Dobrý den,
prosím o kontrolu logu - ráno mi běžný test avastem objelil 2 viry, které jsem smazal, tak jestli mám nyní pc čístý.
moc díky
Logfile of random's system information tool 1.09 (written by random/random)
Run by uzivatel at 2013-09-07 20:24:14
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 28 GB (28%) free of 100 GB
Total RAM: 4094 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:24:17, on 7.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16660)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\LG Soft India\fortePivot\bin\fortePivot.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\trend micro\uzivatel.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [ISUSPM Startup] c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - Global Startup: fortePivot.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files (x86)\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files (x86)\ICQ7.0\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8776 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1964
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"
"C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE"
"C:\Program Files (x86)\LG Soft India\fortePivot\bin\fortePivot.exe" -startup
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\ehome\ehRecvr.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\ehome\mcGlidHost.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
taskeng.exe {B47D61B5-2282-488E-A4B6-3D3FA8F242F8}
"C:\Windows\system32\taskmgr.exe" /4
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Users\uzivatel\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yaydnxsm.default-1339680453480
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz"
prefs.js - "extensions.enabledItems" - "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, bkmrksync@nokia.com:1.0.0.732, {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}:6.0.19, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.15"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.8.800.94 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18]
"Description"=Veetle TV Core
"Path"=C:\Program Files (x86)\Veetle\plugins\npVeetle.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.8.800.94 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\extensions\
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
C:\Program Files (x86)\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yaydnxsm.default-1339680453480\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-13 81024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-09-02 537576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-09-02 193512]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-13 69760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-12 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-01-20 6963744]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-01-20 1833504]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-08-15 6581488]
"ISUSPM Startup"=c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-06-16 221184]
""= []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27 207424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
C:\Windows\RaidTool\xInsIDE.exe [2007-03-20 36864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileDocuments]
C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2013-04-19 1090912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe -osboot []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AVer HID Receiver.lnk]
C:\PROGRA~2\COMMON~1\AVERME~1\AVERQU~1\AVERHI~1.EXE [2010-01-06 155648]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml []
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-09-28 642728]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"ISUSScheduler"=C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
fortePivot.lnk - C:\Program Files (x86)\LG Soft India\fortePivot\bin\fortePivot.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2013-05-23 247296]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"mixer8"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2013-09-07 20:18:24 ----D---- C:\rsit
2013-09-05 08:55:13 ----D---- C:\Program Files\iPod
2013-09-05 08:55:11 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-09-05 08:55:11 ----D---- C:\Program Files\iTunes
2013-09-05 08:55:11 ----D---- C:\Program Files (x86)\iTunes
2013-08-17 09:39:20 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-08-14 21:44:25 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-08-14 21:44:25 ----A---- C:\Windows\system32\ieui.dll
2013-08-14 21:44:24 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-08-14 21:44:24 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-08-14 21:44:24 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-08-14 21:44:24 ----A---- C:\Windows\system32\iesetup.dll
2013-08-14 21:44:24 ----A---- C:\Windows\system32\iernonce.dll
2013-08-14 21:44:23 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-08-14 21:44:23 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-08-14 21:44:23 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-14 21:44:23 ----A---- C:\Windows\system32\iesysprep.dll
2013-08-14 21:44:23 ----A---- C:\Windows\system32\ie4uinit.exe
2013-08-14 21:44:22 ----A---- C:\Windows\system32\iertutil.dll
2013-08-14 21:44:21 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-08-14 21:44:21 ----A---- C:\Windows\system32\msfeeds.dll
2013-08-14 21:44:20 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-08-14 21:44:20 ----A---- C:\Windows\system32\jscript9.dll
2013-08-14 21:44:20 ----A---- C:\Windows\system32\jscript.dll
2013-08-14 21:44:19 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-08-14 21:44:18 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-08-14 21:44:18 ----A---- C:\Windows\system32\urlmon.dll
2013-08-14 21:44:17 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-08-14 21:44:17 ----A---- C:\Windows\system32\jsproxy.dll
2013-08-14 21:44:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-08-14 21:44:16 ----A---- C:\Windows\system32\wininet.dll
2013-08-14 21:44:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-08-14 21:44:13 ----A---- C:\Windows\system32\ieframe.dll
2013-08-14 21:44:12 ----A---- C:\Windows\system32\mshtml.dll
2013-08-14 21:44:10 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-08-14 21:35:23 ----D---- C:\Windows\system32\MRT
2013-08-14 19:47:26 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-08-14 19:47:26 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-08-14 19:47:26 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-08-14 19:47:26 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-08-14 19:47:26 ----A---- C:\Windows\system32\wintrust.dll
2013-08-14 19:47:26 ----A---- C:\Windows\system32\cryptsvc.dll
2013-08-14 19:47:26 ----A---- C:\Windows\system32\cryptnet.dll
2013-08-14 19:47:26 ----A---- C:\Windows\system32\crypt32.dll
2013-08-14 19:47:16 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-08-14 19:47:16 ----A---- C:\Windows\system32\tzres.dll
2013-08-14 19:47:08 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-08-14 19:47:08 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-08-14 19:47:06 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2013-08-14 19:47:06 ----A---- C:\Windows\system32\rpcrt4.dll
2013-08-14 19:47:04 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-08-14 19:47:03 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-08-14 19:47:03 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-08-14 19:47:02 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-08-14 19:47:02 ----A---- C:\Windows\system32\wow64.dll
2013-08-14 19:47:02 ----A---- C:\Windows\system32\ntdll.dll
2013-08-14 19:47:01 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-08-14 19:47:00 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-08-14 19:47:00 ----A---- C:\Windows\SYSWOW64\user.exe
2013-08-14 19:47:00 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-08-14 19:47:00 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-08-14 19:46:58 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-08-14 19:46:57 ----A---- C:\Windows\system32\drivers\tcpip.sys
======List of files/folders modified in the last 1 month======
2013-09-07 20:24:17 ----D---- C:\Windows\Temp
2013-09-07 20:24:17 ----D---- C:\Program Files\trend micro
2013-09-07 20:24:05 ----D---- C:\Windows\Prefetch
2013-09-07 15:21:45 ----D---- C:\Windows\system32\config
2013-09-07 12:16:15 ----SHD---- C:\Windows\Installer
2013-09-07 07:02:25 ----SHD---- C:\System Volume Information
2013-09-05 09:23:32 ----D---- C:\Program Files\Defraggler
2013-09-05 08:56:21 ----D---- C:\Windows\SysWOW64
2013-09-05 08:56:20 ----D---- C:\Windows\System32
2013-09-05 08:55:13 ----RD---- C:\Program Files
2013-09-05 08:55:11 ----RD---- C:\Program Files (x86)
2013-09-05 08:55:11 ----D---- C:\ProgramData
2013-09-05 07:42:57 ----D---- C:\Windows
2013-09-04 22:59:50 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-04 14:51:40 ----D---- C:\Users\uzivatel\AppData\Roaming\Broad Intelligence
2013-09-04 14:48:45 ----D---- C:\ProgramData\eMule
2013-09-04 09:37:16 ----D---- C:\Windows\SoftwareDistribution
2013-09-04 09:37:10 ----D---- C:\Windows\Panther
2013-09-04 09:37:10 ----D---- C:\Windows\inf
2013-09-04 09:37:06 ----D---- C:\Windows\debug
2013-09-03 09:12:25 ----D---- C:\Windows\system32\catroot2
2013-09-02 18:07:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-08-17 13:33:32 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-15 11:48:05 ----D---- C:\Windows\rescache
2013-08-15 11:43:07 ----RSD---- C:\Windows\assembly
2013-08-15 11:43:07 ----D---- C:\Windows\Microsoft.NET
2013-08-15 05:51:25 ----D---- C:\Program Files\SUPERAntiSpyware
2013-08-15 05:50:14 ----D---- C:\Windows\winsxs
2013-08-15 05:47:47 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-08-15 05:47:47 ----D---- C:\Windows\system32\cs-CZ
2013-08-15 05:47:46 ----D---- C:\Program Files\Internet Explorer
2013-08-15 05:47:46 ----D---- C:\Program Files (x86)\Internet Explorer
2013-08-15 05:47:45 ----D---- C:\Windows\system32\drivers
2013-08-15 05:47:45 ----D---- C:\Windows\AppPatch
2013-08-14 21:44:49 ----D---- C:\Windows\system32\catroot
2013-08-14 21:40:22 ----D---- C:\ProgramData\Microsoft Help
2013-08-14 21:35:19 ----A---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-07-13 189936]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2008-11-04 98144]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-12-28 834544]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-07-13 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-07-13 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2010-01-15 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2010-01-15 43680]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-07-04 11922944]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-07-04 359936]
R3 AVerA706_x64;AVerMedia A706 BDA Service; C:\Windows\system32\DRIVERS\AVerA706_x64.sys [2009-06-10 1422080]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-01-27 254528]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-01-20 1699744]
R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2008-12-25 190496]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-03-02 187392]
S2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-07-04 11922944]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2009-12-04 24104]
S3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2013-01-23 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2013-01-23 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2013-01-23 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2013-01-23 9216]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2012-09-08 140672]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-07-04 238080]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-09-28 361984]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2013-05-09 46808]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-07-13 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-06 257416]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-07-13 136176]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-22 1255736]
