SVChost.exe Virus

SkyWolfy · Příspěvekod **SkyWolfy** » 17 čer 2016 19:01

Vím jak dál, jenom jsem to nestih protože (nevím přesně) scan zasekl na něčem a trvalo to tak celou hodinu.

Reklama

Příspěvekod **Orcus** » 17 čer 2016 19:53

OK, až to bude, dodej log.

SkyWolfy · Příspěvekod **SkyWolfy** » 18 čer 2016 11:59

Můžu se zeptat? Jak přesně to má dlouho trvat. Včera jsem to skoušel znova. Seklo se to Na Firefox Extension, a tak to od 19:12 trvalo až do Desíty večer.

SkyWolfy · Příspěvekod **SkyWolfy** » 18 čer 2016 17:47

Nechci měnit váš standartí postup, ale chci se zeptat. Nejdřív zjistli jsem pár zajímavostí. Ten "Virus" Se mi rozlézá po mých dvou počítačích a tabletu, díky Steamu, který má fukci propojovat zařízení když jste na obou přihlášení, v stáhnuté verzi. Tak mě napadlo, kdybych koupil úplně nový hardware a začal od znova a před tím bych si počítač zajistil tak aby se do něj znovu nedostal. Šlo by to? A když tak jak.

SkyWolfy · Příspěvekod **SkyWolfy** » 18 čer 2016 18:20

Nevím proč, ale AVG našlo v Zoeku hrozbu jménem Alexa a vymazalal ho. (Jestli to tlda byla hrozba)

Příspěvekod **jaro3** » 19 čer 2016 09:43

nejlepší je odvirova postupně všechny počítače.

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

SkyWolfy · Příspěvekod **SkyWolfy** » 19 čer 2016 19:21

ST) (x64) Version: 19-06-2016
Ran by Tobiáš (administrator) on TOBI (19-06-2016 19:19:44)
Running from C:\Users\Tobiáš\Downloads
Loaded Profiles: Tobiáš (Available Profiles: Tobiáš)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(AMD) C:\WINDOWS\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(AMD) C:\WINDOWS\System32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(BitTorrent Inc.) C:\Users\Tobiáš\AppData\Roaming\uTorrent\uTorrent.exe
(MY.COM B.V.) C:\Users\Tobiáš\AppData\Local\MyComGames\MyComGames.exe
(© 2015 Microsoft Corporation) C:\Users\Tobiáš\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(BitTorrent Inc.) C:\Users\Tobiáš\AppData\Roaming\uTorrent\updates\3.4.5_41865\utorrentie.exe
(BitTorrent Inc.) C:\Users\Tobiáš\AppData\Roaming\uTorrent\updates\3.4.5_41865\utorrentie.exe
(Microsoft Corporation) C:\WINDOWS\System32\GWX\GWX.exe
(GameRanger Technologies) C:\Users\Tobiáš\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation) C:\WINDOWS\System32\SettingSyncHost.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
(Microsoft Corporation) C:\WINDOWS\System32\SkyDrive.exe
(Adobe Systems, Inc.) C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_22_0_0_192.exe
(Adobe Systems, Inc.) C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_22_0_0_192.exe
(Relic Entertainment Inc.) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
(Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2014-03-28] (Hewlett-Packard )
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2014-03-28] (IDT, Inc.)
HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3962936 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-05-29] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [67840 2016-05-19] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [186640 2016-05-18] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [6570256 2016-06-09] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-06-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-06-08] (LogMeIn Inc.)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2917456 2016-06-15] (Valve Corporation)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [uTorrent] => C:\Users\Tobiáš\AppData\Roaming\uTorrent\uTorrent.exe [2094080 2016-03-11] (BitTorrent Inc.)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [MyComGames] => C:\Users\Tobiáš\AppData\Local\MyComGames\MyComGames.exe [4939664 2016-06-16] (MY.COM B.V.)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [BingSvc] => C:\Users\Tobiáš\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-03-12] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-06-19] (Electronic Arts)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8686296 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [EvolveClient] => C:\Program Files\Echobit\Evolve\EvolveClient.exe [3334528 2016-05-17] (Echobit LLC)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MountPoints2: {51b67f26-bbdb-11e5-825b-a0d3c147bc1c} - "F:\setup.exe"
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MountPoints2: {51b687be-bbdb-11e5-825b-a0d3c147bc1c} - "G:\setup.exe"
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MountPoints2: {51b6912e-bbdb-11e5-825b-a0d3c147bc1c} - "H:\Autorun.exe"
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MountPoints2: {a6f15267-bb9a-11e5-8259-a0d3c147bc1c} - "I:\setup.exe"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
Startup: C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [2016-01-15]
ShortcutTarget: GameRanger.lnk -> C:\Users\Tobiáš\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9BBE1697-962E-41DF-AABF-8627D899FB6C}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {1C546DF4-E0D1-423B-A311-9CBC3CE8AE8B} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2346423795-1808065523-688302191-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2346423795-1808065523-688302191-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-11] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-04-04] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-11] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)

SkyWolfy · Příspěvekod **SkyWolfy** » 19 čer 2016 19:22

FireFox:
========
FF ProfilePath: C:\Users\Tobiáš\AppData\Roaming\Mozilla\Firefox\Profiles\bd42m9ax.default-1457310909371
FF NewTab: about:newtab
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-17] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-06-08] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-17] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-11] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-03-11] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-06-08] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2346423795-1808065523-688302191-1001: @my.com/Games -> C:\Users\Tobiáš\AppData\Local\MyComGames\NPMyComDetector.dll [2016-03-09] (MY.COM B.V.)
FF Extension: WOT - C:\Users\Tobiáš\AppData\Roaming\Mozilla\Firefox\Profiles\bd42m9ax.default-1457310909371\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2016-06-18]

