prosím o kontrolu logu

[dudulusan]

RogueKiller V10.11.5.0 (x64) [Nov 9 2015] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com

Operační systém : Windows 10 (10.0.10240) 64 bits version
Spuštěno : Normální režim
Uživatel : Du?an [Práva správce]
Started from : C:\Users\Du?an\Desktop\RogueKillerX64 (1).exe
Mód : Prohledat Přerušeno -- Datum : 11/15/2015 10:17:02

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 0 ¤¤¤

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nenahrán [0x20]) ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: +++++
--- User ---
[MBR] b12f9101622fe35b25ce3aa510b992ee
[BSP] 4dbd1e8406f020d5be956857df73faec : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 718848 | Size: 238121 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 488392065 | Size: 122629 MB
2 - [XXXXXX] EXTEN (0x5) [VISIBLE] Offset (sectors): 739538942 | Size: 115836 MB
User = LL1 ... OK
User = LL2 ... OK

[Reklama]

[jaro3]

Ještě zoek.

+
nový log z HJT

+
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[dudulusan]

Zoek.exe v5.0.0.1 Updated 12-November-2015
Tool run by Duçan on 15.11.2015 at 10:22:52,16.
Microsoft Windows 10 Home 10.0.10240 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\DUAN~1\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

15.11.2015 10:24:51 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\COMMON~1\MicroWorld deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\UpdatusUser\AppData\LocalLow deleted successfully
C:\Users\DUAN~1\AppData\Local\CrashDumps deleted successfully
C:\Users\DUAN~1\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\DUAN~1\AppData\Local\EmieSiteList deleted successfully
C:\Users\DUAN~1\AppData\Local\EmieUserList deleted successfully
C:\Users\DUAN~1\AppData\Local\GameDVR deleted successfully
C:\Users\DUAN~1\AppData\Local\GHISLER deleted successfully
C:\Users\DUAN~1\AppData\Local\NetworkTiles deleted successfully
C:\Users\DUAN~1\AppData\Local\PackageStaging deleted successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\SharedWiFi deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\DUAN~1\AppData\Roaming\Mozilla\Firefox\Profiles\q3ncmkky.default\prefs.js:
user_pref("browser.startup.homepage", "https://www.seznam.cz/|about:home");

Added to C:\Users\DUAN~1\AppData\Roaming\Mozilla\Firefox\Profiles\q3ncmkky.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Wondershare deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\DUAN~1\AppData\Roaming\Mozilla\Firefox\Profiles\q3ncmkky.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [14.11.2015 13:58]

==== Firefox Extensions ======================

ProfilePath: C:\Users\DUAN~1\AppData\Roaming\Mozilla\Firefox\Profiles\q3ncmkky.default
- Czech CZ Language Pack - %ProfilePath%\extensions\langpack-cs@firefox.mozilla.org.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 46.0.2490.86

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[14.11.2015 13:55]

Avast Online Security - DUAN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

==== Chromium Fix ======================

C:\Users\DUAN~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\DUAN~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully
C:\Users\DUAN~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\DUAN~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\DUAN~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\DUAN~1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02

==== Reset Google Chrome ======================

C:\Users\DUAN~1\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\DUAN~1\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\DUAN~1\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\DUAN~1\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\DUAN~1\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\DUAN~1\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Users\DUAN~1\AppData\Local\Spartan\Cache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\DUAN~1\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\DUAN~1\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\DUAN~1\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=73 folders=6 8648699 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\DUAN~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 15.11.2015 at 10:48:32,38 ======================

[dudulusan]

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 10:55:27, on 15.11.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)

FIREFOX: 42.0 (x86 cs)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Dušan\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Dušan\Desktop\HijackThis (1).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Dušan\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Google Update] "C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Dušan\AppData\Local\Microsoft\OneDrive\17.3.5860.0512_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Dušan\AppData\Local\Microsoft\OneDrive\17.3.5860.0512_1\amd64"
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Unknown owner - C:\Program Files (x86)\Wondershare\WAF\WsAppService.exe (file missing)

--
End of file - 8145 bytes

[dudulusan]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-11-2015
Ran by Dušan (administrator) on DOMA (15-11-2015 11:01:55)
Running from C:\Users\Dušan\Desktop
Loaded Profiles: Dušan (Available Profiles: Dušan & UpdatusUser)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Farbar) C:\Users\Dušan\Desktop\FRST64 (1).exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-07-16] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795728 2015-07-03] (NVIDIA Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-07-25] (Synaptics Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-14] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-10-06] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3929088398-410600733-1857503271-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-3929088398-410600733-1857503271-1001\...\Run: [Google Update] => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.)
HKU\S-1-5-21-3929088398-410600733-1857503271-1001\...\RunOnce: [Uninstall C:\Users\Duaan\AppData\Local\Microsoft\OneDrive\17.3.5860.0512_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Dušan\AppData\Local\Microsoft\OneDrive\17.3.5860.0512_1\amd64"
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [177088 2015-07-25] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [155280 2015-07-25] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-14] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{41303a02-cc07-4743-94c1-a80708d06ecf}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-3929088398-410600733-1857503271-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-21] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-14] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-21] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-14] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-14] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-14] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Dušan\AppData\Roaming\Mozilla\Firefox\Profiles\q3ncmkky.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-21] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-14] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-14] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3929088398-410600733-1857503271-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-3929088398-410600733-1857503271-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Extension: Czech (CZ) Language Pack - C:\Users\Dušan\AppData\Roaming\Mozilla\Firefox\Profiles\q3ncmkky.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2015-11-10]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-11-14]