S4 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S4 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2010-04-28 348160]
S4 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-12-07 397312]
S4 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-08-17 117656]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-06-20 529232]
S4 UleadBurningHelper;Ulead Burning Helper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: prosím o kontrolu logu
Zdravim 
Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222
Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222
- Provedte aktualizaci
- Provedte uplny sken - nic nemazte
- MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: prosím o kontrolu logu
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2013.09.07.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
uzivatel :: PC [administrátor]
Ochrana: Povolena
8.9.2013 8:59:04
MBAM-log-2013-09-08 (11-03-34).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 686901
Uplynulý čas: 1 hodin, 43 minut, 57 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 2
C:\Program Files (x86)\ICQ7.0\upgrade\2dcd1d63cb45e6613582211c3d5f4b23 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\ICQ7.0\upgrade\53e83dd5315bfb1f928441c9b4618b68 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
(konec)
www.malwarebytes.org
Verze: v2013.09.07.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
uzivatel :: PC [administrátor]
Ochrana: Povolena
8.9.2013 8:59:04
MBAM-log-2013-09-08 (11-03-34).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 686901
Uplynulý čas: 1 hodin, 43 minut, 57 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 2
C:\Program Files (x86)\ICQ7.0\upgrade\2dcd1d63cb45e6613582211c3d5f4b23 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\ICQ7.0\upgrade\53e83dd5315bfb1f928441c9b4618b68 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
(konec)
Re: prosím o kontrolu logu
Nalezy mazat nemusite Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
- Ulozte nejlepe na plochu
- Ukoncete vsechny programy
- Kliknete na Scan a nasledne Clean
- Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
Udelejte FRSTL http://forum.viry.cz/viewtopic.php?f=13&t=132519"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: prosím o kontrolu logu
# AdwCleaner v3.003 - Report created 09/09/2013 at 12:36:04
# Updated 07/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : uzivatel - PC
# Running from : C:\Users\uzivatel\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\SoftSafe
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_adobe-flash-player_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_adobe-flash-player_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{116BA71C-8187-4F15-9A1F-C9D6289155D1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2974C985-8151-4DE5-B23C-B875F0A8522F}
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\Software\ICQ\ICQToolbar
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16660
-\\ Mozilla Firefox v23.0.1 (cs)
[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\gxomodjb.default\prefs.js ]
Line Deleted : user_pref("CT2405280.CTID", "CT2405280");
Line Deleted : user_pref("CT2405280.DialogsAlignMode", "LTR");
Line Deleted : user_pref("CT2405280.EMailNotifierPollDate", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedLastCount1783261708582779529", 930);
Line Deleted : user_pref("CT2405280.FeedPollDate1783261706866434151", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707012811589", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707384123612", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707412150447", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707418280754", "Thu Jan 21 2010 07:53:11 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707599928299", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707617263572", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707752362117", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707795264368", "Thu Jan 21 2010 07:53:11 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707808925892", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707869626670", "Thu Jan 21 2010 07:53:11 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707927596866", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707979233386", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708034493544", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708039069553", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708204445100", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708227524777", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708292165278", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708353935180", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708439778168", "Thu Jan 21 2010 07:53:11 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708441073195", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708501569511", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708831214041", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708861663992", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708872995288", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708956613188", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708999019736", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709029944985", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709040316547", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709118321128", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709147189875", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709273103006", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709334228118", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709396042055", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709489005996", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709505836033", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709733509620", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709917159621", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709924030613", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709992975824", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710020959596", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710022683544", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710146768558", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710237979418", "Thu Jan 21 2010 07:53:11 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710281192798", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710293301155", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710367954069", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710537116573", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710539360442", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710710752156", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710876567422", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710898547036", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedTTL1783261706866434151", 30);
Line Deleted : user_pref("CT2405280.FeedTTL1783261707418280754", 60);
Line Deleted : user_pref("CT2405280.FeedTTL1783261707617263572", 15);
Line Deleted : user_pref("CT2405280.FeedTTL1783261707752362117", 1440);
Line Deleted : user_pref("CT2405280.FeedTTL1783261707927596866", 30);
Line Deleted : user_pref("CT2405280.FeedTTL1783261707979233386", 5);
Line Deleted : user_pref("CT2405280.FeedTTL1783261708034493544", 30);
Line Deleted : user_pref("CT2405280.FeedTTL1783261708039069553", 15);
Line Deleted : user_pref("CT2405280.FeedTTL1783261708439778168", 15);
Line Deleted : user_pref("CT2405280.FeedTTL1783261708441073195", 15);
Line Deleted : user_pref("CT2405280.FeedTTL1783261708872995288", 5);
Line Deleted : user_pref("CT2405280.FeedTTL1783261709040316547", 1);
Line Deleted : user_pref("CT2405280.FeedTTL1783261709147189875", 60);
Line Deleted : user_pref("CT2405280.FeedTTL1783261709334228118", 10);
Line Deleted : user_pref("CT2405280.FeedTTL1783261709396042055", 15);
Line Deleted : user_pref("CT2405280.FeedTTL1783261709505836033", 5);
Line Deleted : user_pref("CT2405280.FeedTTL1783261709917159621", 5);
Line Deleted : user_pref("CT2405280.FeedTTL1783261710281192798", 2);
Line Deleted : user_pref("CT2405280.FeedTTL1783261710537116573", 15);
Line Deleted : user_pref("CT2405280.FeedTTL1783261710898547036", 15);
Line Deleted : user_pref("CT2405280.FirstTime", true);
Line Deleted : user_pref("CT2405280.FirstTimeFF3", true);
Line Deleted : user_pref("CT2405280.FixPageNotFoundErrors", true);
Line Deleted : user_pref("CT2405280.Initialize", true);
Line Deleted : user_pref("CT2405280.InitializeCommonPrefs", true);
Line Deleted : user_pref("CT2405280.InstalledDate", "Thu Jan 21 2010 07:53:10 GMT+0100");
Line Deleted : user_pref("CT2405280.InvalidateCache", false);
Line Deleted : user_pref("CT2405280.IsGrouping", false);
Line Deleted : user_pref("CT2405280.IsMulticommunity", false);
Line Deleted : user_pref("CT2405280.IsOpenThankYouPage", false);
Line Deleted : user_pref("CT2405280.IsOpenUninstallPage", true);
Line Deleted : user_pref("CT2405280.LanguagePackLastCheckTime", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.Locale", "en-us");
Line Deleted : user_pref("CT2405280.MCDetectTooltipHeight", "83");
Line Deleted : user_pref("CT2405280.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Deleted : user_pref("CT2405280.MCDetectTooltipWidth", "295");
Line Deleted : user_pref("CT2405280.RadioIsPodcast", false);
Line Deleted : user_pref("CT2405280.RadioLastCheckTime", "Thu Jan 21 2010 07:53:11 GMT+0100");
Line Deleted : user_pref("CT2405280.RadioLastUpdateIPServer", "4");
Line Deleted : user_pref("CT2405280.RadioLastUpdateServer", "4");
Line Deleted : user_pref("CT2405280.RadioMediaID", "9962");
Line Deleted : user_pref("CT2405280.RadioMediaType", "Media Player");
Line Deleted : user_pref("CT2405280.RadioMenuSelectedID", "EBRadioMenu_CT24052809962");
Line Deleted : user_pref("CT2405280.RadioStationName", "California%20Rock");
Line Deleted : user_pref("CT2405280.RadioStationURL", "hxxp://feedlive.net/california.asx");
Line Deleted : user_pref("CT2405280.SHRINK_TOOLBAR", 1);
Line Deleted : user_pref("CT2405280.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2405280&octid=EB_ORIGINAL_CTID");
Line Deleted : user_pref("CT2405280.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("CT2405280.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2405280&SearchSource=2&q=");
Line Deleted : user_pref("CT2405280.SettingsCheckIntervalMin", 120);
Line Deleted : user_pref("CT2405280.SettingsLastCheckTime", "Thu Jan 21 2010 07:53:08 GMT+0100");
Line Deleted : user_pref("CT2405280.SettingsLastUpdate", "1262871489");
Line Deleted : user_pref("CT2405280.ThirdPartyComponentsInterval", 504);
Line Deleted : user_pref("CT2405280.ThirdPartyComponentsLastCheck", "Thu Jan 21 2010 07:53:08 GMT+0100");
Line Deleted : user_pref("CT2405280.ThirdPartyComponentsLastUpdate", "1262871489");
Line Deleted : user_pref("CT2405280.Uninstall", true);
Line Deleted : user_pref("CT2405280.WeatherNetwork", "");
Line Deleted : user_pref("CT2405280.WeatherPollDate", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.WeatherUnit", "C");
Line Deleted : user_pref("CT2405280.alertChannelId", "799768");
Line Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2405280");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2405280");
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Deleted : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
Line Deleted : user_pref("icqtoolbar.engineVerified", true);
Line Deleted : user_pref("icqtoolbar.geolastmodified", 1277037126);
Line Deleted : user_pref("icqtoolbar.hiddenElements", "itb_options");
Line Deleted : user_pref("icqtoolbar.history", "the%20ync||Nokia%205800%20XpressMusic||ninja%20factor||ninja%20faktor||v%C3%BDb%C4%9Brov%C3%A9%20%C5%99%C3%ADzen%C3%AD%20ulice%20kun%C4%9Btick%C3%A1||v%C3%BDb%C4%9Brov[...]