Chrome:
=======
CHR Profile: C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-19]
CHR Extension: (Dokumenty Google) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-19]
CHR Extension: (Disk Google) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-19]
CHR Extension: (YouTube) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-19]
CHR Extension: (Tabulky Google) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-19]
CHR Extension: (Avira Browser Safety) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-06-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-19]
CHR Extension: (Gmail) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-19]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [636312 2016-06-09] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5165824 2016-06-09] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1080592 2016-05-18] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [705528 2016-06-09] (AVG Technologies CZ, s.r.o.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [285176 2016-05-19] (Avira Operations GmbH & Co. KG)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd)
S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2016-05-17] (Echobit LLC)
S3 LicCtrlService; C:\WINDOWS\runservice.exe [16384 2016-02-25] () [File not signed]
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2945312 2016-01-14] (IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [419248 2016-06-07] (LogMeIn, Inc.)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-03-28] (Softex Inc.) [File not signed]
R3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-06-19] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1289968 2016-05-29] (Overwolf LTD)
S2 pr2agmlb; C:\Windows\system32\pr2agmlb.exe [754304 2007-06-04] (Bohemia Interactive)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
S3 SMService; C:\Program Files (x86)\IObit\Classic Start\SMService.exe [1056544 2015-11-06] (IObit)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [340480 2014-03-28] (IDT, Inc.) [File not signed]
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [4803344 2016-06-01] (AVG Technologies CZ, s.r.o.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 amdacpksd; C:\windows\system32\drivers\amdacpksd.sys [297672 2016-02-04] (Advanced Micro Devices)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [102912 2016-02-04] (Advanced Micro Devices)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162592 2016-02-16] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [307456 2016-05-18] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [272304 2016-01-26] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [260352 2016-05-02] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [247040 2016-05-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [51968 2016-05-02] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [71936 2016-05-05] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [315840 2015-12-16] (AVG Technologies CZ, s.r.o.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-01-15] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [46392 2016-01-15] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 EvolveVirtualAdapter; C:\Windows\system32\DRIVERS\evolve.sys [21656 2016-05-17] (Echobit, LLC)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2016-06-07] (LogMeIn Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-02-04] (REALiX(tm))
R0 pe3agmlb; C:\Windows\System32\drivers\pe3agmlb.sys [73088 2007-06-04] (Bohemia Interactive)
R0 ps6agmlb; C:\Windows\System32\drivers\ps6agmlb.sys [77704 2007-06-04] (Bohemia Interactive)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2016-03-29] (AVG Netherlands B.V.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