Chrome:
=======
CHR Profile: C:\Users\Dušan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Dušan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-15]
CHR Extension: (Dokumenty Google) - C:\Users\Dušan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-15]
CHR Extension: (Disk Google) - C:\Users\Dušan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-15]
CHR Extension: (YouTube) - C:\Users\Dušan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-15]
CHR Extension: (Vyhledávání Google) - C:\Users\Dušan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-15]
CHR Extension: (Tabulky Google) - C:\Users\Dušan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dušan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-15]
CHR Extension: (Avast Online Security) - C:\Users\Dušan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dušan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-15]
CHR Extension: (Gmail) - C:\Users\Dušan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-15]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-14]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-14] (AVAST Software)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032 2015-07-25] (Synaptics Incorporated)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 WsAppService; "C:\Program Files (x86)\Wondershare\WAF\WsAppService.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-14] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-14] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-14] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-14] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-14] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-14] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-14] (AVAST Software)
S3 ghsdiagMDM; C:\Windows\system32\DRIVERS\ghsdiagMDM.sys [122496 2015-08-16] (HS Incorporated)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
S3 nmwcd; C:\Windows\system32\drivers\ccdcmbx64.sys [19968 2011-08-17] (Nokia) [File not signed]
S3 nmwcdc; C:\Windows\system32\drivers\ccdcmbox64.sys [27136 2011-08-17] (Nokia) [File not signed]
S3 nmwcdnsucx64; C:\Windows\system32\drivers\nmwcdnsucx64.sys [12800 2011-08-17] (Nokia) [File not signed]
S3 nmwcdnsux64; C:\Windows\system32\drivers\nmwcdnsux64.sys [171008 2011-08-17] (Nokia) [File not signed]
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-25] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [9216 2011-08-17] (Nokia) [File not signed]
S3 UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [9216 2011-08-17] (Nokia) [File not signed]
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-15 11:01 - 2015-11-15 11:02 - 00013308 _____ C:\Users\Dušan\Desktop\FRST.txt
2015-11-15 11:01 - 2015-11-15 11:02 - 00000000 ____D C:\FRST
2015-11-15 11:01 - 2015-11-15 11:01 - 02198528 _____ (Farbar) C:\Users\Dušan\Desktop\FRST64 (1).exe
2015-11-15 11:00 - 2015-11-15 11:00 - 02198528 _____ (Farbar) C:\Users\Dušan\Downloads\FRST64.exe
2015-11-15 11:00 - 2015-11-15 11:00 - 02198528 _____ (Farbar) C:\Users\Dušan\Downloads\FRST64 (1).exe
2015-11-15 10:55 - 2015-11-15 10:55 - 00008146 _____ C:\Users\Dušan\Desktop\hijackthis.log
2015-11-15 10:49 - 2015-11-15 11:01 - 00000000 ____D C:\Users\Dušan\AppData\Local\CrashDumps
2015-11-15 10:48 - 2015-11-15 10:48 - 00016148 _____ C:\WINDOWS\system32\DOMA_Dušan_HistoryPrediction.bin
2015-11-15 10:44 - 2015-11-15 10:22 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-11-15 10:24 - 2015-11-15 10:48 - 00008595 _____ C:\zoek-results.log
2015-11-15 10:22 - 2015-11-15 10:42 - 00000000 ____D C:\zoek_backup
2015-11-15 10:21 - 2015-11-15 10:22 - 01309184 _____ C:\Users\Dušan\Desktop\zoek.exe
2015-11-15 10:21 - 2015-11-15 10:21 - 04335672 _____ C:\Users\Dušan\Downloads\zoek.rar
2015-11-15 10:21 - 2015-11-15 10:21 - 01309184 _____ C:\Users\Dušan\Downloads\zoek.exe
2015-11-15 10:21 - 2015-11-15 10:21 - 01309184 _____ C:\Users\Dušan\Downloads\zoek (1).exe
2015-11-15 10:09 - 2015-11-15 10:09 - 22939720 _____ C:\Users\Dušan\Downloads\RogueKillerX64 (1).exe
2015-11-15 10:09 - 2015-11-15 10:09 - 22939720 _____ C:\Users\Dušan\Desktop\RogueKillerX64 (1).exe
2015-11-15 09:48 - 2015-11-15 09:48 - 18979400 _____ C:\Users\Dušan\Downloads\RogueKiller (1).exe
2015-11-15 09:37 - 2015-11-15 09:37 - 00311553 _____ C:\Users\Dušan\Desktop\cisteni 2.ods
2015-11-14 21:38 - 2015-11-14 21:38 - 22939720 _____ C:\Users\Dušan\Downloads\RogueKillerX64.exe
2015-11-14 21:22 - 2015-11-14 21:23 - 18979400 _____ C:\Users\Dušan\Downloads\RogueKiller.exe
2015-11-14 21:14 - 2015-11-14 21:14 - 00001056 _____ C:\Users\Dušan\Desktop\JRT.txt
2015-11-14 21:05 - 2015-11-14 21:06 - 01801288 _____ (Malwarebytes) C:\Users\Dušan\Desktop\JRT.exe
2015-11-14 21:05 - 2015-11-14 21:05 - 01801288 _____ (Malwarebytes) C:\Users\Dušan\Downloads\JRT.exe
2015-11-14 20:49 - 2015-11-14 20:49 - 00207175 _____ C:\Users\Dušan\Desktop\navod 2.ods
2015-11-14 14:08 - 2015-11-14 14:08 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-11-14 14:08 - 2015-10-21 15:12 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-64.dll
2015-11-14 13:58 - 2015-11-14 13:56 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-11-14 13:56 - 2015-11-15 10:49 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-11-14 13:56 - 2015-11-14 13:56 - 00449992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-11-14 13:56 - 2015-11-14 13:56 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-11-14 13:56 - 2015-11-14 13:56 - 00154256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-11-14 13:56 - 2015-11-14 13:56 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-11-14 13:56 - 2015-11-14 13:56 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-11-14 13:56 - 2015-11-14 13:56 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-11-14 13:56 - 2015-11-14 13:56 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2015-11-14 13:56 - 2015-11-14 13:56 - 00001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-11-14 13:56 - 2015-11-14 13:56 - 00000000 ____D C:\Users\Dušan\AppData\Roaming\AVAST Software
2015-11-14 13:56 - 2015-11-14 13:55 - 01059656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-11-14 13:56 - 2015-11-14 13:55 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-11-14 13:55 - 2015-11-14 13:55 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-11-14 13:55 - 2015-11-14 13:55 - 00000000 ____D C:\Program Files\AVAST Software
2015-11-14 11:59 - 2015-11-14 11:59 - 00000000 ____D C:\ProgramData\AVAST Software
2015-11-14 11:58 - 2015-11-14 11:59 - 05082360 _____ (AVAST Software) C:\Users\Dušan\Downloads\avast_free_antivirus_setup_online.exe
2015-11-14 11:28 - 2015-11-14 11:28 - 22908888 _____ (Malwarebytes ) C:\Users\Dušan\Downloads\mbam-setup-2.2.0.1024.exe