Line Deleted : user_pref("icqtoolbar.icqgeo", 42);
Line Deleted : user_pref("icqtoolbar.installTime", "1264618928");
Line Deleted : user_pref("icqtoolbar.installsource", "1");
Line Deleted : user_pref("icqtoolbar.newtab_state", "1");
Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "3.6.4");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.suggestions", false);
Line Deleted : user_pref("icqtoolbar.uniqueID", "126453760412645388041264618928885");
Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1277361420);
Line Deleted : user_pref("icqtoolbar.version", "2.0.0.0");
Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\tl3e4yjd.wt\prefs.js ]
[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yaydnxsm.default-1339680453480\prefs.js ]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Deleted : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
Line Deleted : user_pref("icqtoolbar.engineVerified", true);
Line Deleted : user_pref("icqtoolbar.geolastmodified", 1277037126);
Line Deleted : user_pref("icqtoolbar.hiddenElements", "itb_options");
Line Deleted : user_pref("icqtoolbar.history", "the%20ync||Nokia%205800%20XpressMusic||ninja%20factor||ninja%20faktor||v%C3%BDb%C4%9Brov%C3%A9%20%C5%99%C3%ADzen%C3%AD%20ulice%20kun%C4%9Btick%C3%A1||v%C3%BDb%C4%9Brov[...]
Line Deleted : user_pref("icqtoolbar.icqgeo", 42);
Line Deleted : user_pref("icqtoolbar.installTime", "1264618928");
Line Deleted : user_pref("icqtoolbar.installsource", "1");
Line Deleted : user_pref("icqtoolbar.newtab_state", "1");
Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "3.6.4");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.suggestions", false);
Line Deleted : user_pref("icqtoolbar.uniqueID", "126453760412645388041264618928885");
Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1277361420);
Line Deleted : user_pref("icqtoolbar.version", "2.0.0.0");
Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
-\\ Google Chrome v
[ File : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [16427 octets] - [09/09/2013 12:34:13]
AdwCleaner[S0].txt - [16648 octets] - [09/09/2013 12:36:04]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [16709 octets] ##########
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-09-2013
Ran by uzivatel (administrator) on PC on 09-09-2013 12:45:50
Running from C:\Users\uzivatel\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(AMD) C:\Windows\system32\atieclxx.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(LG Soft India) C:\Program Files (x86)\LG Soft India\fortePivot\bin\fortePivot.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(InstallShield Software Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [6963744 2009-01-20] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] - C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-01-20] (Realtek Semiconductor Corp.)
HKCU\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6581488 2013-08-15] (SUPERAntiSpyware)
HKCU\...\Run: [ISUSPM Startup] - c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [221184 2004-06-16] (InstallShield Software Corporation)
HKCU\...\Run: [] -
HKLM-x32\...\Run: [AMD AVT] - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642728 2012-09-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [ISUSScheduler] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-16] (InstallShield Software Corporation)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\fortePivot.lnk
ShortcutTarget: fortePivot.lnk -> C:\Program Files (x86)\LG Soft India\fortePivot\bin\fortePivot.exe (LG Soft India)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
FireFox:
========
FF ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yaydnxsm.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.4.53 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.4.53 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.18 - C:\Program Files (x86)\Veetle\plugins\npVeetle.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF HKLM-x32\...\Firefox\Extensions: [bkmrksync@nokia.com] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files (x86)\Nokia\Nokia PC Suite 7\bkmrksync\
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.seznam.cz/"]},"sync":{"suppress_start":true},"sync_promo":{"startup_count":9,"view_count":8},"translate_accepted_count":{"de":1,"en":0},"translate_denied_count":{"de":0,"en":3},"translate_language_blacklist":["en","fr"],"translate_site_blacklist":["www.ulozto.cz"
CHR Extension: (YouTube) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Adblock Plus (Beta)) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.2_0
CHR Extension: (Google Search) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (avast! WebRep) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1466_0
CHR Extension: (Gmail) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [140672 2012-09-08] (SUPERAntiSpyware.com)
S4 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-09-28] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
S4 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [348160 2010-04-28] (AVerMedia)
S4 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [397312 2009-12-07] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
==================== Drivers (Whitelisted) ====================
R2 AODDriver4.01; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
S2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-07-13] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-07-13] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-07-13] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2010-01-15] ()
R3 AVerA706_x64; C:\Windows\System32\DRIVERS\AVerA706_x64.sys [1422080 2009-06-10] (AVerMedia TECHNOLOGIES, Inc.)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-01-27] (DT Soft Ltd)
S3 gdrv; C:\Windows\gdrv.sys [24104 2009-12-04] (Windows (R) Server 2003 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [24104 2009-12-04] (Windows (R) Server 2003 DDK provider)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2010-01-15] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2009-12-28] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 lmimirr; system32\DRIVERS\lmimirr.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-09 12:45 - 2013-09-09 12:45 - 00000000 ____D C:\Users\uzivatel\AppData\Local\qb077963.F6
2013-09-09 12:45 - 2013-09-09 12:45 - 00000000 ____D C:\FRST
2013-09-09 12:45 - 2013-09-08 23:29 - 01948948 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2013-09-09 12:34 - 2013-09-09 12:36 - 00000000 ____D C:\AdwCleaner
2013-09-07 20:55 - 2013-09-07 20:55 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-09-07 20:55 - 2013-09-07 20:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-07 20:18 - 2013-09-07 20:18 - 00000000 ____D C:\rsit
2013-09-07 20:17 - 2013-09-07 20:17 - 00935175 _____ C:\Users\uzivatel\Desktop\RSITx64.exe
2013-09-05 08:55 - 2013-09-05 08:56 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-09-05 08:55 - 2013-09-05 08:56 - 00000000 ____D C:\Program Files\iTunes
2013-09-05 08:55 - 2013-09-05 08:56 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-09-05 08:55 - 2013-09-05 08:55 - 00000000 ____D C:\Program Files\iPod
2013-09-05 07:42 - 2013-09-05 07:42 - 00001046 _____ C:\Windows\PFRO.log
2013-09-04 20:56 - 2013-09-04 20:56 - 00000000 ____D C:\Users\uzivatel\dwhelper
2013-09-04 12:19 - 2013-09-09 12:37 - 00012880 _____ C:\Windows\setupact.log
2013-09-04 12:19 - 2013-09-04 12:19 - 00000000 _____ C:\Windows\setuperr.log
2013-09-04 09:39 - 2013-09-04 09:39 - 00001718 _____ C:\Users\uzivatel\Documents\cc_20130904_093935.reg
2013-09-02 12:38 - 2013-09-02 16:42 - 00000118 _____ C:\Users\uzivatel\Desktop\11.txt
2013-08-17 09:39 - 2013-08-17 10:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-14 21:44 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-14 21:44 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-14 21:44 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-14 21:44 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-14 21:44 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-14 21:44 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-14 21:44 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-14 21:44 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-14 21:44 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-14 21:44 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-14 21:44 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-14 21:44 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-14 21:35 - 2013-08-14 21:40 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 19:47 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-14 19:47 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-14 19:47 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 19:47 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-14 19:47 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 19:47 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 19:47 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-14 19:47 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 19:47 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 19:47 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 19:47 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 19:47 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-14 19:47 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-14 19:47 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-14 19:47 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-14 19:47 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-14 19:47 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-14 19:47 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-14 19:47 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-14 19:47 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-14 19:47 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-14 19:47 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-14 19:47 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-14 19:47 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-14 19:47 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-14 19:46 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 19:46 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-11 18:20 - 2013-08-11 19:06 - 00014243 _____ C:\Users\uzivatel\Desktop\Kořenky.xlsx
