly was reset successfully
C:\Users\Mira\AppData\Local\Google\Chrome\User Data\System Profile\Web Data was reset successfully
C:\Users\Mira\Appdata\Roaming\Opera Software\Opera Stable\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MOMORacingFixCenter deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Mira\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Mira\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Mira\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\Mira\AppData\Local\Comodo\Dragon\User Data\Default\Cache emptied successfully
C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Cache will be emptied at reboot
C:\Users\Mira\AppData\Local\Google\Chrome\User Data\System Profile\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=623 folders=281 934948891 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Mira\AppData\Local\Temp will be emptied at reboot
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Mira\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Mira\Appdata\Roaming\Opera Software\Opera Stable\Preferences" deleted
"C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Web Data" not found
"C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal" not found
"C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0" deleted
"C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1" deleted
"C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2" deleted
"C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3" deleted
"C:\Users\Mira\AppData\Local\Google\Chrome\User Data\Default\Cache\index" deleted

==== EOF on p  14.09.2018 at 18:57:07,03 ======================

Mira2506
Level 2.5
Level 2.5
Příspěvky: 269
Registrován: listopad 06
Pohlaví: Muž

Re: Prosím o pomoc -vyskakující okno

Příspěvekod Mira2506 » 14 zář 2018 19:09

Posílám Zemana log:
Zemana AntiMalware 2.74.2.150 (instalační verze)

-------------------------------------------------------
Scan Result : Dokončeno
Scan Date : 2018.9.14
Operating System : Windows 7 64-bit
Processor : 4X Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz
BIOS Mode : Legacy
CUID : 120A95CC3E70F972F5362E
Scan Type : Skenování systému
Duration : 3m 42s
Scanned Objects : 394686
Detected Objects : 0
Excluded Objects : 1
Read Level : SCSI
Auto Upload : Zapnuto
Detect All Extensions : Vypnuto
Scan Documents : Vypnuto
Domain Info : WORKGROUP,0,2

Detected Objects
-------------------------------------------------------

Nebyly zjištěny žádné hrozby

Mira2506
Level 2.5
Level 2.5
Příspěvky: 269
Registrován: listopad 06
Pohlaví: Muž

Re: Prosím o pomoc -vyskakující okno

Příspěvekod Mira2506 » 14 zář 2018 19:27

Zasílám poslední log Combofix:

ComboFix 18-08-08.01 - Mira 14.09.2018 19:12:25.7.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.16354.12774 [GMT 2:00]
Spuštěný z: c:\users\Mira\Desktop\ComboFix.exe
AV: ESET Security *Disabled/Updated* {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
FW: ESET Firewall *Disabled* {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
SP: ESET Security *Disabled/Updated* {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Mira\AppData\Roaming\Launcher.dat.mwt
c:\windows\SysWow64\Packet.dll
c:\windows\SysWow64\pthreadVC.dll
c:\windows\SysWow64\wpcap.dll
c:\windows\UA000019.DLL
c:\windows\UA000035.DLL
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_AdobeUpdateService
-------\Service_npf
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2018-08-14 do 2018-09-14 )))))))))))))))))))))))))))))))
.
.
2018-09-14 17:19 . 2018-09-14 17:19 -------- d-----w- c:\users\Public\AppData\Local\temp
2018-09-14 17:19 . 2018-09-14 17:19 -------- d-----w- c:\users\Default\AppData\Local\temp
2018-09-14 17:02 . 2018-09-14 17:02 203680 ----a-w- c:\windows\system32\drivers\zamguard64.sys
2018-09-14 17:02 . 2018-09-14 17:02 203680 ----a-w- c:\windows\system32\drivers\zam64.sys
2018-09-14 17:02 . 2018-09-14 17:02 -------- d-----w- c:\program files (x86)\Zemana AntiMalware
2018-09-14 16:14 . 2014-02-13 21:59 24064 ----a-w- c:\windows\zoek-delete.exe
2018-09-14 16:14 . 2018-09-14 17:24 -------- d-----w- c:\users\Mira\AppData\Local\Temp
2018-09-14 15:52 . 2018-09-14 16:10 -------- d-----w- C:\zoek_backup
2018-09-13 18:56 . 2018-09-13 18:56 -------- d-----w- c:\programdata\Sophos
2018-09-13 18:56 . 2018-09-13 18:56 -------- d-----w- c:\program files (x86)\Sophos
2018-09-13 14:44 . 2018-09-14 17:24 259360 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2018-09-13 14:44 . 2018-07-12 06:42 152688 ----a-w- c:\windows\system32\drivers\mbae64.sys
2018-09-12 20:15 . 2018-09-13 14:44 -------- d-----w- c:\programdata\Malwarebytes
2018-09-12 20:15 . 2018-09-12 20:15 -------- d-----w- c:\program files\Malwarebytes
2018-09-08 18:33 . 2018-09-08 18:45 -------- d-----w- c:\program files (x86)\Titanfall 2
2018-09-06 16:51 . 2018-09-06 16:51 -------- d-----w- c:\users\Mira\AppData\Local\Deskshare.com
2018-09-06 16:24 . 2018-09-07 22:05 -------- d-----w- c:\program files (x86)\Deskshare
2018-09-02 20:02 . 2018-09-02 20:02 -------- d-----w- c:\program files (x86)\F.E.A.R. 3
2018-09-01 15:09 . 2018-09-01 15:09 -------- d---a-w- C:\KRD2018_Data
2018-09-01 08:12 . 2018-09-01 08:12 -------- d-----w- c:\users\Mira\AppData\Local\mbam
2018-08-19 14:57 . 2018-08-19 14:57 -------- d-----w- c:\program files (x86)\qBittorrent
2018-08-19 11:32 . 2018-09-12 18:14 -------- d-----w- c:\programdata\Kaspersky Lab
2018-08-19 11:32 . 2018-08-19 11:32 219328 ----a-w- c:\windows\system32\drivers\klflt.sys
2018-08-19 11:32 . 2018-08-19 11:32 152360 ----a-w- c:\windows\system32\klhkum.dll
2018-08-19 11:32 . 2018-08-19 11:32 1193160 ----a-w- c:\windows\system32\drivers\klhk.sys
2018-08-19 11:32 . 2018-08-19 11:32 1127104 ----a-w- c:\windows\system32\drivers\klif.sys
2018-08-19 11:28 . 2018-08-19 11:28 -------- d-----w- c:\programdata\Kaspersky Lab Setup Files
2018-08-19 11:19 . 2018-08-19 11:19 -------- d-----w- c:\windows\system32\drivers\NSSx64
2018-08-19 11:19 . 2018-08-19 11:19 -------- d-----w- c:\program files (x86)\NortonInstaller
2018-08-19 10:20 . 2011-12-01 09:42 15920 ----a-w- c:\windows\system32\drivers\NBVolUp.sys
2018-08-19 10:20 . 2011-12-01 09:42 72240 ----a-w- c:\windows\system32\drivers\NBVol.sys
2018-08-19 10:20 . 2018-08-19 10:37 -------- d-----w- c:\program files (x86)\Nero
2018-08-19 08:11 . 2018-08-19 08:11 -------- d-----w- c:\programdata\Doctor Web
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2018-09-14 17:20 . 2016-11-16 21:36 65536 ----a-w- c:\windows\system32\spu_storage.bin
2018-09-14 14:52 . 2018-07-12 19:32 28272 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2018-08-19 09:32 . 2016-12-29 15:56 485512 ----a-w- c:\windows\system32\drivers\trufos.sys
2018-08-18 11:07 . 2011-05-28 16:48 137343192 -c--a-w- c:\windows\system32\MRT.exe
2018-08-14 14:15 . 2012-04-07 16:12 842240 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2018-08-14 14:15 . 2011-05-28 12:15 175104 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2018-08-06 15:05 . 2018-08-06 15:05 716789 ----a-w- c:\windows\SysWow64\unins000.exe
2018-08-02 23:00 . 2018-07-06 09:00 12032128 ----a-w- c:\windows\SysWow64\atiumdvt.dll
2018-08-02 22:59 . 2017-06-12 21:12 11973936 ----a-w- c:\windows\SysWow64\atiumdva.dll
2018-08-02 22:59 . 2018-08-02 22:59 12652688 ----a-w- c:\windows\system32\atiumd6t.dll
2018-08-02 22:59 . 2018-08-02 22:59 12580112 ----a-w- c:\windows\system32\atiumd6a.dll
2018-08-02 22:59 . 2018-08-02 22:59 126848 ----a-w- c:\windows\system32\atimpc64.dll
2018-08-02 22:59 . 2018-08-02 22:59 126848 ----a-w- c:\windows\system32\amdpcom64.dll
2018-08-02 22:59 . 2018-08-02 22:59 103664 ----a-w- c:\windows\SysWow64\atimpc32.dll
2018-08-02 22:59 . 2018-08-02 22:59 103664 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2018-08-02 22:59 . 2018-08-02 22:59 188112 ----a-w- c:\windows\system32\amdhcp64.dll
2018-08-02 22:59 . 2018-08-02 22:59 162880 ----a-w- c:\windows\SysWow64\amdhcp32.dll
2018-08-02 22:59 . 2018-08-02 22:59 134040 ----a-w- c:\windows\system32\amdave64.dll
2018-08-02 22:59 . 2018-08-02 22:59 114976 ----a-w- c:\windows\SysWow64\amdave32.dll
2018-08-02 22:58 . 2018-08-02 22:58 150408 ----a-w- c:\windows\system32\atisamu64.dll
2018-08-02 22:58 . 2018-08-02 22:58 127368 ----a-w- c:\windows\SysWow64\atisamu32.dll
2018-08-02 22:58 . 2018-08-02 22:58 46783368 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2018-08-02 22:58 . 2018-08-02 22:58 60296 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2018-08-02 22:58 . 2018-08-02 22:58 3711880 ----a-w- c:\windows\system32\amfrt64.dll
2018-08-02 22:58 . 2018-08-02 22:58 3339144 ----a-w- c:\windows\SysWow64\amfrt32.dll
2018-08-02 22:57 . 2018-08-02 22:57 15971720 ----a-w- c:\windows\system32\amdvlk64.dll
2018-08-02 22:57 . 2018-08-02 22:57 13802888 ----a-w- c:\windows\SysWow64\amdvlk32.dll
2018-08-02 22:57 . 2018-08-02 22:57 167304 ----a-w- c:\windows\system32\amduve64.dll
2018-08-02 22:57 . 2018-08-02 22:57 142728 ----a-w- c:\windows\SysWow64\amduve32.dll
2018-08-02 22:57 . 2018-08-02 22:57 139144 ----a-w- c:\windows\system32\amdmmcl6.dll
2018-08-02 22:57 . 2018-08-02 22:57 543624 ----a-w- c:\windows\system32\amdmcl64.dll
2018-08-02 22:57 . 2018-08-02 22:57 117128 ----a-w- c:\windows\SysWow64\amdmmcl.dll
2018-08-02 22:57 . 2018-08-02 22:57 373640 ----a-w- c:\windows\SysWow64\amdmcl32.dll
2018-08-02 22:48 . 2018-08-02 22:48 331144 ----a-w- c:\windows\system32\clinfo.exe
2018-08-02 22:48 . 2018-08-02 22:48 169864 ----a-w- c:\windows\system32\OpenCL.dll
2018-08-02 22:48 . 2018-08-02 22:48 146312 ----a-w- c:\windows\SysWow64\OpenCL.dll
2018-08-02 22:47 . 2018-08-02 22:47 60112264 ----a-w- c:\windows\system32\amdocl64.dll
2018-08-02 22:47 . 2018-08-02 22:47 26375560 ----a-w- c:\windows\system32\amdocl12cl64.dll
2018-08-02 22:47 . 2018-08-02 22:47 21076360 ----a-w- c:\windows\SysWow64\amdocl12cl.dll
2018-08-02 22:46 . 2018-08-02 22:46 49420168 ----a-w- c:\windows\SysWow64\amdocl.dll
2018-08-02 22:45 . 2018-08-02 22:45 1235336 ----a-w- c:\windows\system32\coinst_18.30.dll
2018-08-02 22:34 . 2018-08-02 22:34 31331208 ----a-w- c:\windows\SysWow64\atioglxx.dll
2018-08-02 22:34 . 2018-07-06 09:00 38205832 ----a-w- c:\windows\system32\atio6axx.dll
2018-08-02 22:31 . 2018-08-02 22:31 16144376 ----a-w- c:\windows\system32\atidxx64.dll
2018-08-02 22:31 . 2017-06-12 21:13 13227392 ----a-w- c:\windows\SysWow64\atidxx32.dll
2018-08-02 22:30 . 2018-08-02 22:30 1927264 ----a-w- c:\windows\system32\aticfx64.dll
2018-08-02 22:30 . 2017-06-12 21:13 1569336 ----a-w- c:\windows\SysWow64\aticfx32.dll
2018-08-02 22:30 . 2018-08-02 22:30 36744 ----a-w- c:\windows\system32\RapidFireServer64.dll
2018-08-02 22:30 . 2018-08-02 22:30 33672 ----a-w- c:\windows\SysWow64\RapidFireServer.dll
2018-08-02 22:30 . 2018-08-02 22:30 561544 ----a-w- c:\windows\system32\Rapidfire64.dll
2018-08-02 22:30 . 2018-08-02 22:30 472456 ----a-w- c:\windows\SysWow64\Rapidfire.dll
2018-08-02 22:30 . 2018-08-02 22:30 153992 ----a-w- c:\windows\system32\mantleaxl64.dll
2018-08-02 22:30 . 2018-08-02 22:30 129928 ----a-w- c:\windows\SysWow64\mantleaxl32.dll
2018-08-02 22:30 . 2018-08-02 22:30 176008 ----a-w- c:\windows\system32\mantle64.dll
2018-08-02 22:30 . 2018-08-02 22:30 144776 ----a-w- c:\windows\SysWow64\mantle32.dll
2018-08-02 22:30 . 2018-08-02 22:30 349064 ----a-w- c:\windows\system32\ATIODE.exe
2018-08-02 22:30 . 2018-08-02 22:30 67464 ----a-w- c:\windows\system32\ATIODCLI.exe