SkyWolfy · Příspěvekod **SkyWolfy** » 19 čer 2016 19:22

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-19 19:19 - 2016-06-19 19:20 - 00024482 _____ C:\Users\Tobiáš\Downloads\FRST.txt
2016-06-19 19:18 - 2016-06-19 19:19 - 00000000 ____D C:\FRST
2016-06-19 19:18 - 2016-06-19 19:18 - 02387456 _____ (Farbar) C:\Users\Tobiáš\Desktop\FRST64.exe
2016-06-19 09:14 - 2016-06-19 09:14 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-06-19 08:10 - 2016-06-19 08:10 - 00003162 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForTobiáš
2016-06-19 08:10 - 2016-06-19 08:10 - 00000346 _____ C:\WINDOWS\Tasks\HPCeeScheduleForTobiáš.job
2016-06-19 08:06 - 2016-06-19 08:06 - 00000000 ____D C:\Users\Tobiáš\AppData\LocalLow\uTorrent
2016-06-18 19:06 - 2016-06-18 19:06 - 00000000 ____D C:\ProgramData\ProductData
2016-06-18 18:10 - 2016-06-18 18:18 - 00000000 ____D C:\zoek
2016-06-18 17:41 - 2016-06-18 17:41 - 22851472 _____ (Malwarebytes ) C:\Users\Tobiáš\Downloads\mbam-setup-2.2.1.1043(1).exe
2016-06-18 11:59 - 2016-06-18 17:50 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\CrashDumps
2016-06-18 07:04 - 2016-06-18 07:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-06-18 07:04 - 2016-06-18 07:04 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-06-18 07:04 - 2016-06-14 19:13 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-06-18 07:04 - 2016-06-14 19:13 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-17 18:48 - 2016-06-17 18:48 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\LumaEmu_SteamCloud
2016-06-17 16:30 - 2016-06-17 16:30 - 00003728 _____ C:\WINDOWS\System32\Tasks\Overwolf Updater Task
2016-06-17 16:30 - 2016-06-17 16:30 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2016-06-17 16:29 - 2016-06-17 16:32 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\TS3Client
2016-06-17 16:29 - 2016-06-17 16:30 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Overwolf
2016-06-17 16:29 - 2016-06-17 16:30 - 00000000 ____D C:\ProgramData\Overwolf
2016-06-17 16:29 - 2016-06-17 16:30 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-06-17 16:29 - 2016-06-17 16:29 - 00001276 _____ C:\Users\Tobiáš\Desktop\TeamSpeak 3 Client.lnk
2016-06-17 16:29 - 2016-06-17 16:29 - 00001234 _____ C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-06-17 16:29 - 2016-06-17 16:29 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\TeamSpeak 3 Client
2016-06-17 16:27 - 2016-06-17 16:27 - 31581784 _____ (TeamSpeak Systems GmbH) C:\Users\Tobiáš\Downloads\TeamSpeak3-Client-win64-3.0.19.1.exe
2016-06-17 15:30 - 2016-06-17 15:30 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-06-17 15:18 - 2016-06-17 15:18 - 00001077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015.lnk
2016-06-17 15:18 - 2016-06-17 15:18 - 00000000 ____D C:\Users\Tobiáš\Documents\Adobe
2016-06-17 15:15 - 2016-06-17 15:28 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-06-17 15:15 - 2016-06-17 15:21 - 00000000 ____D C:\Program Files\Adobe
2016-06-17 15:08 - 2016-06-19 08:09 - 00000000 ___RD C:\Users\Tobiáš\Creative Cloud Files
2016-06-17 15:08 - 2016-06-18 07:08 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-06-17 14:17 - 2016-06-17 15:07 - 00000000 ____D C:\Users\Tobiáš\Desktop\YT Videos
2016-06-17 14:17 - 2016-06-17 14:17 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2016-06-17 14:17 - 2016-06-17 14:17 - 00001254 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2016-06-17 14:12 - 2016-06-17 14:12 - 00000000 ____D C:\Users\Tobiáš\Documents\Camtasia Studio
2016-06-17 14:12 - 2016-06-17 14:12 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\TechSmith
2016-06-17 14:12 - 2016-06-17 14:12 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\TechSmith
2016-06-17 14:11 - 2016-06-17 14:11 - 00001205 _____ C:\Users\Public\Desktop\Camtasia Studio 8.lnk
2016-06-17 14:11 - 2016-06-17 14:11 - 00000000 ____D C:\ProgramData\regid.1995-08.com.techsmith
2016-06-17 14:11 - 2016-06-17 14:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2016-06-17 14:11 - 2016-06-17 14:11 - 00000000 ____D C:\Program Files (x86)\QuickTime
2016-06-17 14:10 - 2016-06-17 14:10 - 00000000 ____D C:\ProgramData\TechSmith
2016-06-17 14:10 - 2016-06-17 14:10 - 00000000 ____D C:\Program Files (x86)\TechSmith
2016-06-17 14:07 - 2016-06-17 14:08 - 00798912 _____ (Adobe Systems Incorporated) C:\Users\Tobiáš\Downloads\CreativeCloudSet-Up.exe
2016-06-17 14:00 - 2016-06-17 14:01 - 262824448 _____ C:\Users\Tobiáš\Downloads\camtasia.msi
2016-06-16 16:21 - 2016-06-18 18:18 - 00003532 _____ C:\runcheck.txt
2016-06-16 16:21 - 2016-06-18 18:13 - 00000000 ____D C:\zoek_backup
2016-06-16 15:46 - 2016-06-16 15:46 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-06-15 18:48 - 2016-06-15 19:21 - 00000000 ____D C:\ProgramData\RogueKiller
2016-06-15 18:47 - 2016-06-15 18:48 - 24206920 _____ C:\Users\Tobiáš\Desktop\RogueKillerX64.exe
2016-06-15 14:01 - 2016-06-03 19:11 - 00472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-06-15 14:01 - 2016-06-03 15:38 - 01413120 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-06-15 14:01 - 2016-06-02 19:51 - 00050352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-15 14:01 - 2016-05-29 17:04 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-06-15 14:01 - 2016-05-29 17:04 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-06-15 14:01 - 2016-05-29 17:04 - 00544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-06-15 14:01 - 2016-05-29 17:04 - 00276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-06-15 14:01 - 2016-05-29 17:04 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-06-15 14:01 - 2016-05-29 17:04 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-06-15 14:01 - 2016-05-14 01:09 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-06-15 14:01 - 2016-05-12 20:38 - 00135336 