Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
vojtamalej
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 26 říj 2015 02:34

Prosím o kontrolu logu

#1 Příspěvek od vojtamalej »

Dobrý den, prosím o kontrolu logu. Chytil jsem nějakou havěť, prohnal jsem počítač antivirem (ESET), Ad-awarem a spybotem tak chci mít jistotu, že nikde nezůstal nějaký zakopaný pes. Díky V.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:25-10-2015 02
Ran by user (administrator) on DELL (27-10-2015 02:31:51)
Running from C:\Users\user\Desktop
Loaded Profiles: user (Available Profiles: user)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.8.586.8535\AdAwareService.exe
(Lavasoft Limited) C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.8.586.8535\AdAwareTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssist\imstrayicon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760 2015-08-04] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320 2015-08-04] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3955888 2015-09-02] (Synaptics Incorporated)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3775816 2014-02-27] (Dell Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-07-22] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-09-23] (Apple Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.8.586.8535\AdAwareTray.exe [9558752 2015-08-27] ()
HKLM-x32\...\Run: [DropboxOEM] => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [462160 2014-09-02] ()
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2303152 2015-07-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [36711472 2015-10-13] (Dropbox, Inc.)
HKLM-x32\...\Run: [GoPro Studio Importer] => C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe [3217672 2015-07-03] (GoPro)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-07-27] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-3095384325-3403677832-3438069719-1001\...\Run: [GoogleChromeAutoLaunch_4E874A737D5662A34EBBEADB3A9C4A09] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848 2015-10-21] (Google Inc.)
HKU\S-1-5-21-3095384325-3403677832-3438069719-1001\...\Run: [Spotify Web Helper] => C:\Users\user\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-09-03] (Spotify Ltd)
HKU\S-1-5-21-3095384325-3403677832-3438069719-1001\...\Run: [Spotify] => C:\Users\user\AppData\Roaming\Spotify\Spotify.exe [7535672 2015-09-03] (Spotify Ltd)
HKU\S-1-5-21-3095384325-3403677832-3438069719-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403192 2015-09-11] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3095384325-3403677832-3438069719-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [1385744 2015-10-24] (Lavasoft)
HKU\S-1-5-21-3095384325-3403677832-3438069719-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll [2015-07-10] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll [2015-07-10] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\LavasoftTcpService.dll [345360 2015-10-24] (Lavasoft Limited)
Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\LavasoftTcpService.dll [345360 2015-10-24] (Lavasoft Limited)
Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\LavasoftTcpService.dll [345360 2015-10-24] (Lavasoft Limited)
Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\LavasoftTcpService.dll [345360 2015-10-24] (Lavasoft Limited)
Winsock: Catalog9 17 C:\WINDOWS\SysWOW64\LavasoftTcpService.dll [345360 2015-10-24] (Lavasoft Limited)
Winsock: Catalog9-x64 01 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2015-10-24] (Lavasoft Limited)
Winsock: Catalog9-x64 02 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2015-10-24] (Lavasoft Limited)
Winsock: Catalog9-x64 03 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2015-10-24] (Lavasoft Limited)
Winsock: Catalog9-x64 04 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2015-10-24] (Lavasoft Limited)
Winsock: Catalog9-x64 17 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2015-10-24] (Lavasoft Limited)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.254
Tcpip\..\Interfaces\{20599662-e63e-46c4-a90b-52e5c1b29efa}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7dc528d4-380c-445f-a60d-518e2ad3e01d}: [DhcpNameServer] 192.168.2.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3095384325-3403677832-3438069719-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3095384325-3403677832-3438069719-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
HKU\S-1-5-21-3095384325-3403677832-3438069719-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-3095384325-3403677832-3438069719-1001 -> DefaultScope {E833A2FF-E782-4CC8-9040-3C0C09542683} URL =
SearchScopes: HKU\S-1-5-21-3095384325-3403677832-3438069719-1001 -> {E833A2FF-E782-4CC8-9040-3C0C09542683} URL =

FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-07-23] (Adobe Systems)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-14] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-10-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-23] (Adobe Systems)

