Logfile of random's system information tool 1.09 (written by random/random)
Run by Janka at 2013-11-24 15:20:14
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 181 GB (62%) free of 293 GB
Total RAM: 2814 MB (48% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:20:44, on 24. 11. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16736)
Boot mode: Normal
Running processes:
C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
C:\Windows\PLFSetI.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Janka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_m ... 1377962318
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_m ... 1377962318
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_m ... 1377962318
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapbho.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: BetterSurf - {6E3C6B04-08FE-43BC-8E50-F90285024DEA} - C:\Program Files (x86)\BetterSurf\ie\BetterSurf.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.24.6\bh\delta.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.24.6\deltaTlbr.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Handy Updater] "C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Acer VCM.lnk = ?
O4 - Global Startup: Aktualizovat ESET licenci.lnk = C:\Program Files (x86)\ESET\MiNODLogin\MiNODLogin.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} (Java Plug-in 1.6.0_18) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{12AB0BDB-5BE8-4AFA-B06A-3FA9CBD15E3B}: NameServer = 213.151.200.31 85.237.225.250
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\Skype4COM.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\progra~3\bitguard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\bitguard.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: BitGuard - Unknown owner - C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\DRIVERS\o2flash.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update LemurLeap - LemurLeap - C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe
O23 - Service: Util LemurLeap - LemurLeap - C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13179 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Windows\system32\schtasks.exe" /create /tn "BitGuard" /ru "SYSTEM" /sc minute /mo 1 /tr "C:\Windows\system32\sc.exe start BitGuard" /st 00:00:00
\??\C:\Windows\system32\conhost.exe "1972100124200872713-1196898792409572696-1921633569512374345-318218212-997506546
"C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe" /PROTECT
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Apoint2K\Apoint.exe"
"C:\Windows\PLFSetI.exe"
"C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
"C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe"
"C:\Program Files\Acer\Empowering Technology\Service\ETService.exe"
"C:\Program Files\Apoint2K\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files (x86)\Acer\Registration\GregHSRW.exe"
C:\Windows\system32\svchost.exe -k HsfXAudioService
"C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe"
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "277912220-1893813113-2141761247-38504680974382845951934521986780210173442972
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
C:\Windows\system32\DRIVERS\o2flash.exe
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files\Apoint2K\HidFind.exe"
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe"
"C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
WLIDSvcM.exe 3876
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe"
"C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Internet Explorer\iexplore.exe" http://www.qvo6.com/?utm_source=b&utm_m ... 1377962318
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3588 CREDAT:209921 /prefetch:2
"C:\Windows\System32\MsSpellCheckingFacility.exe" -Embedding
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3588 CREDAT:3879985 /prefetch:2
"C:\Users\Janka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\43DTPR8A\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\Windows\tasks\AmiUpdXp.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-02-23 43520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878}]
LemurLeap - C:\Program Files (x86)\LemurLeap\LemurLeapbho.dll [2013-10-03 249632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~2\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}]
BetterSurf - C:\Program Files (x86)\BetterSurf\ie\BetterSurf.dll [2013-11-12 86016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2013-01-15 330160]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v konte Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]
delta Helper Object - C:\Program Files (x86)\Delta\delta\1.8.24.6\bh\delta.dll [2013-08-15 314264]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2013-01-15 59824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll [2008-12-09 958200]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]
{82E1477C-B154-48D3-9891-33D83C26BCD3} - Delta Toolbar - C:\Program Files (x86)\Delta\delta\1.8.24.6\deltaTlbr.dll [2013-08-15 300952]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-08-06 8060960]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2009-06-23 306688]
"PLFSetI"=C:\Windows\PLFSetI.exe [2008-07-30 200704]
"ePower_DMC"=C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [2009-07-21 492032]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2010-03-24 2839840]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"=C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Handy Updater"=C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe [2013-07-05 370176]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-07-02 98304]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2009-08-28 1130504]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2010-01-13 37888]
"NWEReboot"= []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer VCM.lnk - C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
Aktualizovat ESET licenci.lnk - C:\Program Files (x86)\ESET\MiNODLogin\MiNODLogin.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~3\bitguard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll c:\progra~3\bitguard\2.7.1769.27\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoResolveTrack"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-11-17 08:52:12 ----SHD---- C:\found.000
2013-11-16 18:59:11 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-11-16 18:59:10 ----A---- C:\Windows\system32\ieui.dll
2013-11-16 18:59:08 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-11-16 18:59:08 ----A---- C:\Windows\system32\iesetup.dll
2013-11-16 18:59:07 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-11-16 18:59:07 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-11-16 18:59:07 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-11-16 18:59:07 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-16 18:59:07 ----A---- C:\Windows\system32\iesysprep.dll
2013-11-16 18:59:07 ----A---- C:\Windows\system32\iernonce.dll
2013-11-16 18:59:07 ----A---- C:\Windows\system32\ie4uinit.exe
2013-11-16 18:59:06 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-11-16 18:59:05 ----A---- C:\Windows\system32\iertutil.dll
2013-11-16 18:59:03 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-11-16 18:59:03 ----A---- C:\Windows\system32\msfeeds.dll
2013-11-16 18:59:01 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-11-16 18:59:01 ----A---- C:\Windows\system32\jscript.dll
2013-11-16 18:58:59 ----A---- C:\Windows\system32\jscript9.dll
2013-11-16 18:58:58 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-11-16 18:58:57 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-11-16 18:58:56 ----A---- C:\Windows\system32\urlmon.dll
2013-11-16 18:58:52 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-11-16 18:58:52 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-11-16 18:58:52 ----A---- C:\Windows\system32\jsproxy.dll
2013-11-16 18:58:50 ----A---- C:\Windows\system32\wininet.dll
2013-11-16 18:58:49 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-11-16 18:58:47 ----A---- C:\Windows\system32\ieframe.dll
2013-11-16 18:58:46 ----A---- C:\Windows\system32\mshtml.dll
2013-11-16 18:58:43 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-11-16 18:06:06 ----D---- C:\rsit
2013-11-16 18:06:06 ----D---- C:\Program Files\trend micro
2013-11-16 17:58:11 ----D---- C:\Program Files (x86)\BetterSurf
2013-11-16 17:31:29 ----A---- C:\Windows\system32\crypt32.dll
2013-11-16 17:31:28 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-11-16 17:31:17 ----A---- C:\Windows\system32\drivers\afd.sys
2013-11-16 17:31:11 ----A---- C:\Windows\system32\authui.dll
2013-11-16 17:31:10 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-11-16 17:31:10 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-16 17:31:10 ----A---- C:\Windows\system32\credui.dll
2013-11-16 17:31:09 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-11-16 17:31:09 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-11-16 17:30:54 ----A---- C:\Windows\system32\schannel.dll
2013-11-16 17:30:53 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-11-16 17:30:53 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-11-16 17:30:53 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-11-16 17:30:53 ----A---- C:\Windows\system32\drivers\cng.sys
2013-11-16 17:30:52 ----A---- C:\Windows\system32\sspicli.dll
2013-11-16 17:30:52 ----A---- C:\Windows\system32\lsass.exe
2013-11-16 17:30:52 ----A---- C:\Windows\system32\lsasrv.dll
2013-11-16 17:30:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-11-16 17:30:51 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-11-16 17:30:51 ----A---- C:\Windows\system32\secur32.dll
2013-11-16 17:30:51 ----A---- C:\Windows\system32\ncrypt.dll
2013-11-16 17:30:50 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-11-16 17:30:50 ----A---- C:\Windows\system32\sspisrv.dll
2013-11-16 17:30:44 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-11-16 17:30:44 ----A---- C:\Windows\system32\gdi32.dll
2013-11-16 17:30:42 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-11-16 17:30:42 ----A---- C:\Windows\system32\nshwfp.dll
2013-11-16 17:30:42 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-11-16 17:30:42 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-11-16 17:30:41 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbccgp.sys
======List of files/folders modified in the last 1 month======
2013-11-24 15:20:19 ----D---- C:\Windows\Temp
2013-11-24 13:54:24 ----D---- C:\Windows\system32\config
2013-11-24 13:51:15 ----D---- C:\Users\Janka\AppData\Roaming\Winamp
2013-11-24 13:37:41 ----D---- C:\Windows\system32\Tasks
2013-11-24 13:37:27 ----D---- C:\Windows
2013-11-24 13:37:17 ----D---- C:\ProgramData\BitGuard
2013-11-23 16:37:41 ----D---- C:\Windows\Panther
2013-11-23 16:37:41 ----D---- C:\Windows\debug
2013-11-20 17:15:08 ----SHD---- C:\System Volume Information
2013-11-17 09:38:15 ----D---- C:\Windows\rescache
2013-11-17 08:58:11 ----D---- C:\Windows\winsxs
2013-11-17 08:54:16 ----D---- C:\Program Files (x86)\Internet Explorer
2013-11-17 08:54:15 ----D---- C:\Windows\SysWOW64
2013-11-17 08:54:14 ----D---- C:\Windows\System32
2013-11-17 08:54:13 ----D---- C:\Program Files\Internet Explorer
2013-11-17 08:54:12 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-11-17 08:54:12 ----D---- C:\Windows\system32\sk-SK
2013-11-17 08:54:12 ----D---- C:\Windows\system32\drivers
2013-11-17 08:54:09 ----D---- C:\Windows\system32\en-US
2013-11-16 18:59:42 ----D---- C:\Windows\system32\catroot2
2013-11-16 18:59:38 ----D---- C:\Windows\system32\catroot
2013-11-16 18:58:41 ----SHD---- C:\Windows\Installer
2013-11-16 18:58:41 ----SHD---- C:\Config.Msi
2013-11-16 18:55:29 ----D---- C:\Windows\system32\MRT
2013-11-16 18:50:54 ----A---- C:\Windows\system32\MRT.exe
2013-11-16 18:06:06 ----RD---- C:\Program Files
2013-11-16 17:58:11 ----D---- C:\Program Files (x86)
2013-11-16 17:44:30 ----D---- C:\Windows\inf
2013-11-16 17:44:30 ----D---- C:\ProgramData\Spybot - Search & Destroy
2013-11-16 17:44:29 ----D---- C:\Windows\Minidump
2013-11-16 17:44:29 ----D---- C:\Windows\Logs
2013-11-11 05:50:16 ----N---- C:\Windows\system32\MpSigStub.exe
2013-11-10 10:41:20 ----D---- C:\Program Files (x86)\Registry Mechanic
2013-10-27 10:56:37 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-27 10:46:37 ----D---- C:\Windows\system32\DriverStore
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-02-22 834544]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-03-24 139704]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-03-24 163888]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-03-24 124760]
R2 int15;int15; \??\C:\Windows\SysWOW64\drivers\int15_64.sys [2008-09-30 17952]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2009-06-10 17024]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\XAudio64.sys [2009-06-10 10240]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2009-06-23 250928]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-05 1542656]
R3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-05 114192]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-07-02 6036480]
R3 CAXHWAZL;CAXHWAZL; C:\Windows\system32\DRIVERS\CAXHWAZL.sys [2009-02-13 292864]
R3 DKbFltr;Dritek Keyboard Filter Driver (64-bit); C:\Windows\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\CAX_DPV.sys [2009-02-13 1485824]
R3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-09-10 117248]
R3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-07-24 114560]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-08-06 1974944]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
R3 O2MDRDR;O2MDRDR; C:\Windows\system32\DRIVERS\o2mdx64.sys [2009-05-07 63264]
R3 O2SDRDR;O2SDRDR; C:\Windows\system32\DRIVERS\o2sdx64.sys [2009-05-07 49696]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-04-03 34872]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\CAX_CNXT.sys [2009-02-13 740864]
S2 regi;regi; \??\C:\Windows\system32\drivers\regi.sys []
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2012-03-27 615976]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-03-27 184360]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2012-03-27 211496]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2012-03-27 39976]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2012-03-27 21544]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-22 48488]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-06-20 54272]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-07-02 203264]
R2 BitGuard;BitGuard; C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [2013-11-18 3780064]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-02-01 945440]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2010-03-24 810120]
R2 ETService;Empowering Technology Service; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [2009-08-12 24576]
R2 Greg_Service;GRegService; C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-06-04 1150496]
R2 HsfXAudioService;HsfXAudioService; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 ICQ Service;ICQ Service; C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe [2008-10-19 222456]
R2 IviRegMgr;IviRegMgr; C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
R2 O2FLASH;O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [2007-02-13 65536]
R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2009-09-10 185632]
R2 RS_Service;Raw Socket Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [2009-07-10 253952]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-25 153952]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 Update LemurLeap;Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [2013-10-03 65312]
R2 Util LemurLeap;Util LemurLeap; C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe [2013-10-13 65312]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
S3 DfSdkS;Defragmentation-Service; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [2009-08-24 544768]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2010-03-24 42336]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-22 1493352]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-05-21 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
pomaly pc, prosim o pomoc
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: pomaly pc, prosim o pomoc
Zdravim, pekne odpoledne preji a vitam vas u nas na foru 
Odinstalujte Spybot - Search & Destroy - program ma uz nejlepsi leta davno za sebou a posledni cca 3 roky neni schopen celit aktualnim hrozbam
Pred pokracovanim, vas musim pozadat o odstraneni NELEGALNIHO ESETu. Tento muj "pozadavek" vychazi z platnych pravidel fora http://forum.viry.cz/viewtopic.php?f=12&t=115512, ktere jste vy i ja povinnen dodrzovat
Takze pokud chcete pomoci, tak jej odinstalujte, nainstalujte free reseni (napr. Avast Free ci Bitdefender Free), napiste a budeme pokracovat
Odinstalujte Spybot - Search & Destroy - program ma uz nejlepsi leta davno za sebou a posledni cca 3 roky neni schopen celit aktualnim hrozbam Pred pokracovanim, vas musim pozadat o odstraneni NELEGALNIHO ESETu. Tento muj "pozadavek" vychazi z platnych pravidel fora http://forum.viry.cz/viewtopic.php?f=12&t=115512, ktere jste vy i ja povinnen dodrzovat
Pomáhat NELZE:
2) Pokud stroj uživatele prokazatelně obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.), je nutné navést uživatele k nápravě, např. skrze neplacený software,
a začít řešit, až v době kdy je PC "v pořádku". V případě že uživatel nechce na pravidla přistoupit,
je nutné jej vyzvat ať fórum opustí, a vrátí se až je splní.