==================== One Month Modified Files and Folders =======
2013-09-09 12:45 - 2013-09-09 12:45 - 00000000 ____D C:\Users\uzivatel\AppData\Local\qb077963.F6
2013-09-09 12:45 - 2013-09-09 12:45 - 00000000 ____D C:\FRST
2013-09-09 12:44 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-09 12:44 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-09 12:40 - 2012-11-03 14:51 - 01772181 _____ C:\Windows\WindowsUpdate.log
2013-09-09 12:37 - 2013-09-04 12:19 - 00012880 _____ C:\Windows\setupact.log
2013-09-09 12:37 - 2013-02-17 09:03 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-09 12:37 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-09 12:36 - 2013-09-09 12:34 - 00000000 ____D C:\AdwCleaner
2013-09-09 12:34 - 2012-10-14 19:41 - 01037278 _____ C:\Users\uzivatel\Desktop\adwcleaner.exe
2013-09-09 12:23 - 2012-06-14 15:15 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-09 12:20 - 2013-02-17 09:03 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-08 23:29 - 2013-09-09 12:45 - 01948948 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2013-09-08 19:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-09-08 17:17 - 2011-06-29 09:45 - 00000000 ____D C:\Users\uzivatel\Documents\AVerTV
2013-09-08 15:07 - 2009-07-14 17:18 - 15300448 _____ C:\Windows\system32\perfh005.dat
2013-09-08 15:07 - 2009-07-14 17:18 - 05164392 _____ C:\Windows\system32\perfc005.dat
2013-09-08 15:07 - 2009-07-14 07:13 - 00006406 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-08 14:01 - 2009-12-04 18:04 - 00003958 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{D69CA752-38E2-4443-AC18-D30A89F2A59F}
2013-09-07 23:24 - 2013-06-30 21:41 - 00000000 ____D C:\Users\uzivatel\Desktop\Nová složka (2)
2013-09-07 20:55 - 2013-09-07 20:55 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-09-07 20:55 - 2013-09-07 20:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-07 20:24 - 2012-06-13 19:58 - 00000000 ____D C:\Program Files\trend micro
2013-09-07 20:18 - 2013-09-07 20:18 - 00000000 ____D C:\rsit
2013-09-07 20:17 - 2013-09-07 20:17 - 00935175 _____ C:\Users\uzivatel\Desktop\RSITx64.exe
2013-09-06 11:03 - 2011-09-17 17:01 - 00000000 ____D C:\Users\uzivatel\Desktop\medialink
2013-09-05 09:23 - 2011-11-19 22:38 - 00001724 _____ C:\Users\Public\Desktop\Defraggler.lnk
2013-09-05 09:23 - 2011-11-19 22:38 - 00000000 ____D C:\Program Files\Defraggler
2013-09-05 08:56 - 2013-09-05 08:55 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-09-05 08:56 - 2013-09-05 08:55 - 00000000 ____D C:\Program Files\iTunes
2013-09-05 08:56 - 2013-09-05 08:55 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-09-05 08:55 - 2013-09-05 08:55 - 00000000 ____D C:\Program Files\iPod
2013-09-05 07:42 - 2013-09-05 07:42 - 00001046 _____ C:\Windows\PFRO.log
2013-09-04 22:59 - 2009-12-04 19:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-09-04 22:48 - 2009-07-14 17:36 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-09-04 20:56 - 2013-09-04 20:56 - 00000000 ____D C:\Users\uzivatel\dwhelper
2013-09-04 20:56 - 2009-12-03 19:20 - 00000000 ____D C:\Users\uzivatel
2013-09-04 14:51 - 2013-05-19 16:03 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\Broad Intelligence
2013-09-04 14:48 - 2013-04-28 11:58 - 00000000 ____D C:\ProgramData\eMule
2013-09-04 14:48 - 2010-05-25 16:35 - 00000000 ____D C:\Users\uzivatel\AppData\Local\eMule
2013-09-04 12:29 - 2010-10-19 09:01 - 00000000 ____D C:\Users\uzivatel\Documents\dvd
2013-09-04 12:19 - 2013-09-04 12:19 - 00000000 _____ C:\Windows\setuperr.log
2013-09-04 11:20 - 2010-04-14 09:01 - 00000000 ____D C:\Users\uzivatel\Desktop\aja
2013-09-04 09:39 - 2013-09-04 09:39 - 00001718 _____ C:\Users\uzivatel\Documents\cc_20130904_093935.reg
2013-09-04 09:37 - 2009-12-03 19:09 - 00000000 ____D C:\Windows\Panther
2013-09-03 15:00 - 2012-10-15 19:01 - 00004184 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-09-02 16:42 - 2013-09-02 12:38 - 00000118 _____ C:\Users\uzivatel\Desktop\11.txt
2013-08-25 15:10 - 2012-10-14 10:42 - 00008075 _____ C:\Users\uzivatel\Desktop\ch.txt
2013-08-17 13:33 - 2012-06-14 12:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-17 10:01 - 2013-08-17 09:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-15 11:48 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-15 05:51 - 2011-11-19 12:29 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-08-14 21:40 - 2013-08-14 21:35 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 21:40 - 2009-12-31 09:57 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-08-14 21:35 - 2009-12-27 22:23 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-13 20:36 - 2012-08-03 10:08 - 00010992 _____ C:\Users\uzivatel\Desktop\Podzim 2013.xlsx
2013-08-11 19:06 - 2013-08-11 18:20 - 00014243 _____ C:\Users\uzivatel\Desktop\Kořenky.xlsx
Files to move or delete:
====================
C:\Users\uzivatel\AppData\Local\Temp\NEventMessages.dll
C:\Users\uzivatel\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\uzivatel\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== Alternate Data Streams (whitelisted) ====
==================== Loaded Modules (whitelisted) ============
2009-05-25 13:33 - 2009-05-25 13:33 - 00888832 _____ (Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PhoneBrowser64.dll
2009-09-14 12:50 - 2009-09-14 12:50 - 01354752 _____ (Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM64.DLL
2009-12-04 19:01 - 2009-01-20 21:22 - 00149536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2009-12-04 19:01 - 2009-01-20 21:22 - 01537056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2009-12-04 19:01 - 2008-12-25 11:37 - 01519136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkHDM64.dll
2012-09-28 16:28 - 2012-09-28 16:28 - 00315392 _____ (Advanced Mirco Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
2012-09-28 16:28 - 2012-09-28 16:28 - 00196608 _____ (Advanced Mirco Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
2012-09-28 16:43 - 2012-09-28 16:43 - 00037376 _____ (AMD) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\FUEL.ImplementationNet4.dll
2012-09-28 16:43 - 2012-09-28 16:43 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2009-12-25 16:06 - 2008-03-07 19:55 - 00077824 _____ () C:\Program Files (x86)\LG Soft India\fortePivot\bin\ErrorHandler.dll
2009-12-25 16:06 - 2008-03-07 19:56 - 00049152 _____ () C:\Program Files (x86)\LG Soft India\fortePivot\bin\MSGHOOK.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 00053024 _____ (Open Source Software community project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 01291552 _____ (The ICU Project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 00922912 _____ (The ICU Project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
2011-09-27 07:22 - 2011-09-27 07:22 - 16303976 _____ (The ICU Project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2011-08-30 23:05 - 2011-08-30 23:05 - 00085864 _____ (Apple Inc.) C:\Windows\system32\dnssd.dll
2013-08-17 09:39 - 2013-08-17 09:39 - 03551640 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Scheduled Tasks (whitelisted) ===========
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Supplementary Scan (All) ================
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
"C:\Users\uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe" /c [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup
C:\Windows\RaidTool\xInsIDE.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileDocuments
C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task
"C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
"C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AVer HID Receiver.lnk
C:\PROGRA~2\COMMON~1\AVERME~1\AVERQU~1\AVERHI~1.EXE
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=dword:00000005
"ConsentPromptBehaviorUser"=dword:00000003
"EnableInstallerDetection"=dword:00000001
"EnableLUA"=dword:00000000
"EnableSecureUIAPaths"=dword:00000001
"EnableUIADesktopToggle"=dword:00000000
"EnableVirtualization"=dword:00000001
"PromptOnSecureDesktop"=dword:00000001
"ValidateAdminCodeSignatures"=dword:00000000
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"scforceoption"=dword:00000000
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
"FilterAdministratorToken"=dword:00000000
"DisableRegistryTools"=dword:00000000
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=dword:00000000
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval"=dword:00000001
"FirewallDisableNotify"=dword:00000000
"AntiVirusDisableNotify"=dword:00000000
"UpdatesDisableNotify"=dword:00000000
"AntiVirusOverride"=dword:00000000
"AntiSpywareOverride"=dword:00000000
"FirewallOverride"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files (x86)\\FlashGet Network\\FlashGet 3\\FlashGet3.exe"="C:\\Program Files (x86)\\FlashGet Network\\FlashGet 3\\FlashGet3.exe:*:Enabled:Flashget3"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"="msrle32.dll"
"vidc.msvc"="msvidc32.dll"
"msacm.imaadpcm"="imaadp32.acm"
"msacm.msg711"="msg711.acm"
"msacm.msgsm610"="msgsm32.acm"
"msacm.msadpcm"="msadp32.acm"
"midimapper"="midimap.dll"
"wavemapper"="msacm32.drv"
"VIDC.UYVY"="msyuv.dll"
"VIDC.YUY2"="msyuv.dll"
"VIDC.YVYU"="msyuv.dll"
"VIDC.IYUV"="iyuv_32.dll"
"vidc.i420"="iyuv_32.dll"
"VIDC.YVU9"="tsbyuv.dll"
"msacm.l3acm"="C:\\Windows\\System32\\l3codeca.acm"
"wave"="wdmaud.drv"
"midi"="wdmaud.drv"
"mixer"="wdmaud.drv"
"aux"="wdmaud.drv"
"wave1"="wdmaud.drv"
"midi1"="wdmaud.drv"
"mixer1"="wdmaud.drv"
"aux1"="wdmaud.drv"
"MSVideo8"="VfWWDM32.dll"
"wave2"="wdmaud.drv"
"mixer2"="wdmaud.drv"
"wave3"="wdmaud.drv"
"mixer3"="wdmaud.drv"
"wave4"="wdmaud.drv"
"mixer4"="wdmaud.drv"
"wave5"="wdmaud.drv"
"mixer5"="wdmaud.drv"
"wave6"="wdmaud.drv"
"mixer6"="wdmaud.drv"
"wave7"="wdmaud.drv"
"mixer7"="wdmaud.drv"
"wave8"="wdmaud.drv"
"mixer8"="wdmaud.drv"