2018-08-02 22:29 . 2018-08-02 22:29 14957960 ----a-w- c:\windows\system32\amdmantle64.dll
2018-08-02 22:29 . 2018-08-02 22:29 12391304 ----a-w- c:\windows\SysWow64\amdmantle32.dll
2018-08-02 22:29 . 2018-08-02 22:29 910728 ----a-w- c:\windows\system32\amdlvr64.dll
2018-08-02 22:29 . 2018-08-02 22:29 741256 ----a-w- c:\windows\SysWow64\amdlvr32.dll
2018-08-02 22:25 . 2018-08-02 22:25 9936 ----a-w- c:\windows\SysWow64\detoured.dll
2018-08-02 22:25 . 2018-08-02 22:25 9936 ----a-w- c:\windows\system32\detoured.dll
2018-08-02 22:25 . 2017-06-12 21:14 173168 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2018-08-02 22:25 . 2018-08-02 22:25 205128 ----a-w- c:\windows\system32\atiuxp64.dll
2018-08-02 22:25 . 2017-06-12 21:14 10501008 ----a-w- c:\windows\SysWow64\atiumdag.dll
2018-08-02 22:25 . 2018-08-02 22:25 12897328 ----a-w- c:\windows\system32\atiumd64.dll
2018-08-02 22:25 . 2017-06-12 21:14 155176 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2018-08-02 22:25 . 2018-08-02 22:25 189136 ----a-w- c:\windows\system32\atiu9p64.dll
2018-08-02 22:24 . 2018-08-02 22:24 467848 ----a-w- c:\windows\system32\GameManager64.dll
2018-08-02 22:24 . 2018-08-02 22:24 373640 ----a-w- c:\windows\SysWow64\GameManager32.dll
2018-08-02 22:24 . 2018-08-02 22:24 480648 ----a-w- c:\windows\system32\dgtrayicon.exe
2018-08-02 22:24 . 2018-08-02 22:24 489352 ----a-w- c:\windows\system32\atitmm64.dll
2018-08-02 22:24 . 2018-08-02 22:24 115592 ----a-w- c:\windows\system32\atimuixx.dll
2018-08-02 22:24 . 2018-08-02 22:24 578440 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2018-08-02 22:23 . 2018-08-02 22:23 135048 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2018-08-02 22:23 . 2018-08-02 22:23 135048 ----a-w- c:\windows\system32\atiglpxx.dll
2018-08-02 22:23 . 2018-08-02 22:23 209800 ----a-w- c:\windows\SysWow64\atigktxx.dll
2018-08-02 22:23 . 2018-07-06 09:00 240520 ----a-w- c:\windows\system32\atig6txx.dll
2018-08-02 22:23 . 2018-07-06 09:00 158088 ----a-w- c:\windows\system32\atig6pxx.dll
2018-08-02 22:23 . 2018-08-02 22:23 496008 ----a-w- c:\windows\system32\atiesrxx.exe
2018-08-02 22:23 . 2018-08-02 22:23 737672 ----a-w- c:\windows\system32\atieclxx.exe
2018-08-02 22:23 . 2018-08-02 22:23 423304 ----a-w- c:\windows\system32\atieah64.exe
2018-08-02 22:23 . 2018-08-02 22:23 341384 ----a-w- c:\windows\SysWow64\atieah32.exe
2018-08-02 22:23 . 2018-08-02 22:23 458632 ----a-w- c:\windows\system32\atidemgy.dll
2018-08-02 22:23 . 2018-08-02 22:23 1183624 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2018-08-02 22:23 . 2018-08-02 22:23 1183624 ----a-w- c:\windows\SysWow64\atiadlxx.dll
2018-08-02 22:23 . 2018-07-06 09:00 1619848 ----a-w- c:\windows\system32\atiadlxx.dll
2018-08-02 22:21 . 2018-08-02 22:21 457096 ----a-w- c:\windows\system32\amdgfxinfo64.dll
2018-08-02 22:21 . 2018-08-02 22:21 370568 ----a-w- c:\windows\SysWow64\amdgfxinfo32.dll
2018-08-02 22:21 . 2018-08-02 22:21 223624 ----a-w- c:\windows\system32\drivers\amdacpksd.sys
2018-08-02 16:12 . 2018-08-02 16:12 148992 ----a-w- c:\windows\system32\amdihk64.dll
2018-08-02 16:11 . 2018-08-02 16:11 120320 ----a-w- c:\windows\SysWow64\amdihk32.dll
2018-08-02 02:59 . 2018-08-18 11:01 345600 ----a-w- c:\windows\system32\schannel.dll
2018-08-02 02:59 . 2018-08-18 11:01 190464 ----a-w- c:\windows\system32\rpchttp.dll
2018-08-02 02:41 . 2018-08-18 11:01 254464 ----a-w- c:\windows\SysWow64\schannel.dll
2018-08-02 02:41 . 2018-08-18 11:01 141312 ----a-w- c:\windows\SysWow64\rpchttp.dll
2018-08-02 02:40 . 2018-08-18 11:01 44544 ----a-w- c:\windows\apppatch\acwow64.dll
2018-07-27 14:05 . 2017-11-07 08:19 82816 ----a-w- c:\windows\system32\drivers\epfw.sys
2018-07-27 14:05 . 2017-11-07 08:19 110376 ----a-w- c:\windows\system32\drivers\epfwwfp.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Zoner Photo Studio Autoupdate"="c:\program files\ZONER\PHOTO STUDIO 18\Program32\ZPSTRAY.EXE" [2017-01-09 680520]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-09-16 115048]
"CanonQuickMenu"="c:\program files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" [2016-03-11 1314432]
"ControlCenterCount"="c:\program files (x86)\MSI\ControlCenter\ControlCenterCount.exe" [2012-03-26 872448]
"THX Audio Control Panel"="c:\program files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe" [2011-08-29 1517056]
"Super Charger"="c:\program files (x86)\MSI\Super Charger\Super Charger.exe" [2017-01-05 1022928]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2018-07-07 601424]
"NBAgent"="c:\program files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" [2012-01-13 1493288]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"UpdReg"=c:\windows\UpdReg.EXE
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MSI_DPCLTSERVICE;MSI_DPCLTSERVICE;c:\program files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe;c:\program files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe [x]
R2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
R2 Sentinel64;Sentinel64;c:\windows\System32\Drivers\Sentinel64.sys;c:\windows\SYSNATIVE\Drivers\Sentinel64.sys [x]
R3 AVerAF35;AVerMedia A835 USB DVB-T;c:\windows\system32\Drivers\AVerAF35.sys;c:\windows\SYSNATIVE\Drivers\AVerAF35.sys [x]
R3 cpuz143;cpuz143;c:\windows\temp\cpuz143\cpuz143_x64.sys;c:\windows\temp\cpuz143\cpuz143_x64.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 ESETCleanersDriver;ESET Cleaner Service;c:\windows\system32\Drivers\ESETCleanersDriver.sys;c:\windows\SYSNATIVE\Drivers\ESETCleanersDriver.sys [x]
R3 ew_usbccgpfilter;HwHandSet_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbccgpfilter.sys;c:\windows\SYSNATIVE\DRIVERS\ew_usbccgpfilter.sys [x]
R3 hitmanpro37;HitmanPro 3.7 Support Driver;c:\windows\system32\drivers\hitmanpro37.sys;c:\windows\SYSNATIVE\drivers\hitmanpro37.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 klvssbridge64_19.0.0;klvssbridge64_19.0.0;c:\program files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\vssbridge64.exe;c:\program files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\vssbridge64.exe [x]
R3 LGBusEnum;Logitech Gaming Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
R3 LGJoyXlCore;Logitech Translation Layer Driver (LGS);c:\windows\system32\drivers\LGJoyXlCore.sys;c:\windows\SYSNATIVE\drivers\LGJoyXlCore.sys [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 libusb0;libusb-win32 - Kernel Driver 01/18/2012 1.2.6.0;c:\windows\system32\DRIVERS\libusb0.sys;c:\windows\SYSNATIVE\DRIVERS\libusb0.sys [x]
R3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
R3 NTIOLib_1_0_2;NTIOLib_1_0_2;c:\program files (x86)\MSI\ControlCenter\NTIOLib_X64.sys;c:\program files (x86)\MSI\ControlCenter\NTIOLib_X64.sys [x]
R3 NTIOLib_MSISMB_CC;NTIOLib_MSISMB_CC;c:\program files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys;c:\program files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [x]
R3 PAC207;SoC PC-Camera;c:\windows\system32\DRIVERS\PFC027.SYS;c:\windows\SYSNATIVE\DRIVERS\PFC027.SYS [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 SaiHFF0C;SaiHFF0C;c:\windows\system32\DRIVERS\SaiHFF0C.sys;c:\windows\SYSNATIVE\DRIVERS\SaiHFF0C.sys [x]
R3 SaiUFF0C;SaiUFF0C;c:\windows\system32\DRIVERS\SaiUFF0C.sys;c:\windows\SYSNATIVE\DRIVERS\SaiUFF0C.sys [x]
R3 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 SNTUSB64;SafeNet USB SuperPro/UltraPro/HardwareKey;c:\windows\system32\DRIVERS\SNTUSB64.SYS;c:\windows\SYSNATIVE\DRIVERS\SNTUSB64.SYS [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64_prewin8.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64_prewin8.sys [x]
R3 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
S0 cm_km;AO Kaspersky Lab Cryptographic Module x64 (56 bit);c:\windows\system32\DRIVERS\cm_km.sys;c:\windows\SYSNATIVE\DRIVERS\cm_km.sys [x]
S0 edevmon;edevmon;c:\windows\system32\DRIVERS\edevmon.sys;c:\windows\SYSNATIVE\DRIVERS\edevmon.sys [x]
S0 fsbts;fsbts;c:\windows\system32\Drivers\fsbts.sys;c:\windows\SYSNATIVE\Drivers\fsbts.sys [x]
S0 FSProFilter2;FSPro File Filter 2;c:\windows\System32\Drivers\FSPFltd2.sys;c:\windows\SYSNATIVE\Drivers\FSPFltd2.sys [x]
S0 klbackupdisk;Kaspersky Lab klbackupdisk;c:\windows\system32\DRIVERS\klbackupdisk.sys;c:\windows\SYSNATIVE\DRIVERS\klbackupdisk.sys [x]
S0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\DRIVERS\NBVol.sys;c:\windows\SYSNATIVE\DRIVERS\NBVol.sys [x]
S0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\DRIVERS\NBVolUp.sys;c:\windows\SYSNATIVE\DRIVERS\NBVolUp.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;ESET Firewall;c:\windows\system32\DRIVERS\EpfwLWF.sys;c:\windows\SYSNATIVE\DRIVERS\EpfwLWF.sys [x]
S1 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfp.sys [x]