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-06-15 14:01 - 2016-05-12 19:43 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2016-06-15 14:01 - 2016-05-12 18:17 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-06-15 14:01 - 2016-05-12 18:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-15 14:01 - 2016-05-12 18:07 - 01360896 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-06-15 14:01 - 2016-05-12 17:59 - 00398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-15 14:01 - 2016-05-12 17:43 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-06-15 14:01 - 2016-05-12 17:37 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-06-15 14:01 - 2016-05-06 17:45 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-06-15 14:01 - 2016-05-06 17:23 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-06-15 14:01 - 2016-04-12 17:46 - 14467584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-06-15 14:01 - 2016-04-12 17:30 - 12879872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-06-15 14:00 - 2016-05-21 19:28 - 25802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-06-15 14:00 - 2016-05-21 18:57 - 20341248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-06-15 14:00 - 2016-05-21 00:09 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-06-15 14:00 - 2016-05-21 00:08 - 02895360 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-06-15 14:00 - 2016-05-21 00:02 - 06051328 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-06-15 14:00 - 2016-05-20 23:57 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-06-15 14:00 - 2016-05-20 23:55 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-06-15 14:00 - 2016-05-20 23:54 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-06-15 14:00 - 2016-05-20 23:50 - 02287104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-06-15 14:00 - 2016-05-20 23:44 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-06-15 14:00 - 2016-05-20 23:29 - 13815808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-06-15 14:00 - 2016-05-20 23:27 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-06-15 14:00 - 2016-05-20 23:25 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-06-15 14:00 - 2016-05-20 23:25 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-06-15 14:00 - 2016-05-20 23:21 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-06-15 14:00 - 2016-05-20 23:21 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-06-15 14:00 - 2016-05-20 23:19 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-06-15 14:00 - 2016-05-20 23:16 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-06-15 14:00 - 2016-05-20 23:14 - 04610048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-06-15 14:00 - 2016-05-20 23:12 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-06-15 14:00 - 2016-05-20 23:11 - 15420928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-06-15 14:00 - 2016-05-20 23:11 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-06-15 14:00 - 2016-05-20 23:09 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-06-15 14:00 - 2016-05-20 23:09 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-06-15 14:00 - 2016-05-20 23:08 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-06-15 14:00 - 2016-05-20 23:08 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-06-15 14:00 - 2016-05-20 23:06 - 02131968 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-06-15 14:00 - 2016-05-20 22:46 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-06-15 14:00 - 2016-05-20 22:42 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-06-15 14:00 - 2016-05-20 22:38 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-06-15 14:00 - 2016-05-20 22:38 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-06-15 14:00 - 2016-05-20 22:34 - 01544192 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-06-15 14:00 - 2016-05-20 22:23 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-06-15 14:00 - 2016-05-19 01:15 - 01379040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-06-15 14:00 - 2016-05-18 22:35 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-06-15 14:00 - 2016-05-18 07:31 - 00372568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-06-15 14:00 - 2016-05-18 07:31 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-06-15 14:00 - 2016-05-16 23:13 - 00563016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-06-15 14:00 - 2016-05-16 23:13 - 00397224 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-15 14:00 - 2016-05-16 23:13 - 00340872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-06-15 14:00 - 2016-05-16 23:13 - 00178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-06-15 14:00 - 2016-05-14 22:01 - 00363104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-06-15 14:00 - 2016-05-14 22:01 - 00320720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-06-15 14:00 - 2016-05-14 01:07 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-06-15 14:00 - 2016-05-14 01:07 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-06-15 14:00 - 2016-05-14 01:07 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-06-15 14:00 - 2016-05-14 01:06 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-06-15 14:00 - 2016-05-14 01:04 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-06-15 14:00 - 2016-05-14 00:34 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-06-15 14:00 - 2016-05-14 00:19 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-06-15 14:00 - 2016-05-13 23:58 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-06-15 14:00 - 2016-05-13 23:58 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-06-15 14:00 - 2016-05-13 23:45 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-06-15 14:00 - 2016-05-13 23:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-06-15 14:00 - 2016-05-13 23:26 