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:97.65 GB) (Free:28.92 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:833.86 GB) (Free:248.45 GB) NTFS
Available physical RAM: 2451.9 MB
Total physical RAM: 4094.49 MB
Percentage of memory in use: 40%
LastRegBack: 2013-09-01 08:32
==================== End Of Log ==============================
# Updated 07/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : uzivatel - PC
# Running from : C:\Users\uzivatel\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\SoftSafe
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_adobe-flash-player_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_adobe-flash-player_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{116BA71C-8187-4F15-9A1F-C9D6289155D1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2974C985-8151-4DE5-B23C-B875F0A8522F}
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\Software\ICQ\ICQToolbar
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16660
-\\ Mozilla Firefox v23.0.1 (cs)
[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\gxomodjb.default\prefs.js ]
Line Deleted : user_pref("CT2405280.CTID", "CT2405280");
Line Deleted : user_pref("CT2405280.DialogsAlignMode", "LTR");
Line Deleted : user_pref("CT2405280.EMailNotifierPollDate", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedLastCount1783261708582779529", 930);
Line Deleted : user_pref("CT2405280.FeedPollDate1783261706866434151", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707012811589", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707384123612", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707412150447", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707418280754", "Thu Jan 21 2010 07:53:11 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707599928299", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707617263572", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707752362117", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707795264368", "Thu Jan 21 2010 07:53:11 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707808925892", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707869626670", "Thu Jan 21 2010 07:53:11 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707927596866", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261707979233386", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708034493544", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708039069553", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708204445100", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708227524777", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708292165278", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708353935180", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708439778168", "Thu Jan 21 2010 07:53:11 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708441073195", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708501569511", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708831214041", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708861663992", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708872995288", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708956613188", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261708999019736", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709029944985", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709040316547", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709118321128", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709147189875", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709273103006", "Thu Jan 21 2010 07:53:16 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709334228118", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709396042055", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709489005996", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709505836033", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709733509620", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709917159621", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709924030613", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261709992975824", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710020959596", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710022683544", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710146768558", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710237979418", "Thu Jan 21 2010 07:53:11 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710281192798", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710293301155", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710367954069", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710537116573", "Thu Jan 21 2010 07:53:13 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710539360442", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710710752156", "Thu Jan 21 2010 07:53:15 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710876567422", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedPollDate1783261710898547036", "Thu Jan 21 2010 07:53:14 GMT+0100");
Line Deleted : user_pref("CT2405280.FeedTTL1783261706866434151", 30);
Line Deleted : user_pref("CT2405280.FeedTTL1783261707418280754", 60);
Line Deleted : user_pref("CT2405280.FeedTTL1783261707617263572", 15);
Line Deleted : user_pref("CT2405280.FeedTTL1783261707752362117", 1440);
Line Deleted : user_pref("CT2405280.FeedTTL1783261707927596866", 30);
Line Deleted : user_pref("CT2405280.FeedTTL1783261707979233386", 5);
Line Deleted : user_pref("CT2405280.FeedTTL1783261708034493544", 30);
Line Deleted : user_pref("CT2405280.FeedTTL1783261708039069553", 15);
Line Deleted : user_pref("CT2405280.FeedTTL1783261708439778168", 15);
Line Deleted : user_pref("CT2405280.FeedTTL1783261708441073195", 15);
Line Deleted : user_pref("CT2405280.FeedTTL1783261708872995288", 5);
Line Deleted : user_pref("CT2405280.FeedTTL1783261709040316547", 1);
Line Deleted : user_pref("CT2405280.FeedTTL1783261709147189875", 60);
Line Deleted : user_pref("CT2405280.FeedTTL1783261709334228118", 10);
Line Deleted : user_pref("CT2405280.FeedTTL1783261709396042055", 15);
Line Deleted : user_pref("CT2405280.FeedTTL1783261709505836033", 5);
Line Deleted : user_pref("CT2405280.FeedTTL1783261709917159621", 5);
Line Deleted : user_pref("CT2405280.FeedTTL1783261710281192798", 2);
Line Deleted : user_pref("CT2405280.FeedTTL1783261710537116573", 15);
Line Deleted : user_pref("CT2405280.FeedTTL1783261710898547036", 15);
Line Deleted : user_pref("CT2405280.FirstTime", true);
Line Deleted : user_pref("CT2405280.FirstTimeFF3", true);
Line Deleted : user_pref("CT2405280.FixPageNotFoundErrors", true);
Line Deleted : user_pref("CT2405280.Initialize", true);
Line Deleted : user_pref("CT2405280.InitializeCommonPrefs", true);
Line Deleted : user_pref("CT2405280.InstalledDate", "Thu Jan 21 2010 07:53:10 GMT+0100");
Line Deleted : user_pref("CT2405280.InvalidateCache", false);
Line Deleted : user_pref("CT2405280.IsGrouping", false);
Line Deleted : user_pref("CT2405280.IsMulticommunity", false);
Line Deleted : user_pref("CT2405280.IsOpenThankYouPage", false);
Line Deleted : user_pref("CT2405280.IsOpenUninstallPage", true);
Line Deleted : user_pref("CT2405280.LanguagePackLastCheckTime", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.Locale", "en-us");
Line Deleted : user_pref("CT2405280.MCDetectTooltipHeight", "83");
Line Deleted : user_pref("CT2405280.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Deleted : user_pref("CT2405280.MCDetectTooltipWidth", "295");
Line Deleted : user_pref("CT2405280.RadioIsPodcast", false);
Line Deleted : user_pref("CT2405280.RadioLastCheckTime", "Thu Jan 21 2010 07:53:11 GMT+0100");
Line Deleted : user_pref("CT2405280.RadioLastUpdateIPServer", "4");
Line Deleted : user_pref("CT2405280.RadioLastUpdateServer", "4");
Line Deleted : user_pref("CT2405280.RadioMediaID", "9962");
Line Deleted : user_pref("CT2405280.RadioMediaType", "Media Player");
Line Deleted : user_pref("CT2405280.RadioMenuSelectedID", "EBRadioMenu_CT24052809962");
Line Deleted : user_pref("CT2405280.RadioStationName", "California%20Rock");
Line Deleted : user_pref("CT2405280.RadioStationURL", "hxxp://feedlive.net/california.asx");
Line Deleted : user_pref("CT2405280.SHRINK_TOOLBAR", 1);
Line Deleted : user_pref("CT2405280.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2405280&octid=EB_ORIGINAL_CTID");
Line Deleted : user_pref("CT2405280.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("CT2405280.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2405280&SearchSource=2&q=");
Line Deleted : user_pref("CT2405280.SettingsCheckIntervalMin", 120);
Line Deleted : user_pref("CT2405280.SettingsLastCheckTime", "Thu Jan 21 2010 07:53:08 GMT+0100");
Line Deleted : user_pref("CT2405280.SettingsLastUpdate", "1262871489");
Line Deleted : user_pref("CT2405280.ThirdPartyComponentsInterval", 504);
Line Deleted : user_pref("CT2405280.ThirdPartyComponentsLastCheck", "Thu Jan 21 2010 07:53:08 GMT+0100");
Line Deleted : user_pref("CT2405280.ThirdPartyComponentsLastUpdate", "1262871489");
Line Deleted : user_pref("CT2405280.Uninstall", true);
Line Deleted : user_pref("CT2405280.WeatherNetwork", "");
Line Deleted : user_pref("CT2405280.WeatherPollDate", "Thu Jan 21 2010 07:53:12 GMT+0100");
Line Deleted : user_pref("CT2405280.WeatherUnit", "C");
Line Deleted : user_pref("CT2405280.alertChannelId", "799768");
Line Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2405280");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2405280");
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Deleted : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
Line Deleted : user_pref("icqtoolbar.engineVerified", true);
Line Deleted : user_pref("icqtoolbar.geolastmodified", 1277037126);
Line Deleted : user_pref("icqtoolbar.hiddenElements", "itb_options");
Line Deleted : user_pref("icqtoolbar.history", "the%20ync||Nokia%205800%20XpressMusic||ninja%20factor||ninja%20faktor||v%C3%BDb%C4%9Brov%C3%A9%20%C5%99%C3%ADzen%C3%AD%20ulice%20kun%C4%9Btick%C3%A1||v%C3%BDb%C4%9Brov[...]
