Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Patrik Martynov
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 05 dub 2008 06:53

Prosím o kontrolu logu

#1 Příspěvek od Patrik Martynov »

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-09-2013 04
Ran by Martin (administrator) on MARTIN-PC on 14-09-2013 09:06:44
Running from C:\Users\Martin\Desktop
Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: 041B
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(AMD) C:\Windows\system32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Users\Martin\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
() C:\Program Files\Dokan\DokanLibrary\mounter.exe
(Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
() C:\Program Files\Guard-ICQ\GuardICQ.exe
() C:\PROGRA~1\ICQ6TO~1\ICQSER~1.EXE
(Pandora.TV) C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Home Theater v4\pcee4.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google) C:\Users\Martin\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKLM\...\Run: [P17RunE] - RunDll32 P17RunE.dll,RunDLLEntry
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11680400 2012-10-26] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [924304 2012-10-29] (Realtek Semiconductor)
HKLM\...\Run: [Dolby Home Theater v4] - C:\Program Files\Dolby Home Theater v4\pcee4.exe [508256 2012-04-23] (Dolby Laboratories Inc.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [3830224 2013-05-16] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKCU\...\Run: [KiesPDLR] - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [21432 2012-08-31] ()
HKCU\...\Run: [Spybot-S&D Cleaning] - C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
MountPoints2: {3c7fba55-2e46-11e2-bcd0-50e5495b5f3e} - F:\setup.exe
MountPoints2: {4d3a66c0-bbd6-11e2-81c5-50e5495b5f3e} - F:\Setup.exe
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: localhost:21320
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://tuvaro.com/ws/?source=4c3f95e5&t ... e5495b5f3e
HKCU\Software\Microsoft\Internet Explorer\Main,BrowserMngr Start Page = http://search.babylon.com/?affID=110823 ... e5495b5f3e
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://search.icq.com/search/results.ph ... &ch_id=osd
URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
URLSearchHook: uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
URLSearchHook: IMVU Inc Toolbar - {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files\IMVU_Inc\prxtbIMVU.dll (Conduit Ltd.)
SearchScopes: HKCU - DefaultScope {F657401B-08ED-48A5-8255-F4EE4711C982} URL = http://tuvaro.com/ws/?source=4c3f95e5&t ... earchTerms}
SearchScopes: HKCU - BrowserMngrDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://search.icq.com/search/results.ph ... &ch_id=osd
SearchScopes: HKCU - {6636E07F-202A-4DB0-A1F7-884C09466A32} URL = http://www.mysearchresults.com/search?c ... earchTerms}
SearchScopes: HKCU - {8A244612-A1F7-11E0-95C0-E71F4824019B} URL = http://badoo.com/startpage/?source=bsb&q={searchTerms}
SearchScopes: HKCU - {F657401B-08ED-48A5-8255-F4EE4711C982} URL = http://tuvaro.com/ws/?source=4c3f95e5&t ... earchTerms}
BHO: tuvaro Helper Object - {5CB02877-EFBC-4317-B608-9E24B11BAB40} - C:\Program Files\tuvaro\tuvaro\1.8.17.3\bh\tuvaro.dll (Montera Technologeis LTD)
BHO: uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
BHO: avast! EasyPass Toolbar Helper - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: DefaultTab Browser Helper - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\Martin\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll (Search Results LLC.)
BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: IMVU Inc Toolbar - {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files\IMVU_Inc\prxtbIMVU.dll (Conduit Ltd.)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! EasyPass Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software)
Toolbar: HKLM - uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
Toolbar: HKLM - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
Toolbar: HKLM - IMVU Inc Toolbar - {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files\IMVU_Inc\prxtbIMVU.dll (Conduit Ltd.)
Toolbar: HKLM - Tuvaro Toolbar - {6F001652-AF51-45C6-B029-86E0265A1851} - C:\Program Files\tuvaro\tuvaro\1.8.17.3\tuvaroTlbr.dll (Montera Technologeis LTD)
Toolbar: HKCU -uTorrentControl2 Toolbar - {687578B9-7132-4A7A-80E4-30EE31099E03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU -avast! EasyPass Toolbar - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default
FF user.js: detected! => C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\user.js
FF Homepage: hxxp://tuvaro.com/ws/?source=4c3f95e5&tbp=homepage&toolbarid=base&u=d259089d00000000000050e5495b5f3e
FF SelectedSearchEngine: Tuvaro
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Martin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Martin\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Martin\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\searchplugins\badoo.xml
FF SearchPlugin: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\searchplugins\icqplugin.xml
FF SearchPlugin: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\searchplugins\tuvaro.xml
FF Extension: Firefox Hotfix - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\firefox-hotfix@mozilla.org
FF Extension: Torntv - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\torntv@torntv.com
FF Extension: No Name - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF Extension: IMVU Inc - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\{90b49673-5506-483e-b92b-ca0265bd9ca8}
FF Extension: firefox-hotfix - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\firefox-hotfix@mozilla.org.xpi
FF Extension: torntv2 - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\torntv2@torntv.com.xpi
FF Extension: torntv - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\torntv@torntv.com.xpi
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome:
=======
CHR HomePage: hxxp://home.sweetim.com/
CHR RestoreOnStartup: "chrome://newtab/#"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\PepperFlash\11.7.700.202\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Talk Plugin) - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Facebook Desktop) - C:\Users\Martin\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll No File
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Martin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Extension: (Torrent Search) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\afbpdhiclgghnffhkinjikglgmolhpee\1.2.0.3_0
CHR Extension: (Google Drive) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Pool) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cedbddnnmhgnedpamoenmdkhnpnfbpjb\1.0.4_0
CHR Extension: (Google Search) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Speed Dial) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgpdioedihjhncjafcpgbbjdpbbkikmi\2.5.3_0
CHR Extension: (avast! Online Security) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (InoReader: News and RSS Reader) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhglljfmpijadbpkalkclnhlncncdono\3.2.1_0
CHR Extension: (Deluxe Pool) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomghekmimdikepccdcbjdedkbaoega\1.7_0
CHR Extension: (Speed Dial 2) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik\1.7.0_0
CHR Extension: (DefaultTab) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.25_0
CHR Extension: (Skype Click to Call) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.11.0.13348_0
CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\4.2.0_0
CHR Extension: (Speed Dial) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfpphjagbpgjmnbogbicpfdoikffjjpd\1.2_0
CHR Extension: (Google Mail Checker) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0
CHR Extension: (GServices) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmacegogkfgekgmnkmdeijljaggcpehb\3.3.2_0
CHR Extension: (RSS Subscription Extension (by Google)) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\2.2.2_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Sky and Air Baloon Theme [FVD]) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooegoinbbjiihhlncojnebbljlegkagp\2.0_0
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM\...\Chrome\Extension: [bcfjehbfanfhgoehogmbiebedkidedjb] - C:\Users\Martin\AppData\Local\CRE\bcfjehbfanfhgoehogmbiebedkidedjb.crx
CHR HKLM\...\Chrome\Extension: [epecidhlfobfgdlllidmmlmhlfllkmnl] - C:\Program Files\OApps\chrome-sl.crx
CHR HKLM\...\Chrome\Extension: [kdidombaedgpfiiedeimiebkmbilgmlc] - C:\Program Files\DefaultTab\DefaultTab.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM\...\Chrome\Extension: [nbmafkdmkkckhggblphicnnhlgljnoje] - C:\Program Files\TornTV.com\torn2_10.crx
CHR HKLM\...\Chrome\Extension: [omgjkafaoidbgamjoklhaiiciahohkbh] - C:\Program Files\tuvaro\tuvaro\1.8.17.3\tuvaro.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2013-03-28] (Advanced Micro Devices, Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2012-11-27] (Creative Labs)
S2 DefaultTabSearch; C:\Program Files\DefaultTab\DefaultTabSearch.exe [572928 2013-02-11] ()
R2 DefaultTabUpdate; C:\Users\Martin\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe [107520 2013-05-18] ()
R2 DokanMounter; C:\Program Files\Dokan\DokanLibrary\mounter.exe [14848 2011-01-10] ()
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project)
R2 Guard.Mail.ru; C:\Program Files\Guard-ICQ\GuardICQ.exe [1564368 2012-12-15] ()
S3 ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation)
R2 ICQ Service; C:\PROGRA~1\ICQ6TO~1\ICQSER~1.EXE [247872 2012-03-20] ()
R2 PanService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [625816 2012-06-22] (Pandora.TV)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3291008 2013-08-14] (Skype Technologies S.A.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [1724192 2013-01-31] (TuneUp Software)