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-06-15 14:00 - 2016-05-09 23:35 - 07075328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-06-15 14:00 - 2016-05-09 22:56 - 05270016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-06-15 14:00 - 2016-05-09 22:45 - 07793152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-15 14:00 - 2016-05-09 22:23 - 05265920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-06-15 14:00 - 2016-04-14 17:25 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-06-15 14:00 - 2016-04-14 17:11 - 02464768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-06-15 14:00 - 2016-01-31 21:17 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2016-06-15 14:00 - 2016-01-31 20:07 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-06-15 14:00 - 2016-01-31 19:42 - 03320832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-06-15 14:00 - 2016-01-31 19:14 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-06-14 16:34 - 2016-06-14 16:34 - 00000000 ____D C:\Program Files (x86)\Atari
2016-06-14 16:28 - 2016-06-14 16:29 - 535977984 ____R C:\Users\Tobiáš\Downloads\rld-crashday.iso
2016-06-12 22:19 - 2016-06-18 07:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-12 20:59 - 2016-06-12 20:59 - 00001161 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-06-07 16:02 - 2016-06-07 16:02 - 00045680 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2016-06-06 19:10 - 2016-06-06 19:11 - 00000000 ____D C:\Users\Tobiáš\Documents\Stronghold Crusader 2
2016-06-06 19:10 - 2016-06-06 19:10 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Steam
2016-06-06 18:54 - 2016-06-06 18:54 - 00001402 _____ C:\Users\Tobiáš\Desktop\Stronghold Crusader 2.lnk
2016-06-06 18:54 - 2016-06-06 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stronghold Crusader 2
2016-06-06 18:50 - 2016-06-06 18:53 - 00000000 ____D C:\Program Files (x86)\Stronghold Crusader 2
2016-06-06 14:02 - 2016-06-06 14:47 - 00000000 ____D C:\Users\Tobiáš\Downloads\Theatre.of.War.2.Kursk.1943-SKIDROW
2016-06-04 12:28 - 2016-06-18 11:06 - 00009985 _____ C:\Users\Tobiáš\AppData\Roaming\.freeciv-client-rc-2.5
2016-06-04 12:27 - 2016-06-18 09:43 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\.freeciv
2016-06-04 12:24 - 2016-06-18 11:06 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Freeciv-2.5.4-gtk2
2016-06-04 12:24 - 2016-06-04 12:24 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freeciv 2.5.4 (GTK+2 client)
2016-06-04 12:20 - 2016-06-04 12:22 - 32134788 _____ C:\Users\Tobiáš\Downloads\Freeciv-2.5.4-win32-gtk2-setup.exe
2016-06-03 14:47 - 2016-06-03 14:47 - 00000000 ____D C:\ProgramData\Gaijin
2016-06-03 14:04 - 2016-06-03 14:04 - 00000000 ____D C:\$SysReset
2016-06-03 13:57 - 2016-06-03 13:57 - 00002151 _____ C:\Users\Public\Desktop\AVG PC TuneUp.lnk
2016-06-02 16:55 - 2016-06-02 16:55 - 00001334 _____ C:\Users\Tobiáš\Desktop\Total War - Rome II.lnk
2016-06-02 16:05 - 2016-06-02 16:20 - 00000000 ____D C:\Users\Tobiáš\Downloads\[R.G. Mechanics] Total War - Rome II
2016-06-01 19:13 - 2016-06-01 19:13 - 00000221 _____ C:\Users\Tobiáš\Desktop\Empire Total War.url
2016-05-31 16:35 - 2016-05-31 16:48 - 00000000 ____D C:\log
2016-05-31 16:33 - 2016-05-31 16:33 - 00002311 _____ C:\Users\Public\Desktop\Rush for Berlin GOLD.lnk
2016-05-31 16:33 - 2016-05-31 16:33 - 00002302 _____ C:\Users\Public\Desktop\RfB (without RftB).lnk
2016-05-31 15:22 - 2016-05-31 15:38 - 00000000 ____D C:\Users\Tobiáš\Downloads\Rush for Berlin Gold
2016-05-29 21:44 - 2016-05-29 21:44 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-05-29 21:15 - 2014-03-28 11:55 - 06154240 _____ (IDT, Inc.) C:\WINDOWS\system32\stlang64.dll
2016-05-29 21:15 - 2014-03-28 11:55 - 01897984 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNC64.cpl
2016-05-29 21:15 - 2014-03-28 11:55 - 01703424 _____ (IDT, Inc.) C:\WINDOWS\sttray64.exe
2016-05-29 21:15 - 2014-03-28 11:55 - 00464384 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slapoi64.dll
2016-05-29 21:15 - 2014-03-28 11:55 - 00031752 _____ C:\WINDOWS\system32\DTS_TOWER.XML
2016-05-29 20:24 - 2016-05-29 21:31 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2016-05-29 20:24 - 2016-05-29 21:31 - 00009528 _____ C:\WINDOWS\diagerr.xml
2016-05-29 17:22 - 2016-06-05 15:22 - 00000000 ____D C:\WINDOWS\Panther
2016-05-29 17:18 - 2016-05-29 17:18 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\ProductData
2016-05-26 19:10 - 2016-05-26 19:10 - 00002018 _____ C:\Users\Tobiáš\Desktop\JRT.txt
2016-05-26 19:06 - 2016-05-26 19:06 - 01610816 _____ (Malwarebytes) C:\Users\Tobiáš\Downloads\JRT.exe
2016-05-26 18:26 - 2016-05-26 18:26 - 00001451 _____ C:\Users\Tobiáš\Desktop\Launcher – zástupce.lnk
2016-05-26 18:21 - 2016-06-03 15:10 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Game Launcher
2016-05-26 18:21 - 2016-05-26 18:21 - 27941776 _____ (Splitscreen Studios GmbH) C:\Users\Tobiáš\Downloads\GameLauncher_Setup.exe
2016-05-26 18:21 - 2016-05-26 18:21 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Splitscreen Studios
2016-05-25 20:42 - 2016-05-25 20:43 - 03677760 _____ C:\Users\Tobiáš\Downloads\adwcleaner_5.118.exe
2016-05-22 17:59 - 2016-06-03 15:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Age of Conquest IV
2016-05-22 17:59 - 2016-05-22 17:59 - 00000000 ____D C:\Program Files (x86)\Age of Conquest IV
2016-05-22 17:58 - 2016-05-22 17:58 - 66132896 _____ (Noble Master) C:\Users\Tobiáš\Downloads\setup_conquest_win32_4.0.96_auto.exe
2016-05-22 17:27 - 2016-05-22 17:28 - 00000000 ____D C:\Users\Tobiáš\Desktop\Nová složka (26)
2016-05-22 15:30 - 2016-05-22 15:30 - 00000222 _____ C:\Users\Tobiáš\Desktop\Age of Conquest IV.url
2016-05-22 15:28 - 2016-05-22 15:28 - 00000219 _____ C:\Users\Tobiáš\Desktop\Dota 2.url
2016-05-20 19:50 - 2016-05-20 19:50 - 00000000 ____D C:\Users\Tobiáš\Desktop\Nová složka