Takze pokud chcete pomoci, tak jej odinstalujte, nainstalujte free reseni (napr. Avast Free ci Bitdefender Free), napiste a budeme pokracovat"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: pomaly pc, prosim o pomoc
Dobry den, takze programy odinstalovane, avast nainstalovany, mozeme pokracovat
posielam novy log:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Janka at 2013-11-25 17:31:59
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 181 GB (62%) free of 293 GB
Total RAM: 2814 MB (53% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:32:34, on 25. 11. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16736)
Boot mode: Normal
Running processes:
C:\Windows\PLFSetI.exe
C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Janka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_m ... 1377962318
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_m ... 1377962318
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_m ... 1377962318
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapbho.dll
O2 - BHO: BetterSurf - {6E3C6B04-08FE-43BC-8E50-F90285024DEA} - C:\Program Files (x86)\BetterSurf\ie\BetterSurf.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Handy Updater] "C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Acer VCM.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} (Java Plug-in 1.6.0_18) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{12AB0BDB-5BE8-4AFA-B06A-3FA9CBD15E3B}: NameServer = 213.151.200.31 85.237.225.250
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\Skype4COM.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\progra~3\bitguard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\bitguard.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\DRIVERS\o2flash.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update LemurLeap - LemurLeap - C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe
O23 - Service: Util LemurLeap - LemurLeap - C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12370 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Windows\system32\schtasks.exe" /create /tn "BitGuard" /ru "SYSTEM" /sc minute /mo 1 /tr "C:\Windows\system32\sc.exe start BitGuard" /st 00:00:00
\??\C:\Windows\system32\conhost.exe "73389204135207756111545334291869363496-1601336403907307700-2664151251304130958
"C:\Program Files\Acer\Empowering Technology\Service\ETService.exe"
"C:\Program Files (x86)\Acer\Registration\GregHSRW.exe"
C:\Windows\system32\svchost.exe -k HsfXAudioService
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Apoint2K\Apoint.exe"
"C:\Windows\PLFSetI.exe"
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
"C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
"C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe"
C:\Windows\system32\DRIVERS\o2flash.exe
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files\Apoint2K\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe"
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "21456208716504513042134388703-1482240005-18330580872051236265638983693155901312
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files\Apoint2K\HidFind.exe"
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe"
"C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3876
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe"
"C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4604.0.941626500\638030060" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --reduce-gpu-sandbox --gpu-vendor-id=0x1002 --gpu-device-id=0x9612 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.632.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_78/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --instant-process --disable-html-notifications --channel="4604.1.742505874\1842639200" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_78/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="4604.5.608072943\319871915" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 544 548 556 65536 552
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_78/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="4604.8.2018216740\1414314978" /prefetch:673131151
"C:\Users\Janka\Downloads\RSITx64 (1).exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\Windows\tasks\AmiUpdXp.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-11-24 1567016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-11-24 256080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-02-23 43520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878}]
LemurLeap - C:\Program Files (x86)\LemurLeap\LemurLeapbho.dll [2013-10-03 249632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}]
BetterSurf - C:\Program Files (x86)\BetterSurf\ie\BetterSurf.dll [2013-11-12 86016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2013-01-15 330160]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-24 606544]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v konte Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-11-24 194640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2013-01-15 59824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-11-24 256080]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-11-24 1567016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-11-24 194640]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-24 606544]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-08-06 8060960]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2009-06-23 306688]
"PLFSetI"=C:\Windows\PLFSetI.exe [2008-07-30 200704]
"ePower_DMC"=C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [2009-07-21 492032]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Handy Updater"=C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe [2013-07-05 370176]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-07-02 98304]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2009-08-28 1130504]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2010-01-13 37888]
"NWEReboot"= []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-24 3568312]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer VCM.lnk - C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~3\bitguard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll c:\progra~3\bitguard\2.7.1769.27\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoResolveTrack"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-11-24 17:53:58 ----D---- C:\Users\Janka\AppData\Roaming\AVAST Software
2013-11-24 17:46:57 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-11-24 17:46:56 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-11-24 17:46:54 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-11-24 17:46:53 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-11-24 17:46:52 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-11-24 17:46:50 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-11-24 17:46:49 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-11-24 17:46:48 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-11-24 17:46:47 ----A---- C:\Windows\system32\aswBoot.exe
2013-11-24 17:46:44 ----A---- C:\Windows\avastSS.scr
2013-11-24 17:37:56 ----D---- C:\Program Files\AVAST Software
2013-11-24 17:36:51 ----D---- C:\ProgramData\AVAST Software
2013-11-17 08:52:12 ----SHD---- C:\found.000
2013-11-16 18:59:11 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-11-16 18:59:10 ----A---- C:\Windows\system32\ieui.dll
2013-11-16 18:59:08 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-11-16 18:59:08 ----A---- C:\Windows\system32\iesetup.dll
2013-11-16 18:59:07 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-11-16 18:59:07 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-11-16 18:59:07 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-11-16 18:59:07 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-16 18:59:07 ----A---- C:\Windows\system32\iesysprep.dll
2013-11-16 18:59:07 ----A---- C:\Windows\system32\iernonce.dll
2013-11-16 18:59:07 ----A---- C:\Windows\system32\ie4uinit.exe
2013-11-16 18:59:06 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-11-16 18:59:05 ----A---- C:\Windows\system32\iertutil.dll
2013-11-16 18:59:03 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-11-16 18:59:03 ----A---- C:\Windows\system32\msfeeds.dll
2013-11-16 18:59:01 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-11-16 18:59:01 ----A---- C:\Windows\system32\jscript.dll
2013-11-16 18:58:59 ----A---- C:\Windows\system32\jscript9.dll
2013-11-16 18:58:58 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-11-16 18:58:57 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-11-16 18:58:56 ----A---- C:\Windows\system32\urlmon.dll
2013-11-16 18:58:52 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-11-16 18:58:52 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-11-16 18:58:52 ----A---- C:\Windows\system32\jsproxy.dll
2013-11-16 18:58:50 ----A---- C:\Windows\system32\wininet.dll
2013-11-16 18:58:49 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-11-16 18:58:47 ----A---- C:\Windows\system32\ieframe.dll
2013-11-16 18:58:46 ----A---- C:\Windows\system32\mshtml.dll
2013-11-16 18:58:43 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-11-16 18:06:06 ----D---- C:\rsit
2013-11-16 18:06:06 ----D---- C:\Program Files\trend micro
2013-11-16 17:58:11 ----D---- C:\Program Files (x86)\BetterSurf
2013-11-16 17:31:29 ----A---- C:\Windows\system32\crypt32.dll
2013-11-16 17:31:28 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-11-16 17:31:17 ----A---- C:\Windows\system32\drivers\afd.sys
2013-11-16 17:31:11 ----A---- C:\Windows\system32\authui.dll
2013-11-16 17:31:10 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-11-16 17:31:10 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-16 17:31:10 ----A---- C:\Windows\system32\credui.dll
2013-11-16 17:31:09 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-11-16 17:31:09 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-11-16 17:30:54 ----A---- C:\Windows\system32\schannel.dll
2013-11-16 17:30:53 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-11-16 17:30:53 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-11-16 17:30:53 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-11-16 17:30:53 ----A---- C:\Windows\system32\drivers\cng.sys
2013-11-16 17:30:52 ----A---- C:\Windows\system32\sspicli.dll
2013-11-16 17:30:52 ----A---- C:\Windows\system32\lsass.exe
2013-11-16 17:30:52 ----A---- C:\Windows\system32\lsasrv.dll
2013-11-16 17:30:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-11-16 17:30:51 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-11-16 17:30:51 ----A---- C:\Windows\system32\secur32.dll
2013-11-16 17:30:51 ----A---- C:\Windows\system32\ncrypt.dll
2013-11-16 17:30:50 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-11-16 17:30:50 ----A---- C:\Windows\system32\sspisrv.dll
2013-11-16 17:30:44 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-11-16 17:30:44 ----A---- C:\Windows\system32\gdi32.dll
2013-11-16 17:30:42 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-11-16 17:30:42 ----A---- C:\Windows\system32\nshwfp.dll
2013-11-16 17:30:42 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-11-16 17:30:42 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-11-16 17:30:41 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbccgp.sys
======List of files/folders modified in the last 1 month======
2013-11-25 17:32:04 ----D---- C:\Windows\Temp
2013-11-25 17:25:15 ----D---- C:\Program Files (x86)\LemurLeap
2013-11-25 17:25:04 ----D---- C:\Program Files (x86)
2013-11-25 17:21:46 ----D---- C:\Windows\system32\config
2013-11-25 17:09:06 ----D---- C:\Windows\system32\Tasks
2013-11-24 17:52:03 ----SHD---- C:\Windows\Installer
2013-11-24 17:52:03 ----SHD---- C:\Config.Msi
2013-11-24 17:51:49 ----D---- C:\ProgramData\Google
2013-11-24 17:51:36 ----D---- C:\Program Files\Google
2013-11-24 17:51:36 ----D---- C:\Program Files (x86)\Google
2013-11-24 17:47:18 ----D---- C:\Windows\Tasks
2013-11-24 17:46:57 ----D---- C:\Windows\system32\drivers
2013-11-24 17:46:47 ----D---- C:\Windows\winsxs
2013-11-24 17:46:47 ----D---- C:\Windows\System32
2013-11-24 17:46:46 ----D---- C:\Windows
2013-11-24 17:37:57 ----SHD---- C:\System Volume Information
2013-11-24 17:37:56 ----RD---- C:\Program Files
2013-11-24 17:36:51 ----HD---- C:\ProgramData
2013-11-24 17:30:22 ----D---- C:\Windows\inf
2013-11-24 17:24:25 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2013-11-24 17:24:24 ----D---- C:\ProgramData\Spybot - Search & Destroy
2013-11-24 13:51:15 ----D---- C:\Users\Janka\AppData\Roaming\Winamp
2013-11-24 13:37:17 ----D---- C:\ProgramData\BitGuard
2013-11-23 16:37:41 ----D---- C:\Windows\Panther
2013-11-23 16:37:41 ----D---- C:\Windows\debug
2013-11-17 09:38:15 ----D---- C:\Windows\rescache
2013-11-17 08:54:16 ----D---- C:\Program Files (x86)\Internet Explorer
2013-11-17 08:54:15 ----D---- C:\Windows\SysWOW64
2013-11-17 08:54:13 ----D---- C:\Program Files\Internet Explorer
2013-11-17 08:54:12 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-11-17 08:54:12 ----D---- C:\Windows\system32\sk-SK
2013-11-17 08:54:09 ----D---- C:\Windows\system32\en-US
2013-11-16 18:59:42 ----D---- C:\Windows\system32\catroot2
2013-11-16 18:59:38 ----D---- C:\Windows\system32\catroot
2013-11-16 18:55:29 ----D---- C:\Windows\system32\MRT
2013-11-16 18:50:54 ----A---- C:\Windows\system32\MRT.exe
2013-11-16 17:44:29 ----D---- C:\Windows\Minidump
2013-11-16 17:44:29 ----D---- C:\Windows\Logs
2013-11-11 05:50:16 ----N---- C:\Windows\system32\MpSigStub.exe
2013-11-10 10:41:20 ----D---- C:\Program Files (x86)\Registry Mechanic
2013-10-27 10:56:37 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-27 10:46:37 ----D---- C:\Windows\system32\DriverStore
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-11-24 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-11-24 205320]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-02-22 834544]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-11-24 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-11-24 1032416]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-11-24 409832]
R1 aswTdi;aswTdi; \??\C:\Windows\system32\drivers\aswTdi.sys [2013-11-24 65264]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; \??\C:\Windows\system32\drivers\aswFsBlk.sys [2013-11-24 38984]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-11-24 84328]
R2 int15;int15; \??\C:\Windows\SysWOW64\drivers\int15_64.sys [2008-09-30 17952]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2009-06-10 17024]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2009-06-23 250928]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-05 1542656]
R3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-05 114192]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-07-02 6036480]