==================== Drivers (Whitelisted) ====================

R3 amdhub30; C:\Windows\System32\DRIVERS\amdhub30.sys [85160 2012-08-15] (Advanced Micro Devices, INC.)
R0 amdide; C:\Windows\System32\DRIVERS\amdide.sys [11832 2010-06-29] (Advanced Micro Devices Inc.)
R3 amdxhc; C:\Windows\System32\DRIVERS\amdxhc.sys [177832 2012-08-15] (Advanced Micro Devices, INC.)
R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [48256 2012-04-09] (Advanced Micro Devices)
S2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [48256 2012-04-09] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [18544 2011-01-10] ()
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-05-09] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [18544 2012-08-21] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [66336 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [61680 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-06-27] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-06-27] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [175176 2013-06-27] ()
R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation)
R2 Dokan; C:\Windows\system32\drivers\dokan.sys [95744 2011-01-10] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-05-14] (DT Soft Ltd)
S3 etdrv; C:\Windows\etdrv.sys [17488 2012-06-23] (Windows (R) 2000 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [17488 2012-06-23] (Windows (R) 2000 DDK provider)
R3 P17; C:\Windows\System32\drivers\P17.sys [1147392 2009-04-21] (Creative Technology Ltd.)
S3 p17filt; C:\Windows\System32\drivers\p17filt.sys [1452032 2006-03-20] (Sensaura)
R2 PfModNT; C:\Windows\system32\drivers\PfModNT.sys [8704 2004-12-22] (Creative Technology Ltd.)
S3 taphss; C:\Windows\System32\DRIVERS\taphss.sys [32768 2012-03-26] (AnchorFree Inc)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [10088 2012-11-16] (TuneUp Software)
R3 V0640Vid; C:\Windows\System32\DRIVERS\V0640Vid.sys [273856 2011-09-07] (Creative Technology Ltd.)
S3 AODDriver; \??\C:\Program Files\GIGABYTE\ET6\i386\AODDriver.sys [x]
U5 GVTDrv; C:\Windows\system32\Drivers\GVTDrv.sys [24944 2012-06-23] ()
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2011-10-24] (Huawei Technologies Co., Ltd.)
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-14 09:06 - 2013-09-14 09:06 - 00000000 ____D C:\Users\Martin\AppData\Local\qb10F4BA.66
2013-09-14 09:06 - 2013-09-14 09:06 - 00000000 ____D C:\FRST
2013-09-14 09:06 - 2013-09-13 21:11 - 01083285 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2013-09-11 18:21 - 2013-09-11 18:21 - 00000802 _____ C:\Users\Public\Desktop\World of Warplanes.lnk
2013-09-11 18:20 - 2013-09-11 18:20 - 08775080 _____ (Wargaming.net ) C:\Users\Martin\Downloads\WoWP_internet_install_eu.exe
2013-09-11 14:35 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-11 14:35 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-11 14:35 - 2013-08-10 05:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-11 14:35 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-11 14:35 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-11 14:35 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-11 14:27 - 2013-08-05 03:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-09-11 14:27 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-11 14:27 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-11 14:26 - 2013-08-08 03:03 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-11 14:25 - 2013-08-02 03:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-11 14:25 - 2013-08-02 03:49 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-11 14:25 - 2013-08-02 03:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 02:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-11 14:25 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-11 12:29 - 2013-09-11 12:43 - 962422342 _____ C:\Users\Martin\Downloads\wot_88.3119_87.2903_client.patch
2013-09-02 15:28 - 2013-09-02 15:30 - 00000000 ____D C:\Users\Martin\Documents\Bandicam
2013-09-02 15:28 - 2013-09-02 15:28 - 00000000 ____D C:\Users\Martin\AppData\Roaming\BANDISOFT
2013-08-30 17:02 - 2013-08-30 17:02 - 00002070 _____ C:\Users\Martin\Desktop\JDownloader 2.lnk
2013-08-30 17:02 - 2013-08-30 17:02 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2013-08-30 17:00 - 2013-08-30 17:35 - 00000000 ____D C:\Users\Martin\AppData\Local\JDownloader v2.0
2013-08-30 13:31 - 2013-08-31 10:19 - 00001438 _____ C:\Windows\wininit.ini
2013-08-30 08:54 - 2013-08-30 08:54 - 00002119 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-08-30 08:54 - 2009-01-25 13:14 - 00015224 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2013-08-28 13:10 - 2013-08-28 20:43 - 00000000 ____D C:\Users\Martin\Downloads\Mafia 2 - Kompletní DLC pack
2013-08-27 06:38 - 2013-08-27 06:38 - 00002047 _____ C:\Users\Public\Desktop\Mafia II.lnk
2013-08-27 06:34 - 2013-08-27 06:42 - 00000000 ____D C:\Program Files\2K Games
2013-08-26 18:21 - 2013-08-26 18:21 - 00090065 _____ C:\Users\Martin\Downloads\Live-Free-or-Die-Hard(0000201735).srt
2013-08-26 18:20 - 2013-08-26 19:05 - 00000000 ____D C:\Users\Martin\Downloads\Live.Free.or.Die.Hard.2007.1080p.BluRay.x264.anoXmous.mp4
2013-08-26 18:08 - 2013-08-27 10:24 - 00000000 ____D C:\Users\Martin\Downloads\Mafia.II-SKIDROW
2013-08-26 10:04 - 2013-08-26 10:05 - 00000000 ____D C:\Users\Martin\Downloads\HL2
2013-08-25 18:21 - 2013-08-25 18:21 - 00000000 ____D C:\Users\Martin\AppData\Local\2K Games
2013-08-25 18:16 - 2013-08-25 18:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-08-25 18:15 - 2013-08-25 18:15 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2013-08-25 18:14 - 2013-08-25 18:14 - 00000000 ____D C:\Program Files\Episode Pack
2013-08-25 13:40 - 2013-08-25 17:19 - 00000000 ____D C:\Users\Martin\Downloads\HL-episode-pack
2013-08-22 19:14 - 2013-08-22 19:14 - 00000000 ____D C:\Users\Martin\AppData\Local\Apple Computer
2013-08-21 21:26 - 2013-08-22 00:03 - 731986570 _____ C:\Users\Martin\Downloads\rvacuv-denik-1995-dvdrip-xvid-cz.avi