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.cz/
CHR StartupUrls: Default -> "hxxp://search.babylon.com/?affID=122310&babsrc=HP_ss_bad2g&mntrId=E456001E64523F0F","hxxp://www1.delta-search.com/?affID=122310&babsrc=HP_ss&mntrId=E456001E64523F0F","hxxp://start.qone8.com/?type=hp&ts=1383157087&from=amt&uid=ST9500420AS_5VJ7NWW1XXXX5VJ7NWW1","hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP","hxx ... 8973689736"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-18]
CHR Extension: (Google Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-18]
CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google Search) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-24]
CHR Extension: (ZenMate Security, Privacy & Unblock VPN) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2015-10-08]
CHR Extension: (Google Sheets) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-18]
CHR Extension: (Google Docs Offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (WeVideo Next) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\limlkeaboocfcfncjkkghclkjidbedem [2015-08-18]
CHR Extension: (Chrome Web Store Payments) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-18]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-18]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [680112 2015-07-23] (Adobe Systems Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-09-02] (Apple Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-20] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-20] (Dropbox, Inc.)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2573520 2015-05-23] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201936 2015-05-23] (Dell Inc.)
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [293440 2014-04-02] (Aviata, Inc.)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [237272 2015-08-28] (Dell Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2505472 2015-10-09] (ESET)
S2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [762272 2015-09-11] (Garmin Ltd. or its subsidiaries)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328624 2015-09-23] (Intel Corporation)
R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.8.586.8535\AdAwareService.exe [712432 2015-08-27] ()
R2 LavasoftTcpService; C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2751760 2015-10-24] (Lavasoft Limited)
S2 My Dell Client Framework; C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe [168960 2014-01-11] (Dell Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [312056 2015-08-04] (Realtek Semiconductor)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S2 SearchProtectionService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe [17168 2015-10-24] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [20648 2015-06-12] (Dell Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [256688 2015-09-02] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 McAfee SiteAdvisor Service; "c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe" [X]
S2 WavesSysSvc; "C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4318760 2015-08-13] (Qualcomm Atheros Communications, Inc.)
R3 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1369288 2015-07-29] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [271272 2015-07-29] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [747120 2015-07-29] (BitDefender)