R3 CAXHWAZL;CAXHWAZL; C:\Windows\system32\DRIVERS\CAXHWAZL.sys [2009-02-13 292864]
R3 DKbFltr;Dritek Keyboard Filter Driver (64-bit); C:\Windows\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\CAX_DPV.sys [2009-02-13 1485824]
R3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-09-10 117248]
R3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-07-24 114560]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-08-06 1974944]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
R3 O2MDRDR;O2MDRDR; C:\Windows\system32\DRIVERS\o2mdx64.sys [2009-05-07 63264]
R3 O2SDRDR;O2SDRDR; C:\Windows\system32\DRIVERS\o2sdx64.sys [2009-05-07 49696]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-04-03 34872]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\CAX_CNXT.sys [2009-02-13 740864]
S2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys []
S2 regi;regi; \??\C:\Windows\system32\drivers\regi.sys []
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2012-03-27 615976]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-03-27 184360]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2012-03-27 211496]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2012-03-27 39976]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2012-03-27 21544]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-22 48488]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-06-20 54272]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-07-02 203264]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-24 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-02-01 945440]
R2 ETService;Empowering Technology Service; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [2009-08-12 24576]
R2 Greg_Service;GRegService; C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-06-04 1150496]
R2 HsfXAudioService;HsfXAudioService; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 IviRegMgr;IviRegMgr; C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
R2 O2FLASH;O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [2007-02-13 65536]
R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2009-09-10 185632]
R2 RS_Service;Raw Socket Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [2009-07-10 253952]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-25 153952]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 Update LemurLeap;Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [2013-10-03 65312]
R2 Util LemurLeap;Util LemurLeap; C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe [2013-10-13 65312]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-24 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
S3 DfSdkS;Defragmentation-Service; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [2009-08-24 544768]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-22 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-24 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-24 194032]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-05-21 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
-----------------EOF-----------------
posielam novy log:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Janka at 2013-11-25 17:31:59
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 181 GB (62%) free of 293 GB
Total RAM: 2814 MB (53% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:32:34, on 25. 11. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16736)
Boot mode: Normal
Running processes:
C:\Windows\PLFSetI.exe
C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Janka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_m ... 1377962318
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_m ... 1377962318
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_m ... 1377962318
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapbho.dll
O2 - BHO: BetterSurf - {6E3C6B04-08FE-43BC-8E50-F90285024DEA} - C:\Program Files (x86)\BetterSurf\ie\BetterSurf.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Handy Updater] "C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Acer VCM.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} (Java Plug-in 1.6.0_18) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{12AB0BDB-5BE8-4AFA-B06A-3FA9CBD15E3B}: NameServer = 213.151.200.31 85.237.225.250
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\Skype4COM.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\progra~3\bitguard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\bitguard.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\DRIVERS\o2flash.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update LemurLeap - LemurLeap - C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe
O23 - Service: Util LemurLeap - LemurLeap - C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12370 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Windows\system32\schtasks.exe" /create /tn "BitGuard" /ru "SYSTEM" /sc minute /mo 1 /tr "C:\Windows\system32\sc.exe start BitGuard" /st 00:00:00
\??\C:\Windows\system32\conhost.exe "73389204135207756111545334291869363496-1601336403907307700-2664151251304130958
"C:\Program Files\Acer\Empowering Technology\Service\ETService.exe"
"C:\Program Files (x86)\Acer\Registration\GregHSRW.exe"
C:\Windows\system32\svchost.exe -k HsfXAudioService
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Apoint2K\Apoint.exe"
"C:\Windows\PLFSetI.exe"
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
"C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe"
"C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe"
C:\Windows\system32\DRIVERS\o2flash.exe
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files\Apoint2K\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe"
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "21456208716504513042134388703-1482240005-18330580872051236265638983693155901312
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files\Apoint2K\HidFind.exe"
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe"
"C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3876
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe"
"C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4604.0.941626500\638030060" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --reduce-gpu-sandbox --gpu-vendor-id=0x1002 --gpu-device-id=0x9612 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.632.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_78/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --instant-process --disable-html-notifications --channel="4604.1.742505874\1842639200" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_78/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="4604.5.608072943\319871915" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 544 548 556 65536 552
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-1-Percent/group_78/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="4604.8.2018216740\1414314978" /prefetch:673131151
"C:\Users\Janka\Downloads\RSITx64 (1).exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\Windows\tasks\AmiUpdXp.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-11-24 1567016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-11-24 256080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-02-23 43520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878}]
LemurLeap - C:\Program Files (x86)\LemurLeap\LemurLeapbho.dll [2013-10-03 249632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}]
BetterSurf - C:\Program Files (x86)\BetterSurf\ie\BetterSurf.dll [2013-11-12 86016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2013-01-15 330160]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-24 606544]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v konte Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-11-24 194640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2013-01-15 59824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-11-24 256080]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-11-24 1567016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-11-24 194640]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-11-24 606544]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-08-06 8060960]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2009-06-23 306688]
"PLFSetI"=C:\Windows\PLFSetI.exe [2008-07-30 200704]
"ePower_DMC"=C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [2009-07-21 492032]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Handy Updater"=C:\Program Files (x86)\HandyUpdater\HandyUpdater.exe [2013-07-05 370176]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-07-02 98304]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2009-08-28 1130504]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2010-01-13 37888]
"NWEReboot"= []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-11-24 3568312]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer VCM.lnk - C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~3\bitguard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll c:\progra~3\bitguard\2.7.1769.27\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoResolveTrack"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-11-24 17:53:58 ----D---- C:\Users\Janka\AppData\Roaming\AVAST Software
2013-11-24 17:46:57 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-11-24 17:46:56 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-11-24 17:46:54 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-11-24 17:46:53 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-11-24 17:46:52 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-11-24 17:46:50 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-11-24 17:46:49 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-11-24 17:46:48 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-11-24 17:46:47 ----A---- C:\Windows\system32\aswBoot.exe
2013-11-24 17:46:44 ----A---- C:\Windows\avastSS.scr
2013-11-24 17:37:56 ----D---- C:\Program Files\AVAST Software
2013-11-24 17:36:51 ----D---- C:\ProgramData\AVAST Software
2013-11-17 08:52:12 ----SHD---- C:\found.000
2013-11-16 18:59:11 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-11-16 18:59:10 ----A---- C:\Windows\system32\ieui.dll
2013-11-16 18:59:08 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-11-16 18:59:08 ----A---- C:\Windows\system32\iesetup.dll
2013-11-16 18:59:07 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-11-16 18:59:07 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-11-16 18:59:07 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-11-16 18:59:07 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-16 18:59:07 ----A---- C:\Windows\system32\iesysprep.dll
2013-11-16 18:59:07 ----A---- C:\Windows\system32\iernonce.dll
2013-11-16 18:59:07 ----A---- C:\Windows\system32\ie4uinit.exe
2013-11-16 18:59:06 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-11-16 18:59:05 ----A---- C:\Windows\system32\iertutil.dll
2013-11-16 18:59:03 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-11-16 18:59:03 ----A---- C:\Windows\system32\msfeeds.dll
2013-11-16 18:59:01 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-11-16 18:59:01 ----A---- C:\Windows\system32\jscript.dll
2013-11-16 18:58:59 ----A---- C:\Windows\system32\jscript9.dll
2013-11-16 18:58:58 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-11-16 18:58:57 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-11-16 18:58:56 ----A---- C:\Windows\system32\urlmon.dll
2013-11-16 18:58:52 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-11-16 18:58:52 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-11-16 18:58:52 ----A---- C:\Windows\system32\jsproxy.dll
2013-11-16 18:58:50 ----A---- C:\Windows\system32\wininet.dll
2013-11-16 18:58:49 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-11-16 18:58:47 ----A---- C:\Windows\system32\ieframe.dll
2013-11-16 18:58:46 ----A---- C:\Windows\system32\mshtml.dll
2013-11-16 18:58:43 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-11-16 18:06:06 ----D---- C:\rsit
2013-11-16 18:06:06 ----D---- C:\Program Files\trend micro
2013-11-16 17:58:11 ----D---- C:\Program Files (x86)\BetterSurf
2013-11-16 17:31:29 ----A---- C:\Windows\system32\crypt32.dll
2013-11-16 17:31:28 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-11-16 17:31:17 ----A---- C:\Windows\system32\drivers\afd.sys
2013-11-16 17:31:11 ----A---- C:\Windows\system32\authui.dll
2013-11-16 17:31:10 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-11-16 17:31:10 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-16 17:31:10 ----A---- C:\Windows\system32\credui.dll
2013-11-16 17:31:09 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-11-16 17:31:09 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-11-16 17:30:54 ----A---- C:\Windows\system32\schannel.dll
2013-11-16 17:30:53 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-11-16 17:30:53 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-11-16 17:30:53 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-11-16 17:30:53 ----A---- C:\Windows\system32\drivers\cng.sys
2013-11-16 17:30:52 ----A---- C:\Windows\system32\sspicli.dll
2013-11-16 17:30:52 ----A---- C:\Windows\system32\lsass.exe
2013-11-16 17:30:52 ----A---- C:\Windows\system32\lsasrv.dll
2013-11-16 17:30:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-11-16 17:30:51 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-11-16 17:30:51 ----A---- C:\Windows\system32\secur32.dll
2013-11-16 17:30:51 ----A---- C:\Windows\system32\ncrypt.dll
2013-11-16 17:30:50 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-11-16 17:30:50 ----A---- C:\Windows\system32\sspisrv.dll
2013-11-16 17:30:44 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-11-16 17:30:44 ----A---- C:\Windows\system32\gdi32.dll
2013-11-16 17:30:42 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-11-16 17:30:42 ----A---- C:\Windows\system32\nshwfp.dll
2013-11-16 17:30:42 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-11-16 17:30:42 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-11-16 17:30:41 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-26 19:12:00 ----A---- C:\Windows\system32\drivers\usbccgp.sys
======List of files/folders modified in the last 1 month======
2013-11-25 17:32:04 ----D---- C:\Windows\Temp
2013-11-25 17:25:15 ----D---- C:\Program Files (x86)\LemurLeap
2013-11-25 17:25:04 ----D---- C:\Program Files (x86)
2013-11-25 17:21:46 ----D---- C:\Windows\system32\config
2013-11-25 17:09:06 ----D---- C:\Windows\system32\Tasks
2013-11-24 17:52:03 ----SHD---- C:\Windows\Installer
2013-11-24 17:52:03 ----SHD---- C:\Config.Msi
2013-11-24 17:51:49 ----D---- C:\ProgramData\Google
2013-11-24 17:51:36 ----D---- C:\Program Files\Google
2013-11-24 17:51:36 ----D---- C:\Program Files (x86)\Google
2013-11-24 17:47:18 ----D---- C:\Windows\Tasks