==================== One Month Modified Files and Folders =======

2013-09-14 09:06 - 2013-09-14 09:06 - 00000000 ____D C:\Users\Martin\AppData\Local\qb10F4BA.66
2013-09-14 09:06 - 2013-09-14 09:06 - 00000000 ____D C:\FRST
2013-09-14 08:57 - 2013-02-12 02:30 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-14 08:55 - 2009-07-14 06:34 - 00026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-14 08:55 - 2009-07-14 06:34 - 00026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-14 08:52 - 2012-06-14 21:43 - 01538540 _____ C:\Windows\WindowsUpdate.log
2013-09-14 08:49 - 2013-05-13 16:00 - 00000920 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-14 08:48 - 2013-05-15 16:45 - 00010790 _____ C:\Windows\setupact.log
2013-09-14 08:48 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-14 02:00 - 2012-08-14 11:19 - 00000000 ____D C:\Users\Martin\AppData\Local\Adobe
2013-09-14 01:48 - 2012-06-15 06:07 - 00000950 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-101640133-2423842366-3071143118-1000UA.job
2013-09-14 01:30 - 2013-05-13 16:00 - 00000924 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-14 01:19 - 2013-05-15 16:44 - 00031590 _____ C:\Windows\PFRO.log
2013-09-14 00:27 - 2013-07-03 21:27 - 00000000 ____D C:\Users\Martin\AppData\Local\Firestorm
2013-09-13 22:48 - 2012-06-15 06:07 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-101640133-2423842366-3071143118-1000Core.job
2013-09-13 21:11 - 2013-09-14 09:06 - 01083285 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2013-09-12 19:20 - 2013-05-18 12:39 - 00000916 __RSH C:\Users\Martin\ntuser.pol
2013-09-12 19:20 - 2012-06-14 21:45 - 00000000 ____D C:\Users\Martin
2013-09-12 18:17 - 2013-05-28 20:18 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Wargaming.net
2013-09-12 18:00 - 2013-06-19 09:26 - 00000000 ____D C:\Users\Martin\Downloads\WoT
2013-09-12 12:08 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2013-09-11 18:21 - 2013-09-11 18:21 - 00000802 _____ C:\Users\Public\Desktop\World of Warplanes.lnk
2013-09-11 18:21 - 2013-03-16 09:59 - 00000000 ___HD C:\Windows\msdownld.tmp
2013-09-11 18:21 - 2013-03-16 09:59 - 00000000 ____D C:\Windows\system32\directx
2013-09-11 18:20 - 2013-09-11 18:20 - 08775080 _____ (Wargaming.net ) C:\Users\Martin\Downloads\WoWP_internet_install_eu.exe
2013-09-11 18:20 - 2013-05-27 22:57 - 00000000 ____D C:\Games
2013-09-11 17:42 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-09-11 16:19 - 2013-05-15 16:44 - 03833328 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-11 16:12 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\sk-SK
2013-09-11 14:42 - 2012-09-12 07:49 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-09-11 14:32 - 2013-07-11 11:09 - 00000000 ____D C:\Windows\system32\MRT
2013-09-11 14:29 - 2012-06-15 07:36 - 76725432 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-11 12:43 - 2013-09-11 12:29 - 962422342 _____ C:\Users\Martin\Downloads\wot_88.3119_87.2903_client.patch
2013-09-10 23:51 - 2012-06-15 07:32 - 00000000 ____D C:\ProgramData\firebird
2013-09-10 18:57 - 2013-02-12 02:30 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-10 18:57 - 2013-02-12 02:30 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-10 02:02 - 2013-05-18 12:39 - 00000000 ____D C:\Program Files\DefaultTab
2013-09-02 15:30 - 2013-09-02 15:28 - 00000000 ____D C:\Users\Martin\Documents\Bandicam
2013-09-02 15:28 - 2013-09-02 15:28 - 00000000 ____D C:\Users\Martin\AppData\Roaming\BANDISOFT
2013-08-31 10:19 - 2013-08-30 13:31 - 00001438 _____ C:\Windows\wininit.ini
2013-08-30 17:35 - 2013-08-30 17:00 - 00000000 ____D C:\Users\Martin\AppData\Local\JDownloader v2.0
2013-08-30 17:02 - 2013-08-30 17:02 - 00002070 _____ C:\Users\Martin\Desktop\JDownloader 2.lnk
2013-08-30 17:02 - 2013-08-30 17:02 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2013-08-30 11:00 - 2013-03-24 16:43 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-08-30 08:55 - 2013-03-24 16:43 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2013-08-30 08:54 - 2013-08-30 08:54 - 00002119 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-08-30 08:49 - 2010-11-20 23:01 - 00778834 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-28 23:50 - 2012-06-26 21:21 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Mozilla
2013-08-28 20:43 - 2013-08-28 13:10 - 00000000 ____D C:\Users\Martin\Downloads\Mafia 2 - Kompletní DLC pack
2013-08-27 10:24 - 2013-08-26 18:08 - 00000000 ____D C:\Users\Martin\Downloads\Mafia.II-SKIDROW
2013-08-27 06:42 - 2013-08-27 06:34 - 00000000 ____D C:\Program Files\2K Games
2013-08-27 06:38 - 2013-08-27 06:38 - 00002047 _____ C:\Users\Public\Desktop\Mafia II.lnk
2013-08-26 19:05 - 2013-08-26 18:20 - 00000000 ____D C:\Users\Martin\Downloads\Live.Free.or.Die.Hard.2007.1080p.BluRay.x264.anoXmous.mp4
2013-08-26 18:21 - 2013-08-26 18:21 - 00090065 _____ C:\Users\Martin\Downloads\Live-Free-or-Die-Hard(0000201735).srt
2013-08-26 10:05 - 2013-08-26 10:04 - 00000000 ____D C:\Users\Martin\Downloads\HL2
2013-08-25 18:21 - 2013-08-25 18:21 - 00000000 ____D C:\Users\Martin\AppData\Local\2K Games
2013-08-25 18:16 - 2013-08-25 18:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-08-25 18:15 - 2013-08-25 18:15 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2013-08-25 18:14 - 2013-08-25 18:14 - 00000000 ____D C:\Program Files\Episode Pack
2013-08-25 17:19 - 2013-08-25 13:40 - 00000000 ____D C:\Users\Martin\Downloads\HL-episode-pack
2013-08-25 00:05 - 2012-11-14 17:03 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-08-23 20:28 - 2012-06-15 07:47 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Skype
2013-08-22 19:14 - 2013-08-22 19:14 - 00000000 ____D C:\Users\Martin\AppData\Local\Apple Computer
2013-08-22 13:42 - 2013-08-13 10:15 - 00000000 ____D C:\Users\Martin\Downloads\Stalingrad.1993.Unrated.Remastered.1080p.BluRay.x264.anoXmous.mp4
2013-08-22 06:26 - 2012-06-15 06:07 - 00000000 ____D C:\Users\Martin\AppData\Local\Deployment
2013-08-22 00:03 - 2013-08-21 21:26 - 731986570 _____ C:\Users\Martin\Downloads\rvacuv-denik-1995-dvdrip-xvid-cz.avi
2013-08-16 19:18 - 2013-08-10 12:49 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Betcat
2013-08-16 18:31 - 2013-02-08 23:14 - 00000000 ___RD C:\Program Files\Skype

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit



==================== Alternate Data Streams (whitelisted) ====

AlternateDataStreams: C:\ProgramData:gs5sys
AlternateDataStreams: C:\Users\All Users:gs5sys
AlternateDataStreams: C:\Users\Martin:gs5sys
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Martin\Desktop\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Martin\AppData\Local:gs5sys
AlternateDataStreams: C:\Users\Martin\AppData\Roaming:gs5sys
AlternateDataStreams: C:\Users\Martin\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys

==================== Loaded Modules (whitelisted) ============

2008-03-28 15:57 - 2008-03-28 15:57 - 00014848 _____ (Creative Technology Ltd.) C:\Windows\System32\P17RunE.dll
2013-05-18 13:16 - 2010-11-03 12:26 - 00141928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM\RtkCfg.dll
2013-05-18 13:16 - 2012-10-23 05:30 - 03219600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2013-05-18 13:16 - 2012-08-31 13:17 - 00091920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA32A.dll
2013-09-11 09:40 - 2013-09-11 09:40 - 00115137 _____ () C:\Users\Martin\AppData\Local\Temp\fbe2808e-2380-4f14-a1fa-3fa9c3a364e8\CliSecureRT.dll
2013-03-28 22:29 - 2013-03-28 22:29 - 00095232 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2013-09-05 14:54 - 2013-09-02 22:34 - 47074256 _____ (Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\chrome.dll
2013-09-05 14:54 - 2013-09-02 22:35 - 09962960 _____ (The ICU Project) C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\icudt.dll
2013-09-05 14:54 - 2013-09-02 20:46 - 03231688 _____ (Microsoft Corporation) C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\D3DCompiler_46.dll
2013-09-05 14:55 - 2013-09-02 22:35 - 00709584 _____ () C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\libglesv2.dll
2013-09-05 14:55 - 2013-09-02 22:35 - 00099792 _____ () C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\libegl.dll
2013-09-05 14:55 - 2013-09-02 22:35 - 04053456 _____ () C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\pdf.dll
2013-09-05 14:55 - 2013-09-02 22:35 - 00410576 _____ () C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll
2013-09-05 14:55 - 2013-09-02 22:35 - 02110928 _____ (Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\libpeerconnection.dll
2013-09-05 14:54 - 2013-09-02 22:35 - 01604560 _____ () C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\ffmpegsumo.dll
2013-09-10 10:38 - 2013-09-10 10:38 - 00254976 _____ () C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.27_0\plugins\npDefaultTabSearch.dll
2013-08-27 00:22 - 2013-08-27 00:22 - 00303624 _____ (Google) C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
2013-08-27 00:22 - 2013-08-27 00:22 - 10835464 _____ (Google) C:\Users\Martin\AppData\Local\Google\Google Talk Plugin\googletalkplugin.dll
Názov chybového modulu: npDefaultTabSearch.dll_unloaded, verzia: 0.0.0.0, časová značka: 0x51a6d89b
Description: chrome.exe29.0.1547.665224d150npDefaultTabSearch.dll_unloaded0.0.0.051a6d89bc0000005594dbb60157801ceaee9ad0e1f8dC:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exenpDefaultTabSearch.dll161d3fdd-1aec-11e3-9a29-50e5495b5f3e

==================== Scheduled Tasks (whitelisted) ===========

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-101640133-2423842366-3071143118-1000Core.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-101640133-2423842366-3071143118-1000UA.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Supplementary Scan (All) ================



[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=dword:00000005
"ConsentPromptBehaviorUser"=dword:00000003
"EnableInstallerDetection"=dword:00000001
"EnableLUA"=dword:00000001
"EnableSecureUIAPaths"=dword:00000001
"EnableUIADesktopToggle"=dword:00000000
"EnableVirtualization"=dword:00000001
"PromptOnSecureDesktop"=dword:00000000
"ValidateAdminCodeSignatures"=dword:00000000
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"scforceoption"=dword:00000000
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
"FilterAdministratorToken"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval"=dword:00000001
"AntiVirusOverride"=dword:00000000
"AntiSpywareOverride"=dword:00000000
"FirewallOverride"=dword:00000000