R1 BdfNdisf; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf6.sys [97816 2015-01-06] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfwfpf.sys [107080 2015-01-06] (BitDefender LLC)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [23760 2015-05-23] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2015-05-23] (Dell Computer Corporation)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264040 2015-09-23] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14976 2015-09-23] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [186784 2015-09-23] (ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [142976 2015-10-07] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [206312 2015-09-23] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [52872 2015-09-23] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [69840 2015-09-23] (ESET)
R3 gzflt; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.98.0\gzflt.sys [155912 2015-01-22] (BitDefender LLC)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [67584 2013-11-12] (Intel Corporation)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-03] (McAfee, Inc.)
R3 ST_Accel; C:\Windows\system32\DRIVERS\ST_Accel.sys [83968 2013-11-21] (STMicroelectronics)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [67248 2015-09-02] (Synaptics Incorporated)
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [452040 2015-01-22] (BitDefender S.R.L.)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-16] (Intel Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-11] (Apple, Inc.) [File not signed]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R3 PCDSRVC{3B54B31B-D06B6431-06020200}_0; \??\c:\program files\dell\supportassist\pcdsrvc_x64.pkms [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-27 02:31 - 2015-10-27 02:32 - 00024326 _____ C:\Users\user\Desktop\FRST.txt
2015-10-27 02:30 - 2015-10-27 02:31 - 00000000 ____D C:\FRST
2015-10-27 02:25 - 2015-10-27 02:30 - 00112640 _____ (forum.viry.cz) C:\Users\user\Desktop\FRSTLauncher.exe
2015-10-27 02:23 - 2015-10-27 02:24 - 02197504 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2015-10-27 02:18 - 2015-10-27 02:18 - 00016148 _____ C:\WINDOWS\system32\DELL_user_HistoryPrediction.bin
2015-10-25 05:50 - 2015-10-25 05:50 - 00589512 _____ (ESET) C:\WINDOWS\system32\%InstallDir%speclean.exe
2015-10-25 01:47 - 2015-10-25 01:47 - 00000000 ____D C:\ProgramData\BitDefender
2015-10-24 20:44 - 2015-10-24 20:44 - 00000000 ____D C:\Program Files\Common Files\AV
2015-10-24 20:44 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2015-10-24 20:28 - 2015-10-24 20:28 - 00001466 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-10-24 20:28 - 2015-10-24 20:28 - 00001454 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2015-10-24 20:28 - 2015-10-24 20:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-10-24 20:28 - 2015-10-24 20:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-10-24 20:27 - 2015-10-24 21:32 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-10-24 20:27 - 2015-10-24 21:05 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-10-24 20:27 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2015-10-24 19:50 - 2015-10-24 19:50 - 00000000 ____D C:\Users\user\AppData\Roaming\LavasoftStatistics
2015-10-24 19:48 - 2015-10-24 20:41 - 00000000 ____D C:\Users\user\AppData\Roaming\Lavasoft
2015-10-24 19:48 - 2015-10-24 20:23 - 00002872 _____ C:\WINDOWS\SysWOW64\LavasoftTcpServiceOff.ini
2015-10-24 19:48 - 2015-10-24 20:23 - 00002872 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini
2015-10-24 19:48 - 2015-10-24 19:48 - 00000000 ____D C:\Users\user\AppData\Local\Lavasoft
2015-10-24 19:48 - 2015-10-24 19:47 - 00425744 _____ (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService64.dll
2015-10-24 19:48 - 2015-10-24 19:47 - 00345360 _____ (Lavasoft Limited) C:\WINDOWS\SysWOW64\LavasoftTcpService.dll