S1 Eve;EVE Protocol Driver;c:\windows\system32\DRIVERS\eve.sys;c:\windows\SYSNATIVE\DRIVERS\eve.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S1 klbackupflt;Kaspersky Lab klbackupflt;c:\windows\system32\DRIVERS\klbackupflt.sys;c:\windows\SYSNATIVE\DRIVERS\klbackupflt.sys [x]
S1 klhk;Kaspersky Lab service driver;c:\windows\system32\DRIVERS\klhk.sys;c:\windows\SYSNATIVE\DRIVERS\klhk.sys [x]
S1 klim6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]
S1 klpd;Kaspersky Lab format recognizer driver;c:\windows\system32\DRIVERS\klpd.sys;c:\windows\SYSNATIVE\DRIVERS\klpd.sys [x]
S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]
S1 klwtp;KLwtp - WFP callout traffic inspector;c:\windows\system32\DRIVERS\klwtp.sys;c:\windows\SYSNATIVE\DRIVERS\klwtp.sys [x]
S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]
S1 ndisrd;WinpkFilter LightWeight Filter;c:\windows\system32\DRIVERS\ndisrd.sys;c:\windows\SYSNATIVE\DRIVERS\ndisrd.sys [x]
S1 ZAM;ZAM Helper Driver;c:\windows\System32\drivers\zam64.sys;c:\windows\SYSNATIVE\drivers\zam64.sys [x]
S1 ZAM_Guard;ZAM Guard Driver;c:\windows\System32\drivers\zamguard64.sys;c:\windows\SYSNATIVE\drivers\zamguard64.sys [x]
S2 AGMService;Adobe Genuine Monitor Service;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [x]
S2 AGSService;Adobe Genuine Software Integrity Service;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 CIJSRegister;Czech Canon IJ Scan Utility register event;c:\program files (x86)\Canon\IJ Scan Utility\SETEVENT.exe;c:\program files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 ekbdflt;ekbdflt;c:\windows\system32\DRIVERS\ekbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\ekbdflt.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]
S2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe;c:\program files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe;c:\program files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [x]
S2 kldisk;kldisk;c:\windows\system32\DRIVERS\kldisk.sys;c:\windows\SYSNATIVE\DRIVERS\kldisk.sys [x]
S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
S2 MSI_LiveUpdate_Service;MSI Live Update Service;c:\program files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe;c:\program files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [x]
S2 MSI_SuperCharger;MSI_SuperCharger;c:\program files (x86)\MSI\Super Charger\ChargeService.exe;c:\program files (x86)\MSI\Super Charger\ChargeService.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S2 ZAMSvc;ZAM Controller Service;c:\program files (x86)\Zemana AntiMalware\ZAM.exe;c:\program files (x86)\Zemana AntiMalware\ZAM.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 klflt;Kaspersky Lab Kernel DLL;c:\windows\system32\DRIVERS\klflt.sys;c:\windows\SYSNATIVE\DRIVERS\klflt.sys [x]
S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]
S3 kltap;Kaspersky Security Data Escort Adapter;c:\windows\system32\DRIVERS\kltap.sys;c:\windows\SYSNATIVE\DRIVERS\kltap.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\Drivers\mbamswissarmy.sys;c:\windows\SYSNATIVE\Drivers\mbamswissarmy.sys [x]
S3 NTIOLib_1_0_3;NTIOLib_1_0_3;c:\program files (x86)\MSI\Super Charger\NTIOLib_X64.sys;c:\program files (x86)\MSI\Super Charger\NTIOLib_X64.sys [x]
S3 NTIOLib_MSIDPC;NTIOLib_MSIDPC;c:\program files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys;c:\program files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RDPDISPM;RDPDISPM;c:\windows\system32\DRIVERS\rdpdispm.sys;c:\windows\SYSNATIVE\DRIVERS\rdpdispm.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 RTSUER;Realtek USB Card Reader - UER;c:\windows\system32\Drivers\RtsUer.sys;c:\windows\SYSNATIVE\Drivers\RtsUer.sys [x]
S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.20);c:\windows\system32\DRIVERS\RtTeam620.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam620.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - NTIOLIB_1_0_4
*NewlyCreated* - NTIOLIB_MSIDPC
*Deregistered* - NTIOLib_1_0_4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A6EADE66-0000-0000-484E-7E8A45000000}]
2018-06-29 14:56 324080 ----a-w- c:\program files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll
.
Obsah adresáře 'Naplánované úlohy'
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2018-02-10 00:12 614856 ----a-w- c:\program files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2018-02-10 00:12 614856 ----a-w- c:\program files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2018-02-10 00:12 614856 ----a-w- c:\program files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2018-07-06 9268672]
"THXCfg64"="c:\windows\system32\THXCfg64.dll" [2011-05-13 26624]
"egui"="c:\program files\ESET\ESET Smart Security\ecmds.exe" [2018-07-27 178504]
"AdobeGCInvoker-1.0"="c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe" [2018-05-11 316392]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2016-07-01 508128]
"ZAM"="c:\program files (x86)\Zemana AntiMalware\ZAM.exe" [2017-08-09 15775888]
.
------- Doplňkový sken -------
.
mStart Page = about:blank
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 10.1.0.255 10.1.0.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
BHO-{EC1E29BB-F56A-45D8-B023-D3EF710FA0E0} - (no file)
Toolbar-{C500C267-63BF-451F-8797-4D720C9A2ED9} - (no file)
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
AddRemove-{046643f7-6206-46bb-8968-92c37fee39e0} - c:\programdata\Package Cache\{046643f7-6206-46bb-8968-92c37fee39e0}\WDAccessSetup.exe
AddRemove-{050d4fc8-5d48-4b8f-8972-47c82c46020f} - c:\programdata\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe
AddRemove-{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f} - c:\programdata\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
AddRemove-{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d} - c:\programdata\Package Cache\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}\VC_redist.x86.exe
AddRemove-{61087a79-ac85-455c-934d-1fa22cc64f36} - c:\programdata\Package Cache\{61087a79-ac85-455c-934d-1fa22cc64f36}\vcredist_x86.exe
AddRemove-{95716cce-fc71-413f-8ad5-56c2892d4b3a} - c:\programdata\Package Cache\{95716cce-fc71-413f-8ad5-56c2892d4b3a}\vcredist_x86.exe
AddRemove-{a1909659-0a08-4554-8af1-2175904903a1} - c:\programdata\Package Cache\{a1909659-0a08-4554-8af1-2175904903a1}\vcredist_x64.exe
AddRemove-{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6} - c:\programdata\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe
AddRemove-{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823} - c:\programdata\Package Cache\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}\VC_redist.x64.exe
AddRemove-{ef6b00ec-13e1-4c25-9064-b2f383cb8412} - c:\programdata\Package Cache\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}\vcredist_x64.exe
AddRemove-{f65db027-aff3-4070-886a-0d87064aabb1} - c:\programdata\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_30_0_0_154_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_30_0_0_154_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
"Version"=hex:55,17,84,db,a8,a2,16,ad,2b,f1,df,c2,3e,ed,65,66,2d,02,6a,bc,bd,
dd,4a,db,bc,49,d4,00,5a,35,8b,82,71,7a,a8,a4,1d,f4,2e,85,a3,12,06,f6,76,aa,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_30_0_0_154_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_30_0_0_154_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_30_0_0_154.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.30"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_30_0_0_154.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_30_0_0_154.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_30_0_0_154.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
"Version"=hex:55,17,84,db,a8,a2,16,ad,2b,f1,df,c2,3e,ed,65,66,2d,02,6a,bc,bd,
dd,4a,db,bc,49,d4,00,5a,35,8b,82,71,7a,a8,a4,1d,f4,2e,85,a3,12,06,f6,76,aa,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0\Alias]
@=""
"0"="ActionsPane Schema for Add-Ins"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Windows Live\Family Safety\fsssvc.exe
c:\program files (x86)\Canon\IJPLM\IJPLMSVC.EXE
c:\program files (x86)\Photodex\ProShow Producer\ScsiAccess.exe
c:\program files\Malwarebytes\Anti-Malware\mbamtray.exe
c:\program files (x86)\Hard Disk Sentinel\HDSentinel.exe
c:\program files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
.
**************************************************************************
.
Celkový čas: 2018-09-14 19:26:43 - počítač byl restartován
ComboFix-quarantined-files.txt 2018-09-14 17:26
.
Před spuštěním: Volných bajtů: 81 707 036 672
Po spuštění: Volných bajtů: 80 875 130 880
.
- - End Of File - - D593B216392BAD527FF7E78318269BA9
A36C5E4F47E84449FF07ED3517B43A31