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDTray.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDFSSvc.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdate.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdSvc.exe"="C:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"="msrle32.dll"
"vidc.msvc"="msvidc32.dll"
"msacm.imaadpcm"="imaadp32.acm"
"msacm.msg711"="msg711.acm"
"msacm.msgsm610"="msgsm32.acm"
"msacm.msadpcm"="msadp32.acm"
"midimapper"="midimap.dll"
"wavemapper"="msacm32.drv"
"VIDC.UYVY"="msyuv.dll"
"VIDC.YUY2"="msyuv.dll"
"VIDC.YVYU"="msyuv.dll"
"VIDC.IYUV"="iyuv_32.dll"
"vidc.i420"="iyuv_32.dll"
"VIDC.YVU9"="tsbyuv.dll"
"msacm.l3acm"="C:\\Windows\\System32\\l3codeca.acm"
"vidc.cvid"="iccvid.dll"
"wave2"="wdmaud.drv"
"midi2"="wdmaud.drv"
"mixer2"="wdmaud.drv"
"MSVideo8"="VfWWDM32.dll"
"wave3"="wdmaud.drv"
"midi3"="wdmaud.drv"
"mixer3"="wdmaud.drv"
"aux2"="wdmaud.drv"
"wave4"="wdmaud.drv"
"midi4"="wdmaud.drv"
"mixer4"="wdmaud.drv"
"aux3"="wdmaud.drv"
"wave1"="wdmaud.drv"
"midi1"="wdmaud.drv"
"mixer1"="wdmaud.drv"
"aux1"="wdmaud.drv"
"wave"="wdmaud.drv"
"midi"="wdmaud.drv"
"mixer"="wdmaud.drv"
"aux"="wdmaud.drv"
"vidc.mjpg"="bdmjpeg.dll"
"vidc.mpeg"="bdmpegv.dll"
"msacm.bdmpeg"="bdmpega.acm"


==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:931.41 GB) (Free:570.88 GB) NTFS
Drive e: (Nový zväzok) (Fixed) (Total:149.05 GB) (Free:89.29 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Available physical RAM: 1576.73 MB
Total physical RAM: 3325.24 MB
Percentage of memory in use: 52%

==================== MBR and Partition Table =================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 54BCF6AF)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 00DA00D9)
Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)

LastRegBack: 2013-09-11 15:54

==================== End Of Log ==============================
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu logu

#2 Příspěvek od vyosek »

Zdravim :)

:arrow: Jen se zeptam pouzivate legalni operacni system, nejvyssi licence Ultimate zrovna neni bezna. :?:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Patrik Martynov
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 05 dub 2008 06:53

Re: Prosím o kontrolu logu

#3 Příspěvek od Patrik Martynov »

Ano iste :-)
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu logu

#4 Příspěvek od vyosek »

:arrow: Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
  • Ulozte nejlepe na plochu
  • Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
  • Probehne vytvoreni zalohy a nasledne prohledavani
  • Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte
:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Patrik Martynov
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 05 dub 2008 06:53

Re: Prosím o kontrolu logu

#5 Příspěvek od Patrik Martynov »

JRT log:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.0 (09.12.2013:1)
OS: Windows 7 Ultimate x86
Ran by Martin on so 14. 09. 2013 at 17:56:42,86
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] defaulttabsearch
Successfully deleted: [Service] defaulttabsearch
Successfully stopped: [Service] defaulttabupdate
Successfully deleted: [Service] defaulttabupdate
Failed to stop: [Service] icq service



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{90b49673-5506-483e-b92b-ca0265bd9ca8}
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{6F001652-AF51-45C6-B029-86E0265A1851}
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-101640133-2423842366-3071143118-1000\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440}



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\defaulttabbho.defaulttabbrowser
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\defaulttabbho.defaulttabbrowser.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\defaulttabbho.defaulttabbrowseractivex
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\defaulttabbho.defaulttabbrowseractivex.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{38495740-0035-4471-851E-F5BBB86AB085}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\defaulttabbho.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\icq service.exe
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\secman.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\browsermngr
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\default tab
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installcore
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\systweak
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\defaulttab
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\pricegong
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\toolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-101640133-2423842366-3071143118-1000\Software\SweetIM
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\browsermngr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\default tab
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\defaulttab
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\tarma installer
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\utorrentcontrol2
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\driverscanner
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\icqtoolbar.iehook
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\icqtoolbar.iehook.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\conduitinstaller_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\conduitinstaller_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\driverscanner_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\driverscanner_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\mybabylontb_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\mybabylontb_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\webcakedesktop_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\webcakedesktop_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\1clickdownload
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\defaulttab
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\defaulttab chrome
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\icqtoolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT2612669
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3072253
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskSLib_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskSLib_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\RoboTaskBarIcon_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\RoboTaskBarIcon_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\mconduitinstaller_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\mconduitinstaller_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_jdownloader_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_jdownloader_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_msn-virus-remover_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_msn-virus-remover_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_realtek-hd-audio-drivers_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_realtek-hd-audio-drivers_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6636E07F-202A-4DB0-A1F7-884C09466A32}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{F657401B-08ED-48A5-8255-F4EE4711C982}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CB02877-EFBC-4317-B608-9E24B11BAB40}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{687578B9-7132-4A7A-80E4-30EE31099E03}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{90B49673-5506-483E-B92B-CA0265BD9CA8}
Successfully deleted: [Registry Key] "hkey_current_user\software\apn pip"
Successfully deleted: [Registry Key] "hkey_current_user\software\pip"



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\ProgramData\tarma installer"
Successfully deleted: [Folder] "C:\Users\Martin\AppData\Roaming\betcat"
Successfully deleted: [Folder] "C:\Users\Martin\AppData\Roaming\defaulttab"
Successfully deleted: [Folder] "C:\Users\Martin\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Users\Martin\AppData\Roaming\tuvaro"
Successfully deleted: [Folder] "C:\Users\Martin\AppData\Roaming\web cake"
Successfully deleted: [Folder] "C:\Users\Martin\appdata\local\apn"
Successfully deleted: [Folder] "C:\Users\Martin\appdata\local\cre"
Successfully deleted: [Folder] "C:\Users\Martin\appdata\locallow\babylontoolbar"
Successfully deleted: [Folder] "C:\Users\Martin\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Users\Martin\appdata\locallow\delta"
Successfully deleted: [Folder] "C:\Users\Martin\appdata\locallow\imvu_inc"
Successfully deleted: [Folder] "C:\Users\Martin\appdata\locallow\pricegong"
Successfully deleted: [Folder] "C:\Users\Martin\appdata\locallow\tuvaro"
Successfully deleted: [Folder] "C:\Users\Martin\appdata\locallow\utorrentcontrol2"
Successfully deleted: [Folder] "C:\Program Files\conduit"
Successfully deleted: [Folder] "C:\Program Files\defaulttab"
Successfully deleted: [Folder] "C:\Program Files\icq6toolbar"
Successfully deleted: [Folder] "C:\Program Files\imvu_inc"
Successfully deleted: [Folder] "C:\Program Files\torntv.com"
Successfully deleted: [Folder] "C:\Program Files\tuvaro"
Successfully deleted: [Folder] "C:\Program Files\utorrentcontrol2"
Successfully deleted: [Folder] "C:\Users\Martin\AppData\Roaming\microsoft\windows\start menu\programs\torntv.com"
Successfully deleted: [Folder] "C:\Users\Martin\start menu\programs\browser manager"
Successfully deleted: [Folder] "C:\ProgramData\ask"



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Martin\appdata\local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on so 14. 09. 2013 at 17:59:40,55
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

AdwCleaner log

# AdwCleaner v3.003 - Report created 14/09/2013 at 18:55:50
# Updated 07/09/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : Martin - MARTIN-PC
# Running from : C:\Users\Martin\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : ICQ Service

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Folder Deleted : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\{90b49673-5506-483e-b92b-ca0265bd9ca8}
File Deleted : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\torntv2@torntv.com.xpi
File Deleted : C:\Users\Martin\Desktop\TornTV.lnk
File Deleted : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\\invalidprefs.js
File Deleted : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\searchplugins\icqplugin.xml
File Deleted : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\user.js
File Deleted : C:\Program Files\Mozilla Firefox\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [BrowserMngr Start Page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [BrowserMngrDefaultScope]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Key Deleted : HKCU\Software\f4dbd0b434e515
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5CB02877-EFBC-4317-B608-9E24B11BAB40}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6F001652-AF51-45C6-B029-86E0265A1851}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{90B49673-5506-483E-B92B-CA0265BD9CA8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A19F5EBF-E163-4D4F-B7BD-33149BF756CC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CB02877-EFBC-4317-B608-9E24B11BAB40}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F001652-AF51-45C6-B029-86E0265A1851}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{90B49673-5506-483E-B92B-CA0265BD9CA8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CB02877-EFBC-4317-B608-9E24B11BAB40}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F001652-AF51-45C6-B029-86E0265A1851}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{90B49673-5506-483E-B92B-CA0265BD9CA8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A19F5EBF-E163-4D4F-B7BD-33149BF756CC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CED79771-25EF-4D6D-AF24-48F2767F4884}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A20A94A7-556F-4749-BB22-A7E6094310D6}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{90B49673-5506-483E-B92B-CA0265BD9CA8}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{90B49673-5506-483E-B92B-CA0265BD9CA8}]
Key Deleted : HKCU\Software\ICQ\ICQToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\IMVU_Inc
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\Uniblue\DriverScanner
Key Deleted : HKLM\Software\IMVU_Inc
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMVU_Inc Toolbar