2015-10-24 19:47 - 2015-10-24 19:47 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2015-10-24 19:45 - 2015-01-06 13:47 - 01061776 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdsmtpp.dll
2015-10-24 19:45 - 2015-01-06 13:47 - 00209984 _____ (BitDefender) C:\WINDOWS\system32\BdFirewallSDK.dll
2015-10-24 19:45 - 2015-01-06 13:47 - 00195016 _____ (BitDefender) C:\WINDOWS\system32\httproxy.dll
2015-10-24 19:45 - 2015-01-06 13:47 - 00156936 _____ C:\WINDOWS\system32\bdfwcore.dll
2015-10-24 19:45 - 2015-01-06 13:47 - 00155912 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdpop3p.dll
2015-10-24 19:45 - 2015-01-06 13:47 - 00122928 _____ (BitDefender) C:\WINDOWS\system32\OEMbdpredir.dll
2015-10-24 19:45 - 2015-01-06 13:47 - 00096160 _____ (BitDefender) C:\WINDOWS\system32\bdpredir.dll
2015-10-24 19:45 - 2015-01-06 13:37 - 02084072 _____ (Bitdefender) C:\WINDOWS\system32\bdnc.dll
2015-10-24 19:44 - 2015-10-25 05:54 - 00002404 _____ C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
2015-10-24 19:44 - 2015-10-24 19:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2015-10-24 19:28 - 2015-10-24 19:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-10-24 19:18 - 2015-10-24 19:18 - 00000000 ____D C:\Program Files\Lavasoft
2015-10-24 18:58 - 2015-10-24 18:58 - 00000000 ____D C:\Program Files\Common Files\Lavasoft
2015-10-24 18:21 - 2015-10-24 19:45 - 00000000 ____D C:\ProgramData\Lavasoft
2015-10-24 11:32 - 2015-10-24 11:32 - 00000000 ____D C:\Users\user\AppData\Local\ESET
2015-10-24 11:31 - 2015-10-24 11:31 - 00002102 _____ C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2015-10-24 11:30 - 2015-10-24 11:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-10-24 11:30 - 2015-10-24 11:30 - 00000000 ____D C:\ProgramData\ESET
2015-10-24 11:30 - 2015-10-24 11:30 - 00000000 ____D C:\Program Files\ESET
2015-10-24 09:36 - 2015-07-09 20:39 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-10-24 09:36 - 2015-07-09 20:36 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-10-24 09:36 - 2015-07-09 20:28 - 06358016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-10-24 09:36 - 2015-07-09 20:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-10-24 09:36 - 2015-07-09 20:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-10-24 09:06 - 2015-10-24 09:06 - 00000000 ____D C:\Program Files (x86)\Dell Customer Connect
2015-10-17 18:44 - 2015-10-17 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-10-14 12:41 - 2015-10-14 12:41 - 00000000 ____H C:\Users\user\AppData\Local\BITFA3B.tmp
2015-10-14 12:41 - 2015-10-14 12:41 - 00000000 _____ C:\Users\user\AppData\Local\{8F7C2ADA-D469-40CB-A829-9F36513EC2B1}
2015-10-13 21:45 - 2015-10-13 21:45 - 00000000 ____H C:\Users\user\AppData\Local\BIT3CA6.tmp
2015-10-13 21:45 - 2015-10-13 21:45 - 00000000 ____H C:\Users\user\AppData\Local\BIT362D.tmp
2015-10-13 21:45 - 2015-10-13 21:45 - 00000000 _____ C:\Users\user\AppData\Local\{A7218FA1-8ECE-4769-923E-689EEE783627}
2015-10-13 21:45 - 2015-10-13 21:45 - 00000000 _____ C:\Users\user\AppData\Local\{5352101C-D099-455A-88A8-FBA4E891A9BF}
2015-10-12 14:43 - 2015-10-12 14:43 - 00000000 ____D C:\Users\user\AppData\Roaming\Garmin
2015-10-12 14:43 - 2015-10-12 14:43 - 00000000 ____D C:\Users\user\AppData\Local\Garmin_Ltd._or_its_subsid
2015-10-12 14:42 - 2015-10-12 14:42 - 00001965 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2015-10-12 14:42 - 2015-10-12 14:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2015-10-12 14:42 - 2015-10-12 14:42 - 00000000 ____D C:\ProgramData\Garmin
2015-10-12 14:41 - 2015-10-12 14:43 - 00000000 ____D C:\Program Files (x86)\Garmin
2015-10-12 14:41 - 2015-10-12 14:41 - 00003624 _____ C:\WINDOWS\System32\Tasks\GarminUpdaterTask