SkyWolfy · Příspěvekod **SkyWolfy** » 19 čer 2016 19:23

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-06-19 19:19 - 2016-01-17 10:26 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\uTorrent
2016-06-19 19:15 - 2016-01-15 16:56 - 00000000 ____D C:\Program Files (x86)\Steam
2016-06-19 19:07 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-19 19:03 - 2016-01-15 16:40 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2346423795-1808065523-688302191-1001
2016-06-19 18:49 - 2016-05-11 14:44 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-19 18:48 - 2016-01-15 17:10 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-19 16:50 - 2016-04-02 17:07 - 00000000 ____D C:\ProgramData\MFAData
2016-06-19 14:49 - 2016-05-11 14:44 - 00000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-19 14:22 - 2016-01-15 16:41 - 00003814 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C82BB15F-5BD0-4882-854F-CF9B838811D2}
2016-06-19 10:28 - 2016-01-15 16:38 - 00000000 __RDO C:\Users\Tobiáš\OneDrive
2016-06-19 09:14 - 2016-03-12 18:22 - 00000000 ____D C:\ProgramData\Origin
2016-06-19 09:14 - 2016-03-12 18:21 - 00000000 ____D C:\Program Files (x86)\Origin
2016-06-19 08:09 - 2016-02-26 19:30 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Adobe
2016-06-19 08:08 - 2016-03-09 19:09 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\MyComGames
2016-06-19 08:08 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-06-19 08:07 - 2016-05-01 16:02 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\LogMeIn Hamachi
2016-06-18 17:42 - 2016-04-02 19:17 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-06-18 12:48 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-18 10:34 - 2016-03-22 17:57 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Battle for Wesnoth 1.12.5
2016-06-18 07:50 - 2016-04-02 17:40 - 00002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-18 07:50 - 2016-04-02 17:40 - 00002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-18 07:12 - 2016-05-16 17:56 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Arma 3
2016-06-18 07:03 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-06-18 07:02 - 2016-01-15 16:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-18 07:02 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-18 07:02 - 2013-08-22 16:44 - 00351712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-06-17 22:01 - 2014-09-18 03:36 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2016-06-17 21:59 - 2016-01-20 14:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-06-17 21:59 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-06-17 21:59 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2016-06-17 21:58 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-06-17 21:53 - 2016-01-15 16:32 - 00000000 ____D C:\Users\Tobiáš
2016-06-17 15:50 - 2016-01-19 15:34 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-06-17 15:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2016-06-17 15:43 - 2016-01-19 15:34 - 142482544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-06-17 15:30 - 2016-01-15 16:34 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Adobe
2016-06-17 15:22 - 2016-02-26 19:33 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-06-17 15:14 - 2016-02-25 13:43 - 00000000 ____D C:\ProgramData\Adobe
2016-06-17 14:48 - 2016-01-15 17:10 - 00003666 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-06-17 14:17 - 2016-04-18 16:45 - 00111104 ___SH C:\Users\Tobiáš\Desktop\Thumbs.db
2016-06-14 17:06 - 2016-04-02 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-06-14 16:42 - 2014-09-18 03:55 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-06-14 16:33 - 2016-01-15 17:11 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\DAEMON Tools Lite
2016-06-14 16:24 - 2016-05-06 10:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TopCD
2016-06-14 16:24 - 2016-01-15 16:34 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\VirtualStore
2016-06-12 20:59 - 2016-01-15 16:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-06-05 22:00 - 2016-04-02 17:39 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Google
2016-06-05 20:23 - 2016-02-03 08:31 - 00000047 _____ C:\Users\Tobiáš\Documents\mt-x_hook.txt
2016-06-05 20:23 - 2016-01-15 23:17 - 00000007 _____ C:\Users\Tobiáš\Documents\mt-e_hook.txt
2016-06-05 15:17 - 2016-02-13 16:07 - 00000000 ___HD C:\$WINDOWS.~BT
2016-06-03 18:31 - 2016-01-17 17:26 - 00000000 ____D C:\Users\Tobiáš\Desktop\Cheaty
2016-06-03 15:10 - 2016-05-18 16:46 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SIX Networks
2016-06-03 15:10 - 2016-05-11 17:33 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Warcraft III
2016-06-03 15:10 - 2016-05-11 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft III
2016-06-03 15:10 - 2016-05-11 15:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2016-06-03 15:10 - 2016-05-11 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-06-03 15:10 - 2016-05-10 13:01 - 00000000 ____D C:\WINDOWS\SysWOW64\AGEIA
2016-06-03 15:10 - 2016-05-10 13:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-06-03 15:10 - 2016-05-07 14:23 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Drakensang Online
2016-06-03 15:10 - 2016-04-25 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Torchlight II
2016-06-03 15:10 - 2016-04-09 15:59 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2016-06-03 15:10 - 2016-04-02 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-06-03 15:10 - 2016-04-02 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-06-03 15:10 - 2016-04-01 19:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blitzkrieg 2
2016-06-03 15:10 - 2016-03-28 19:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-06-03 15:10 - 2016-03-22 18:00 - 00000000 ___SD C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Battle for Wesnoth 1.12.5
2016-06-03 15:10 - 2016-03-18 20:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rust
2016-06-03 15:10 - 2016-03-12 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-06-03 15:10 - 2016-03-12 13:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-06-03 15:10 - 2016-03-11 17:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-06-03 15:10 - 2016-03-09 19:21 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Armored Warfare MyCom Beta
2016-06-03 15:10 - 2016-03-09 19:09 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com Games
2016-06-03 15:10 - 2016-03-02 19:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World Of Warships
2016-06-03 15:10 - 2016-03-02 18:57 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Warplanes - Common Test
2016-06-03 15:10 - 2016-02-28 18:41 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks - Common Test
2016-06-03 15:10 - 2016-02-04 09:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Start Menu 8
2016-06-03 15:10 - 2016-02-04 09:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
2016-06-03 15:10 - 2016-02-04 09:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2016-06-03 15:10 - 2016-02-02 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Guild 2
2016-06-03 15:10 - 2016-01-24 17:22 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Warplanes
2016-06-03 15:10 - 2016-01-23 19:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blitzkrieg Mod
2016-06-03 15:10 - 2016-01-23 14:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Far Cry 3
2016-06-03 15:10 - 2016-01-22 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
2016-06-03 15:10 - 2016-01-21 20:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Terraria [GOG.com]
2016-06-03 15:10 - 2016-01-17 10:26 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2016-06-03 15:10 - 2016-01-16 14:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Might and Magic Heroes VII
2016-06-03 15:10 - 2016-01-15 18:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic V Sběratelská Edice
2016-06-03 15:10 - 2016-01-15 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-06-03 15:10 - 2016-01-15 16:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-06-03 15:10 - 2016-01-15 16:25 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-06-03 15:10 - 2014-09-18 04:06 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2016-06-03 15:10 - 2014-09-18 04:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2016-06-03 15:10 - 2014-09-18 04:03 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-06-03 15:10 - 2014-09-18 04:02 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-06-03 15:10 - 2014-09-18 04:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2016-06-03 15:10 - 2014-09-18 03:56 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2016-06-03 15:10 - 2014-09-18 03:53 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-06-03 15:10 - 2014-09-18 03:36 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-06-03 15:10 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2016-06-03 15:10 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-06-03 15:10 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-06-03 15:10 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-06-03 14:52 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-06-03 14:31 - 2016-04-06 16:06 - 00001436 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2016-06-03 14:31 - 2016-04-02 17:39 - 00003104 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-06-03 14:31 - 2016-04-02 17:39 - 00002868 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-06-03 14:31 - 2016-04-02 17:30 - 00002438 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater
2016-06-03 14:31 - 2016-04-02 17:30 - 00002428 _____ C:\WINDOWS\System32\Tasks\Adobe Reader and Acrobat Manager
2016-06-03 14:31 - 2016-03-28 19:00 - 00001664 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-06-03 14:31 - 2016-02-04 09:11 - 00001878 _____ C:\WINDOWS\System32\Tasks\SmartDefrag4_Update
2016-06-03 14:27 - 2013-08-22 17:36 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-06-03 14:24 - 2016-01-15 16:55 - 00000000 ____D C:\Program Files\Common Files\AV
2016-06-02 16:59 - 2016-02-01 17:34 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\The Creative Assembly
2016-06-02 16:23 - 2016-05-16 15:26 - 00000000 ____D C:\Program Files (x86)\R.G. Mechanics
2016-06-01 15:12 - 2016-04-02 17:17 - 00053008 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\TURegOpt.exe
2016-05-29 21:29 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Registration
2016-05-29 21:17 - 2014-09-18 03:53 - 00000000 ___HD C:\Users\Default\Documents\hp.system.package.metadata
2016-05-29 21:17 - 2014-09-18 03:53 - 00000000 ___HD C:\Users\Default User\Documents\hp.system.package.metadata
2016-05-26 20:35 - 2016-01-15 16:33 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2016-05-26 20:35 - 2016-01-15 16:33 - 00000000 ___SD C:\WINDOWS\system32\GWX
2016-05-26 19:08 - 2016-01-16 21:27 - 00000000 ____D C:\ProgramData\IObit
2016-05-26 18:58 - 2016-04-02 19:11 - 00000000 ____D C:\AdwCleaner

==================== Files in the root of some directories =======

2016-06-04 12:28 - 2016-06-18 11:06 - 0009985 _____ () C:\Users\Tobiáš\AppData\Roaming\.freeciv-client-rc-2.5
2016-02-21 20:45 - 2016-02-21 20:45 - 0007605 _____ () C:\Users\Tobiáš\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
C:\Users\Tobiáš\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Tobiáš\AppData\Local\Temp\NirCmd.exe
C:\Users\Tobiáš\AppData\Local\Temp\PEVZ.EXE
C:\Users\Tobiáš\AppData\Local\Temp\remove.exe
C:\Users\Tobiáš\AppData\Local\Temp\sed.exe
C:\Users\Tobiáš\AppData\Local\Temp\utils.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-06-07 11:24

==================== End of FRST.txt ============================

SkyWolfy · Příspěvekod **SkyWolfy** » 19 čer 2016 19:23

Log 2

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-06-2016
Ran by Tobiáš (2016-06-19 19:20:45)
Running from C:\Users\Tobiáš\Downloads
Windows 8.1 (Update) (X64) (2016-01-15 14:34:00)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2346423795-1808065523-688302191-500 - Administrator - Disabled)
Guest (S-1-5-21-2346423795-1808065523-688302191-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2346423795-1808065523-688302191-1003 - Limited - Enabled)
Tobiáš (S-1-5-21-2346423795-1808065523-688302191-1001 - Administrator - Enabled) => C:\Users\Tobiáš