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16686

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [BrowserMngr Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v

[ File : C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\prefs.js ]

Line Deleted : user_pref("avg.install.userHPSettings", "hxxp://search.babylon.com/?affID=110823&tt=3712_7&babsrc=HP_ss&mntrId=d259089d00000000000050e5495b5f3e");
Line Deleted : user_pref("avg.install.userSPSettings", "Search the web (Babylon)");
Line Deleted : user_pref("CT2612669.addressUrlXPETakeover", "true");
Line Deleted : user_pref("CT2612669.autoDisableScopes", -1);
Line Deleted : user_pref("CT2612669.installDate", "28/1/2013 15:54:34");
Line Deleted : user_pref("CT2612669.keyword", "true");
Line Deleted : user_pref("ct2612669.UserID", "UN27933939381358125");
Line Deleted : user_pref("icqtoolbar.showPc", true);
Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2612669&SearchSource=2&CUI=UN27933939381358125&q=");
Line Deleted : user_pref("smartbar.originalSearchAddressUrl", "");
Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");

-\\ Google Chrome v

[ File : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage

*************************

AdwCleaner[R0].txt - [7045 octets] - [14/09/2013 18:54:24]
AdwCleaner[S0].txt - [6934 octets] - [14/09/2013 18:55:50]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6994 octets] ##########
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu logu

#6 Příspěvek od vyosek »

Stahnete prosim novy FRSTLauncher (byl aktualizovan) http://forum.viry.cz/viewtopic.php?f=13&t=132519 a opet spustte, log pak sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Patrik Martynov
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 05 dub 2008 06:53

Re: Prosím o kontrolu logu

#7 Příspěvek od Patrik Martynov »

FRSTL log

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-09-2013 04
Ran by Martin (administrator) on MARTIN-PC on 14-09-2013 19:54:20
Running from C:\Users\Martin\Desktop
Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: 041B
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files\Dokan\DokanLibrary\mounter.exe
(Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe
() C:\Program Files\Guard-ICQ\GuardICQ.exe
(Pandora.TV) C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Home Theater v4\pcee4.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
(Ghisler Software GmbH) C:\Program Files\Total CMA Pack\TOTALCMD.EXE
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google) C:\Users\Martin\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Martin\Downloads\FRSTLauncher (1).exe
(Microsoft Corporation) C:\Windows\system32\cmd.exe
(Microsoft Corporation) C:\Windows\system32\PING.EXE

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKLM\...\Run: [P17RunE] - RunDll32 P17RunE.dll,RunDLLEntry
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11680400 2012-10-26] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [924304 2012-10-29] (Realtek Semiconductor)
HKLM\...\Run: [Dolby Home Theater v4] - C:\Program Files\Dolby Home Theater v4\pcee4.exe [508256 2012-04-23] (Dolby Laboratories Inc.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [3830224 2013-05-16] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKCU\...\Run: [KiesPDLR] - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [21432 2012-08-31] ()
HKCU\...\Run: [Spybot-S&D Cleaning] - C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
MountPoints2: {3c7fba55-2e46-11e2-bcd0-50e5495b5f3e} - F:\setup.exe
MountPoints2: {4d3a66c0-bbd6-11e2-81c5-50e5495b5f3e} - F:\Setup.exe
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: localhost:21320
URLSearchHook: uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll No File
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {8A244612-A1F7-11E0-95C0-E71F4824019B} URL = http://badoo.com/startpage/?source=bsb&q={searchTerms}
BHO: avast! EasyPass Toolbar Helper - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! EasyPass Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software)
Toolbar: HKLM - uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll No File
Toolbar: HKLM - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU -uTorrentControl2 Toolbar - {687578B9-7132-4A7A-80E4-30EE31099E03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll No File
Toolbar: HKCU -avast! EasyPass Toolbar - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default
FF Homepage: hxxp://tuvaro.com/ws/?source=4c3f95e5&tbp=homepage&toolbarid=base&u=d259089d00000000000050e5495b5f3e
FF SelectedSearchEngine: Tuvaro
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Martin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Martin\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Martin\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\searchplugins\badoo.xml
FF SearchPlugin: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\searchplugins\tuvaro.xml
FF Extension: Firefox Hotfix - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\firefox-hotfix@mozilla.org
FF Extension: Torntv - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\torntv@torntv.com
FF Extension: firefox-hotfix - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\firefox-hotfix@mozilla.org.xpi
FF Extension: torntv - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\bzsd1oop.default\Extensions\torntv@torntv.com.xpi
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome:
=======
CHR HomePage: hxxp://home.sweetim.com/
CHR RestoreOnStartup: "chrome://newtab/#"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\PepperFlash\11.7.700.202\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Martin\AppData\Local\Google\Chrome\Application\29.0.1547.66\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Talk Plugin) - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AdobeAAMDetect) - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Facebook Desktop) - C:\Users\Martin\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll No File
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Martin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Extension: (Torrent Search) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\afbpdhiclgghnffhkinjikglgmolhpee\1.2.0.3_0
CHR Extension: (Google Drive) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Pool) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cedbddnnmhgnedpamoenmdkhnpnfbpjb\1.0.4_0
CHR Extension: (Google Search) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Speed Dial) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgpdioedihjhncjafcpgbbjdpbbkikmi\2.5.3_0
CHR Extension: (avast! Online Security) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (InoReader: News and RSS Reader) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhglljfmpijadbpkalkclnhlncncdono\3.2.1_0
CHR Extension: (Deluxe Pool) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomghekmimdikepccdcbjdedkbaoega\1.7_0
CHR Extension: (Speed Dial 2) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik\1.7.0_0
CHR Extension: (Skype Click to Call) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.11.0.13348_0
CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa\4.2.0_0
CHR Extension: (Speed Dial) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfpphjagbpgjmnbogbicpfdoikffjjpd\1.2_0
CHR Extension: (Google Mail Checker) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0
CHR Extension: (GServices) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmacegogkfgekgmnkmdeijljaggcpehb\3.3.2_0
CHR Extension: (RSS Subscription Extension (by Google)) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd\2.2.2_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Sky and Air Baloon Theme [FVD]) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooegoinbbjiihhlncojnebbljlegkagp\2.0_0
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM\...\Chrome\Extension: [bcfjehbfanfhgoehogmbiebedkidedjb] - C:\Users\Martin\AppData\Local\CRE\bcfjehbfanfhgoehogmbiebedkidedjb.crx
CHR HKLM\...\Chrome\Extension: [epecidhlfobfgdlllidmmlmhlfllkmnl] - C:\Program Files\OApps\chrome-sl.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM\...\Chrome\Extension: [nbmafkdmkkckhggblphicnnhlgljnoje] - C:\Program Files\TornTV.com\torn2_10.crx
CHR HKLM\...\Chrome\Extension: [omgjkafaoidbgamjoklhaiiciahohkbh] - C:\Program Files\tuvaro\tuvaro\1.8.17.3\tuvaro.crx
CHR StartMenuInternet: Google Chrome - C:\Users\Martin\AppData\Local\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2013-03-28] (Advanced Micro Devices, Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2012-11-27] (Creative Labs)
R2 DokanMounter; C:\Program Files\Dokan\DokanLibrary\mounter.exe [14848 2011-01-10] ()
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project)
R2 Guard.Mail.ru; C:\Program Files\Guard-ICQ\GuardICQ.exe [1564368 2012-12-15] ()
S3 ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation)
R2 PanService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [625816 2012-06-22] (Pandora.TV)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3291008 2013-08-14] (Skype Technologies S.A.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [1724192 2013-01-31] (TuneUp Software)