Line Deleted : user_pref("icqtoolbar.icqgeo", 42);
Line Deleted : user_pref("icqtoolbar.installTime", "1264618928");
Line Deleted : user_pref("icqtoolbar.installsource", "1");
Line Deleted : user_pref("icqtoolbar.newtab_state", "1");
Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "3.6.4");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.suggestions", false);
Line Deleted : user_pref("icqtoolbar.uniqueID", "126453760412645388041264618928885");
Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1277361420);
Line Deleted : user_pref("icqtoolbar.version", "2.0.0.0");
Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\tl3e4yjd.wt\prefs.js ]
[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yaydnxsm.default-1339680453480\prefs.js ]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Deleted : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
Line Deleted : user_pref("icqtoolbar.engineVerified", true);
Line Deleted : user_pref("icqtoolbar.geolastmodified", 1277037126);
Line Deleted : user_pref("icqtoolbar.hiddenElements", "itb_options");
Line Deleted : user_pref("icqtoolbar.history", "the%20ync||Nokia%205800%20XpressMusic||ninja%20factor||ninja%20faktor||v%C3%BDb%C4%9Brov%C3%A9%20%C5%99%C3%ADzen%C3%AD%20ulice%20kun%C4%9Btick%C3%A1||v%C3%BDb%C4%9Brov[...]
Line Deleted : user_pref("icqtoolbar.icqgeo", 42);
Line Deleted : user_pref("icqtoolbar.installTime", "1264618928");
Line Deleted : user_pref("icqtoolbar.installsource", "1");
Line Deleted : user_pref("icqtoolbar.newtab_state", "1");
Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
Line Deleted : user_pref("icqtoolbar.previousFFVersion", "3.6.4");
Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
Line Deleted : user_pref("icqtoolbar.suggestions", false);
Line Deleted : user_pref("icqtoolbar.uniqueID", "126453760412645388041264618928885");
Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1277361420);
Line Deleted : user_pref("icqtoolbar.version", "2.0.0.0");
Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
-\\ Google Chrome v
[ File : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [16427 octets] - [09/09/2013 12:34:13]
AdwCleaner[S0].txt - [16648 octets] - [09/09/2013 12:36:04]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [16709 octets] ##########
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-09-2013
Ran by uzivatel (administrator) on PC on 09-09-2013 12:45:50
Running from C:\Users\uzivatel\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(AMD) C:\Windows\system32\atieclxx.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(LG Soft India) C:\Program Files (x86)\LG Soft India\fortePivot\bin\fortePivot.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(InstallShield Software Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [6963744 2009-01-20] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] - C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-01-20] (Realtek Semiconductor Corp.)
HKCU\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6581488 2013-08-15] (SUPERAntiSpyware)
HKCU\...\Run: [ISUSPM Startup] - c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [221184 2004-06-16] (InstallShield Software Corporation)
HKCU\...\Run: [] -
HKLM-x32\...\Run: [AMD AVT] - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642728 2012-09-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [ISUSScheduler] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-16] (InstallShield Software Corporation)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\fortePivot.lnk
ShortcutTarget: fortePivot.lnk -> C:\Program Files (x86)\LG Soft India\fortePivot\bin\fortePivot.exe (LG Soft India)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
FireFox:
========
FF ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yaydnxsm.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.4.53 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.4.53 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.18 - C:\Program Files (x86)\Veetle\plugins\npVeetle.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF HKLM-x32\...\Firefox\Extensions: [bkmrksync@nokia.com] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files (x86)\Nokia\Nokia PC Suite 7\bkmrksync\
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.seznam.cz/"]},"sync":{"suppress_start":true},"sync_promo":{"startup_count":9,"view_count":8},"translate_accepted_count":{"de":1,"en":0},"translate_denied_count":{"de":0,"en":3},"translate_language_blacklist":["en","fr"],"translate_site_blacklist":["www.ulozto.cz"
CHR Extension: (YouTube) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Adblock Plus (Beta)) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.2_0
CHR Extension: (Google Search) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (avast! WebRep) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1466_0
CHR Extension: (Gmail) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [140672 2012-09-08] (SUPERAntiSpyware.com)
S4 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-09-28] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
S4 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [348160 2010-04-28] (AVerMedia)
S4 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [397312 2009-12-07] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
==================== Drivers (Whitelisted) ====================
R2 AODDriver4.01; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
S2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-07-13] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-07-13] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-07-13] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2010-01-15] ()
R3 AVerA706_x64; C:\Windows\System32\DRIVERS\AVerA706_x64.sys [1422080 2009-06-10] (AVerMedia TECHNOLOGIES, Inc.)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-01-27] (DT Soft Ltd)
S3 gdrv; C:\Windows\gdrv.sys [24104 2009-12-04] (Windows (R) Server 2003 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [24104 2009-12-04] (Windows (R) Server 2003 DDK provider)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2010-01-15] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2009-12-28] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 lmimirr; system32\DRIVERS\lmimirr.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-09 12:45 - 2013-09-09 12:45 - 00000000 ____D C:\Users\uzivatel\AppData\Local\qb077963.F6
2013-09-09 12:45 - 2013-09-09 12:45 - 00000000 ____D C:\FRST
2013-09-09 12:45 - 2013-09-08 23:29 - 01948948 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2013-09-09 12:34 - 2013-09-09 12:36 - 00000000 ____D C:\AdwCleaner
2013-09-07 20:55 - 2013-09-07 20:55 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-09-07 20:55 - 2013-09-07 20:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-07 20:18 - 2013-09-07 20:18 - 00000000 ____D C:\rsit
2013-09-07 20:17 - 2013-09-07 20:17 - 00935175 _____ C:\Users\uzivatel\Desktop\RSITx64.exe
2013-09-05 08:55 - 2013-09-05 08:56 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-09-05 08:55 - 2013-09-05 08:56 - 00000000 ____D C:\Program Files\iTunes
2013-09-05 08:55 - 2013-09-05 08:56 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-09-05 08:55 - 2013-09-05 08:55 - 00000000 ____D C:\Program Files\iPod
2013-09-05 07:42 - 2013-09-05 07:42 - 00001046 _____ C:\Windows\PFRO.log
2013-09-04 20:56 - 2013-09-04 20:56 - 00000000 ____D C:\Users\uzivatel\dwhelper
2013-09-04 12:19 - 2013-09-09 12:37 - 00012880 _____ C:\Windows\setupact.log
2013-09-04 12:19 - 2013-09-04 12:19 - 00000000 _____ C:\Windows\setuperr.log
2013-09-04 09:39 - 2013-09-04 09:39 - 00001718 _____ C:\Users\uzivatel\Documents\cc_20130904_093935.reg
2013-09-02 12:38 - 2013-09-02 16:42 - 00000118 _____ C:\Users\uzivatel\Desktop\11.txt
2013-08-17 09:39 - 2013-08-17 10:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-14 21:44 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-14 21:44 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-14 21:44 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-14 21:44 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-14 21:44 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-14 21:44 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-14 21:44 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-14 21:44 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-14 21:44 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-14 21:44 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-14 21:44 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-14 21:44 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-14 21:44 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-14 21:44 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-14 21:35 - 2013-08-14 21:40 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 19:47 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-14 19:47 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-14 19:47 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 19:47 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-14 19:47 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 19:47 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 19:47 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-14 19:47 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 19:47 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 19:47 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 19:47 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 19:47 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-14 19:47 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-14 19:47 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-14 19:47 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-14 19:47 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-14 19:47 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-14 19:47 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-14 19:47 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-14 19:47 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-14 19:47 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-14 19:47 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-14 19:47 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-14 19:47 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-14 19:47 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-14 19:46 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 19:46 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-11 18:20 - 2013-08-11 19:06 - 00014243 _____ C:\Users\uzivatel\Desktop\Kořenky.xlsx