2013-11-24 17:46:57 ----D---- C:\Windows\system32\drivers
2013-11-24 17:46:47 ----D---- C:\Windows\winsxs
2013-11-24 17:46:47 ----D---- C:\Windows\System32
2013-11-24 17:46:46 ----D---- C:\Windows
2013-11-24 17:37:57 ----SHD---- C:\System Volume Information
2013-11-24 17:37:56 ----RD---- C:\Program Files
2013-11-24 17:36:51 ----HD---- C:\ProgramData
2013-11-24 17:30:22 ----D---- C:\Windows\inf
2013-11-24 17:24:25 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2013-11-24 17:24:24 ----D---- C:\ProgramData\Spybot - Search & Destroy
2013-11-24 13:51:15 ----D---- C:\Users\Janka\AppData\Roaming\Winamp
2013-11-24 13:37:17 ----D---- C:\ProgramData\BitGuard
2013-11-23 16:37:41 ----D---- C:\Windows\Panther
2013-11-23 16:37:41 ----D---- C:\Windows\debug
2013-11-17 09:38:15 ----D---- C:\Windows\rescache
2013-11-17 08:54:16 ----D---- C:\Program Files (x86)\Internet Explorer
2013-11-17 08:54:15 ----D---- C:\Windows\SysWOW64
2013-11-17 08:54:13 ----D---- C:\Program Files\Internet Explorer
2013-11-17 08:54:12 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-11-17 08:54:12 ----D---- C:\Windows\system32\sk-SK
2013-11-17 08:54:09 ----D---- C:\Windows\system32\en-US
2013-11-16 18:59:42 ----D---- C:\Windows\system32\catroot2
2013-11-16 18:59:38 ----D---- C:\Windows\system32\catroot
2013-11-16 18:55:29 ----D---- C:\Windows\system32\MRT
2013-11-16 18:50:54 ----A---- C:\Windows\system32\MRT.exe
2013-11-16 17:44:29 ----D---- C:\Windows\Minidump
2013-11-16 17:44:29 ----D---- C:\Windows\Logs
2013-11-11 05:50:16 ----N---- C:\Windows\system32\MpSigStub.exe
2013-11-10 10:41:20 ----D---- C:\Program Files (x86)\Registry Mechanic
2013-10-27 10:56:37 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-27 10:46:37 ----D---- C:\Windows\system32\DriverStore
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-11-24 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-11-24 205320]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-02-22 834544]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-11-24 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-11-24 1032416]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-11-24 409832]
R1 aswTdi;aswTdi; \??\C:\Windows\system32\drivers\aswTdi.sys [2013-11-24 65264]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; \??\C:\Windows\system32\drivers\aswFsBlk.sys [2013-11-24 38984]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-11-24 84328]
R2 int15;int15; \??\C:\Windows\SysWOW64\drivers\int15_64.sys [2008-09-30 17952]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2009-06-10 17024]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2009-06-23 250928]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-05 1542656]
R3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-05 114192]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-07-02 6036480]
R3 CAXHWAZL;CAXHWAZL; C:\Windows\system32\DRIVERS\CAXHWAZL.sys [2009-02-13 292864]
R3 DKbFltr;Dritek Keyboard Filter Driver (64-bit); C:\Windows\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\CAX_DPV.sys [2009-02-13 1485824]
R3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-09-10 117248]
R3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-07-24 114560]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-08-06 1974944]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
R3 O2MDRDR;O2MDRDR; C:\Windows\system32\DRIVERS\o2mdx64.sys [2009-05-07 63264]
R3 O2SDRDR;O2SDRDR; C:\Windows\system32\DRIVERS\o2sdx64.sys [2009-05-07 49696]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-04-03 34872]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\CAX_CNXT.sys [2009-02-13 740864]
S2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys []
S2 regi;regi; \??\C:\Windows\system32\drivers\regi.sys []
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2012-03-27 615976]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-03-27 184360]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2012-03-27 211496]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2012-03-27 39976]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2012-03-27 21544]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-22 48488]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-06-20 54272]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-07-02 203264]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-24 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-02-01 945440]
R2 ETService;Empowering Technology Service; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [2009-08-12 24576]
R2 Greg_Service;GRegService; C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-06-04 1150496]
R2 HsfXAudioService;HsfXAudioService; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 IviRegMgr;IviRegMgr; C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
R2 O2FLASH;O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [2007-02-13 65536]
R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2009-09-10 185632]
R2 RS_Service;Raw Socket Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [2009-07-10 253952]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-25 153952]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 Update LemurLeap;Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [2013-10-03 65312]
R2 Util LemurLeap;Util LemurLeap; C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe [2013-10-13 65312]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-24 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
S3 DfSdkS;Defragmentation-Service; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [2009-08-24 544768]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-22 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-24 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-11-24 194032]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-05-21 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
-----------------EOF-----------------
Re: pomaly pc, prosim o pomoc
Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
- Ulozte nejlepe na plochu
- Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
- Probehne vytvoreni zalohy a nasledne prohledavani
- Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
- Ulozte nejlepe na plochu
- Ukoncete vsechny programy
- Kliknete na Scan a nasledne Clean
- Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: pomaly pc, prosim o pomoc
Ked som chcela stiahnut adwcleaner tak mi vypisalo hlasku: Tento program sa bezne nestahuje a mohol by poskodit vas pocitac.
subor JRT posielam nizsie
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Janka on ut 26. 11. 2013 at 18:11:31,39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Failed to stop: [Service] update lemurleap
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15d2d75c-9cb2-4efd-bad7-b9b4cb4bc693}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{99c91fc5-db5b-4aa0-bb70-5d89c5a4df96}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT1750559
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{415419c3-dad0-4df1-ac37-22c72ad81878}
~~~ Files
Successfully disinfected: [Shortcut] C:\Users\Janka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Successfully disinfected: [Shortcut] C:\Users\Janka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
Successfully disinfected: [Shortcut] C:\Users\Janka\AppData\Roaming\microsoft\windows\start menu\Programs\Internet Explorer.lnk
Successfully disinfected: [Shortcut] C:\Users\Janka\AppData\Roaming\microsoft\windows\start menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
~~~ Folders
Failed to delete: [Folder] "C:\ProgramData\bitguard"
Failed to delete: [Folder] "C:\Program Files (x86)\lemurleap"
Successfully deleted: [Empty Folder] C:\Users\Janka\appdata\local\{206E02CB-CDCC-4001-BE4E-235F3FCAA604}
Successfully deleted: [Empty Folder] C:\Users\Janka\appdata\local\{C840A712-0CD2-44BD-A6DA-B57A3225A0D5}
~~~ Chrome
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ut 26. 11. 2013 at 18:29:44,81
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
subor JRT posielam nizsie
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Janka on ut 26. 11. 2013 at 18:11:31,39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Failed to stop: [Service] update lemurleap
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15d2d75c-9cb2-4efd-bad7-b9b4cb4bc693}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{99c91fc5-db5b-4aa0-bb70-5d89c5a4df96}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT1750559
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{415419c3-dad0-4df1-ac37-22c72ad81878}
~~~ Files
Successfully disinfected: [Shortcut] C:\Users\Janka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Successfully disinfected: [Shortcut] C:\Users\Janka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
Successfully disinfected: [Shortcut] C:\Users\Janka\AppData\Roaming\microsoft\windows\start menu\Programs\Internet Explorer.lnk
Successfully disinfected: [Shortcut] C:\Users\Janka\AppData\Roaming\microsoft\windows\start menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
~~~ Folders
Failed to delete: [Folder] "C:\ProgramData\bitguard"
Failed to delete: [Folder] "C:\Program Files (x86)\lemurleap"
Successfully deleted: [Empty Folder] C:\Users\Janka\appdata\local\{206E02CB-CDCC-4001-BE4E-235F3FCAA604}
Successfully deleted: [Empty Folder] C:\Users\Janka\appdata\local\{C840A712-0CD2-44BD-A6DA-B57A3225A0D5}
~~~ Chrome
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ut 26. 11. 2013 at 18:29:44,81
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: pomaly pc, prosim o pomoc
Vatovani ohledne AdwCleaneru ignorujte a stahnete jej...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: pomaly pc, prosim o pomoc
posielam...
# AdwCleaner v3.013 - Report created 26/11/2013 at 19:28:47
# Updated 24/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Janka - JANKA-PC
# Running from : C:\Users\Janka\Downloads\adwcleaner (2).exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
[!] Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\registry mechanic
Folder Deleted : C:\Program Files (x86)\BetterSurf
Folder Deleted : C:\Program Files (x86)\Omiga Plus
Folder Deleted : C:\Program Files (x86)\Common Files\337
Folder Deleted : C:\Users\Janka\AppData\Roaming\337
Folder Deleted : C:\Users\Janka\AppData\Roaming\Omiga Plus
Folder Deleted : C:\Users\Janka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
File Deleted : C:\Windows\System32\Tasks\Desk 365 RunAsStdUser
File Deleted : C:\Windows\System32\Tasks\EPUpdater
File Deleted : C:\Windows\System32\Tasks\Omiga Plus RunAsStdUser
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Deleted : HKCU\Software\a2dddfb238e449
Key Deleted : HKLM\SOFTWARE\a2dddfb238e449
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Handy Updater]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E1164984-B567-47BD-A7FF-240C2594404A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\Software\hdcode
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\omigaplusSvc
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\bitguard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\bitguard\2.7.1769.27\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16736
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
-\\ Google Chrome v31.0.1650.57
[ File : C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [6549 octets] - [26/11/2013 19:27:17]
AdwCleaner[S0].txt - [5933 octets] - [26/11/2013 19:28:47]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5993 octets] ##########
# AdwCleaner v3.013 - Report created 26/11/2013 at 19:28:47
# Updated 24/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Janka - JANKA-PC
# Running from : C:\Users\Janka\Downloads\adwcleaner (2).exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
[!] Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\registry mechanic
Folder Deleted : C:\Program Files (x86)\BetterSurf
Folder Deleted : C:\Program Files (x86)\Omiga Plus
Folder Deleted : C:\Program Files (x86)\Common Files\337
Folder Deleted : C:\Users\Janka\AppData\Roaming\337
Folder Deleted : C:\Users\Janka\AppData\Roaming\Omiga Plus
Folder Deleted : C:\Users\Janka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
File Deleted : C:\Windows\System32\Tasks\Desk 365 RunAsStdUser
File Deleted : C:\Windows\System32\Tasks\EPUpdater
File Deleted : C:\Windows\System32\Tasks\Omiga Plus RunAsStdUser
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Deleted : HKCU\Software\a2dddfb238e449
Key Deleted : HKLM\SOFTWARE\a2dddfb238e449
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Handy Updater]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E1164984-B567-47BD-A7FF-240C2594404A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\Software\hdcode
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\omigaplusSvc
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\bitguard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\bitguard\2.7.1769.27\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\loader.dll
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16736
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
-\\ Google Chrome v31.0.1650.57
[ File : C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [6549 octets] - [26/11/2013 19:27:17]
AdwCleaner[S0].txt - [5933 octets] - [26/11/2013 19:28:47]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5993 octets] ##########
Re: pomaly pc, prosim o pomoc
Poprosim o log dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=30&t=133101
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: pomaly pc, prosim o pomoc
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-11-2013
Ran by Janka (administrator) on JANKA-PC on 27-11-2013 18:41:21
Running from C:\Users\Janka\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
() C:\Windows\PLFSetI.exe
(Acer Inc.) C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(LemurLeap) C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe
(LemurLeap) C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8060960 2009-08-06] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint2K\Apoint.exe [306688 2009-06-23] (Alps Electric Co., Ltd.)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2008-07-30] ()
HKLM\...\Run: [ePower_DMC] - C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [492032 2009-07-21] (Acer Inc.)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-24] (Google Inc.)
MountPoints2: {1e067ae3-20a2-11df-9fe8-00262d521594} - E:\AutoRun.exe
MountPoints2: {6b1a6a73-1ff2-11df-ac7a-00262d521594} - F:\autorun.exe
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-07-02] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1130504 2009-08-28] (Dritek System Inc.)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [37888 2010-01-13] (Nullsoft, Inc.)