==================== Drivers (Whitelisted) ====================

R3 amdhub30; C:\Windows\System32\DRIVERS\amdhub30.sys [85160 2012-08-15] (Advanced Micro Devices, INC.)
R0 amdide; C:\Windows\System32\DRIVERS\amdide.sys [11832 2010-06-29] (Advanced Micro Devices Inc.)
R3 amdxhc; C:\Windows\System32\DRIVERS\amdxhc.sys [177832 2012-08-15] (Advanced Micro Devices, INC.)
R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [48256 2012-04-09] (Advanced Micro Devices)
S2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [48256 2012-04-09] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [18544 2011-01-10] ()
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-05-09] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [18544 2012-08-21] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [66336 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [61680 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-06-27] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-06-27] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [175176 2013-06-27] ()
R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation)
R2 Dokan; C:\Windows\system32\drivers\dokan.sys [95744 2011-01-10] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2013-05-14] (DT Soft Ltd)
S3 etdrv; C:\Windows\etdrv.sys [17488 2012-06-23] (Windows (R) 2000 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [17488 2012-06-23] (Windows (R) 2000 DDK provider)
R3 P17; C:\Windows\System32\drivers\P17.sys [1147392 2009-04-21] (Creative Technology Ltd.)
S3 p17filt; C:\Windows\System32\drivers\p17filt.sys [1452032 2006-03-20] (Sensaura)
R2 PfModNT; C:\Windows\system32\drivers\PfModNT.sys [8704 2004-12-22] (Creative Technology Ltd.)
S3 taphss; C:\Windows\System32\DRIVERS\taphss.sys [32768 2012-03-26] (AnchorFree Inc)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [10088 2012-11-16] (TuneUp Software)
R3 V0640Vid; C:\Windows\System32\DRIVERS\V0640Vid.sys [273856 2011-09-07] (Creative Technology Ltd.)
S3 AODDriver; \??\C:\Program Files\GIGABYTE\ET6\i386\AODDriver.sys [x]
U5 GVTDrv; C:\Windows\system32\Drivers\GVTDrv.sys [24944 2012-06-23] ()
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2011-10-24] (Huawei Technologies Co., Ltd.)
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-14 19:54 - 2013-09-14 19:54 - 00000000 ____D C:\Users\Martin\AppData\Local\qb3370BD.F7
2013-09-14 19:54 - 2013-09-14 15:47 - 00046330 _____ C:\Users\Martin\Desktop\logmodification.bat
2013-09-14 19:54 - 2013-09-14 10:45 - 00001600 _____ C:\Users\Martin\Desktop\SecurityCenter2.vbs
2013-09-14 19:54 - 2013-09-13 21:11 - 01083285 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2013-09-14 19:53 - 2013-09-14 19:53 - 00365056 _____ (forum.viry.cz) C:\Users\Martin\Downloads\FRSTLauncher (1).exe
2013-09-14 18:58 - 2013-09-14 18:58 - 00000576 _____ C:\Windows\PFRO.log
2013-09-14 18:58 - 2013-09-14 18:58 - 00000056 _____ C:\Windows\setupact.log
2013-09-14 18:58 - 2013-09-14 18:58 - 00000000 _____ C:\Windows\setuperr.log
2013-09-14 18:54 - 2013-09-14 18:56 - 00000000 ____D C:\AdwCleaner
2013-09-14 17:59 - 2013-09-14 17:59 - 00013477 _____ C:\Users\Martin\Desktop\JRT.txt
2013-09-14 17:56 - 2013-09-14 17:56 - 01037278 _____ C:\Users\Martin\Downloads\adwcleaner.exe
2013-09-14 17:56 - 2013-09-14 17:56 - 00000000 ____D C:\Windows\ERUNT
2013-09-14 17:55 - 2013-09-14 17:56 - 01029509 _____ (Thisisu) C:\Users\Martin\Downloads\JRT.exe
2013-09-14 14:36 - 2013-09-14 14:36 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-09-14 14:36 - 2013-09-14 14:36 - 00000000 ____D C:\Program Files\CCleaner
2013-09-14 14:35 - 2013-09-14 14:35 - 04454952 _____ (Piriform Ltd) C:\Users\Martin\Downloads\ccsetup405.exe
2013-09-14 09:11 - 2013-09-14 09:11 - 00052659 _____ C:\Users\Martin\Documents\FRST.txt
2013-09-14 09:06 - 2013-09-14 09:06 - 00000000 ____D C:\FRST
2013-09-14 08:59 - 2013-09-14 08:59 - 00364544 _____ (forum.viry.cz) C:\Users\Martin\Downloads\FRSTLauncher.exe
2013-09-11 18:21 - 2013-09-11 18:21 - 00000802 _____ C:\Users\Public\Desktop\World of Warplanes.lnk
2013-09-11 18:20 - 2013-09-11 18:20 - 08775080 _____ (Wargaming.net ) C:\Users\Martin\Downloads\WoWP_internet_install_eu.exe
2013-09-11 14:35 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-11 14:35 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-11 14:35 - 2013-08-10 05:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-11 14:35 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-11 14:35 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-11 14:35 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-11 14:35 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-11 14:27 - 2013-08-05 03:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-09-11 14:27 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-11 14:27 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-11 14:26 - 2013-08-08 03:03 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-11 14:25 - 2013-08-02 03:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-11 14:25 - 2013-08-02 03:49 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-11 14:25 - 2013-08-02 03:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 02:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-11 14:25 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 14:25 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-11 12:29 - 2013-09-11 12:43 - 962422342 _____ C:\Users\Martin\Downloads\wot_88.3119_87.2903_client.patch
2013-09-02 15:28 - 2013-09-02 15:30 - 00000000 ____D C:\Users\Martin\Documents\Bandicam
2013-09-02 15:28 - 2013-09-02 15:28 - 00000000 ____D C:\Users\Martin\AppData\Roaming\BANDISOFT
2013-08-30 17:02 - 2013-08-30 17:02 - 00002070 _____ C:\Users\Martin\Desktop\JDownloader 2.lnk
2013-08-30 17:02 - 2013-08-30 17:02 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2013-08-30 17:00 - 2013-08-30 17:35 - 00000000 ____D C:\Users\Martin\AppData\Local\JDownloader v2.0
2013-08-30 13:31 - 2013-08-31 10:19 - 00001438 _____ C:\Windows\wininit.ini
2013-08-30 08:54 - 2013-08-30 08:54 - 00002119 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-08-30 08:54 - 2009-01-25 13:14 - 00015224 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2013-08-28 13:10 - 2013-08-28 20:43 - 00000000 ____D C:\Users\Martin\Downloads\Mafia 2 - Kompletní DLC pack
2013-08-27 06:38 - 2013-08-27 06:38 - 00002047 _____ C:\Users\Public\Desktop\Mafia II.lnk
2013-08-27 06:34 - 2013-08-27 06:42 - 00000000 ____D C:\Program Files\2K Games
2013-08-26 18:21 - 2013-08-26 18:21 - 00090065 _____ C:\Users\Martin\Downloads\Live-Free-or-Die-Hard(0000201735).srt
2013-08-26 18:20 - 2013-08-26 19:05 - 00000000 ____D C:\Users\Martin\Downloads\Live.Free.or.Die.Hard.2007.1080p.BluRay.x264.anoXmous.mp4
2013-08-26 18:08 - 2013-08-27 10:24 - 00000000 ____D C:\Users\Martin\Downloads\Mafia.II-SKIDROW
2013-08-26 10:04 - 2013-08-26 10:05 - 00000000 ____D C:\Users\Martin\Downloads\HL2
2013-08-25 18:21 - 2013-08-25 18:21 - 00000000 ____D C:\Users\Martin\AppData\Local\2K Games
2013-08-25 18:16 - 2013-08-25 18:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-08-25 18:15 - 2013-08-25 18:15 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2013-08-25 18:14 - 2013-08-25 18:14 - 00000000 ____D C:\Program Files\Episode Pack
2013-08-25 13:40 - 2013-08-25 17:19 - 00000000 ____D C:\Users\Martin\Downloads\HL-episode-pack
2013-08-22 19:14 - 2013-08-22 19:14 - 00000000 ____D C:\Users\Martin\AppData\Local\Apple Computer
2013-08-21 21:26 - 2013-08-22 00:03 - 731986570 _____ C:\Users\Martin\Downloads\rvacuv-denik-1995-dvdrip-xvid-cz.avi