2015-10-12 14:23 - 2015-10-12 14:23 - 00000000 ____H C:\Users\user\AppData\Local\BIT26F4.tmp
2015-10-12 14:23 - 2015-10-12 14:23 - 00000000 _____ C:\Users\user\AppData\Local\{6CC013D0-3DFA-4CCC-BB1C-F51CF3EAB7E7}
2015-10-11 22:59 - 2015-10-11 22:59 - 00000000 ____H C:\Users\user\AppData\Local\BITA16A.tmp
2015-10-11 22:59 - 2015-10-11 22:59 - 00000000 ____H C:\Users\user\AppData\Local\BIT25.tmp
2015-10-11 22:59 - 2015-10-11 22:59 - 00000000 _____ C:\Users\user\AppData\Local\{62E5DC1D-3C54-4554-B4F3-D020E88C629E}
2015-10-11 22:59 - 2015-10-11 22:59 - 00000000 _____ C:\Users\user\AppData\Local\{575320B0-9E9E-4B2B-9A1F-3FC95EB68131}
2015-10-10 15:07 - 2015-10-10 15:07 - 00001073 _____ C:\Users\Public\Desktop\IrfanView.lnk
2015-10-10 15:07 - 2015-10-10 15:07 - 00000000 ____D C:\Users\user\AppData\Roaming\IrfanView
2015-10-10 15:07 - 2015-10-10 15:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IrfanView
2015-10-10 15:07 - 2015-10-10 15:07 - 00000000 ____D C:\Program Files (x86)\IrfanView
2015-10-10 14:30 - 2015-10-10 14:30 - 00000000 ____H C:\Users\user\AppData\Local\BIT3F94.tmp
2015-10-10 14:30 - 2015-10-10 14:30 - 00000000 ____H C:\Users\user\AppData\Local\BIT20D0.tmp
2015-10-10 14:30 - 2015-10-10 14:30 - 00000000 _____ C:\Users\user\AppData\Local\{3E8AE520-F0B3-46A1-B41C-8C7644CDF802}
2015-10-10 14:30 - 2015-10-10 14:30 - 00000000 _____ C:\Users\user\AppData\Local\{1EFFC942-434D-44F9-BD1B-A31836B14F4A}
2015-10-07 13:36 - 2015-10-07 13:36 - 00001824 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-10-07 13:36 - 2015-10-07 13:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-10-07 13:35 - 2015-10-07 13:36 - 00000000 ____D C:\Program Files\iTunes
2015-10-07 13:35 - 2015-10-07 13:35 - 00000000 ____D C:\Program Files\iPod
2015-10-07 13:35 - 2015-10-07 13:35 - 00000000 ____D C:\Program Files (x86)\iTunes
2015-10-07 13:30 - 2015-10-07 13:30 - 00000000 ____D C:\Program Files\Bonjour
2015-10-07 13:30 - 2015-10-07 13:30 - 00000000 ____D C:\Program Files (x86)\Bonjour
2015-10-07 13:29 - 2015-10-07 13:29 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2015-10-07 13:29 - 2015-10-07 13:29 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2015-10-07 12:19 - 2015-10-07 12:19 - 00000000 ____H C:\Users\user\AppData\Local\BIT1098.tmp
2015-10-07 12:18 - 2015-10-07 12:18 - 00000000 _____ C:\Users\user\AppData\Local\{2675D436-3194-4F59-A133-D3BBB95BFEBC}
2015-10-07 12:17 - 2015-10-07 12:17 - 00000000 ____H C:\Users\user\AppData\Local\BIT15FA.tmp
2015-10-07 12:17 - 2015-10-07 12:17 - 00000000 _____ C:\Users\user\AppData\Local\{53DAA037-25CE-47F5-AC9A-541AA440869E}
2015-10-07 06:16 - 2015-10-07 06:16 - 00142976 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2015-10-05 22:26 - 2011-01-26 15:09 - 483666276 _____ C:\Users\user\Desktop\S Jakubem na rybách - Mongolsko-Po stopách Gigantů.avi
2015-10-05 22:09 - 2015-10-05 22:09 - 00000000 ____H C:\Users\user\AppData\Local\BITC8.tmp
2015-10-05 22:09 - 2015-10-05 22:09 - 00000000 ____H C:\Users\user\AppData\Local\BIT371C.tmp
2015-10-05 22:09 - 2015-10-05 22:09 - 00000000 _____ C:\Users\user\AppData\Local\{ECB68321-0909-413A-B75E-F73974730E51}
2015-10-05 22:09 - 2015-10-05 22:09 - 00000000 _____ C:\Users\user\AppData\Local\{7839F034-AEC0-46E6-AC8B-23A3DD24571A}
2015-10-04 22:08 - 2015-10-04 22:08 - 00002735 _____ C:\Users\user\AppData\Local\recently-used.xbel
2015-10-03 20:57 - 2015-10-05 22:17 - 00000000 ____D C:\Users\user\AppData\Roaming\dvdcss
2015-10-03 20:54 - 2012-02-21 14:05 - 1293647340 _____ C:\Users\user\Desktop\Konkurs.AVI
2015-10-02 22:58 - 2013-10-28 10:49 - 564798316 _____ C:\Users\user\Desktop\Váňa-2012.avi
2015-09-28 21:53 - 2008-07-29 02:04 - 893193842 _____ C:\Users\user\Desktop\Na samotě u lesa.avi