==================== One Month Modified Files and Folders =======
2013-09-09 12:45 - 2013-09-09 12:45 - 00000000 ____D C:\Users\uzivatel\AppData\Local\qb077963.F6
2013-09-09 12:45 - 2013-09-09 12:45 - 00000000 ____D C:\FRST
2013-09-09 12:44 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-09 12:44 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-09 12:40 - 2012-11-03 14:51 - 01772181 _____ C:\Windows\WindowsUpdate.log
2013-09-09 12:37 - 2013-09-04 12:19 - 00012880 _____ C:\Windows\setupact.log
2013-09-09 12:37 - 2013-02-17 09:03 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-09 12:37 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-09 12:36 - 2013-09-09 12:34 - 00000000 ____D C:\AdwCleaner
2013-09-09 12:34 - 2012-10-14 19:41 - 01037278 _____ C:\Users\uzivatel\Desktop\adwcleaner.exe
2013-09-09 12:23 - 2012-06-14 15:15 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-09 12:20 - 2013-02-17 09:03 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-08 23:29 - 2013-09-09 12:45 - 01948948 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2013-09-08 19:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-09-08 17:17 - 2011-06-29 09:45 - 00000000 ____D C:\Users\uzivatel\Documents\AVerTV
2013-09-08 15:07 - 2009-07-14 17:18 - 15300448 _____ C:\Windows\system32\perfh005.dat
2013-09-08 15:07 - 2009-07-14 17:18 - 05164392 _____ C:\Windows\system32\perfc005.dat
2013-09-08 15:07 - 2009-07-14 07:13 - 00006406 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-08 14:01 - 2009-12-04 18:04 - 00003958 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{D69CA752-38E2-4443-AC18-D30A89F2A59F}
2013-09-07 23:24 - 2013-06-30 21:41 - 00000000 ____D C:\Users\uzivatel\Desktop\Nová složka (2)
2013-09-07 20:55 - 2013-09-07 20:55 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-09-07 20:55 - 2013-09-07 20:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-07 20:24 - 2012-06-13 19:58 - 00000000 ____D C:\Program Files\trend micro
2013-09-07 20:18 - 2013-09-07 20:18 - 00000000 ____D C:\rsit
2013-09-07 20:17 - 2013-09-07 20:17 - 00935175 _____ C:\Users\uzivatel\Desktop\RSITx64.exe
2013-09-06 11:03 - 2011-09-17 17:01 - 00000000 ____D C:\Users\uzivatel\Desktop\medialink
2013-09-05 09:23 - 2011-11-19 22:38 - 00001724 _____ C:\Users\Public\Desktop\Defraggler.lnk
2013-09-05 09:23 - 2011-11-19 22:38 - 00000000 ____D C:\Program Files\Defraggler
2013-09-05 08:56 - 2013-09-05 08:55 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-09-05 08:56 - 2013-09-05 08:55 - 00000000 ____D C:\Program Files\iTunes
2013-09-05 08:56 - 2013-09-05 08:55 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-09-05 08:55 - 2013-09-05 08:55 - 00000000 ____D C:\Program Files\iPod
2013-09-05 07:42 - 2013-09-05 07:42 - 00001046 _____ C:\Windows\PFRO.log
2013-09-04 22:59 - 2009-12-04 19:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-09-04 22:48 - 2009-07-14 17:36 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-09-04 20:56 - 2013-09-04 20:56 - 00000000 ____D C:\Users\uzivatel\dwhelper
2013-09-04 20:56 - 2009-12-03 19:20 - 00000000 ____D C:\Users\uzivatel
2013-09-04 14:51 - 2013-05-19 16:03 - 00000000 ____D C:\Users\uzivatel\AppData\Roaming\Broad Intelligence
2013-09-04 14:48 - 2013-04-28 11:58 - 00000000 ____D C:\ProgramData\eMule
2013-09-04 14:48 - 2010-05-25 16:35 - 00000000 ____D C:\Users\uzivatel\AppData\Local\eMule
2013-09-04 12:29 - 2010-10-19 09:01 - 00000000 ____D C:\Users\uzivatel\Documents\dvd
2013-09-04 12:19 - 2013-09-04 12:19 - 00000000 _____ C:\Windows\setuperr.log
2013-09-04 11:20 - 2010-04-14 09:01 - 00000000 ____D C:\Users\uzivatel\Desktop\aja
2013-09-04 09:39 - 2013-09-04 09:39 - 00001718 _____ C:\Users\uzivatel\Documents\cc_20130904_093935.reg
2013-09-04 09:37 - 2009-12-03 19:09 - 00000000 ____D C:\Windows\Panther
2013-09-03 15:00 - 2012-10-15 19:01 - 00004184 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-09-02 16:42 - 2013-09-02 12:38 - 00000118 _____ C:\Users\uzivatel\Desktop\11.txt
2013-08-25 15:10 - 2012-10-14 10:42 - 00008075 _____ C:\Users\uzivatel\Desktop\ch.txt
2013-08-17 13:33 - 2012-06-14 12:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-17 10:01 - 2013-08-17 09:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-15 11:48 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-15 05:51 - 2011-11-19 12:29 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-08-14 21:40 - 2013-08-14 21:35 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 21:40 - 2009-12-31 09:57 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-08-14 21:35 - 2009-12-27 22:23 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-13 20:36 - 2012-08-03 10:08 - 00010992 _____ C:\Users\uzivatel\Desktop\Podzim 2013.xlsx
2013-08-11 19:06 - 2013-08-11 18:20 - 00014243 _____ C:\Users\uzivatel\Desktop\Kořenky.xlsx
Files to move or delete:
====================
C:\Users\uzivatel\AppData\Local\Temp\NEventMessages.dll
C:\Users\uzivatel\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\uzivatel\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== Alternate Data Streams (whitelisted) ====
==================== Loaded Modules (whitelisted) ============
2009-05-25 13:33 - 2009-05-25 13:33 - 00888832 _____ (Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PhoneBrowser64.dll
2009-09-14 12:50 - 2009-09-14 12:50 - 01354752 _____ (Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM64.DLL
2009-12-04 19:01 - 2009-01-20 21:22 - 00149536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2009-12-04 19:01 - 2009-01-20 21:22 - 01537056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2009-12-04 19:01 - 2008-12-25 11:37 - 01519136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkHDM64.dll
2012-09-28 16:28 - 2012-09-28 16:28 - 00315392 _____ (Advanced Mirco Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
2012-09-28 16:28 - 2012-09-28 16:28 - 00196608 _____ (Advanced Mirco Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
2012-09-28 16:43 - 2012-09-28 16:43 - 00037376 _____ (AMD) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\FUEL.ImplementationNet4.dll
2012-09-28 16:43 - 2012-09-28 16:43 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2009-12-25 16:06 - 2008-03-07 19:55 - 00077824 _____ () C:\Program Files (x86)\LG Soft India\fortePivot\bin\ErrorHandler.dll
2009-12-25 16:06 - 2008-03-07 19:56 - 00049152 _____ () C:\Program Files (x86)\LG Soft India\fortePivot\bin\MSGHOOK.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 00053024 _____ (Open Source Software community project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 01291552 _____ (The ICU Project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 00922912 _____ (The ICU Project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
2011-09-27 07:22 - 2011-09-27 07:22 - 16303976 _____ (The ICU Project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2011-08-30 23:05 - 2011-08-30 23:05 - 00085864 _____ (Apple Inc.) C:\Windows\system32\dnssd.dll
2013-08-17 09:39 - 2013-08-17 09:39 - 03551640 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Scheduled Tasks (whitelisted) ===========
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Supplementary Scan (All) ================
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
"C:\Users\uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe" /c [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup
C:\Windows\RaidTool\xInsIDE.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileDocuments
C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task
"C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
"C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AVer HID Receiver.lnk
C:\PROGRA~2\COMMON~1\AVERME~1\AVERQU~1\AVERHI~1.EXE
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=dword:00000005
"ConsentPromptBehaviorUser"=dword:00000003
"EnableInstallerDetection"=dword:00000001
"EnableLUA"=dword:00000000
"EnableSecureUIAPaths"=dword:00000001
"EnableUIADesktopToggle"=dword:00000000
"EnableVirtualization"=dword:00000001
"PromptOnSecureDesktop"=dword:00000001
"ValidateAdminCodeSignatures"=dword:00000000
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"scforceoption"=dword:00000000
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
"FilterAdministratorToken"=dword:00000000
"DisableRegistryTools"=dword:00000000