==================== One Month Modified Files and Folders =======

2013-09-14 19:54 - 2013-09-14 19:54 - 00000000 ____D C:\Users\Martin\AppData\Local\qb3370BD.F7
2013-09-14 19:53 - 2013-09-14 19:53 - 00365056 _____ (forum.viry.cz) C:\Users\Martin\Downloads\FRSTLauncher (1).exe
2013-09-14 19:48 - 2012-06-15 06:07 - 00000950 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-101640133-2423842366-3071143118-1000UA.job
2013-09-14 19:30 - 2013-05-13 16:00 - 00000924 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-14 19:06 - 2009-07-14 06:34 - 00026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-14 19:06 - 2009-07-14 06:34 - 00026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-14 18:58 - 2013-09-14 18:58 - 00000576 _____ C:\Windows\PFRO.log
2013-09-14 18:58 - 2013-09-14 18:58 - 00000056 _____ C:\Windows\setupact.log
2013-09-14 18:58 - 2013-09-14 18:58 - 00000000 _____ C:\Windows\setuperr.log
2013-09-14 18:58 - 2013-05-13 16:00 - 00000920 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-14 18:58 - 2013-02-12 02:30 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-14 18:58 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-14 18:56 - 2013-09-14 18:54 - 00000000 ____D C:\AdwCleaner
2013-09-14 18:56 - 2012-06-14 21:43 - 01549133 _____ C:\Windows\WindowsUpdate.log
2013-09-14 18:55 - 2012-09-12 07:41 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-14 17:59 - 2013-09-14 17:59 - 00013477 _____ C:\Users\Martin\Desktop\JRT.txt
2013-09-14 17:56 - 2013-09-14 17:56 - 01037278 _____ C:\Users\Martin\Downloads\adwcleaner.exe
2013-09-14 17:56 - 2013-09-14 17:56 - 00000000 ____D C:\Windows\ERUNT
2013-09-14 17:56 - 2013-09-14 17:55 - 01029509 _____ (Thisisu) C:\Users\Martin\Downloads\JRT.exe
2013-09-14 15:47 - 2013-09-14 19:54 - 00046330 _____ C:\Users\Martin\Desktop\logmodification.bat
2013-09-14 14:36 - 2013-09-14 14:36 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-09-14 14:36 - 2013-09-14 14:36 - 00000000 ____D C:\Program Files\CCleaner
2013-09-14 14:35 - 2013-09-14 14:35 - 04454952 _____ (Piriform Ltd) C:\Users\Martin\Downloads\ccsetup405.exe
2013-09-14 10:45 - 2013-09-14 19:54 - 00001600 _____ C:\Users\Martin\Desktop\SecurityCenter2.vbs
2013-09-14 09:11 - 2013-09-14 09:11 - 00052659 _____ C:\Users\Martin\Documents\FRST.txt
2013-09-14 09:06 - 2013-09-14 09:06 - 00000000 ____D C:\FRST
2013-09-14 08:59 - 2013-09-14 08:59 - 00364544 _____ (forum.viry.cz) C:\Users\Martin\Downloads\FRSTLauncher.exe
2013-09-14 02:00 - 2012-08-14 11:19 - 00000000 ____D C:\Users\Martin\AppData\Local\Adobe
2013-09-14 00:27 - 2013-07-03 21:27 - 00000000 ____D C:\Users\Martin\AppData\Local\Firestorm
2013-09-13 22:48 - 2012-06-15 06:07 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-101640133-2423842366-3071143118-1000Core.job
2013-09-13 21:11 - 2013-09-14 19:54 - 01083285 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2013-09-12 19:20 - 2013-05-18 12:39 - 00000916 __RSH C:\Users\Martin\ntuser.pol
2013-09-12 19:20 - 2012-06-14 21:45 - 00000000 ____D C:\Users\Martin
2013-09-12 18:17 - 2013-05-28 20:18 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Wargaming.net
2013-09-12 18:00 - 2013-06-19 09:26 - 00000000 ____D C:\Users\Martin\Downloads\WoT
2013-09-12 12:08 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2013-09-11 18:21 - 2013-09-11 18:21 - 00000802 _____ C:\Users\Public\Desktop\World of Warplanes.lnk
2013-09-11 18:21 - 2013-03-16 09:59 - 00000000 ___HD C:\Windows\msdownld.tmp
2013-09-11 18:21 - 2013-03-16 09:59 - 00000000 ____D C:\Windows\system32\directx
2013-09-11 18:20 - 2013-09-11 18:20 - 08775080 _____ (Wargaming.net ) C:\Users\Martin\Downloads\WoWP_internet_install_eu.exe
2013-09-11 18:20 - 2013-05-27 22:57 - 00000000 ____D C:\Games
2013-09-11 17:42 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-09-11 16:19 - 2013-05-15 16:44 - 03833328 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-11 16:12 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\sk-SK
2013-09-11 14:42 - 2012-09-12 07:49 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-09-11 14:32 - 2013-07-11 11:09 - 00000000 ____D C:\Windows\system32\MRT
2013-09-11 14:29 - 2012-06-15 07:36 - 76725432 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-11 12:43 - 2013-09-11 12:29 - 962422342 _____ C:\Users\Martin\Downloads\wot_88.3119_87.2903_client.patch
2013-09-10 23:51 - 2012-06-15 07:32 - 00000000 ____D C:\ProgramData\firebird
2013-09-10 18:57 - 2013-02-12 02:30 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-10 18:57 - 2013-02-12 02:30 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-02 15:30 - 2013-09-02 15:28 - 00000000 ____D C:\Users\Martin\Documents\Bandicam
2013-09-02 15:28 - 2013-09-02 15:28 - 00000000 ____D C:\Users\Martin\AppData\Roaming\BANDISOFT
2013-08-31 10:19 - 2013-08-30 13:31 - 00001438 _____ C:\Windows\wininit.ini
2013-08-30 17:35 - 2013-08-30 17:00 - 00000000 ____D C:\Users\Martin\AppData\Local\JDownloader v2.0
2013-08-30 17:02 - 2013-08-30 17:02 - 00002070 _____ C:\Users\Martin\Desktop\JDownloader 2.lnk
2013-08-30 17:02 - 2013-08-30 17:02 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2013-08-30 11:00 - 2013-03-24 16:43 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-08-30 08:55 - 2013-03-24 16:43 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2013-08-30 08:54 - 2013-08-30 08:54 - 00002119 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-08-30 08:49 - 2010-11-20 23:01 - 00778834 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-28 23:50 - 2012-06-26 21:21 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Mozilla
2013-08-28 20:43 - 2013-08-28 13:10 - 00000000 ____D C:\Users\Martin\Downloads\Mafia 2 - Kompletní DLC pack
2013-08-27 10:24 - 2013-08-26 18:08 - 00000000 ____D C:\Users\Martin\Downloads\Mafia.II-SKIDROW
2013-08-27 06:42 - 2013-08-27 06:34 - 00000000 ____D C:\Program Files\2K Games
2013-08-27 06:38 - 2013-08-27 06:38 - 00002047 _____ C:\Users\Public\Desktop\Mafia II.lnk
2013-08-26 19:05 - 2013-08-26 18:20 - 00000000 ____D C:\Users\Martin\Downloads\Live.Free.or.Die.Hard.2007.1080p.BluRay.x264.anoXmous.mp4
2013-08-26 18:21 - 2013-08-26 18:21 - 00090065 _____ C:\Users\Martin\Downloads\Live-Free-or-Die-Hard(0000201735).srt
2013-08-26 10:05 - 2013-08-26 10:04 - 00000000 ____D C:\Users\Martin\Downloads\HL2
2013-08-25 18:21 - 2013-08-25 18:21 - 00000000 ____D C:\Users\Martin\AppData\Local\2K Games
2013-08-25 18:16 - 2013-08-25 18:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-08-25 18:15 - 2013-08-25 18:15 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2013-08-25 18:14 - 2013-08-25 18:14 - 00000000 ____D C:\Program Files\Episode Pack
2013-08-25 17:19 - 2013-08-25 13:40 - 00000000 ____D C:\Users\Martin\Downloads\HL-episode-pack
2013-08-25 00:05 - 2012-11-14 17:03 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-08-23 20:28 - 2012-06-15 07:47 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Skype
2013-08-22 19:14 - 2013-08-22 19:14 - 00000000 ____D C:\Users\Martin\AppData\Local\Apple Computer
2013-08-22 13:42 - 2013-08-13 10:15 - 00000000 ____D C:\Users\Martin\Downloads\Stalingrad.1993.Unrated.Remastered.1080p.BluRay.x264.anoXmous.mp4
2013-08-22 06:26 - 2012-06-15 06:07 - 00000000 ____D C:\Users\Martin\AppData\Local\Deployment
2013-08-22 00:03 - 2013-08-21 21:26 - 731986570 _____ C:\Users\Martin\Downloads\rvacuv-denik-1995-dvdrip-xvid-cz.avi
2013-08-16 18:31 - 2013-02-08 23:14 - 00000000 ___RD C:\Program Files\Skype

Some content of TEMP:
====================
C:\Users\Martin\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-11 15:54

==================== End Of Log ============================
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu logu

#8 Příspěvek od vyosek »

:arrow: Odinstalujte Spybot - Search & Destroy - program ma uz nejlepsi leta davno za sebou a posledni cca 3 roky neni schopen celit aktualnim hrozbam

:arrow: Odinstalujte Guard-ICQ a PANDORA.TV

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [Dolby Home Theater v4] - C:\Program Files\Dolby Home Theater v4\pcee4.exe [508256 2012-04-23] (Dolby Laboratories Inc.)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [3830224 2013-05-16] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKCU\...\Run: [KiesPDLR] - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [21432 2012-08-31] ()
HKCU\...\Run: [Spybot-S&D Cleaning] - C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
MountPoints2: {3c7fba55-2e46-11e2-bcd0-50e5495b5f3e} - F:\setup.exe
MountPoints2: {4d3a66c0-bbd6-11e2-81c5-50e5495b5f3e} - F:\Setup.exe
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: localhost:21320
URLSearchHook: uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll No File
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {8A244612-A1F7-11E0-95C0-E71F4824019B} URL = http://badoo.com/startpage/?source=bsb&q={searchTerms}
Toolbar: HKLM - uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll No File
Toolbar: HKCU -uTorrentControl2 Toolbar - {687578B9-7132-4A7A-80E4-30EE31099E03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll No File