2015-11-14 11:11 - 2015-11-14 11:12 - 01729536 _____ C:\Users\Dušan\Desktop\AdwCleaner.exe
2015-11-14 11:11 - 2015-11-14 11:11 - 01729536 _____ C:\Users\Dušan\Downloads\AdwCleaner.exe
2015-11-14 11:08 - 2015-11-15 10:48 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-14 11:07 - 2015-11-15 10:46 - 00002034 _____ C:\WINDOWS\PFRO.log
2015-11-14 11:02 - 2015-11-14 11:03 - 00448512 _____ (OldTimer Tools) C:\Users\Dušan\Downloads\TFC.exe
2015-11-14 11:00 - 2015-11-14 11:00 - 00146649 _____ C:\Users\Dušan\Desktop\odstraneni.ods
2015-11-14 10:57 - 2015-11-14 10:57 - 00050688 _____ (Atribune.org) C:\Users\Dušan\Downloads\ATF-Cleaner.exe
2015-11-14 10:56 - 2015-11-14 10:57 - 00772016 _____ (Reimage®) C:\Users\Dušan\Downloads\ReimageRepair.exe
2015-11-14 10:49 - 2015-11-14 10:49 - 00000000 ___HD C:\OneDriveTemp
2015-11-14 00:19 - 2015-11-14 10:49 - 00388608 _____ (Trend Micro Inc.) C:\Users\Dušan\Desktop\HijackThis (1).exe
2015-11-14 00:04 - 2015-11-14 00:04 - 00008098 _____ C:\Users\Dušan\Downloads\hijackthis.log
2015-11-14 00:02 - 2015-11-14 00:03 - 00388608 _____ (Trend Micro Inc.) C:\Users\Dušan\Downloads\HijackThis.exe
2015-11-14 00:02 - 2015-11-14 00:02 - 00388608 _____ (Trend Micro Inc.) C:\Users\Dušan\Downloads\HijackThis (1).exe
2015-11-13 23:27 - 2015-11-13 23:27 - 00000000 ____D C:\Users\Dušan\X5
2015-11-13 23:27 - 2015-11-13 23:27 - 00000000 ____D C:\Users\Dušan\meriva1
2015-11-13 23:27 - 2015-11-13 23:27 - 00000000 ____D C:\Users\Dušan\meriva
2015-11-13 23:26 - 2015-11-13 23:27 - 00000000 ____D C:\Users\Dušan\karta
2015-11-13 23:24 - 2015-11-05 06:15 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-13 23:24 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-13 23:24 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-13 23:24 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-13 23:24 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-13 23:24 - 2015-11-05 06:06 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-13 23:24 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-13 23:24 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-13 23:24 - 2015-11-05 05:56 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-11-13 23:24 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-13 23:24 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-13 23:24 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-11-13 23:24 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-13 23:24 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-11-13 23:24 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-13 23:24 - 2015-11-05 05:20 - 21873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-13 23:24 - 2015-11-05 05:18 - 24597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-13 23:24 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-13 23:24 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-13 23:24 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-13 23:24 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2015-11-13 23:24 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-13 23:24 - 2015-11-05 05:10 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-13 23:24 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-13 23:24 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-13 23:24 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-13 23:24 - 2015-11-05 05:05 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-13 23:24 - 2015-11-05 05:05 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-13 23:24 - 2015-11-05 05:03 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-13 23:24 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-11-13 23:24 - 2015-11-05 05:01 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-13 23:24 - 2015-11-05 05:01 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-13 23:24 - 2015-11-05 05:01 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-13 23:24 - 2015-11-05 04:59 - 03587072 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-13 23:24 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-13 23:24 - 2015-11-05 04:58 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-13 23:24 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-13 23:24 - 2015-11-05 04:56 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-13 23:24 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-13 23:24 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-13 23:24 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-13 23:24 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-11-13 23:24 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-13 23:24 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-13 23:24 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-11-13 23:24 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-11-13 23:24 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-13 23:24 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-11-13 23:24 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-13 23:24 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-13 23:24 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-11-13 23:24 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-13 23:24 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-11-13 23:23 - 2015-11-13 23:23 - 00000000 ____D C:\Users\Dušan\kotel poj
2015-11-13 23:21 - 2015-11-13 23:21 - 00000000 ____D C:\Users\Dušan\smlouva meriva podepsana
2015-11-13 22:28 - 2015-11-13 22:28 - 00011567 _____ C:\Users\Dušan\Documents\pinfect.zip
2015-11-13 17:37 - 2015-11-13 17:37 - 00000000 ____D C:\WINDOWS\VDLL.DLL
2015-11-13 17:37 - 2015-11-13 17:37 - 00000000 ____D C:\WINDOWS\SysWOW64\runouce.exe
2015-11-13 17:37 - 2015-11-13 17:37 - 00000000 ____D C:\WINDOWS\rundll16.exe
2015-11-13 17:37 - 2015-11-13 17:37 - 00000000 ____D C:\WINDOWS\RUNDL132.EXE
2015-11-13 17:37 - 2015-11-13 17:37 - 00000000 ____D C:\WINDOWS\logo1_.exe
2015-11-13 17:37 - 2015-11-13 17:37 - 00000000 ____D C:\WINDOWS\logo_1.exe
2015-11-13 17:24 - 2015-11-13 17:24 - 00000000 ____D C:\ProgramData\MicroWorld
2015-11-09 16:48 - 2015-11-10 14:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-08 17:52 - 2015-11-14 00:21 - 00000000 ____D C:\WINDOWS\Minidump
2015-10-21 15:12 - 2015-11-14 14:08 - 00000000 ____D C:\Users\Dušan\.oracle_jre_usage
2015-10-21 15:12 - 2015-10-21 15:12 - 00000000 ____D C:\Users\Dušan\AppData\Roaming\Sun
2015-10-16 16:28 - 2015-10-16 16:29 - 00000000 ____D C:\ProgramData\wondershare
2015-10-16 16:28 - 2015-10-16 16:28 - 00000000 ____D C:\Users\Dušan\AppData\Roaming\Wondershare
2015-10-16 16:26 - 2015-10-16 16:26 - 00000000 ____D C:\Users\Public\Documents\Wondershare