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 38967
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o pomoc -vyskakující okno

Příspěvekod jaro3 » 14 zář 2018 19:37

Nejprve je třeba odinstalovat Kaspersky Lab:

Stáhněte si a nainstalujte Revo Uninstaller FreePlease download and install Revo Uninstaller Free
http://www.revouninstaller.com/start_fr ... nload.html
Poklepáním na Revo Uninstaller jej spustit.
Ze seznamu programů klikněte dvakrát na programu odstranit
Až budete vyzváni, zda chcete odinstalovat klepněte na tlačítko Ano.
Ujistěte se, že je vybrána možnost Mírný potom klepněte na tlačítko Další.
Program bude probíhat, Pokud budete vyzváni znovu klepněte na tlačítko Ano
Při vestavěný Uninstaller je dokončena klepněte na tlačítko Další.
Jakmile program hledal zbytky klepněte na tlačítko Další.
Zkontrolujte / zaškrtněte položky Bolded jen na seznamu a potom klepněte na tlačítko Odstranit
Po vyzvání klepněte na Ano a pak na další.
další na všechny složky, které se nachází a vyberte možnost odstranění
Po zobrazení výzvy vyberte ano, pak na další
Poté, co udělal na tlačítko Dokončit.


Pak udělej znovu sken Combofixem
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Mira2506
Level 2.5
Level 2.5
Příspěvky: 269
Registrován: listopad 06
Pohlaví: Muž

Re: Prosím o pomoc -vyskakující okno

Příspěvekod Mira2506 » 15 zář 2018 06:55

Když spustim Revouninstal,tak tam nevidim program Kaspersky Lab,jak mám tedy spustit odinstalaci.Program neni v seznamu pro odinstalaci :eh: .

Mira2506
Level 2.5
Level 2.5
Příspěvky: 269
Registrován: listopad 06
Pohlaví: Muž

Re: Prosím o pomoc -vyskakující okno

Příspěvekod Mira2506 » 15 zář 2018 12:46

Zasílám sken Combofixu:

ComboFix 18-08-08.01 - Mira 15.09.2018 12:31:13.8.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.16354.12561 [GMT 2:00]
Spuštěný z: c:\users\Mira\Desktop\ComboFix.exe
AV: ESET Security *Disabled/Updated* {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
FW: ESET Firewall *Disabled* {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
SP: ESET Security *Disabled/Updated* {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2018-08-15 do 2018-09-15 )))))))))))))))))))))))))))))))
.
.
2018-09-15 10:39 . 2018-09-15 10:39 -------- d-----w- c:\users\Public\AppData\Local\temp
2018-09-15 10:39 . 2018-09-15 10:39 -------- d-----w- c:\users\Default\AppData\Local\temp
2018-09-14 19:48 . 2018-09-14 19:48 -------- d-----w- c:\users\Mira\AppData\Local\VS Revo Group
2018-09-14 17:02 . 2018-09-14 17:02 203680 ----a-w- c:\windows\system32\drivers\zamguard64.sys
2018-09-14 17:02 . 2018-09-14 17:02 203680 ----a-w- c:\windows\system32\drivers\zam64.sys
2018-09-14 17:02 . 2018-09-14 17:02 -------- d-----w- c:\program files (x86)\Zemana AntiMalware
2018-09-14 16:14 . 2014-02-13 21:59 24064 ----a-w- c:\windows\zoek-delete.exe
2018-09-14 16:14 . 2018-09-15 10:39 -------- d-----w- c:\users\Mira\AppData\Local\Temp
2018-09-14 15:52 . 2018-09-14 16:10 -------- d-----w- C:\zoek_backup
2018-09-13 18:56 . 2018-09-13 18:56 -------- d-----w- c:\programdata\Sophos
2018-09-13 18:56 . 2018-09-13 18:56 -------- d-----w- c:\program files (x86)\Sophos
2018-09-13 14:44 . 2018-09-15 10:23 259360 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2018-09-13 14:44 . 2018-07-12 06:42 152688 ----a-w- c:\windows\system32\drivers\mbae64.sys
2018-09-12 20:15 . 2018-09-13 14:44 -------- d-----w- c:\programdata\Malwarebytes
2018-09-12 20:15 . 2018-09-12 20:15 -------- d-----w- c:\program files\Malwarebytes
2018-09-08 18:33 . 2018-09-08 18:45 -------- d-----w- c:\program files (x86)\Titanfall 2
2018-09-06 16:51 . 2018-09-06 16:51 -------- d-----w- c:\users\Mira\AppData\Local\Deskshare.com
2018-09-06 16:24 . 2018-09-07 22:05 -------- d-----w- c:\program files (x86)\Deskshare
2018-09-02 20:02 . 2018-09-02 20:02 -------- d-----w- c:\program files (x86)\F.E.A.R. 3
2018-09-01 15:09 . 2018-09-01 15:09 -------- d---a-w- C:\KRD2018_Data
2018-09-01 08:12 . 2018-09-01 08:12 -------- d-----w- c:\users\Mira\AppData\Local\mbam
2018-08-19 14:57 . 2018-08-19 14:57 -------- d-----w- c:\program files (x86)\qBittorrent
2018-08-19 11:32 . 2018-08-19 11:32 219328 ----a-w- c:\windows\system32\drivers\klflt.sys
2018-08-19 11:32 . 2018-08-19 11:32 152360 ----a-w- c:\windows\system32\klhkum.dll
2018-08-19 11:32 . 2018-08-19 11:32 1193160 ----a-w- c:\windows\system32\drivers\klhk.sys
2018-08-19 11:32 . 2018-08-19 11:32 1127104 ----a-w- c:\windows\system32\drivers\klif.sys
2018-08-19 11:28 . 2018-08-19 11:28 -------- d-----w- c:\programdata\Kaspersky Lab Setup Files
2018-08-19 11:19 . 2018-08-19 11:19 -------- d-----w- c:\windows\system32\drivers\NSSx64
2018-08-19 11:19 . 2018-08-19 11:19 -------- d-----w- c:\program files (x86)\NortonInstaller
2018-08-19 10:20 . 2011-12-01 09:42 15920 ----a-w- c:\windows\system32\drivers\NBVolUp.sys
2018-08-19 10:20 . 2011-12-01 09:42 72240 ----a-w- c:\windows\system32\drivers\NBVol.sys
2018-08-19 10:20 . 2018-08-19 10:37 -------- d-----w- c:\program files (x86)\Nero
2018-08-19 08:11 . 2018-08-19 08:11 -------- d-----w- c:\programdata\Doctor Web
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2018-09-15 10:19 . 2016-11-16 21:36 65536 ----a-w- c:\windows\system32\spu_storage.bin
2018-09-14 14:52 . 2018-07-12 19:32 28272 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2018-08-19 09:32 . 2016-12-29 15:56 485512 ----a-w- c:\windows\system32\drivers\trufos.sys
2018-08-18 11:07 . 2011-05-28 16:48 137343192 -c--a-w- c:\windows\system32\MRT.exe
2018-08-14 14:15 . 2012-04-07 16:12 842240 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2018-08-14 14:15 . 2011-05-28 12:15 175104 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2018-08-06 15:05 . 2018-08-06 15:05 716789 ----a-w- c:\windows\SysWow64\unins000.exe
2018-08-02 23:00 . 2018-07-06 09:00 12032128 ----a-w- c:\windows\SysWow64\atiumdvt.dll
2018-08-02 22:59 . 2017-06-12 21:12 11973936 ----a-w- c:\windows\SysWow64\atiumdva.dll
2018-08-02 22:59 . 2018-08-02 22:59 12652688 ----a-w- c:\windows\system32\atiumd6t.dll
2018-08-02 22:59 . 2018-08-02 22:59 12580112 ----a-w- c:\windows\system32\atiumd6a.dll
2018-08-02 22:59 . 2018-08-02 22:59 126848 ----a-w- c:\windows\system32\atimpc64.dll
2018-08-02 22:59 . 2018-08-02 22:59 126848 ----a-w- c:\windows\system32\amdpcom64.dll
2018-08-02 22:59 . 2018-08-02 22:59 103664 ----a-w- c:\windows\SysWow64\atimpc32.dll
2018-08-02 22:59 . 2018-08-02 22:59 103664 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2018-08-02 22:59 . 2018-08-02 22:59 188112 ----a-w- c:\windows\system32\amdhcp64.dll
2018-08-02 22:59 . 2018-08-02 22:59 162880 ----a-w- c:\windows\SysWow64\amdhcp32.dll
2018-08-02 22:59 . 2018-08-02 22:59 134040 ----a-w- c:\windows\system32\amdave64.dll
2018-08-02 22:59 . 2018-08-02 22:59 114976 ----a-w- c:\windows\SysWow64\amdave32.dll
2018-08-02 22:58 . 2018-08-02 22:58 150408 ----a-w- c:\windows\system32\atisamu64.dll
2018-08-02 22:58 . 2018-08-02 22:58 127368 ----a-w- c:\windows\SysWow64\atisamu32.dll
2018-08-02 22:58 . 2018-08-02 22:58 46783368 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2018-08-02 22:58 . 2018-08-02 22:58 60296 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2018-08-02 22:58 . 2018-08-02 22:58 3711880 ----a-w- c:\windows\system32\amfrt64.dll
2018-08-02 22:58 . 2018-08-02 22:58 3339144 ----a-w- c:\windows\SysWow64\amfrt32.dll
2018-08-02 22:57 . 2018-08-02 22:57 15971720 ----a-w- c:\windows\system32\amdvlk64.dll
2018-08-02 22:57 . 2018-08-02 22:57 13802888 ----a-w- c:\windows\SysWow64\amdvlk32.dll
2018-08-02 22:57 . 2018-08-02 22:57 167304 ----a-w- c:\windows\system32\amduve64.dll
2018-08-02 22:57 . 2018-08-02 22:57 142728 ----a-w- c:\windows\SysWow64\amduve32.dll
2018-08-02 22:57 . 2018-08-02 22:57 139144 ----a-w- c:\windows\system32\amdmmcl6.dll
2018-08-02 22:57 . 2018-08-02 22:57 543624 ----a-w- c:\windows\system32\amdmcl64.dll
2018-08-02 22:57 . 2018-08-02 22:57 117128 ----a-w- c:\windows\SysWow64\amdmmcl.dll
2018-08-02 22:57 . 2018-08-02 22:57 373640 ----a-w- c:\windows\SysWow64\amdmcl32.dll
2018-08-02 22:48 . 2018-08-02 22:48 331144 ----a-w- c:\windows\system32\clinfo.exe
2018-08-02 22:48 . 2018-08-02 22:48 169864 ----a-w- c:\windows\system32\OpenCL.dll
2018-08-02 22:48 . 2018-08-02 22:48 146312 ----a-w- c:\windows\SysWow64\OpenCL.dll
2018-08-02 22:47 . 2018-08-02 22:47 60112264 ----a-w- c:\windows\system32\amdocl64.dll
2018-08-02 22:47 . 2018-08-02 22:47 26375560 ----a-w- c:\windows\system32\amdocl12cl64.dll
2018-08-02 22:47 . 2018-08-02 22:47 21076360 ----a-w- c:\windows\SysWow64\amdocl12cl.dll
2018-08-02 22:46 . 2018-08-02 22:46 49420168 ----a-w- c:\windows\SysWow64\amdocl.dll
2018-08-02 22:45 . 2018-08-02 22:45 1235336 ----a-w- c:\windows\system32\coinst_18.30.dll
2018-08-02 22:34 . 2018-08-02 22:34 31331208 ----a-w- c:\windows\SysWow64\atioglxx.dll
2018-08-02 22:34 . 2018-07-06 09:00 38205832 ----a-w- c:\windows\system32\atio6axx.dll
2018-08-02 22:31 . 2018-08-02 22:31 16144376 ----a-w- c:\windows\system32\atidxx64.dll
2018-08-02 22:31 . 2017-06-12 21:13 13227392 ----a-w- c:\windows\SysWow64\atidxx32.dll
2018-08-02 22:30 . 2018-08-02 22:30 1927264 ----a-w- c:\windows\system32\aticfx64.dll
2018-08-02 22:30 . 2017-06-12 21:13 1569336 ----a-w- c:\windows\SysWow64\aticfx32.dll
2018-08-02 22:30 . 2018-08-02 22:30 36744 ----a-w- c:\windows\system32\RapidFireServer64.dll
2018-08-02 22:30 . 2018-08-02 22:30 33672 ----a-w- c:\windows\SysWow64\RapidFireServer.dll
2018-08-02 22:30 . 2018-08-02 22:30 561544 ----a-w- c:\windows\system32\Rapidfire64.dll
2018-08-02 22:30 . 2018-08-02 22:30 472456 ----a-w- c:\windows\SysWow64\Rapidfire.dll
2018-08-02 22:30 . 2018-08-02 22:30 153992 ----a-w- c:\windows\system32\mantleaxl64.dll
2018-08-02 22:30 . 2018-08-02 22:30 129928 ----a-w- c:\windows\SysWow64\mantleaxl32.dll
2018-08-02 22:30 . 2018-08-02 22:30 176008 ----a-w- c:\windows\system32\mantle64.dll
2018-08-02 22:30 . 2018-08-02 22:30 144776 ----a-w- c:\windows\SysWow64\mantle32.dll
2018-08-02 22:30 . 2018-08-02 22:30 349064 ----a-w- c:\windows\system32\ATIODE.exe