FF Homepage: hxxp://tuvaro.com/ws/?source=4c3f95e5&t ... e5495b5f3e
FF SelectedSearchEngine: Tuvaro

CHR HomePage: hxxp://home.sweetim.com/
CHR RestoreOnStartup: "chrome://newtab/#"

R2 Guard.Mail.ru; C:\Program Files\Guard-ICQ\GuardICQ.exe [1564368 2012-12-15] ()
R2 PanService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [625816 2012-06-22] (Pandora.TV)

2013-09-14 19:54 - 2013-09-14 15:47 - 00046330 _____ C:\Users\Martin\Desktop\logmodification.bat
2013-09-14 19:54 - 2013-09-14 10:45 - 00001600 _____ C:\Users\Martin\Desktop\SecurityCenter2.vbs
2013-09-14 19:54 - 2013-09-13 21:11 - 01083285 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2013-09-14 19:53 - 2013-09-14 19:53 - 00365056 _____ (forum.viry.cz) C:\Users\Martin\Downloads\FRSTLauncher (1).exe
2013-09-14 17:59 - 2013-09-14 17:59 - 00013477 _____ C:\Users\Martin\Desktop\JRT.txt
2013-09-14 17:56 - 2013-09-14 17:56 - 01037278 _____ C:\Users\Martin\Downloads\adwcleaner.exe
2013-09-14 17:55 - 2013-09-14 17:56 - 01029509 _____ (Thisisu) C:\Users\Martin\Downloads\JRT.exe
2013-09-14 08:59 - 2013-09-14 08:59 - 00364544 _____ (forum.viry.cz) C:\Users\Martin\Downloads\FRSTLauncher.exe
C:\Program Files\Guard-ICQ
C:\Program Files\PANDORA.TV
C:\Program Files\uTorrentControl2

Hosts:
CMD: shutdown /r /f /t 2
End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Patrik Martynov
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 05 dub 2008 06:53

Re: Prosím o kontrolu logu

#9 Příspěvek od Patrik Martynov »

fixlog

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 13-09-2013 04
Ran by Martin at 2013-09-14 20:28:01 Run:2
Running from C:\FRST\Quarantine
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [Dolby Home Theater v4] - C:\Program Files\Dolby Home Theater v4\pcee4.exe [508256 2012-04-23] (Dolby Laboratories Inc.)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [3830224 2013-05-16] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKCU\...\Run: [KiesPDLR] - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [21432 2012-08-31] ()
HKCU\...\Run: [Spybot-S&D Cleaning] - C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
MountPoints2: {3c7fba55-2e46-11e2-bcd0-50e5495b5f3e} - F:\setup.exe
MountPoints2: {4d3a66c0-bbd6-11e2-81c5-50e5495b5f3e} - F:\Setup.exe
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: localhost:21320
URLSearchHook: uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll No File
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {8A244612-A1F7-11E0-95C0-E71F4824019B} URL = http://badoo.com/startpage/?source=bsb&q={searchTerms}
Toolbar: HKLM - uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll No File
Toolbar: HKCU -uTorrentControl2 Toolbar - {687578B9-7132-4A7A-80E4-30EE31099E03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll No File

FF Homepage: hxxp://tuvaro.com/ws/?source=4c3f95e5&t ... e5495b5f3e
FF SelectedSearchEngine: Tuvaro

CHR HomePage: hxxp://home.sweetim.com/
CHR RestoreOnStartup: "chrome://newtab/#"

R2 Guard.Mail.ru; C:\Program Files\Guard-ICQ\GuardICQ.exe [1564368 2012-12-15] ()
R2 PanService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [625816 2012-06-22] (Pandora.TV)

2013-09-14 19:54 - 2013-09-14 15:47 - 00046330 _____ C:\Users\Martin\Desktop\logmodification.bat
2013-09-14 19:54 - 2013-09-14 10:45 - 00001600 _____ C:\Users\Martin\Desktop\SecurityCenter2.vbs
2013-09-14 19:54 - 2013-09-13 21:11 - 01083285 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2013-09-14 19:53 - 2013-09-14 19:53 - 00365056 _____ (forum.viry.cz) C:\Users\Martin\Downloads\FRSTLauncher (1).exe
2013-09-14 17:59 - 2013-09-14 17:59 - 00013477 _____ C:\Users\Martin\Desktop\JRT.txt
2013-09-14 17:56 - 2013-09-14 17:56 - 01037278 _____ C:\Users\Martin\Downloads\adwcleaner.exe
2013-09-14 17:55 - 2013-09-14 17:56 - 01029509 _____ (Thisisu) C:\Users\Martin\Downloads\JRT.exe
2013-09-14 08:59 - 2013-09-14 08:59 - 00364544 _____ (forum.viry.cz) C:\Users\Martin\Downloads\FRSTLauncher.exe
C:\Program Files\Guard-ICQ
C:\Program Files\PANDORA.TV
C:\Program Files\uTorrentControl2

Hosts:
CMD: shutdown /r /f /t 2
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Dolby Home Theater v4 => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\BCSSync => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SDTray => Value not found.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SDWinLogon => Key not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\KiesPDLR => Value not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Spybot-S&D Cleaning => Value not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3c7fba55-2e46-11e2-bcd0-50e5495b5f3e} => Key not found.
HKCR\CLSID\{3c7fba55-2e46-11e2-bcd0-50e5495b5f3e} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4d3a66c0-bbd6-11e2-81c5-50e5495b5f3e} => Key not found.
HKCR\CLSID\{4d3a66c0-bbd6-11e2-81c5-50e5495b5f3e} => Key not found.
C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => Value not found.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{687578b9-7132-4a7a-80e4-30ee31099e03} => Value not found.
HKCR\CLSID\{687578b9-7132-4a7a-80e4-30ee31099e03} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8A244612-A1F7-11E0-95C0-E71F4824019B} => Key not found.
HKCR\Wow6432Node\CLSID\{8A244612-A1F7-11E0-95C0-E71F4824019B} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{687578b9-7132-4a7a-80e4-30ee31099e03} => Value not found.
HKCR\CLSID\{687578b9-7132-4a7a-80e4-30ee31099e03} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{687578B9-7132-4A7A-80E4-30EE31099E03} => Value not found.
HKCR\CLSID\{687578B9-7132-4A7A-80E4-30EE31099E03} => Key not found.
Firefox homepage deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
CHR HomePage: hxxp://home.sweetim.com/ ==> The Chrome "Settings" can be used to fix the entry.
CHR RestoreOnStartup: "chrome://newtab/#" ==> The Chrome "Settings" can be used to fix the entry.
Guard.Mail.ru => Service not found.
PanService => Service not found.
C:\Users\Martin\Desktop\logmodification.bat => Moved successfully.
C:\Users\Martin\Desktop\SecurityCenter2.vbs => Moved successfully.
Could not move "C:\Users\Martin\Desktop\FRST.exe" => Scheduled to move on reboot.
"C:\Users\Martin\Downloads\FRSTLauncher (1).exe" => File/Directory not found.
"C:\Users\Martin\Desktop\JRT.txt" => File/Directory not found.
"C:\Users\Martin\Downloads\adwcleaner.exe" => File/Directory not found.
"C:\Users\Martin\Downloads\JRT.exe" => File/Directory not found.
C:\Users\Martin\Downloads\FRSTLauncher.exe => Moved successfully.
"C:\Program Files\Guard-ICQ" => File/Directory not found.
"C:\Program Files\PANDORA.TV" => File/Directory not found.
"C:\Program Files\uTorrentControl2" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========


=========== Result of Scheduled Files to move ===========

"C:\Users\Martin\Desktop\FRST.exe" => File could not move.

==== End of Fixlog ====
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu logu

#10 Příspěvek od vyosek »

Fajn, jak se chova PC :???:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Patrik Martynov
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 05 dub 2008 06:53

Re: Prosím o kontrolu logu

#11 Příspěvek od Patrik Martynov »

Vynikajúco, aj nabehol prekvapivo rýchlo, už my ani nehlási, že mám v PC škodlivý software, to bol vlastne dôvod, prečo som sem napísal. Mockrát dakujem je vidieť že ste odborníci na slovo vzatý, ja by som netušil čo robiť. Ešte raz moc moc dakujem
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu logu

#12 Příspěvek od vyosek »

Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“