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-15 10:52 - 2015-07-10 17:02 - 00746648 _____ C:\WINDOWS\system32\perfh005.dat
2015-11-15 10:52 - 2015-07-10 17:02 - 00149550 _____ C:\WINDOWS\system32\perfc005.dat
2015-11-15 10:52 - 2015-05-22 20:51 - 01762290 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-15 10:50 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-15 10:50 - 2015-05-23 12:03 - 00000000 ____D C:\Users\Dušan\AppData\Local\ActiveSync
2015-11-15 10:49 - 2014-01-10 20:30 - 00000000 __RDO C:\Users\Dušan\SkyDrive
2015-11-15 10:48 - 2014-12-23 20:39 - 00000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-15 10:47 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-15 10:46 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-15 10:46 - 2015-07-10 10:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-11-15 10:46 - 2015-07-03 23:20 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001UA.job
2015-11-15 10:25 - 2014-12-24 11:14 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-15 09:22 - 2015-05-25 14:53 - 00004188 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{53E1566F-5C1B-41C1-A908-0BC5D6FA213D}
2015-11-14 21:39 - 2015-07-14 22:26 - 00037624 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-11-14 20:54 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-14 20:53 - 2014-07-10 10:45 - 00000000 ____D C:\AdwCleaner
2015-11-14 18:07 - 2015-07-14 21:57 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-14 17:46 - 2015-07-03 23:20 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001Core.job
2015-11-14 14:08 - 2014-12-23 20:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-14 14:07 - 2014-12-23 20:29 - 00000000 ____D C:\Program Files (x86)\Java
2015-11-14 11:55 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-14 11:29 - 2015-07-14 21:57 - 00001171 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-14 11:29 - 2015-07-14 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-14 11:29 - 2015-07-14 21:56 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-14 10:50 - 2014-12-23 20:12 - 00000000 ____D C:\Users\Dušan\AppData\Local\VirtualStore
2015-11-13 23:35 - 2015-07-20 22:27 - 00000000 ____D C:\Users\Dušan
2015-11-13 23:07 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-11-13 23:06 - 2014-12-23 20:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-13 22:56 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\registration
2015-11-12 14:14 - 2015-07-20 23:16 - 00000000 ___DC C:\WINDOWS\Panther
2015-11-11 16:25 - 2014-12-24 11:14 - 00003900 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-11-11 16:16 - 2014-12-23 20:41 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-11-08 13:47 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-11-03 19:20 - 2015-08-04 16:15 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-11-03 19:20 - 2015-08-04 16:15 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-01 20:37 - 2015-06-23 12:44 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-10-30 20:35 - 2015-05-22 20:59 - 00002358 _____ C:\Users\Dušan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-10-21 15:14 - 2014-12-23 20:29 - 00000000 ____D C:\ProgramData\Oracle
2015-10-21 15:13 - 2015-07-21 16:18 - 00000000 ____D C:\Program Files\Java
2015-10-21 15:12 - 2015-07-21 16:18 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll

==================== Files in the root of some directories =======

2015-07-20 22:24 - 2015-07-20 22:24 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some zero byte size files/folders:
==========================
C:\Windows\logo1_.exe
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\rundll16.exe
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-11-14 13:29

==================== End of FRST.txt ============================

[dudulusan]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-11-2015
Ran by Dušan (2015-11-15 11:03:39)
Running from C:\Users\Dušan\Desktop
Windows 10 Home (X64) (2015-07-20 21:50:41)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3929088398-410600733-1857503271-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3929088398-410600733-1857503271-503 - Limited - Disabled)
Dušan (S-1-5-21-3929088398-410600733-1857503271-1001 - Administrator - Enabled) => C:\Users\Dušan
Guest (S-1-5-21-3929088398-410600733-1857503271-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-3929088398-410600733-1857503271-1004 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Aktualizace NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2241 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
Convert MOV to AVI 1.0 (HKLM-x32\...\{A39EA3C8-7BF3-4FA7-9A67-3D3611BAE59E}_is1) (Version: - convertmovtoavi.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Photos Backup (HKU\S-1-5-21-3929088398-410600733-1857503271-1001\...\Google Photos Backup) (Version: 1.1.1.259 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Java 8 Update 65 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.17 - Oracle Corporation)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 42.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 cs)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
NVIDIA Ovladače grafiky 353.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.54 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{C560D6E7-E40A-435D-8B71-62CBCF1701B2}) (Version: 4.11.9775 - Apache Software Foundation)
Ovládací panel NVIDIA 353.54 (Version: 353.54 - NVIDIA Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
RogueKiller version 10 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 10 - Adlice Software)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.4 - Synaptics Incorporated)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Windows Phone app for desktop (HKLM-x32\...\{CE9BDD0F-BAF3-474D-B6D8-15B84BDAB229}) (Version: 1.1.2726.0 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Dušan\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)

==================== Restore Points =========================

29-10-2015 17:40:33 Naplánovaný kontrolní bod
07-11-2015 20:23:17 Naplánovaný kontrolní bod
11-11-2015 16:25:51 Windows Update
11-11-2015 16:26:45 Windows Update
14-11-2015 21:07:01 JRT Pre-Junkware Removal

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2015-11-15 10:25 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1C2CF20B-53DC-4834-A420-E53D117E7CC1} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-10-15] (Microsoft Corporation)
Task: {1E556935-8CF0-45CE-959E-C8948F83E142} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11] (Adobe Systems Incorporated)
Task: {3289FC49-D56B-49E4-A4CD-CFAD7B2DA5B5} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-07-25] (Synaptics Incorporated)
Task: {5000AACE-C649-45E9-A8C4-4D33A84516BF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
Task: {591975A3-C4A4-4C8A-9695-BCB6D3245A4E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {5A65E4B6-7BB5-4682-9E1B-7B1DE8A0FB88} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {5D758292-BD1E-4F31-BDF2-A4BE5E0680DD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001Core => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {82B68E5D-FE3D-468C-868E-C10A19D8DE0F} - \SpeechRuntimeTask -> No File <==== ATTENTION
Task: {ABCA26ED-A673-4570-9B92-A1109E6001B0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {DB1E457B-8CEE-4889-A2AF-780265BDED71} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {E50AF4CB-AAE1-48E9-BDF1-A4DB478BD48D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001UA => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {F8AFC768-D1FF-4D1E-BECC-E244C888B4DC} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-11-14] (AVAST Software)
Task: {FFD38B7D-4C60-422E-9309-76188E414FD2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001Core.job => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001UA.job => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Loaded Modules (Whitelisted) ==============