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=dword:00000000
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval"=dword:00000001
"FirewallDisableNotify"=dword:00000000
"AntiVirusDisableNotify"=dword:00000000
"UpdatesDisableNotify"=dword:00000000
"AntiVirusOverride"=dword:00000000
"AntiSpywareOverride"=dword:00000000
"FirewallOverride"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files (x86)\\FlashGet Network\\FlashGet 3\\FlashGet3.exe"="C:\\Program Files (x86)\\FlashGet Network\\FlashGet 3\\FlashGet3.exe:*:Enabled:Flashget3"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"="msrle32.dll"
"vidc.msvc"="msvidc32.dll"
"msacm.imaadpcm"="imaadp32.acm"
"msacm.msg711"="msg711.acm"
"msacm.msgsm610"="msgsm32.acm"
"msacm.msadpcm"="msadp32.acm"
"midimapper"="midimap.dll"
"wavemapper"="msacm32.drv"
"VIDC.UYVY"="msyuv.dll"
"VIDC.YUY2"="msyuv.dll"
"VIDC.YVYU"="msyuv.dll"
"VIDC.IYUV"="iyuv_32.dll"
"vidc.i420"="iyuv_32.dll"
"VIDC.YVU9"="tsbyuv.dll"
"msacm.l3acm"="C:\\Windows\\System32\\l3codeca.acm"
"wave"="wdmaud.drv"
"midi"="wdmaud.drv"
"mixer"="wdmaud.drv"
"aux"="wdmaud.drv"
"wave1"="wdmaud.drv"
"midi1"="wdmaud.drv"
"mixer1"="wdmaud.drv"
"aux1"="wdmaud.drv"
"MSVideo8"="VfWWDM32.dll"
"wave2"="wdmaud.drv"
"mixer2"="wdmaud.drv"
"wave3"="wdmaud.drv"
"mixer3"="wdmaud.drv"
"wave4"="wdmaud.drv"
"mixer4"="wdmaud.drv"
"wave5"="wdmaud.drv"
"mixer5"="wdmaud.drv"
"wave6"="wdmaud.drv"
"mixer6"="wdmaud.drv"
"wave7"="wdmaud.drv"
"mixer7"="wdmaud.drv"
"wave8"="wdmaud.drv"
"mixer8"="wdmaud.drv"
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:97.65 GB) (Free:28.92 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:833.86 GB) (Free:248.45 GB) NTFS
Available physical RAM: 2451.9 MB
Total physical RAM: 4094.49 MB
Percentage of memory in use: 40%
LastRegBack: 2013-09-01 08:32
==================== End Of Log ==============================
Re: prosím o kontrolu logu
Tvorba fixlistu pro FRST
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
Start HKCU\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6581488 2013-08-15] (SUPERAntiSpyware) HKCU\...\Run: [ISUSPM Startup] - c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [221184 2004-06-16] (InstallShield Software Corporation) HKCU\...\Run: [] - HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation) HKLM-x32\...\Run: [ISUSScheduler] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-16] (InstallShield Software Corporation) HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.) HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch SearchScopes: HKLM - DefaultScope value is missing. SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = C:\Users\uzivatel\AppData\Local\Temp\NEventMessages.dll C:\Users\uzivatel\AppData\Local\Temp\NOSEventMessages.dll C:\Users\uzivatel\AppData\Local\Temp\Quarantine.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileDocuments" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f Hosts: CMD: shutdown /r /f /t 2 End- Ulozte vytvoreny TXT jako fixlist.txt
- Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
- Kliknete na Fix
- Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: prosím o kontrolu logu
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 09-09-2013
Ran by uzivatel at 2013-09-09 15:09:48 Run:1
Running from C:\Users\uzivatel\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKCU\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6581488 2013-08-15] (SUPERAntiSpyware)
HKCU\...\Run: [ISUSPM Startup] - c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [221184 2004-06-16] (InstallShield Software Corporation)
HKCU\...\Run: [] -
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [ISUSScheduler] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-16] (InstallShield Software Corporation)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\Users\uzivatel\AppData\Local\Temp\NEventMessages.dll
C:\Users\uzivatel\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\uzivatel\AppData\Local\Temp\Quarantine.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileDocuments" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f
Hosts:
CMD: shutdown /r /f /t 2
End
*****************
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\SUPERAntiSpyware => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\ISUSPM Startup => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\HKCU\...\Run: [] - => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ISUSScheduler => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
C:\Users\uzivatel\AppData\Local\Temp\NEventMessages.dll => Moved successfully.
C:\Users\uzivatel\AppData\Local\Temp\NOSEventMessages.dll => Moved successfully.
C:\Users\uzivatel\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileDocuments" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
========= shutdown /r /f /t 2 =========
========= End of CMD: =========
==== End of Fixlog ====
Ran by uzivatel at 2013-09-09 15:09:48 Run:1
Running from C:\Users\uzivatel\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKCU\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6581488 2013-08-15] (SUPERAntiSpyware)
HKCU\...\Run: [ISUSPM Startup] - c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [221184 2004-06-16] (InstallShield Software Corporation)
HKCU\...\Run: [] -
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [ISUSScheduler] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-16] (InstallShield Software Corporation)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\Users\uzivatel\AppData\Local\Temp\NEventMessages.dll
C:\Users\uzivatel\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\uzivatel\AppData\Local\Temp\Quarantine.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileDocuments" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f
Hosts:
CMD: shutdown /r /f /t 2
End
*****************
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\SUPERAntiSpyware => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\ISUSPM Startup => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\HKCU\...\Run: [] - => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ISUSScheduler => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
C:\Users\uzivatel\AppData\Local\Temp\NEventMessages.dll => Moved successfully.
C:\Users\uzivatel\AppData\Local\Temp\NOSEventMessages.dll => Moved successfully.
C:\Users\uzivatel\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileDocuments" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
========= shutdown /r /f /t 2 =========
========= End of CMD: =========
==== End of Fixlog ====
Re: prosím o kontrolu logu
Tak jeste uklidime 
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
OTC http://oldtimer.geekstogo.com/OTC.exe
TFC http://oldtimer.geekstogo.com/TFC.exe
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
A pokud nejsou problemy ci dotazy, je to z me strany vse 
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
A pokud nejsou problemy ci dotazy, je to z me strany vse "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: prosím o kontrolu logu
vše provedeno, děkuji
...ale ještě jeden dotázek bych měl
sice se netýká viru, ale třeba byste mohl znát řešení a poradit mi
vždy po spustění pc a windows mi naběhne hláška, že program kdbsync.exe přestal pracovat a abych ho ukončil, dělá mi to už hrozně dlouho nevíte náhodou jak tento problémek vyřešit?
když kliknu na víc info, tak se objeví toto:
Podpis problému:
Název události problému: APPCRASH
Název aplikace: kdbsync.exe
Verze aplikace: 0.0.0.0
Časové razítko aplikace: 4f67a718
Název chybného modulu: StackHash_0a9e
Verze chybného modulu: 0.0.0.0
Časové razítko chybného modulu: 00000000
Kód výjimky: c0000005
Posun výjimky: 00000000
Verze operačního systému: 6.1.7601.2.1.0.768.3
ID národního prostředí: 1029
Další informace 1: 0a9e
Další informace 2: 0a9e372d3b4ad19135b953a78882e789
Další informace 3: 0a9e
Další informace 4: 0a9e372d3b4ad19135b953a78882e789
Přečtěte si prohlášení o zásadách ochrany osobních údajů online:
http://go.microsoft.com/fwlink/?linkid= ... cid=0x0405
Pokud není k dispozici Prohlášení o zásadách ochrany osobních údajů online, přečtěte si toto prohlášení offline:
C:\Windows\system32\cs-CZ\erofflps.txt
...ale ještě jeden dotázek bych měl
sice se netýká viru, ale třeba byste mohl znát řešení a poradit mi
vždy po spustění pc a windows mi naběhne hláška, že program kdbsync.exe přestal pracovat a abych ho ukončil, dělá mi to už hrozně dlouho nevíte náhodou jak tento problémek vyřešit?
když kliknu na víc info, tak se objeví toto:
Podpis problému:
Název události problému: APPCRASH
Název aplikace: kdbsync.exe
Verze aplikace: 0.0.0.0
Časové razítko aplikace: 4f67a718
Název chybného modulu: StackHash_0a9e
Verze chybného modulu: 0.0.0.0
Časové razítko chybného modulu: 00000000
Kód výjimky: c0000005
Posun výjimky: 00000000
Verze operačního systému: 6.1.7601.2.1.0.768.3
ID národního prostředí: 1029
Další informace 1: 0a9e
Další informace 2: 0a9e372d3b4ad19135b953a78882e789
Další informace 3: 0a9e
Další informace 4: 0a9e372d3b4ad19135b953a78882e789
Přečtěte si prohlášení o zásadách ochrany osobních údajů online:
http://go.microsoft.com/fwlink/?linkid= ... cid=0x0405
Pokud není k dispozici Prohlášení o zásadách ochrany osobních údajů online, přečtěte si toto prohlášení offline:
C:\Windows\system32\cs-CZ\erofflps.txt
Re: prosím o kontrolu logu
Zkuste aktualizovat ovladac ke graficke karte AMD
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?