2018-08-02 22:30 . 2018-08-02 22:30 67464 ----a-w- c:\windows\system32\ATIODCLI.exe
2018-08-02 22:29 . 2018-08-02 22:29 14957960 ----a-w- c:\windows\system32\amdmantle64.dll
2018-08-02 22:29 . 2018-08-02 22:29 12391304 ----a-w- c:\windows\SysWow64\amdmantle32.dll
2018-08-02 22:29 . 2018-08-02 22:29 910728 ----a-w- c:\windows\system32\amdlvr64.dll
2018-08-02 22:29 . 2018-08-02 22:29 741256 ----a-w- c:\windows\SysWow64\amdlvr32.dll
2018-08-02 22:25 . 2018-08-02 22:25 9936 ----a-w- c:\windows\SysWow64\detoured.dll
2018-08-02 22:25 . 2018-08-02 22:25 9936 ----a-w- c:\windows\system32\detoured.dll
2018-08-02 22:25 . 2017-06-12 21:14 173168 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2018-08-02 22:25 . 2018-08-02 22:25 205128 ----a-w- c:\windows\system32\atiuxp64.dll
2018-08-02 22:25 . 2017-06-12 21:14 10501008 ----a-w- c:\windows\SysWow64\atiumdag.dll
2018-08-02 22:25 . 2018-08-02 22:25 12897328 ----a-w- c:\windows\system32\atiumd64.dll
2018-08-02 22:25 . 2017-06-12 21:14 155176 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2018-08-02 22:25 . 2018-08-02 22:25 189136 ----a-w- c:\windows\system32\atiu9p64.dll
2018-08-02 22:24 . 2018-08-02 22:24 467848 ----a-w- c:\windows\system32\GameManager64.dll
2018-08-02 22:24 . 2018-08-02 22:24 373640 ----a-w- c:\windows\SysWow64\GameManager32.dll
2018-08-02 22:24 . 2018-08-02 22:24 480648 ----a-w- c:\windows\system32\dgtrayicon.exe
2018-08-02 22:24 . 2018-08-02 22:24 489352 ----a-w- c:\windows\system32\atitmm64.dll
2018-08-02 22:24 . 2018-08-02 22:24 115592 ----a-w- c:\windows\system32\atimuixx.dll
2018-08-02 22:24 . 2018-08-02 22:24 578440 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2018-08-02 22:23 . 2018-08-02 22:23 135048 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2018-08-02 22:23 . 2018-08-02 22:23 135048 ----a-w- c:\windows\system32\atiglpxx.dll
2018-08-02 22:23 . 2018-08-02 22:23 209800 ----a-w- c:\windows\SysWow64\atigktxx.dll
2018-08-02 22:23 . 2018-07-06 09:00 240520 ----a-w- c:\windows\system32\atig6txx.dll
2018-08-02 22:23 . 2018-07-06 09:00 158088 ----a-w- c:\windows\system32\atig6pxx.dll
2018-08-02 22:23 . 2018-08-02 22:23 496008 ----a-w- c:\windows\system32\atiesrxx.exe
2018-08-02 22:23 . 2018-08-02 22:23 737672 ----a-w- c:\windows\system32\atieclxx.exe
2018-08-02 22:23 . 2018-08-02 22:23 423304 ----a-w- c:\windows\system32\atieah64.exe
2018-08-02 22:23 . 2018-08-02 22:23 341384 ----a-w- c:\windows\SysWow64\atieah32.exe
2018-08-02 22:23 . 2018-08-02 22:23 458632 ----a-w- c:\windows\system32\atidemgy.dll
2018-08-02 22:23 . 2018-08-02 22:23 1183624 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2018-08-02 22:23 . 2018-08-02 22:23 1183624 ----a-w- c:\windows\SysWow64\atiadlxx.dll
2018-08-02 22:23 . 2018-07-06 09:00 1619848 ----a-w- c:\windows\system32\atiadlxx.dll
2018-08-02 22:21 . 2018-08-02 22:21 457096 ----a-w- c:\windows\system32\amdgfxinfo64.dll
2018-08-02 22:21 . 2018-08-02 22:21 370568 ----a-w- c:\windows\SysWow64\amdgfxinfo32.dll
2018-08-02 22:21 . 2018-08-02 22:21 223624 ----a-w- c:\windows\system32\drivers\amdacpksd.sys
2018-08-02 16:12 . 2018-08-02 16:12 148992 ----a-w- c:\windows\system32\amdihk64.dll
2018-08-02 16:11 . 2018-08-02 16:11 120320 ----a-w- c:\windows\SysWow64\amdihk32.dll
2018-08-02 02:59 . 2018-08-18 11:01 345600 ----a-w- c:\windows\system32\schannel.dll
2018-08-02 02:59 . 2018-08-18 11:01 190464 ----a-w- c:\windows\system32\rpchttp.dll
2018-08-02 02:41 . 2018-08-18 11:01 254464 ----a-w- c:\windows\SysWow64\schannel.dll
2018-08-02 02:41 . 2018-08-18 11:01 141312 ----a-w- c:\windows\SysWow64\rpchttp.dll
2018-08-02 02:40 . 2018-08-18 11:01 44544 ----a-w- c:\windows\apppatch\acwow64.dll
2018-07-27 14:05 . 2017-11-07 08:19 82816 ----a-w- c:\windows\system32\drivers\epfw.sys
2018-07-27 14:05 . 2017-11-07 08:19 110376 ----a-w- c:\windows\system32\drivers\epfwwfp.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Zoner Photo Studio Autoupdate"="c:\program files\ZONER\PHOTO STUDIO 18\Program32\ZPSTRAY.EXE" [2017-01-09 680520]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-09-16 115048]
"CanonQuickMenu"="c:\program files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" [2016-03-11 1314432]
"ControlCenterCount"="c:\program files (x86)\MSI\ControlCenter\ControlCenterCount.exe" [2012-03-26 872448]
"THX Audio Control Panel"="c:\program files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe" [2011-08-29 1517056]
"Super Charger"="c:\program files (x86)\MSI\Super Charger\Super Charger.exe" [2017-01-05 1022928]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2018-07-07 601424]
"NBAgent"="c:\program files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" [2012-01-13 1493288]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"UpdReg"=c:\windows\UpdReg.EXE
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MSI_DPCLTSERVICE;MSI_DPCLTSERVICE;c:\program files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe;c:\program files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe [x]
R2 Sentinel64;Sentinel64;c:\windows\System32\Drivers\Sentinel64.sys;c:\windows\SYSNATIVE\Drivers\Sentinel64.sys [x]
R3 AVerAF35;AVerMedia A835 USB DVB-T;c:\windows\system32\Drivers\AVerAF35.sys;c:\windows\SYSNATIVE\Drivers\AVerAF35.sys [x]
R3 cpuz143;cpuz143;c:\windows\temp\cpuz143\cpuz143_x64.sys;c:\windows\temp\cpuz143\cpuz143_x64.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 ESETCleanersDriver;ESET Cleaner Service;c:\windows\system32\Drivers\ESETCleanersDriver.sys;c:\windows\SYSNATIVE\Drivers\ESETCleanersDriver.sys [x]
R3 ew_usbccgpfilter;HwHandSet_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbccgpfilter.sys;c:\windows\SYSNATIVE\DRIVERS\ew_usbccgpfilter.sys [x]
R3 hitmanpro37;HitmanPro 3.7 Support Driver;c:\windows\system32\drivers\hitmanpro37.sys;c:\windows\SYSNATIVE\drivers\hitmanpro37.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 klvssbridge64_19.0.0;klvssbridge64_19.0.0;c:\program files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\vssbridge64.exe;c:\program files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\vssbridge64.exe [x]
R3 LGBusEnum;Logitech Gaming Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
R3 LGJoyXlCore;Logitech Translation Layer Driver (LGS);c:\windows\system32\drivers\LGJoyXlCore.sys;c:\windows\SYSNATIVE\drivers\LGJoyXlCore.sys [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 libusb0;libusb-win32 - Kernel Driver 01/18/2012 1.2.6.0;c:\windows\system32\DRIVERS\libusb0.sys;c:\windows\SYSNATIVE\DRIVERS\libusb0.sys [x]
R3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
R3 NTIOLib_1_0_2;NTIOLib_1_0_2;c:\program files (x86)\MSI\ControlCenter\NTIOLib_X64.sys;c:\program files (x86)\MSI\ControlCenter\NTIOLib_X64.sys [x]
R3 NTIOLib_MSISMB_CC;NTIOLib_MSISMB_CC;c:\program files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys;c:\program files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [x]
R3 PAC207;SoC PC-Camera;c:\windows\system32\DRIVERS\PFC027.SYS;c:\windows\SYSNATIVE\DRIVERS\PFC027.SYS [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 SaiHFF0C;SaiHFF0C;c:\windows\system32\DRIVERS\SaiHFF0C.sys;c:\windows\SYSNATIVE\DRIVERS\SaiHFF0C.sys [x]
R3 SaiUFF0C;SaiUFF0C;c:\windows\system32\DRIVERS\SaiUFF0C.sys;c:\windows\SYSNATIVE\DRIVERS\SaiUFF0C.sys [x]
R3 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 SNTUSB64;SafeNet USB SuperPro/UltraPro/HardwareKey;c:\windows\system32\DRIVERS\SNTUSB64.SYS;c:\windows\SYSNATIVE\DRIVERS\SNTUSB64.SYS [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
S0 cm_km;AO Kaspersky Lab Cryptographic Module x64 (56 bit);c:\windows\system32\DRIVERS\cm_km.sys;c:\windows\SYSNATIVE\DRIVERS\cm_km.sys [x]
S0 edevmon;edevmon;c:\windows\system32\DRIVERS\edevmon.sys;c:\windows\SYSNATIVE\DRIVERS\edevmon.sys [x]
S0 fsbts;fsbts;c:\windows\system32\Drivers\fsbts.sys;c:\windows\SYSNATIVE\Drivers\fsbts.sys [x]
S0 FSProFilter2;FSPro File Filter 2;c:\windows\System32\Drivers\FSPFltd2.sys;c:\windows\SYSNATIVE\Drivers\FSPFltd2.sys [x]
S0 klbackupdisk;Kaspersky Lab klbackupdisk;c:\windows\system32\DRIVERS\klbackupdisk.sys;c:\windows\SYSNATIVE\DRIVERS\klbackupdisk.sys [x]
S0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\DRIVERS\NBVol.sys;c:\windows\SYSNATIVE\DRIVERS\NBVol.sys [x]