2015-07-21 15:54 - 2015-07-15 03:04 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-07-20 22:23 - 2015-07-13 18:37 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-19 17:23 - 2015-08-11 10:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-10-01 18:59 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 18:59 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-10-01 18:58 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-10-01 18:59 - 2015-09-17 06:44 - 06569472 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-01 18:58 - 2015-09-17 06:42 - 00471040 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-01 18:58 - 2015-09-17 06:42 - 01808384 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-01 18:59 - 2015-09-17 06:43 - 02274816 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 12:00 - 2015-07-10 17:05 - 00210432 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-06-13 13:38 - 2015-06-13 13:38 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-11-22 01:03 - 2014-11-22 01:03 - 00043520 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2015-07-10 12:00 - 2015-07-10 12:00 - 00215352 _____ () c:\windows\system32\WerEtw.dll
2015-11-14 13:55 - 2015-11-14 13:55 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-11-14 13:55 - 2015-11-14 13:55 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-11-14 18:33 - 2015-11-14 18:33 - 02991104 _____ () C:\Program Files\AVAST Software\Avast\defs\15111401\algo.dll
2015-11-14 13:55 - 2015-11-14 13:55 - 00466448 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2015-11-15 10:49 - 2015-11-15 10:49 - 02991104 _____ () C:\Program Files\AVAST Software\Avast\defs\15111500\algo.dll
2015-11-14 13:55 - 2015-11-14 13:55 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-11-11 16:16 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-11 16:16 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3929088398-410600733-1857503271-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dušan\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{4B690874-A8EB-4B5C-BCE1-0D98E410436B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{68AD2CCF-8C04-4591-86A3-52F945FE2F40}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E8B3F8EE-8214-4603-8AD0-B6969C824EBE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{24589B50-A726-486A-BF8F-F1CF3CD79512}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B336E61C-A698-4B92-80F2-01D6F517FCDC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Základní systémové zařízení
Description: Základní systémové zařízení
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Základní systémové zařízení
Description: Základní systémové zařízení
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/15/2015 11:01:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Název chybujícího modulu: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014b950
ID chybujícího procesu: 0xdf4
Čas spuštění chybující aplikace: 0xnvtray.exe0
Cesta k chybující aplikaci: nvtray.exe1
Cesta k chybujícímu modulu: nvtray.exe2
ID zprávy: nvtray.exe3
Úplný název chybujícího balíčku: nvtray.exe4
ID aplikace související s chybujícím balíčkem: nvtray.exe5

Error: (11/15/2015 11:01:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Název chybujícího modulu: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014b950
ID chybujícího procesu: 0x14bc
Čas spuštění chybující aplikace: 0xnvtray.exe0
Cesta k chybující aplikaci: nvtray.exe1
Cesta k chybujícímu modulu: nvtray.exe2
ID zprávy: nvtray.exe3
Úplný název chybujícího balíčku: nvtray.exe4
ID aplikace související s chybujícím balíčkem: nvtray.exe5

Error: (11/15/2015 10:48:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Název chybujícího modulu: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014b950
ID chybujícího procesu: 0x12c0
Čas spuštění chybující aplikace: 0xnvtray.exe0
Cesta k chybující aplikaci: nvtray.exe1
Cesta k chybujícímu modulu: nvtray.exe2
ID zprávy: nvtray.exe3
Úplný název chybujícího balíčku: nvtray.exe4
ID aplikace související s chybujícím balíčkem: nvtray.exe5

Error: (11/15/2015 10:47:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvvsvc.exe, verze: 8.17.13.5354, časové razítko: 0x55a3f638
Název chybujícího modulu: ntdll.dll, verze: 10.0.10240.16430, časové razítko: 0x55c59f92
Kód výjimky: 0xc00000fd
Posun chyby: 0x000000000002f054
ID chybujícího procesu: 0x284
Čas spuštění chybující aplikace: 0xnvvsvc.exe0
Cesta k chybující aplikaci: nvvsvc.exe1
Cesta k chybujícímu modulu: nvvsvc.exe2
ID zprávy: nvvsvc.exe3
Úplný název chybujícího balíčku: nvvsvc.exe4
ID aplikace související s chybujícím balíčkem: nvvsvc.exe5

Error: (11/15/2015 09:46:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RogueKillerX64.exe, verze: 10.11.5.0, časové razítko: 0x56406626
Název chybujícího modulu: RogueKillerX64.exe, verze: 10.11.5.0, časové razítko: 0x56406626
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000aeeb
ID chybujícího procesu: 0x13c4
Čas spuštění chybující aplikace: 0xRogueKillerX64.exe0
Cesta k chybující aplikaci: RogueKillerX64.exe1
Cesta k chybujícímu modulu: RogueKillerX64.exe2
ID zprávy: RogueKillerX64.exe3
Úplný název chybujícího balíčku: RogueKillerX64.exe4
ID aplikace související s chybujícím balíčkem: RogueKillerX64.exe5