HKLM-x32\...\Run: [NWEReboot] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-24] (AVAST Software)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] ()
AppInit_DLLs: [ ] ()
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.sk/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapBHO.dll (LemurLeap)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{12AB0BDB-5BE8-4AFA-B06A-3FA9CBD15E3B}: [NameServer]213.151.200.31 85.237.225.250
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR Extension: (Google Docs) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (avast! Online Security) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_1
CHR Extension: (LemurLeap) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof\1.0.0_1
CHR HKLM-x32\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files (x86)\BetterSurf\ch\Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-24] (AVAST Software)
S3 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [544768 2009-08-24] (mst software GmbH, Germany)
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2009-08-12] ()
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [253952 2009-07-10] (Acer Incorporated)
R2 Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [65312 2013-10-03] (LemurLeap)
R2 Util LemurLeap; C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe [65312 2013-10-13] (LemurLeap)
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-24] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-24] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-24] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-24] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-24] ()
R3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114560 2009-07-24] (Huawei Technologies Co., Ltd.)
R3 O2MDRDR; C:\Windows\system32\DRIVERS\o2mdx64.sys [63264 2009-05-07] (O2Micro )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2010-02-22] ()
U3 abl0euuv; C:\Windows\System32\Drivers\abl0euuv.sys [0 ] (Microsoft Corporation)
S2 eamonm; system32\DRIVERS\eamonm.sys [x]
S2 regi; \??\C:\Windows\system32\drivers\regi.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-27 18:41 - 2013-11-27 18:41 - 00013016 _____ C:\Users\Janka\Downloads\FRST.txt
2013-11-27 18:40 - 2013-11-27 18:40 - 00112640 _____ (forum.viry.cz) C:\Users\Janka\Downloads\FRSTLauncher.exe
2013-11-27 18:40 - 2013-11-27 18:40 - 00029696 _____ C:\Users\Janka\AppData\Local\MSGBOX.EXE
2013-11-27 18:40 - 2013-11-27 18:40 - 00015327 _____ C:\Users\Janka\Desktop\LM.bat
2013-11-27 18:40 - 2013-11-27 18:40 - 00000000 ____D C:\FRST
2013-11-27 18:39 - 2013-11-27 18:40 - 01958818 _____ (Farbar) C:\Users\Janka\Downloads\FRST64.exe
2013-11-26 20:51 - 2013-11-26 20:52 - 00004564 _____ C:\Windows\IE11_main.log
2013-11-26 19:26 - 2013-11-26 19:26 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (2).exe
2013-11-26 19:25 - 2013-11-26 19:28 - 00000000 ____D C:\AdwCleaner
2013-11-26 19:24 - 2013-11-26 19:24 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (1).exe
2013-11-26 19:10 - 2013-11-26 19:11 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Janka\Downloads\AdobeAIRInstaller.exe
2013-11-26 18:35 - 2013-11-26 19:25 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner.exe
2013-11-26 18:29 - 2013-11-26 18:29 - 00004581 _____ C:\Users\Janka\Desktop\JRT.txt
2013-11-25 19:54 - 2013-11-25 19:54 - 01034531 _____ (Thisisu) C:\Users\Janka\Desktop\JRT.exe
2013-11-25 19:52 - 2013-11-25 19:52 - 00000000 ____D C:\Windows\ERUNT
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64.exe
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64 (1).exe
2013-11-24 17:53 - 2013-11-24 17:53 - 00000000 ____D C:\Users\Janka\AppData\Roaming\AVAST Software
2013-11-24 17:52 - 2013-11-24 17:52 - 00001976 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-11-24 17:52 - 2013-11-24 17:52 - 00000000 ____D C:\Users\Janka\AppData\Local\avgchrome
2013-11-24 17:51 - 2013-11-24 17:51 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-24 17:50 - 2013-11-24 17:50 - 00002237 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-24 17:47 - 2013-11-27 18:28 - 00000930 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-24 17:47 - 2013-11-26 20:52 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-24 17:47 - 2013-11-24 17:47 - 00003930 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-24 17:47 - 2013-11-24 17:47 - 00003678 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-24 17:46 - 2013-11-24 17:46 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-24 17:46 - 2013-11-24 17:46 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-24 17:46 - 2013-11-24 17:46 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-24 17:37 - 2013-11-24 17:37 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-24 17:36 - 2013-11-24 17:36 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-24 13:37 - 2013-11-27 18:28 - 00000392 _____ C:\Windows\setupact.log
2013-11-24 13:37 - 2013-11-24 22:22 - 00010848 _____ C:\Windows\PFRO.log
2013-11-24 13:37 - 2013-11-24 13:37 - 00000000 _____ C:\Windows\setuperr.log
2013-11-17 08:52 - 2013-11-17 08:52 - 00000000 __SHD C:\found.000
2013-11-16 18:59 - 2013-10-12 09:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-16 18:59 - 2013-10-12 09:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-16 18:59 - 2013-10-12 07:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-16 18:59 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-16 18:59 - 2013-10-12 06:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-16 18:59 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-16 18:58 - 2013-10-12 09:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-16 18:58 - 2013-10-12 09:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-16 18:58 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-16 18:58 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-16 18:06 - 2013-11-25 17:32 - 00000000 ____D C:\Program Files\trend micro
2013-11-16 18:06 - 2013-11-16 18:06 - 00000000 ____D C:\rsit
2013-11-16 17:58 - 2013-11-16 17:58 - 00000000 _____ C:\extensions.sqlite
2013-11-16 17:31 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-16 17:31 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-16 17:31 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-16 17:31 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-16 17:31 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-16 17:31 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-16 17:31 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-16 17:31 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-16 17:31 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-16 17:30 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-16 17:30 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-16 17:30 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-16 17:30 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-16 17:30 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-16 17:30 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-16 17:30 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-16 17:30 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-16 17:30 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-16 17:30 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-16 17:30 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-16 17:30 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-16 17:30 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-16 17:30 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-16 17:30 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-16 17:30 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-16 17:30 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-16 17:30 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-16 17:30 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-16 17:30 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-16 17:30 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
==================== One Month Modified Files and Folders =======
2013-11-27 18:41 - 2013-11-27 18:41 - 00013016 _____ C:\Users\Janka\Downloads\FRST.txt
2013-11-27 18:40 - 2013-11-27 18:40 - 00112640 _____ (forum.viry.cz) C:\Users\Janka\Downloads\FRSTLauncher.exe
2013-11-27 18:40 - 2013-11-27 18:40 - 00029696 _____ C:\Users\Janka\AppData\Local\MSGBOX.EXE
2013-11-27 18:40 - 2013-11-27 18:40 - 00015327 _____ C:\Users\Janka\Desktop\LM.bat
2013-11-27 18:40 - 2013-11-27 18:40 - 00000000 ____D C:\FRST
2013-11-27 18:40 - 2013-11-27 18:39 - 01958818 _____ (Farbar) C:\Users\Janka\Downloads\FRST64.exe
2013-11-27 18:36 - 2009-07-14 05:45 - 00017600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-27 18:36 - 2009-07-14 05:45 - 00017600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-27 18:33 - 2009-10-11 18:21 - 01493222 _____ C:\Windows\WindowsUpdate.log
2013-11-27 18:28 - 2013-11-24 17:47 - 00000930 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-27 18:28 - 2013-11-24 13:37 - 00000392 _____ C:\Windows\setupact.log
2013-11-27 18:28 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-26 20:52 - 2013-11-26 20:51 - 00004564 _____ C:\Windows\IE11_main.log
2013-11-26 20:52 - 2013-11-24 17:47 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-26 20:50 - 2013-10-12 13:17 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-11-26 19:28 - 2013-11-26 19:25 - 00000000 ____D C:\AdwCleaner
2013-11-26 19:28 - 2010-02-23 10:21 - 00000000 ____D C:\ProgramData\ICQ
2013-11-26 19:26 - 2013-11-26 19:26 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (2).exe
2013-11-26 19:25 - 2013-11-26 18:35 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner.exe
2013-11-26 19:24 - 2013-11-26 19:24 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (1).exe
2013-11-26 19:11 - 2013-11-26 19:10 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Janka\Downloads\AdobeAIRInstaller.exe
2013-11-26 18:29 - 2013-11-26 18:29 - 00004581 _____ C:\Users\Janka\Desktop\JRT.txt
2013-11-26 18:29 - 2011-05-08 16:57 - 00001421 _____ C:\Users\Janka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-25 19:54 - 2013-11-25 19:54 - 01034531 _____ (Thisisu) C:\Users\Janka\Desktop\JRT.exe
2013-11-25 19:52 - 2013-11-25 19:52 - 00000000 ____D C:\Windows\ERUNT
2013-11-25 19:43 - 2010-02-22 17:32 - 00000952 ___SH C:\ProgramData\KGyGaAvL.sys
2013-11-25 17:32 - 2013-11-16 18:06 - 00000000 ____D C:\Program Files\trend micro
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64.exe
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64 (1).exe
2013-11-24 22:22 - 2013-11-24 13:37 - 00010848 _____ C:\Windows\PFRO.log
2013-11-24 19:47 - 2012-02-12 16:54 - 36974310 _____ C:\Users\Janka\Downloads\Norton-Internet-Security-2010-CZ-+crack+navod.rar
2013-11-24 19:47 - 2011-09-15 14:56 - 40528015 _____ C:\Users\Janka\Downloads\NOD32--4.2-+-crack---64bit.rar
2013-11-24 18:06 - 2010-02-22 16:21 - 00000000 ____D C:\Users\Janka\AppData\Local\Google
2013-11-24 17:53 - 2013-11-24 17:53 - 00000000 ____D C:\Users\Janka\AppData\Roaming\AVAST Software
2013-11-24 17:52 - 2013-11-24 17:52 - 00001976 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-11-24 17:52 - 2013-11-24 17:52 - 00000000 ____D C:\Users\Janka\AppData\Local\avgchrome
2013-11-24 17:51 - 2013-11-24 17:51 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-24 17:51 - 2009-08-28 20:32 - 00000000 ____D C:\ProgramData\Google
2013-11-24 17:51 - 2009-08-28 20:32 - 00000000 ____D C:\Program Files\Google
2013-11-24 17:51 - 2009-08-28 20:32 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-24 17:50 - 2013-11-24 17:50 - 00002237 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-24 17:47 - 2013-11-24 17:47 - 00003930 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-24 17:47 - 2013-11-24 17:47 - 00003678 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-24 17:46 - 2013-11-24 17:46 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-24 17:46 - 2013-11-24 17:46 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-24 17:46 - 2013-11-24 17:46 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-24 17:37 - 2013-11-24 17:37 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-24 17:36 - 2013-11-24 17:36 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-24 17:27 - 2010-02-23 10:34 - 00000000 ____D C:\Program Files (x86)\ESET
2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2013-11-24 13:51 - 2010-02-22 17:35 - 00000000 ____D C:\Users\Janka\AppData\Roaming\Winamp
2013-11-24 13:37 - 2013-11-24 13:37 - 00000000 _____ C:\Windows\setuperr.log
2013-11-23 16:37 - 2009-07-27 21:41 - 00000000 ____D C:\Windows\Panther