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\uTorrent) (Version: 3.4.5.41865 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ACP Application (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.272 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Adobe Flash Player 22 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 22.0.0.196 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1.2 - Adobe Systems Incorporated)
Adobe Reader XI - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Age of Conquest IV (HKLM\...\Steam App 314970) (Version: - Noble Master LLC)
Alcor Micro USB Card Reader Driver (HKLM-x32\...\AmUStor) (Version: 20.21.3317.03861 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver (x32 Version: 20.21.3317.03861 - Alcor Micro Corp.) Hidden
AMD Catalyst Install Manager (HKLM\...\{FE454FF9-854B-B922-29E5-47219C9315CD}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
ArmA Uninstall (HKLM-x32\...\ArmA) (Version: - )
Armored Warfare MyCom (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Armored Warfare MyCom) (Version: 1.86 - My.com B.V.)
AVG (HKLM\...\AvgZen) (Version: 1.61.2.12974 - AVG Technologies)
AVG (Version: 16.81.7640 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4604 - AVG Technologies) Hidden
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.32.2.3320 - AVG Technologies)
AVG PC TuneUp (x32 Version: 16.32.5 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.81.7640 - AVG Technologies)
AVG Zen (Version: 1.61.9 - AVG Technologies) Hidden
Avira Launcher (HKLM-x32\...\{28d41884-9b36-4f54-bed2-92863f08e65d}) (Version: 1.1.62.21333 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{761cd2c4-5249-4346-8318-a499d06d2681}) (Version: 1.1.63.21885 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.63.21885 - Avira Operations GmbH & Co. KG) Hidden
Battle for Wesnoth 1.12.5 (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Battle for Wesnoth 1.12.5) (Version: 1.12.5 - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 2(TM) (HKLM-x32\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version: - )
Blitzkrieg 2 (HKLM-x32\...\Blitzkrieg 2) (Version: - )
Blitzkrieg Mod version 4.9.5 (HKLM-x32\...\{81EC7B6D-B297-4820-B5BE-5A2373725158}_is1) (Version: 4.9.5 - Blitzkrieg Mod Team)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.16 - Piriform)
com.ageofconquest.app.user.aoc 4.0.96 (HKLM-x32\...\com.ageofconquest.app.user.aoc) (Version: 4.0.96 - Noble Master)
Combat Mission Battle for Normandy (HKLM-x32\...\CMBN10_is1) (Version: - Battlefront.com)
Company of Heroes 2 (HKLM-x32\...\Steam App 231430) (Version: - Relic Entertainment)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.7.4023 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.2.5426 - CyberLink Corp.)
Cyberlink PhotoDirector (Version: 5.0.2.5426 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.7.4016 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.1.3004 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.1.3004 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4.4119 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd)
DawnOfWar (HKLM-x32\...\InstallShield_{362D5167-9716-44BE-89FD-BF9EB6EF814B}) (Version: 1.00.00000 - THQ)
DawnOfWar (x32 Version: 1.00.00000 - THQ) Hidden
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Dota 2 (HKLM\...\Steam App 570) (Version: - Valve)
Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - )
Eastern Front (HKLM-x32\...\Eastern Front) (Version: 2.3.0.0 - )
Empire: Total War (HKLM-x32\...\Steam App 10500) (Version: - The Creative Assembly)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 5.3 (HKLM-x32\...\{E461B1AC-BC3C-11E3-B5B8-00163E98E7D6}) (Version: 5.3.0.3360 - Evernote Corp.)
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.18 - Echobit, LLC)
FMW 1 (Version: 1.82.3 - AVG Technologies) Hidden
Foxit PhantomPDF (HKLM-x32\...\{00CD7D62-056A-4F0F-9143-44522D44E6DD}) (Version: 6.0.32.507 - Foxit Corporation)
Freeciv 2.5.4 (GTK+2 client) (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Freeciv-2.5.4-gtk2) (Version: - )
Game Launcher (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Game Launcher) (Version: 12345.0.0.0 - Splitscreen Studios GmbH)
GameRanger (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\GameRanger) (Version: - GameRanger Technologies)
GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version: - )
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version: - Reto-Moto)
Heroes of Might and Magic V Sběratelská Edice (HKLM-x32\...\Heroes of Might and Magic V Sběratelská EdiceVerze: h5 1.0, h5hof 2.1, h5tote 3.0) (Version: Verze: h5 1.0, h5hof 2.1, h5tote 3.0 - Ubisoft By_Etnik23)
Heroes of Might and Magic® IV (HKLM-x32\...\InstallShield_{192E2132-E977-4D3E-90BA-9DBCE1B57F8C}) (Version: 1.00.0000 - 3DO)
Heroes of Might and Magic® IV (x32 Version: 1.00.0000 - 3DO) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
Hired Guns (HKLM-x32\...\Hired Guns_is1) (Version: 1.0 - US-Action, s.r.o.)
HP Documentation (HKLM-x32\...\{4B4EDB7B-4F54-4B86-8A4A-E1C5803CA374}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7745.4851 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{7FE016CC-DAA9-4E21-BD2F-98390D1E6F3F}) (Version: 7.6.23.8 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6496.0 - IDT)
Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.2.1.126 - IObit)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.472 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.472 - LogMeIn, Inc.) Hidden
Making History II: The War of the World (HKLM-x32\...\Steam App 46770) (Version: - Muzzy Lane Software)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Medieval II Total War (HKLM-x32\...\{C0698BDA-0D29-40EE-8570-A31106DF9AB1}) (Version: 1.00.0000 - SEGA)
Men of War: Assault Squad (HKLM-x32\...\Steam App 64000) (Version: - Digitalmindsoft)
Men of War: Assault Squad 2 (HKLM-x32\...\Steam App 244450) (Version: - Digitalmindsoft)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mount & Blade: Warband (HKLM\...\Steam App 48700) (Version: - TaleWorlds Entertainment)
Mozilla Firefox 47.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 cs)) (Version: 47.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
My.com Game Center (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MyComGames) (Version: 3.172 - My.com B.V.)
Napoleon: Total War (HKLM-x32\...\Steam App 34030) (Version: - The Creative Assembly)
Need for Speed(TM) Rivals (HKLM-x32\...\{E0A32336-AA27-4053-99B2-C3380B7B95AC}) (Version: 1.4.0.0 - Electronic Arts)
Need for Speed™ Most Wanted (HKLM-x32\...\{ADE91A13-434D-4229-00BC-182BAD607303}) (Version: - )
NVIDIA PhysX v8.04.25 (HKLM-x32\...\{74224F8D-4A17-4816-9EDB-7BB854DE532C}) (Version: 8.04.25 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.11.5.17432 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.95.40.0 - Overwolf Ltd.)
Panzer Corps Afrika Korps (HKLM-x32\...\Panzer Corps Afrika Korps1.12) (Version: 1.12 - Slitherine)
Play withSIX Windows client (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\PlaywithSIX) (Version: 1.68.1388.1 - SIX Networks GmbH)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.7316 - CyberLink Corp.) Hidden
Rise of Nations (HKLM-x32\...\RiseOfNationsExpansion 1.0) (Version: 1.0 - Microsoft)
Rust (HKLM-x32\...\Rust 1.0.0) (Version: 1.0.0 - Facepunch Studios)
Rust (x32 Version: 1.0.0 - Facepunch Studios) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Sid Meier's Civilization V_is1) (Version: - )
Silent Storm (HKLM-x32\...\{D219BE4E-4B67-4354-AB10-3EF90A0CC883}) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold Crusader 2 (HKLM-x32\...\Stronghold Crusader 2_is1) (Version: - )
TeamSpeak 3 Client (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
The Guild 2 (HKLM-x32\...\TheGuild2) (Version: - )
Torchlight II v1.25.5.2 (HKLM-x32\...\Torchlight II_is1) (Version: - CzTorrent.net)
TripleA Version 1_8_0_9 (HKLM-x32\...\TripleAVersion1_8_0_9) (Version: - )
Unturned (HKLM\...\Steam App 304930) (Version: - Smartly Dressed Games)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - )
Warface (HKLM\...\Steam App 291480) (Version: - Crytek)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2346423795-1808065523-688302191-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