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-27 02:18 - 2015-07-31 11:42 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-27 02:13 - 2015-08-17 23:58 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-27 02:00 - 2015-08-18 21:35 - 00000000 ____D C:\Users\user\AppData\Local\Adobe
2015-10-27 01:35 - 2015-08-20 00:30 - 00000914 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2015-10-26 23:12 - 2015-08-17 23:56 - 00004188 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C40C9C09-4FE3-4895-A326-2F35B608236D}
2015-10-26 20:09 - 2015-08-18 03:19 - 00000000 ____D C:\Users\user\AppData\Roaming\vlc
2015-10-26 13:35 - 2015-08-20 00:30 - 00000910 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2015-10-26 09:13 - 2015-08-17 23:57 - 00000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-26 06:01 - 2015-09-23 08:42 - 00000000 ____D C:\Windows.old
2015-10-26 03:58 - 2015-09-22 22:30 - 00000000 ____D C:\Users\user\AppData\Local\Comms
2015-10-26 03:36 - 2015-07-31 07:42 - 00000000 ____D C:\Users\user\AppData\Local\VirtualStore
2015-10-25 19:55 - 2015-07-31 11:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-25 05:53 - 2015-07-31 07:41 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-25 05:52 - 2015-07-31 10:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-25 05:50 - 2015-07-10 22:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-10-24 21:57 - 2015-09-22 22:18 - 01762290 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-24 21:57 - 2015-09-10 18:05 - 00746648 _____ C:\WINDOWS\system32\perfh005.dat
2015-10-24 21:57 - 2015-09-10 18:05 - 00149550 _____ C:\WINDOWS\system32\perfc005.dat
2015-10-24 19:28 - 2015-07-31 10:50 - 00025957 _____ C:\WINDOWS\setupact.log
2015-10-24 18:13 - 2015-09-22 22:31 - 00000000 ____D C:\Users\user\AppData\Local\Publishers
2015-10-24 17:44 - 2015-09-10 09:32 - 00013294 _____ C:\WINDOWS\PFRO.log
2015-10-24 17:41 - 2015-08-28 05:34 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-10-24 17:40 - 2015-08-28 05:34 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-10-24 11:31 - 2015-07-31 11:42 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-10-24 10:01 - 2014-11-02 16:18 - 00000000 ____D C:\ProgramData\McAfee
2015-10-24 09:55 - 2015-07-10 22:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-24 09:54 - 2015-08-21 00:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2015-10-24 09:52 - 2013-08-23 02:36 - 00000000 ____D C:\Users\Default.migrated
2015-10-24 09:37 - 2015-07-31 11:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-24 09:36 - 2015-09-10 18:09 - 00000000 ____D C:\WINDOWS\OCR
2015-10-24 09:06 - 2014-11-02 16:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2015-10-23 22:53 - 2015-08-22 03:07 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2015-10-23 20:16 - 2015-08-17 23:58 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-18 20:31 - 2015-07-31 11:42 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-10-17 18:44 - 2014-11-02 16:26 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-10-16 21:05 - 2015-07-31 11:42 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-10-14 00:24 - 2015-08-31 08:42 - 00000000 ____D C:\Users\user\AppData\Local\Apple Computer
2015-10-12 14:43 - 2015-09-22 21:55 - 00000000 ____D C:\Program Files\DIFX
2015-10-12 14:41 - 2015-08-18 21:41 - 00000000 ____D C:\ProgramData\Package Cache
2015-10-08 14:12 - 2015-09-03 10:36 - 00000000 ____D C:\Users\Public\CineForm
2015-10-07 13:35 - 2015-08-31 08:36 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-10-07 13:29 - 2015-08-31 08:38 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-10-04 22:17 - 2015-08-19 04:20 - 00000000 ____D C:\Users\user\.gimp-2.8
2015-10-04 22:08 - 2015-08-19 04:31 - 00000000 ____D C:\Users\user\AppData\Local\gtk-2.0
2015-10-02 21:27 - 2015-08-19 04:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Composite Editor