2013-11-17 09:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-17 08:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sk-SK
2013-11-17 08:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sk-SK
2013-11-17 08:52 - 2013-11-17 08:52 - 00000000 __SHD C:\found.000
2013-11-16 18:55 - 2013-07-29 15:17 - 00000000 ____D C:\Windows\system32\MRT
2013-11-16 18:50 - 2010-02-23 10:22 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-16 18:06 - 2013-11-16 18:06 - 00000000 ____D C:\rsit
2013-11-16 17:58 - 2013-11-16 17:58 - 00000000 _____ C:\extensions.sqlite
2013-11-16 17:44 - 2013-10-12 10:14 - 00000000 ____D C:\Windows\Minidump
2013-11-11 05:50 - 2010-02-23 10:11 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
Some content of TEMP:
====================
C:\Users\Janka\AppData\Local\Temp\Quarantine.exe
C:\Users\Janka\AppData\Local\Temp\uninst1.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-23 18:50
neslo mi to zozipovat, preto posielam takto:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-11-2013
Ran by Janka at 2013-11-27 18:42:35
Running from C:\Users\Janka\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
Acer Crystal Eye Webcam (x32 Version: 5.2.7.1)
Acer Empowering Technology (x32 Version: 3.0.3016)
Acer ePower Management (x32 Version: 3.0.3019)
Acer eRecovery Management (x32 Version: 4.05.3003)
Acer GridVista (x32 Version: 3.01.0730)
Acer Registration (x32 Version: 1.02.3004)
Acer ScreenSaver (x32 Version: 1.4.0812)
Acer VCM (x32 Version: 4.05.3000)
Acrobat.com (x32 Version: 1.6.65)
Adobe AIR (x32 Version: 1.5.0.7220)
Adobe Flash Player 10 Plugin (x32 Version: 10.1.51.45)
Adobe Flash Player 11 ActiveX (x32 Version: 11.4.402.265)
Adobe Reader 9.5.5 MUI (x32 Version: 9.5.5)
ALPS Touch Pad Driver
AMD USB Filter Driver (x32 Version: 1.0.11.86)
Ashampoo Burning Studio 9.12 (x32 Version: 9.1.2)
Ashampoo WinOptimizer 6.50 (x32 Version: 6.5.0)
ATI Catalyst Install Manager (Version: 3.0.732.0)
avast! Free Antivirus (x32 Version: 9.0.2008)
Bing Bar (x32 Version: 7.0.609.0)
Broadcom Gigabit Integrated Controller (Version: 12.24.02)
BS.Player FREE (x32 Version: 2.51.1022)
BSPlayer (x32)
Call of Duty(R) 2 (x32 Version: 1.00.0000)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Core Implementation (x32 Version: 2009.0702.1239.20840)
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.0702.1239.20840)
Catalyst Control Center Graphics Full New (x32 Version: 2009.0702.1239.20840)
Catalyst Control Center Graphics Light (x32 Version: 2009.0702.1239.20840)
Catalyst Control Center InstallProxy (x32 Version: 2009.0702.1239.20840)
Catalyst Control Center Localization All (x32 Version: 2009.0702.1239.20840)
CCC Help Czech (x32 Version: 2009.0702.1238.20840)
CCC Help Danish (x32 Version: 2009.0702.1238.20840)
CCC Help Dutch (x32 Version: 2009.0702.1238.20840)
CCC Help English (x32 Version: 2009.0702.1238.20840)
CCC Help Finnish (x32 Version: 2009.0702.1238.20840)
CCC Help French (x32 Version: 2009.0702.1238.20840)
CCC Help German (x32 Version: 2009.0702.1238.20840)
CCC Help Greek (x32 Version: 2009.0702.1238.20840)
CCC Help Hungarian (x32 Version: 2009.0702.1238.20840)
CCC Help Chinese Standard (x32 Version: 2009.0702.1238.20840)
CCC Help Chinese Traditional (x32 Version: 2009.0702.1238.20840)
CCC Help Italian (x32 Version: 2009.0702.1238.20840)
CCC Help Japanese (x32 Version: 2009.0702.1238.20840)
CCC Help Korean (x32 Version: 2009.0702.1238.20840)
CCC Help Norwegian (x32 Version: 2009.0702.1238.20840)
CCC Help Polish (x32 Version: 2009.0702.1238.20840)
CCC Help Portuguese (x32 Version: 2009.0702.1238.20840)
CCC Help Russian (x32 Version: 2009.0702.1238.20840)
CCC Help Spanish (x32 Version: 2009.0702.1238.20840)
CCC Help Swedish (x32 Version: 2009.0702.1238.20840)
CCC Help Thai (x32 Version: 2009.0702.1238.20840)
CCC Help Turkish (x32 Version: 2009.0702.1238.20840)
ccc-core-static (x32 Version: 2009.0702.1239.20840)
ccc-utility64 (Version: 2009.0702.1239.20840)
CCleaner (Version: 3.14)
CoD 2 čeština 1.1 (x32)
D3DX10 (x32 Version: 15.4.2368.0902)
Doplnok programu Messenger (x32 Version: 15.4.3502.0922)
Google Chrome (x32 Version: 31.0.1650.57)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0)
Google Toolbar for Internet Explorer (x32 Version: 7.5.4601.54)
Google Update Helper (x32 Version: 1.3.21.169)
GotClip Downloader (x32)
Handy Updater (x32)
HDAUDIO Soft Data Fax Modem with SmartCP (Version: 7.80.4.55)
Chicken Invaders 2 (x32)
ICQ6.5 (x32 Version: 6.5)
Identity Card (x32 Version: 1.00.3001)
Inca Ball (x32)
InterVideo WinDVD 8 (x32 Version: 8.5.10.39)
Java(TM) 6 Update 18 (64-bit) (Version: 6.0.180)
Java(TM) 6 Update 20 (x32 Version: 6.0.200)
Java(TM) 6 Update 39 (x32 Version: 6.0.390)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
K-Lite Codec Pack 5.7.0 (Full) (x32 Version: 5.7.0)
Launch Manager (x32 Version: 3.0.03)
LemurLeap 1.0.0 (Version: 1.0.0)
Licensing Service Install (x32 Version: 2.0.1.181)
Merriam Websters Spell Jam (x32)
Mesh Runtime (x32 Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2003 Web Components (x32 Version: 11.0.8003.0)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Outlook Connector (x32 Version: 14.0.5118.5000)
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft SQL Server Native Client (Version: 9.00.4035.00)
Microsoft SQL Server Setup Support Files (English) (x32 Version: 9.00.4035.00)
Microsoft SQL Server VSS Writer (Version: 9.00.4035.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Mobile Partner (x32 Version: 11.030.01.05.85)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
NHL® 09 (x32 Version: 2.0.1.0)
NTI Backup Now 5 (x32 Version: 5.1.2.627)
NTI Backup Now Standard (x32 Version: 5.1.2.627)
NTI Media Maker 8 (x32 Version: 8.0.12.6619)
NTI Shadow (x32 Version: 3.7.6.56)
O2Micro Flash Memory Card Reader Driver (Version: 3.31.02)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (x32 Version: 15.4.5722.2)
Project IGI (x32)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5911)
Registry Mechanic 6.0 (x32 Version: 6.0)
Skype™ 5.10 (x32 Version: 5.10.116)
SopCast 3.0.3 (x32 Version: 3.0.3)
Star Defender 4 (x32)
Súčasti Microsoft Office Small Business Connectivity (x32 Version: 2.0.7024.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Welcome Center (x32 Version: 1.00.3005)
WIDCOMM Bluetooth Software (Version: 6.5.1.2300)
Winamp (x32 Version: 5.572 )
Winamp Detector Plug-in (HKCU Version: 1.0.0.1)
Windows Driver Package - Broadcom Corporation (bcbtums) Bluetooth (02/06/2012 6.5.1.2310) (Version: 02/06/2012 6.5.1.2310)
Windows Driver Package - Broadcom Corporation Bluetooth (02/06/2012 6.5.1.2310) (Version: 02/06/2012 6.5.1.2310)
Windows Driver Package - Broadcom Corporation Bluetooth (02/07/2012 6.5.1.2312) (Version: 02/07/2012 6.5.1.2312)
Windows Driver Package - Broadcom HIDClass (09/11/2009 6.3.0.1500) (Version: 09/11/2009 6.3.0.1500)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live Fotogaléria (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Messenger (x32 Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live Sync (x32 Version: 14.0.8064.206)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3502.0922)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
WinRAR archiver (x32)
WorldUnlock Codes Calculator (x32)
==================== Restore Points =========================
19-10-2013 16:11:55 Windows Update
25-10-2013 13:06:17 Windows Update
26-10-2013 19:40:32 Windows Update
01-11-2013 16:01:21 Windows Update
05-11-2013 11:57:38 Windows Update
09-11-2013 13:13:22 Windows Update
12-11-2013 16:55:32 Windows Update
16-11-2013 16:30:57 Windows Update
16-11-2013 17:49:54 Windows Update
20-11-2013 16:14:41 Windows Update
24-11-2013 16:37:24 avast! antivirus system restore point
26-11-2013 17:33:03 Windows Update
26-11-2013 19:51:02 Windows Update
==================== Hosts content: ==========================
2009-07-14 03:34 - 2011-09-19 07:42 - 00437695 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 www.123fporn.info
127.0.0.1 123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
There are 1000 more lines.
==================== Scheduled Tasks (whitelisted) =============
Task: {437CA6B9-A272-4D57-9D7B-3314E1BE7F4B} - \EPUpdater No Task File
Task: {47069CC8-2895-4FEB-8AD7-C00430BF741F} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {48660FBB-69EA-472E-8DC6-3956D98F0DC6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-24] (Google Inc.)
Task: {71DF1A9D-33DE-4FED-A9CB-9B8D39CFF0F3} - \Desk 365 RunAsStdUser No Task File
Task: {BC57048F-F9B7-44B2-89BB-F1F59F15A2FC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-24] (Google Inc.)
Task: {C32C573C-6594-488D-AEB8-9E5507A81A24} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation)
Task: {D714587C-3371-490D-BE22-F71C6B5C6313} - \Omiga Plus RunAsStdUser No Task File
Task: {DECF78D8-CEF5-45F4-9698-1839F441A601} - System32\Tasks\{4581542F-16B8-43FF-8D33-EB673D0371D1} => C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe [2010-02-23] ()
Task: {EE82A3E3-FEEB-4AF1-A424-E7B5C644DB69} - System32\Tasks\{C4237B9E-8A1B-4A6C-A740-80C9C9098535} => C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe [2010-02-23] ()
Task: {FA81FDD3-2486-4A97-A2D8-FA97695EFE0F} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2009-07-09] (Acer)
Task: {FC8F2973-A174-4176-B5F3-E06BB300086E} - System32\Tasks\{88E18507-6240-4210-B951-BB034DE82F1C} => Iexplore.exe http://ui.skype.com/ui/0/4.2.0.152/cs/p ... tinstaller
Task: {FD4BA4E4-F6F1-41EB-9D13-C81BDC187D7F} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-11-24] (AVAST Software)
Task: {FFD6B567-5276-4867-9006-38392BFB89FD} - System32\Tasks\{AE036DD5-A391-40D9-AFDE-A8D717D0680A} => Iexplore.exe http://ui.skype.com/ui/0/4.2.0.152/cs/a ... baroffered
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2009-09-07 19:41 - 2009-09-07 19:41 - 00036864 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3016.0__4df5dcab8860d239\Framework.Utility.dll
2009-09-07 19:41 - 2009-09-07 19:41 - 00061440 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3016.0__3036420f80dd6947\Framework.Library.dll
2009-09-07 19:41 - 2009-09-07 19:41 - 00020480 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Model.ControllerInterface\3.0.3016.0__d842b71b4d6ed079\Framework.Model.ControllerInterface.dll
2009-05-13 18:44 - 2009-05-13 18:44 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2009-10-11 18:25 - 2009-10-11 18:25 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2013-11-27 18:31 - 2013-11-27 14:55 - 02149376 _____ () C:\Program Files\AVAST Software\Avast\defs\13112701\algo.dll
2013-11-24 17:46 - 2013-11-24 17:46 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00014848 _____ () C:\Program Files (x86)\Mobile Partner\isaputrace.dll
2010-02-23 18:43 - 2009-07-30 22:01 - 00110592 _____ () C:\Program Files (x86)\Mobile Partner\DeviceMgrPlugin.dll
2010-02-23 18:43 - 2009-09-19 10:59 - 00114688 _____ () C:\Program Files (x86)\Mobile Partner\NetInfoPlugin.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00086016 _____ () C:\Program Files (x86)\Mobile Partner\DialUpPlugin.dll
2010-02-23 18:43 - 2009-08-29 16:18 - 00888832 _____ () C:\Program Files (x86)\Mobile Partner\NDISAPI.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00147456 _____ () C:\Program Files (x86)\Mobile Partner\DetectDev.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00524288 _____ () C:\Program Files (x86)\Mobile Partner\atcomm.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00061440 _____ () C:\Program Files (x86)\Mobile Partner\XCodec.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00040960 _____ () C:\Program Files (x86)\Mobile Partner\DeviceOperate.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00057344 _____ () C:\Program Files (x86)\Mobile Partner\ConfigFilePlugin.dll
2010-02-23 18:43 - 2009-07-31 11:12 - 00167936 _____ () C:\Program Files (x86)\Mobile Partner\DeviceMgrUIPlugin.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00139264 _____ () C:\Program Files (x86)\Mobile Partner\LocaleMgrPlugin.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00090112 _____ () C:\Program Files (x86)\Mobile Partner\FileManager.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00159744 _____ () C:\Program Files (x86)\Mobile Partner\SMSPlugin.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00032768 _____ () C:\Program Files (x86)\Mobile Partner\NotifyServicePlugin.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:1D32EC29
AlternateDataStreams: C:\ProgramData\TEMP:AB689DEA
AlternateDataStreams: C:\ProgramData\TEMP:E3C56885
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/26/2013 07:01:56 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.