SkyWolfy · Příspěvekod **SkyWolfy** » 19 čer 2016 19:24

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {0F14DF15-A39B-432E-AEA4-5C07235F44EE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-06-04] (Hewlett-Packard Company)
Task: {0F2FBF35-8C37-401D-A5DF-C43714D10DF4} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2016-06-01] (AVG Technologies CZ, s.r.o.)
Task: {125BDE01-6A24-4FA2-938D-AC8675DDA2DB} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-06-17] (Microsoft Corporation)
Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - \Microsoft\Windows\TaskScheduler\Maintenance Configurator -> No File <==== ATTENTION
Task: {1687544D-7247-4F5A-965A-A6E920E55278} - \Microsoft\Windows\TaskScheduler\Manual Maintenance -> No File <==== ATTENTION
Task: {1B164080-E584-4959-BE8E-7F15CE6EAA42} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFReport.exe [2016-02-18] (Hewlett-Packard)
Task: {36DE4728-03DF-4AA2-BE19-99A00A384FFE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-02] (Google Inc.)
Task: {3D69E14A-479A-4749-87C1-AC90D0C28560} - System32\Tasks\HPCeeScheduleForTobiáš => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {4C28BDD5-ED21-4506-8795-2A142D01E699} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-05-29] (Overwolf LTD)
Task: {59AC955C-2181-4D68-AA25-37D6400EE448} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-02] (Google Inc.)
Task: {5B683D9F-1C74-44DD-A204-ABE8AC9DC8F5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2016-03-07] (Hewlett-Packard)
Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - \Microsoft\Windows\TaskScheduler\Idle Maintenance -> No File <==== ATTENTION
Task: {75FAC4C6-A31D-4232-9CEF-564835769147} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-06-04] (Hewlett-Packard Company)
Task: {99302D22-1242-45F2-A952-C65D10AC4594} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-01-29] (Oracle Corporation)
Task: {AA4432C9-B978-440F-85D7-5B21300ECA19} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-17] (Adobe Systems Incorporated)
Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - \Microsoft\Windows\TaskScheduler\Regular Maintenance -> No File <==== ATTENTION
Task: {B7C90BA5-C0E4-48CD-8A30-89ECA4F41503} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23] (Adobe Systems Incorporated)
Task: {CF098345-E543-4366-A333-3D4E1AE40155} - System32\Tasks\SmartDefrag4_Update => C:\Program Files (x86)\IObit\Smart Defrag 4\AutoUpdate.exe [2016-01-28] (IObit)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - \Microsoft\Windows\SettingSync\BackupTask -> No File <==== ATTENTION
Task: {FCB6567E-9D76-4483-A8B2-0B19DA1989D5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-03-11] (Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForTobiáš.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Public\Desktop\RUST.lnk -> C:\Program Files (x86)\Facepunch Studios\Rust\RUST_START.bat ()

==================== Loaded Modules (Whitelisted) ==============

2014-03-28 14:31 - 2014-03-28 14:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2014-09-18 04:08 - 2014-04-14 19:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2016-05-22 19:33 - 2016-05-22 19:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2014-03-28 14:36 - 2014-03-28 14:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2016-05-22 19:32 - 2016-05-22 19:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more sites.

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-06-18 17:50 - 2016-06-18 17:50 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2346423795-1808065523-688302191-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tobiáš\Pictures\lc6WnlY.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"

SVChost.exe Virus

Re: SVChost.exe Virus

Re: SVChost.exe Virus

Re: SVChost.exe Virus

Re: SVChost.exe Virus

Re: SVChost.exe Virus

Re: SVChost.exe Virus

Re: SVChost.exe Virus

Re: SVChost.exe Virus

Re: SVChost.exe Virus

Re: SVChost.exe Virus

Re: SVChost.exe Virus

Re: SVChost.exe Virus

Kdo je online