==================== Files in the root of some directories =======

2015-10-07 12:19 - 2015-10-07 12:19 - 0000000 ____H () C:\Users\user\AppData\Local\BIT1098.tmp
2015-10-07 12:17 - 2015-10-07 12:17 - 0000000 ____H () C:\Users\user\AppData\Local\BIT15FA.tmp
2015-10-10 14:30 - 2015-10-10 14:30 - 0000000 ____H () C:\Users\user\AppData\Local\BIT20D0.tmp
2015-10-11 22:59 - 2015-10-11 22:59 - 0000000 ____H () C:\Users\user\AppData\Local\BIT25.tmp
2015-10-12 14:23 - 2015-10-12 14:23 - 0000000 ____H () C:\Users\user\AppData\Local\BIT26F4.tmp
2015-10-13 21:45 - 2015-10-13 21:45 - 0000000 ____H () C:\Users\user\AppData\Local\BIT362D.tmp
2015-10-05 22:09 - 2015-10-05 22:09 - 0000000 ____H () C:\Users\user\AppData\Local\BIT371C.tmp
2015-10-13 21:45 - 2015-10-13 21:45 - 0000000 ____H () C:\Users\user\AppData\Local\BIT3CA6.tmp
2015-10-10 14:30 - 2015-10-10 14:30 - 0000000 ____H () C:\Users\user\AppData\Local\BIT3F94.tmp
2015-10-11 22:59 - 2015-10-11 22:59 - 0000000 ____H () C:\Users\user\AppData\Local\BITA16A.tmp
2015-10-05 22:09 - 2015-10-05 22:09 - 0000000 ____H () C:\Users\user\AppData\Local\BITC8.tmp
2015-10-14 12:41 - 2015-10-14 12:41 - 0000000 ____H () C:\Users\user\AppData\Local\BITFA3B.tmp
2015-10-04 22:08 - 2015-10-04 22:08 - 0002735 _____ () C:\Users\user\AppData\Local\recently-used.xbel
2015-10-10 14:30 - 2015-10-10 14:30 - 0000000 _____ () C:\Users\user\AppData\Local\{1EFFC942-434D-44F9-BD1B-A31836B14F4A}
2015-10-07 12:18 - 2015-10-07 12:18 - 0000000 _____ () C:\Users\user\AppData\Local\{2675D436-3194-4F59-A133-D3BBB95BFEBC}
2015-10-10 14:30 - 2015-10-10 14:30 - 0000000 _____ () C:\Users\user\AppData\Local\{3E8AE520-F0B3-46A1-B41C-8C7644CDF802}
2015-10-13 21:45 - 2015-10-13 21:45 - 0000000 _____ () C:\Users\user\AppData\Local\{5352101C-D099-455A-88A8-FBA4E891A9BF}
2015-10-07 12:17 - 2015-10-07 12:17 - 0000000 _____ () C:\Users\user\AppData\Local\{53DAA037-25CE-47F5-AC9A-541AA440869E}
2015-10-11 22:59 - 2015-10-11 22:59 - 0000000 _____ () C:\Users\user\AppData\Local\{575320B0-9E9E-4B2B-9A1F-3FC95EB68131}
2015-10-11 22:59 - 2015-10-11 22:59 - 0000000 _____ () C:\Users\user\AppData\Local\{62E5DC1D-3C54-4554-B4F3-D020E88C629E}
2015-10-12 14:23 - 2015-10-12 14:23 - 0000000 _____ () C:\Users\user\AppData\Local\{6CC013D0-3DFA-4CCC-BB1C-F51CF3EAB7E7}
2015-10-05 22:09 - 2015-10-05 22:09 - 0000000 _____ () C:\Users\user\AppData\Local\{7839F034-AEC0-46E6-AC8B-23A3DD24571A}
2015-10-14 12:41 - 2015-10-14 12:41 - 0000000 _____ () C:\Users\user\AppData\Local\{8F7C2ADA-D469-40CB-A829-9F36513EC2B1}
2015-10-13 21:45 - 2015-10-13 21:45 - 0000000 _____ () C:\Users\user\AppData\Local\{A7218FA1-8ECE-4769-923E-689EEE783627}
2015-10-05 22:09 - 2015-10-05 22:09 - 0000000 _____ () C:\Users\user\AppData\Local\{ECB68321-0909-413A-B75E-F73974730E51}
2015-09-22 21:54 - 2015-09-22 21:54 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\user\AppData\Local\Temp\04d3cb88-f7ec-48c5-8f0d-b540e1e9893f.exe
C:\Users\user\AppData\Local\Temp\McCSPInstall.dll
C:\Users\user\AppData\Local\Temp\mccspuninstall.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: ESET Smart Security 9.0.318.22 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Ad-Aware Antivirus (Enabled - Up to date) {B0CC18C6-E527-6EE6-874C-9D19920E5619}
AS: Ad-Aware Antivirus (Enabled - Up to date) {0BADF922-C31D-6168-BDFC-A66BE9891CA4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: ESET Smart Security 9.0.318.22 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
FW: Ad-Aware Firewall (Disabled) {88F799E3-AF48-6FBE-AC13-342C6CDD1162}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\user\Desktop" je 3089 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDTray.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDFSSvc.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdate.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdSvc.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000001


==================== End Of Log ==============================
Přílohy
Addition.rar
(5.99 KiB) Staženo 114 x

Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu logu

#2 Příspěvek od vyosek »

Duplicita, pockejte si na odpoved v puvodnim tematu http://forum.viry.cz/viewtopic.php?f=13&t=146607

:closed:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.

Zamčeno