Error: (11/14/2015 09:07:18 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/14/2015 09:06:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Název chybujícího modulu: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014b950
ID chybujícího procesu: 0x16f0
Čas spuštění chybující aplikace: 0xnvtray.exe0
Cesta k chybující aplikaci: nvtray.exe1
Cesta k chybujícímu modulu: nvtray.exe2
ID zprávy: nvtray.exe3
Úplný název chybujícího balíčku: nvtray.exe4
ID aplikace související s chybujícím balíčkem: nvtray.exe5

Error: (11/14/2015 09:06:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Název chybujícího modulu: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014b950
ID chybujícího procesu: 0x1a48
Čas spuštění chybující aplikace: 0xnvtray.exe0
Cesta k chybující aplikaci: nvtray.exe1
Cesta k chybujícímu modulu: nvtray.exe2
ID zprávy: nvtray.exe3
Úplný název chybujícího balíčku: nvtray.exe4
ID aplikace související s chybujícím balíčkem: nvtray.exe5

Error: (11/14/2015 09:05:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Název chybujícího modulu: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014b950
ID chybujícího procesu: 0x1a0c
Čas spuštění chybující aplikace: 0xnvtray.exe0
Cesta k chybující aplikaci: nvtray.exe1
Cesta k chybujícímu modulu: nvtray.exe2
ID zprávy: nvtray.exe3
Úplný název chybujícího balíčku: nvtray.exe4
ID aplikace související s chybujícím balíčkem: nvtray.exe5

Error: (11/14/2015 09:05:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Název chybujícího modulu: nvtray.exe, verze: 0.0.0.0, časové razítko: 0x55a3ed2a
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014b950
ID chybujícího procesu: 0x58c
Čas spuštění chybující aplikace: 0xnvtray.exe0
Cesta k chybující aplikaci: nvtray.exe1
Cesta k chybujícímu modulu: nvtray.exe2
ID zprávy: nvtray.exe3
Úplný název chybujícího balíčku: nvtray.exe4
ID aplikace související s chybujícím balíčkem: nvtray.exe5


System errors:
=============
Error: (11/15/2015 10:49:41 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (11/15/2015 10:49:40 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (11/15/2015 10:49:39 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (11/15/2015 10:49:37 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (11/15/2015 10:49:34 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (11/15/2015 10:49:33 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (11/15/2015 10:49:31 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (11/15/2015 10:49:30 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (11/15/2015 10:49:29 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (11/15/2015 10:49:28 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU B960 @ 2.20GHz
Percentage of memory in use: 33%
Total physical RAM: 3912.36 MB
Available physical RAM: 2582.21 MB
Total Virtual: 4616.36 MB
Available Virtual: 3342.28 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.54 GB) (Free:172.83 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:119.73 GB) (Free:60.81 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 465.8 GB) (Disk ID: 9ABFF84B)
Partition 1: (Active) - (Size=232.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.8 GB) - (Type=0C)
Partition 3: (Not Active) - (Size=113.1 GB) - (Type=05)

==================== End of Addition.txt ============================

[jerabina]

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-10-06] (Oracle Corporation)
HKU\S-1-5-21-3929088398-410600733-1857503271-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-3929088398-410600733-1857503271-1001\...\Run: [Google Update] => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.)
HKU\S-1-5-21-3929088398-410600733-1857503271-1001\...\RunOnce: [Uninstall C:\Users\Duaan\AppData\Local\Microsoft\OneDrive\17.3.5860.0512_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Dušan\AppData\Local\Microsoft\OneDrive\17.3.5860.0512_1\amd64"

FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-3929088398-410600733-1857503271-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-3929088398-410600733-1857503271-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)

C:\Users\Dušan\Downloads\ReimageRepair.exe
C:\ProgramData\DP45977C.lfl
C:\Windows\logo1_.exe
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\rundll16.exe
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe
C:\Users\Dušan\AppData\Local\Google\Update

CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)

Task: {1E556935-8CF0-45CE-959E-C8948F83E142} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11] (Adobe Systems Incorporated)
Task: {591975A3-C4A4-4C8A-9695-BCB6D3245A4E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {5A65E4B6-7BB5-4682-9E1B-7B1DE8A0FB88} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {5D758292-BD1E-4F31-BDF2-A4BE5E0680DD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001Core => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {82B68E5D-FE3D-468C-868E-C10A19D8DE0F} - \SpeechRuntimeTask -> No File <==== ATTENTION
Task: {ABCA26ED-A673-4570-9B92-A1109E6001B0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {DB1E457B-8CEE-4889-A2AF-780265BDED71} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {E50AF4CB-AAE1-48E9-BDF1-A4DB478BD48D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001UA => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {FFD38B7D-4C60-422E-9309-76188E414FD2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001Core.job => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001UA.job => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt

Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[dudulusan]

Ahoj, tak už jsem tady. Včera jeden restart vynucen WIN " Počítač přestal pracovat a bude restartován"