System errors:
=============
Error: (11/27/2013 06:28:53 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby regi zlyhalo kvôli nasledujúcej chybe:
%%2
Error: (11/27/2013 06:28:29 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby eamonm zlyhalo kvôli nasledujúcej chybe:
%%2
Error: (11/26/2013 08:52:51 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80070643: Program Internet Explorer 11 pre systém Windows 7 pre systémy s procesorom x64.
Error: (11/26/2013 07:31:49 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby Update LemurLeap zlyhalo kvôli nasledujúcej chybe:
%%1053
Error: (11/26/2013 07:31:49 PM) (Source: Service Control Manager) (User: )
Description: Počas čakania na pripojenie služby Update LemurLeap bol dosiahnutý časový limit (30000 ms).
Error: (11/26/2013 07:31:12 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby regi zlyhalo kvôli nasledujúcej chybe:
%%2
Error: (11/26/2013 07:30:15 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby eamonm zlyhalo kvôli nasledujúcej chybe:
%%2
Microsoft Office Sessions:
=========================
Error: (11/26/2013 07:01:56 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
CodeIntegrity Errors:
===================================
Date: 2010-02-22 17:50:26.768
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:26.768
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:26.752
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:26.721
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:25.645
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:25.629
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:25.614
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:25.598
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:24.958
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:24.927
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Percentage of memory in use: 47%
Total physical RAM: 2814.36 MB
Available physical RAM: 1491.18 MB
Total Pagefile: 5626.9 MB
Available Pagefile: 3855.06 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: (ACER) (Fixed) (Total:286.27 GB) (Free:177.09 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 298 GB) (Disk ID: 76FF76FF)
Partition 1: (Not Active) - (Size=12 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=286 GB) - (Type=07 NTFS)
==================== End Of Log ============================
==================== End Of Log ============================
Ran by Janka (administrator) on JANKA-PC on 27-11-2013 18:41:21
Running from C:\Users\Janka\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
() C:\Windows\PLFSetI.exe
(Acer Inc.) C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(LemurLeap) C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe
(LemurLeap) C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8060960 2009-08-06] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint2K\Apoint.exe [306688 2009-06-23] (Alps Electric Co., Ltd.)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2008-07-30] ()
HKLM\...\Run: [ePower_DMC] - C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [492032 2009-07-21] (Acer Inc.)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-24] (Google Inc.)
MountPoints2: {1e067ae3-20a2-11df-9fe8-00262d521594} - E:\AutoRun.exe
MountPoints2: {6b1a6a73-1ff2-11df-ac7a-00262d521594} - F:\autorun.exe
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-07-02] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1130504 2009-08-28] (Dritek System Inc.)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [37888 2010-01-13] (Nullsoft, Inc.)
HKLM-x32\...\Run: [NWEReboot] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-24] (AVAST Software)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] ()
AppInit_DLLs: [ ] ()
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.sk/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapBHO.dll (LemurLeap)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{12AB0BDB-5BE8-4AFA-B06A-3FA9CBD15E3B}: [NameServer]213.151.200.31 85.237.225.250
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR Extension: (Google Docs) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (avast! Online Security) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_1
CHR Extension: (LemurLeap) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof\1.0.0_1
CHR HKLM-x32\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files (x86)\BetterSurf\ch\Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-24] (AVAST Software)
S3 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [544768 2009-08-24] (mst software GmbH, Germany)
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2009-08-12] ()
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [253952 2009-07-10] (Acer Incorporated)
R2 Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [65312 2013-10-03] (LemurLeap)
R2 Util LemurLeap; C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe [65312 2013-10-13] (LemurLeap)
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-24] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-24] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-24] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-24] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-24] ()
R3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114560 2009-07-24] (Huawei Technologies Co., Ltd.)
R3 O2MDRDR; C:\Windows\system32\DRIVERS\o2mdx64.sys [63264 2009-05-07] (O2Micro )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2010-02-22] ()
U3 abl0euuv; C:\Windows\System32\Drivers\abl0euuv.sys [0 ] (Microsoft Corporation)
S2 eamonm; system32\DRIVERS\eamonm.sys [x]
S2 regi; \??\C:\Windows\system32\drivers\regi.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-27 18:41 - 2013-11-27 18:41 - 00013016 _____ C:\Users\Janka\Downloads\FRST.txt
2013-11-27 18:40 - 2013-11-27 18:40 - 00112640 _____ (forum.viry.cz) C:\Users\Janka\Downloads\FRSTLauncher.exe
2013-11-27 18:40 - 2013-11-27 18:40 - 00029696 _____ C:\Users\Janka\AppData\Local\MSGBOX.EXE
2013-11-27 18:40 - 2013-11-27 18:40 - 00015327 _____ C:\Users\Janka\Desktop\LM.bat
2013-11-27 18:40 - 2013-11-27 18:40 - 00000000 ____D C:\FRST
2013-11-27 18:39 - 2013-11-27 18:40 - 01958818 _____ (Farbar) C:\Users\Janka\Downloads\FRST64.exe
2013-11-26 20:51 - 2013-11-26 20:52 - 00004564 _____ C:\Windows\IE11_main.log
2013-11-26 19:26 - 2013-11-26 19:26 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (2).exe
2013-11-26 19:25 - 2013-11-26 19:28 - 00000000 ____D C:\AdwCleaner
2013-11-26 19:24 - 2013-11-26 19:24 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (1).exe
2013-11-26 19:10 - 2013-11-26 19:11 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Janka\Downloads\AdobeAIRInstaller.exe
2013-11-26 18:35 - 2013-11-26 19:25 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner.exe
2013-11-26 18:29 - 2013-11-26 18:29 - 00004581 _____ C:\Users\Janka\Desktop\JRT.txt
2013-11-25 19:54 - 2013-11-25 19:54 - 01034531 _____ (Thisisu) C:\Users\Janka\Desktop\JRT.exe
2013-11-25 19:52 - 2013-11-25 19:52 - 00000000 ____D C:\Windows\ERUNT
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64.exe
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64 (1).exe
2013-11-24 17:53 - 2013-11-24 17:53 - 00000000 ____D C:\Users\Janka\AppData\Roaming\AVAST Software
2013-11-24 17:52 - 2013-11-24 17:52 - 00001976 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-11-24 17:52 - 2013-11-24 17:52 - 00000000 ____D C:\Users\Janka\AppData\Local\avgchrome
2013-11-24 17:51 - 2013-11-24 17:51 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-24 17:50 - 2013-11-24 17:50 - 00002237 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-24 17:47 - 2013-11-27 18:28 - 00000930 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-24 17:47 - 2013-11-26 20:52 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-24 17:47 - 2013-11-24 17:47 - 00003930 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-24 17:47 - 2013-11-24 17:47 - 00003678 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-24 17:46 - 2013-11-24 17:46 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-24 17:46 - 2013-11-24 17:46 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-24 17:46 - 2013-11-24 17:46 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-24 17:37 - 2013-11-24 17:37 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-24 17:36 - 2013-11-24 17:36 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-24 13:37 - 2013-11-27 18:28 - 00000392 _____ C:\Windows\setupact.log
2013-11-24 13:37 - 2013-11-24 22:22 - 00010848 _____ C:\Windows\PFRO.log
2013-11-24 13:37 - 2013-11-24 13:37 - 00000000 _____ C:\Windows\setuperr.log
2013-11-17 08:52 - 2013-11-17 08:52 - 00000000 __SHD C:\found.000
2013-11-16 18:59 - 2013-10-12 09:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-16 18:59 - 2013-10-12 09:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-16 18:59 - 2013-10-12 07:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-16 18:59 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-16 18:59 - 2013-10-12 06:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-16 18:59 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-16 18:58 - 2013-10-12 09:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-16 18:58 - 2013-10-12 09:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-16 18:58 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-16 18:58 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-16 18:06 - 2013-11-25 17:32 - 00000000 ____D C:\Program Files\trend micro
2013-11-16 18:06 - 2013-11-16 18:06 - 00000000 ____D C:\rsit
2013-11-16 17:58 - 2013-11-16 17:58 - 00000000 _____ C:\extensions.sqlite
2013-11-16 17:31 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-16 17:31 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-16 17:31 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-16 17:31 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-16 17:31 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-16 17:31 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-16 17:31 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-16 17:31 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-16 17:31 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-16 17:30 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-16 17:30 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-16 17:30 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-16 17:30 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-16 17:30 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-16 17:30 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-16 17:30 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-16 17:30 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-16 17:30 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-16 17:30 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-16 17:30 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-16 17:30 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-16 17:30 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-16 17:30 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-16 17:30 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-16 17:30 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-16 17:30 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-16 17:30 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-16 17:30 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-16 17:30 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-16 17:30 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
==================== One Month Modified Files and Folders =======
2013-11-27 18:41 - 2013-11-27 18:41 - 00013016 _____ C:\Users\Janka\Downloads\FRST.txt
2013-11-27 18:40 - 2013-11-27 18:40 - 00112640 _____ (forum.viry.cz) C:\Users\Janka\Downloads\FRSTLauncher.exe
2013-11-27 18:40 - 2013-11-27 18:40 - 00029696 _____ C:\Users\Janka\AppData\Local\MSGBOX.EXE
2013-11-27 18:40 - 2013-11-27 18:40 - 00015327 _____ C:\Users\Janka\Desktop\LM.bat
2013-11-27 18:40 - 2013-11-27 18:40 - 00000000 ____D C:\FRST
2013-11-27 18:40 - 2013-11-27 18:39 - 01958818 _____ (Farbar) C:\Users\Janka\Downloads\FRST64.exe
2013-11-27 18:36 - 2009-07-14 05:45 - 00017600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-27 18:36 - 2009-07-14 05:45 - 00017600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-27 18:33 - 2009-10-11 18:21 - 01493222 _____ C:\Windows\WindowsUpdate.log
2013-11-27 18:28 - 2013-11-24 17:47 - 00000930 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-27 18:28 - 2013-11-24 13:37 - 00000392 _____ C:\Windows\setupact.log
2013-11-27 18:28 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-26 20:52 - 2013-11-26 20:51 - 00004564 _____ C:\Windows\IE11_main.log