S0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\DRIVERS\NBVolUp.sys;c:\windows\SYSNATIVE\DRIVERS\NBVolUp.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;ESET Firewall;c:\windows\system32\DRIVERS\EpfwLWF.sys;c:\windows\SYSNATIVE\DRIVERS\EpfwLWF.sys [x]
S1 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfp.sys [x]
S1 Eve;EVE Protocol Driver;c:\windows\system32\DRIVERS\eve.sys;c:\windows\SYSNATIVE\DRIVERS\eve.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S1 klbackupflt;Kaspersky Lab klbackupflt;c:\windows\system32\DRIVERS\klbackupflt.sys;c:\windows\SYSNATIVE\DRIVERS\klbackupflt.sys [x]
S1 klhk;Kaspersky Lab service driver;c:\windows\system32\DRIVERS\klhk.sys;c:\windows\SYSNATIVE\DRIVERS\klhk.sys [x]
S1 klim6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]
S1 klpd;Kaspersky Lab format recognizer driver;c:\windows\system32\DRIVERS\klpd.sys;c:\windows\SYSNATIVE\DRIVERS\klpd.sys [x]
S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]
S1 klwtp;KLwtp - WFP callout traffic inspector;c:\windows\system32\DRIVERS\klwtp.sys;c:\windows\SYSNATIVE\DRIVERS\klwtp.sys [x]
S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]
S1 ndisrd;WinpkFilter LightWeight Filter;c:\windows\system32\DRIVERS\ndisrd.sys;c:\windows\SYSNATIVE\DRIVERS\ndisrd.sys [x]
S1 ZAM;ZAM Helper Driver;c:\windows\System32\drivers\zam64.sys;c:\windows\SYSNATIVE\drivers\zam64.sys [x]
S1 ZAM_Guard;ZAM Guard Driver;c:\windows\System32\drivers\zamguard64.sys;c:\windows\SYSNATIVE\drivers\zamguard64.sys [x]
S2 AGMService;Adobe Genuine Monitor Service;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [x]
S2 AGSService;Adobe Genuine Software Integrity Service;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 CIJSRegister;Czech Canon IJ Scan Utility register event;c:\program files (x86)\Canon\IJ Scan Utility\SETEVENT.exe;c:\program files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 ekbdflt;ekbdflt;c:\windows\system32\DRIVERS\ekbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\ekbdflt.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]
S2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe;c:\program files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe;c:\program files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [x]
S2 kldisk;kldisk;c:\windows\system32\DRIVERS\kldisk.sys;c:\windows\SYSNATIVE\DRIVERS\kldisk.sys [x]
S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
S2 MSI_LiveUpdate_Service;MSI Live Update Service;c:\program files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe;c:\program files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [x]
S2 MSI_SuperCharger;MSI_SuperCharger;c:\program files (x86)\MSI\Super Charger\ChargeService.exe;c:\program files (x86)\MSI\Super Charger\ChargeService.exe [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S2 ZAMSvc;ZAM Controller Service;c:\program files (x86)\Zemana AntiMalware\ZAM.exe;c:\program files (x86)\Zemana AntiMalware\ZAM.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 klflt;Kaspersky Lab Kernel DLL;c:\windows\system32\DRIVERS\klflt.sys;c:\windows\SYSNATIVE\DRIVERS\klflt.sys [x]
S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\Drivers\mbamswissarmy.sys;c:\windows\SYSNATIVE\Drivers\mbamswissarmy.sys [x]
S3 NTIOLib_1_0_3;NTIOLib_1_0_3;c:\program files (x86)\MSI\Super Charger\NTIOLib_X64.sys;c:\program files (x86)\MSI\Super Charger\NTIOLib_X64.sys [x]
S3 NTIOLib_MSIDPC;NTIOLib_MSIDPC;c:\program files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys;c:\program files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RDPDISPM;RDPDISPM;c:\windows\system32\DRIVERS\rdpdispm.sys;c:\windows\SYSNATIVE\DRIVERS\rdpdispm.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 RTSUER;Realtek USB Card Reader - UER;c:\windows\system32\Drivers\RtsUer.sys;c:\windows\SYSNATIVE\Drivers\RtsUer.sys [x]
S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.20);c:\windows\system32\DRIVERS\RtTeam620.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam620.sys [x]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64_prewin8.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64_prewin8.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - NTIOLIB_MSIDPC
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A6EADE66-0000-0000-484E-7E8A45000000}]
2018-06-29 14:56 324080 ----a-w- c:\program files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2018-02-10 00:12 614856 ----a-w- c:\program files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2018-02-10 00:12 614856 ----a-w- c:\program files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2018-02-10 00:12 614856 ----a-w- c:\program files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2018-07-06 9268672]
"THXCfg64"="c:\windows\system32\THXCfg64.dll" [2011-05-13 26624]
"egui"="c:\program files\ESET\ESET Smart Security\ecmds.exe" [2018-07-27 178504]
"AdobeGCInvoker-1.0"="c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe" [2018-05-11 316392]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2016-07-01 508128]
"ZAM"="c:\program files (x86)\Zemana AntiMalware\ZAM.exe" [2017-08-09 15775888]
.
------- Doplňkový sken -------
.
mStart Page = about:blank
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{EC1E29BB-F56A-45D8-B023-D3EF710FA0E0} - (no file)
Toolbar-{C500C267-63BF-451F-8797-4D720C9A2ED9} - (no file)
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
AddRemove-{046643f7-6206-46bb-8968-92c37fee39e0} - c:\programdata\Package Cache\{046643f7-6206-46bb-8968-92c37fee39e0}\WDAccessSetup.exe
AddRemove-{050d4fc8-5d48-4b8f-8972-47c82c46020f} - c:\programdata\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe
AddRemove-{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f} - c:\programdata\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
AddRemove-{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d} - c:\programdata\Package Cache\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}\VC_redist.x86.exe
AddRemove-{61087a79-ac85-455c-934d-1fa22cc64f36} - c:\programdata\Package Cache\{61087a79-ac85-455c-934d-1fa22cc64f36}\vcredist_x86.exe
AddRemove-{95716cce-fc71-413f-8ad5-56c2892d4b3a} - c:\programdata\Package Cache\{95716cce-fc71-413f-8ad5-56c2892d4b3a}\vcredist_x86.exe
AddRemove-{a1909659-0a08-4554-8af1-2175904903a1} - c:\programdata\Package Cache\{a1909659-0a08-4554-8af1-2175904903a1}\vcredist_x64.exe
AddRemove-{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6} - c:\programdata\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe
AddRemove-{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823} - c:\programdata\Package Cache\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}\VC_redist.x64.exe
AddRemove-{ef6b00ec-13e1-4c25-9064-b2f383cb8412} - c:\programdata\Package Cache\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}\vcredist_x64.exe
AddRemove-{f65db027-aff3-4070-886a-0d87064aabb1} - c:\programdata\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_30_0_0_154_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_30_0_0_154_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
"Version"=hex:55,17,84,db,a8,a2,16,ad,2b,f1,df,c2,3e,ed,65,66,2d,02,6a,bc,bd,
dd,4a,db,bc,49,d4,00,5a,35,8b,82,71,7a,a8,a4,1d,f4,2e,85,a3,12,06,f6,76,aa,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_30_0_0_154_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_30_0_0_154_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_30_0_0_154.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.30"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_30_0_0_154.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_30_0_0_154.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_30_0_0_154.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
"Version"=hex:55,17,84,db,a8,a2,16,ad,2b,f1,df,c2,3e,ed,65,66,2d,02,6a,bc,bd,
dd,4a,db,bc,49,d4,00,5a,35,8b,82,71,7a,a8,a4,1d,f4,2e,85,a3,12,06,f6,76,aa,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0\Alias]
@=""
"0"="ActionsPane Schema for Add-Ins"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Celkový čas: 2018-09-15 12:41:32
ComboFix-quarantined-files.txt 2018-09-15 10:41
ComboFix2.txt 2018-09-14 17:26
.
Před spuštěním: Volných bajtů: 81 012 068 352
Po spuštění: Volných bajtů: 83 775 692 800
.
- - End Of File - - 47417394BA7F7CDCFDBFA7ACD9D5B9CE
A36C5E4F47E84449FF07ED3517B43A31


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot] a 2 hosti