Fix result of Farbar Recovery Scan Tool (x64) Version:17-11-2015
Ran by Dušan (2015-11-17 21:26:44) Run:1
Running from C:\Users\Dušan\Desktop
Loaded Profiles: Dušan (Available Profiles: Dušan & UpdatusUser)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-10-06] (Oracle Corporation)
HKU\S-1-5-21-3929088398-410600733-1857503271-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-3929088398-410600733-1857503271-1001\...\Run: [Google Update] => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.)
HKU\S-1-5-21-3929088398-410600733-1857503271-1001\...\RunOnce: [Uninstall C:\Users\Duaan\AppData\Local\Microsoft\OneDrive\17.3.5860.0512_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Dušan\AppData\Local\Microsoft\OneDrive\17.3.5860.0512_1\amd64"

FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-3929088398-410600733-1857503271-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-3929088398-410600733-1857503271-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)

C:\Users\Dušan\Downloads\ReimageRepair.exe
C:\ProgramData\DP45977C.lfl
C:\Windows\logo1_.exe
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\rundll16.exe
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe
C:\Users\Dušan\AppData\Local\Google\Update

CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)

Task: {1E556935-8CF0-45CE-959E-C8948F83E142} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11] (Adobe Systems Incorporated)
Task: {591975A3-C4A4-4C8A-9695-BCB6D3245A4E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {5A65E4B6-7BB5-4682-9E1B-7B1DE8A0FB88} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {5D758292-BD1E-4F31-BDF2-A4BE5E0680DD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001Core => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {82B68E5D-FE3D-468C-868E-C10A19D8DE0F} - \SpeechRuntimeTask -> No File <==== ATTENTION
Task: {ABCA26ED-A673-4570-9B92-A1109E6001B0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {DB1E457B-8CEE-4889-A2AF-780265BDED71} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {E50AF4CB-AAE1-48E9-BDF1-A4DB478BD48D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001UA => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {FFD38B7D-4C60-422E-9309-76188E414FD2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001Core.job => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001UA.job => C:\Users\Dušan\AppData\Local\Google\Update\GoogleUpdate.exe

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-3929088398-410600733-1857503271-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value removed successfully
HKU\S-1-5-21-3929088398-410600733-1857503271-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => value removed successfully
HKU\S-1-5-21-3929088398-410600733-1857503271-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall C:\Users\Duaan\AppData\Local\Microsoft\OneDrive\17.3.5860.0512_1\amd64 => value not found.
Firefox "newtab" removed successfully
Firefox "homepage" removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll => not found.
"HKU\S-1-5-21-3929088398-410600733-1857503271-1001\Software\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully
C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll => moved successfully
"HKU\S-1-5-21-3929088398-410600733-1857503271-1001\Software\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully
C:\Users\Dušan\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll => not found.
C:\Users\Dušan\Downloads\ReimageRepair.exe => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\Windows\logo1_.exe => moved successfully
C:\Windows\logo_1.exe => moved successfully
C:\Windows\RUNDL132.EXE => moved successfully
C:\Windows\rundll16.exe => moved successfully
C:\Windows\VDLL.DLL => moved successfully
C:\Windows\SysWOW64\runouce.exe => moved successfully
C:\Users\Dušan\AppData\Local\Google\Update => moved successfully
"HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}" => key removed successfully
"HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}" => key removed successfully
"HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}" => key removed successfully
"HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}" => key removed successfully
"HKU\S-1-5-21-3929088398-410600733-1857503271-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1E556935-8CF0-45CE-959E-C8948F83E142}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E556935-8CF0-45CE-959E-C8948F83E142}" => key removed successfully
C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{591975A3-C4A4-4C8A-9695-BCB6D3245A4E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{591975A3-C4A4-4C8A-9695-BCB6D3245A4E}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A65E4B6-7BB5-4682-9E1B-7B1DE8A0FB88} => key not found.
C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5D758292-BD1E-4F31-BDF2-A4BE5E0680DD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5D758292-BD1E-4F31-BDF2-A4BE5E0680DD}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001Core => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001Core" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{82B68E5D-FE3D-468C-868E-C10A19D8DE0F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{82B68E5D-FE3D-468C-868E-C10A19D8DE0F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SpeechRuntimeTask" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ABCA26ED-A673-4570-9B92-A1109E6001B0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ABCA26ED-A673-4570-9B92-A1109E6001B0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DB1E457B-8CEE-4889-A2AF-780265BDED71}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DB1E457B-8CEE-4889-A2AF-780265BDED71}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E50AF4CB-AAE1-48E9-BDF1-A4DB478BD48D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E50AF4CB-AAE1-48E9-BDF1-A4DB478BD48D}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001UA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001UA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FFD38B7D-4C60-422E-9309-76188E414FD2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FFD38B7D-4C60-422E-9309-76188E414FD2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001Core.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3929088398-410600733-1857503271-1001UA.job => moved successfully
EmptyTemp: => 591.3 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 21:27:00 ====

[jaro3]

To může být problém s HW , zadej si téma do sekce Hardware.