2013-11-26 20:52 - 2013-11-24 17:47 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-26 20:50 - 2013-10-12 13:17 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-11-26 19:28 - 2013-11-26 19:25 - 00000000 ____D C:\AdwCleaner
2013-11-26 19:28 - 2010-02-23 10:21 - 00000000 ____D C:\ProgramData\ICQ
2013-11-26 19:26 - 2013-11-26 19:26 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (2).exe
2013-11-26 19:25 - 2013-11-26 18:35 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner.exe
2013-11-26 19:24 - 2013-11-26 19:24 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (1).exe
2013-11-26 19:11 - 2013-11-26 19:10 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Janka\Downloads\AdobeAIRInstaller.exe
2013-11-26 18:29 - 2013-11-26 18:29 - 00004581 _____ C:\Users\Janka\Desktop\JRT.txt
2013-11-26 18:29 - 2011-05-08 16:57 - 00001421 _____ C:\Users\Janka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-25 19:54 - 2013-11-25 19:54 - 01034531 _____ (Thisisu) C:\Users\Janka\Desktop\JRT.exe
2013-11-25 19:52 - 2013-11-25 19:52 - 00000000 ____D C:\Windows\ERUNT
2013-11-25 19:43 - 2010-02-22 17:32 - 00000952 ___SH C:\ProgramData\KGyGaAvL.sys
2013-11-25 17:32 - 2013-11-16 18:06 - 00000000 ____D C:\Program Files\trend micro
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64.exe
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64 (1).exe
2013-11-24 22:22 - 2013-11-24 13:37 - 00010848 _____ C:\Windows\PFRO.log
2013-11-24 19:47 - 2012-02-12 16:54 - 36974310 _____ C:\Users\Janka\Downloads\Norton-Internet-Security-2010-CZ-+crack+navod.rar
2013-11-24 19:47 - 2011-09-15 14:56 - 40528015 _____ C:\Users\Janka\Downloads\NOD32--4.2-+-crack---64bit.rar
2013-11-24 18:06 - 2010-02-22 16:21 - 00000000 ____D C:\Users\Janka\AppData\Local\Google
2013-11-24 17:53 - 2013-11-24 17:53 - 00000000 ____D C:\Users\Janka\AppData\Roaming\AVAST Software
2013-11-24 17:52 - 2013-11-24 17:52 - 00001976 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-11-24 17:52 - 2013-11-24 17:52 - 00000000 ____D C:\Users\Janka\AppData\Local\avgchrome
2013-11-24 17:51 - 2013-11-24 17:51 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-24 17:51 - 2009-08-28 20:32 - 00000000 ____D C:\ProgramData\Google
2013-11-24 17:51 - 2009-08-28 20:32 - 00000000 ____D C:\Program Files\Google
2013-11-24 17:51 - 2009-08-28 20:32 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-24 17:50 - 2013-11-24 17:50 - 00002237 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-24 17:47 - 2013-11-24 17:47 - 00003930 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-24 17:47 - 2013-11-24 17:47 - 00003678 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-24 17:46 - 2013-11-24 17:46 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-24 17:46 - 2013-11-24 17:46 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-24 17:46 - 2013-11-24 17:46 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-24 17:37 - 2013-11-24 17:37 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-24 17:36 - 2013-11-24 17:36 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-24 17:27 - 2010-02-23 10:34 - 00000000 ____D C:\Program Files (x86)\ESET
2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2013-11-24 13:51 - 2010-02-22 17:35 - 00000000 ____D C:\Users\Janka\AppData\Roaming\Winamp
2013-11-24 13:37 - 2013-11-24 13:37 - 00000000 _____ C:\Windows\setuperr.log
2013-11-23 16:37 - 2009-07-27 21:41 - 00000000 ____D C:\Windows\Panther
2013-11-17 09:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-17 08:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sk-SK
2013-11-17 08:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sk-SK
2013-11-17 08:52 - 2013-11-17 08:52 - 00000000 __SHD C:\found.000
2013-11-16 18:55 - 2013-07-29 15:17 - 00000000 ____D C:\Windows\system32\MRT
2013-11-16 18:50 - 2010-02-23 10:22 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-16 18:06 - 2013-11-16 18:06 - 00000000 ____D C:\rsit
2013-11-16 17:58 - 2013-11-16 17:58 - 00000000 _____ C:\extensions.sqlite
2013-11-16 17:44 - 2013-10-12 10:14 - 00000000 ____D C:\Windows\Minidump
2013-11-11 05:50 - 2010-02-23 10:11 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
Some content of TEMP:
====================
C:\Users\Janka\AppData\Local\Temp\Quarantine.exe
C:\Users\Janka\AppData\Local\Temp\uninst1.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-23 18:50
neslo mi to zozipovat, preto posielam takto:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-11-2013
Ran by Janka at 2013-11-27 18:42:35
Running from C:\Users\Janka\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
Acer Crystal Eye Webcam (x32 Version: 5.2.7.1)
Acer Empowering Technology (x32 Version: 3.0.3016)
Acer ePower Management (x32 Version: 3.0.3019)
Acer eRecovery Management (x32 Version: 4.05.3003)
Acer GridVista (x32 Version: 3.01.0730)
Acer Registration (x32 Version: 1.02.3004)
Acer ScreenSaver (x32 Version: 1.4.0812)
Acer VCM (x32 Version: 4.05.3000)
Acrobat.com (x32 Version: 1.6.65)
Adobe AIR (x32 Version: 1.5.0.7220)
Adobe Flash Player 10 Plugin (x32 Version: 10.1.51.45)
Adobe Flash Player 11 ActiveX (x32 Version: 11.4.402.265)
Adobe Reader 9.5.5 MUI (x32 Version: 9.5.5)
ALPS Touch Pad Driver
AMD USB Filter Driver (x32 Version: 1.0.11.86)
Ashampoo Burning Studio 9.12 (x32 Version: 9.1.2)
Ashampoo WinOptimizer 6.50 (x32 Version: 6.5.0)
ATI Catalyst Install Manager (Version: 3.0.732.0)
avast! Free Antivirus (x32 Version: 9.0.2008)
Bing Bar (x32 Version: 7.0.609.0)
Broadcom Gigabit Integrated Controller (Version: 12.24.02)
BS.Player FREE (x32 Version: 2.51.1022)
BSPlayer (x32)
Call of Duty(R) 2 (x32 Version: 1.00.0000)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Core Implementation (x32 Version: 2009.0702.1239.20840)
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.0702.1239.20840)
Catalyst Control Center Graphics Full New (x32 Version: 2009.0702.1239.20840)
Catalyst Control Center Graphics Light (x32 Version: 2009.0702.1239.20840)
Catalyst Control Center InstallProxy (x32 Version: 2009.0702.1239.20840)
Catalyst Control Center Localization All (x32 Version: 2009.0702.1239.20840)
CCC Help Czech (x32 Version: 2009.0702.1238.20840)
CCC Help Danish (x32 Version: 2009.0702.1238.20840)
CCC Help Dutch (x32 Version: 2009.0702.1238.20840)
CCC Help English (x32 Version: 2009.0702.1238.20840)
CCC Help Finnish (x32 Version: 2009.0702.1238.20840)
CCC Help French (x32 Version: 2009.0702.1238.20840)
CCC Help German (x32 Version: 2009.0702.1238.20840)
CCC Help Greek (x32 Version: 2009.0702.1238.20840)
CCC Help Hungarian (x32 Version: 2009.0702.1238.20840)
CCC Help Chinese Standard (x32 Version: 2009.0702.1238.20840)
CCC Help Chinese Traditional (x32 Version: 2009.0702.1238.20840)
CCC Help Italian (x32 Version: 2009.0702.1238.20840)
CCC Help Japanese (x32 Version: 2009.0702.1238.20840)
CCC Help Korean (x32 Version: 2009.0702.1238.20840)
CCC Help Norwegian (x32 Version: 2009.0702.1238.20840)
CCC Help Polish (x32 Version: 2009.0702.1238.20840)
CCC Help Portuguese (x32 Version: 2009.0702.1238.20840)
CCC Help Russian (x32 Version: 2009.0702.1238.20840)
CCC Help Spanish (x32 Version: 2009.0702.1238.20840)
CCC Help Swedish (x32 Version: 2009.0702.1238.20840)
CCC Help Thai (x32 Version: 2009.0702.1238.20840)
CCC Help Turkish (x32 Version: 2009.0702.1238.20840)
ccc-core-static (x32 Version: 2009.0702.1239.20840)
ccc-utility64 (Version: 2009.0702.1239.20840)
CCleaner (Version: 3.14)
CoD 2 čeština 1.1 (x32)
D3DX10 (x32 Version: 15.4.2368.0902)
Doplnok programu Messenger (x32 Version: 15.4.3502.0922)
Google Chrome (x32 Version: 31.0.1650.57)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0)
Google Toolbar for Internet Explorer (x32 Version: 7.5.4601.54)
Google Update Helper (x32 Version: 1.3.21.169)
GotClip Downloader (x32)
Handy Updater (x32)
HDAUDIO Soft Data Fax Modem with SmartCP (Version: 7.80.4.55)
Chicken Invaders 2 (x32)
ICQ6.5 (x32 Version: 6.5)
Identity Card (x32 Version: 1.00.3001)
Inca Ball (x32)
InterVideo WinDVD 8 (x32 Version: 8.5.10.39)
Java(TM) 6 Update 18 (64-bit) (Version: 6.0.180)
Java(TM) 6 Update 20 (x32 Version: 6.0.200)
Java(TM) 6 Update 39 (x32 Version: 6.0.390)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
K-Lite Codec Pack 5.7.0 (Full) (x32 Version: 5.7.0)
Launch Manager (x32 Version: 3.0.03)
LemurLeap 1.0.0 (Version: 1.0.0)
Licensing Service Install (x32 Version: 2.0.1.181)
Merriam Websters Spell Jam (x32)
Mesh Runtime (x32 Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2003 Web Components (x32 Version: 11.0.8003.0)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Outlook Connector (x32 Version: 14.0.5118.5000)
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft SQL Server Native Client (Version: 9.00.4035.00)
Microsoft SQL Server Setup Support Files (English) (x32 Version: 9.00.4035.00)
Microsoft SQL Server VSS Writer (Version: 9.00.4035.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Mobile Partner (x32 Version: 11.030.01.05.85)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
NHL® 09 (x32 Version: 2.0.1.0)
NTI Backup Now 5 (x32 Version: 5.1.2.627)
NTI Backup Now Standard (x32 Version: 5.1.2.627)
NTI Media Maker 8 (x32 Version: 8.0.12.6619)
NTI Shadow (x32 Version: 3.7.6.56)
O2Micro Flash Memory Card Reader Driver (Version: 3.31.02)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (x32 Version: 15.4.5722.2)
Project IGI (x32)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5911)
Registry Mechanic 6.0 (x32 Version: 6.0)
Skype™ 5.10 (x32 Version: 5.10.116)
SopCast 3.0.3 (x32 Version: 3.0.3)
Star Defender 4 (x32)
Súčasti Microsoft Office Small Business Connectivity (x32 Version: 2.0.7024.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Welcome Center (x32 Version: 1.00.3005)
WIDCOMM Bluetooth Software (Version: 6.5.1.2300)
Winamp (x32 Version: 5.572 )
Winamp Detector Plug-in (HKCU Version: 1.0.0.1)
Windows Driver Package - Broadcom Corporation (bcbtums) Bluetooth (02/06/2012 6.5.1.2310) (Version: 02/06/2012 6.5.1.2310)
Windows Driver Package - Broadcom Corporation Bluetooth (02/06/2012 6.5.1.2310) (Version: 02/06/2012 6.5.1.2310)
Windows Driver Package - Broadcom Corporation Bluetooth (02/07/2012 6.5.1.2312) (Version: 02/07/2012 6.5.1.2312)
Windows Driver Package - Broadcom HIDClass (09/11/2009 6.3.0.1500) (Version: 09/11/2009 6.3.0.1500)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live Fotogaléria (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Messenger (x32 Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live Sync (x32 Version: 14.0.8064.206)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3502.0922)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
WinRAR archiver (x32)
WorldUnlock Codes Calculator (x32)
==================== Restore Points =========================
19-10-2013 16:11:55 Windows Update
25-10-2013 13:06:17 Windows Update
26-10-2013 19:40:32 Windows Update
01-11-2013 16:01:21 Windows Update
05-11-2013 11:57:38 Windows Update
09-11-2013 13:13:22 Windows Update
12-11-2013 16:55:32 Windows Update
16-11-2013 16:30:57 Windows Update
16-11-2013 17:49:54 Windows Update
20-11-2013 16:14:41 Windows Update
24-11-2013 16:37:24 avast! antivirus system restore point
26-11-2013 17:33:03 Windows Update
26-11-2013 19:51:02 Windows Update
==================== Hosts content: ==========================
2009-07-14 03:34 - 2011-09-19 07:42 - 00437695 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 www.123fporn.info
127.0.0.1 123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
There are 1000 more lines.
==================== Scheduled Tasks (whitelisted) =============
Task: {437CA6B9-A272-4D57-9D7B-3314E1BE7F4B} - \EPUpdater No Task File
Task: {47069CC8-2895-4FEB-8AD7-C00430BF741F} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {48660FBB-69EA-472E-8DC6-3956D98F0DC6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-24] (Google Inc.)
Task: {71DF1A9D-33DE-4FED-A9CB-9B8D39CFF0F3} - \Desk 365 RunAsStdUser No Task File
Task: {BC57048F-F9B7-44B2-89BB-F1F59F15A2FC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-24] (Google Inc.)
Task: {C32C573C-6594-488D-AEB8-9E5507A81A24} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation)
Task: {D714587C-3371-490D-BE22-F71C6B5C6313} - \Omiga Plus RunAsStdUser No Task File
Task: {DECF78D8-CEF5-45F4-9698-1839F441A601} - System32\Tasks\{4581542F-16B8-43FF-8D33-EB673D0371D1} => C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe [2010-02-23] ()
Task: {EE82A3E3-FEEB-4AF1-A424-E7B5C644DB69} - System32\Tasks\{C4237B9E-8A1B-4A6C-A740-80C9C9098535} => C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe [2010-02-23] ()
Task: {FA81FDD3-2486-4A97-A2D8-FA97695EFE0F} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2009-07-09] (Acer)
Task: {FC8F2973-A174-4176-B5F3-E06BB300086E} - System32\Tasks\{88E18507-6240-4210-B951-BB034DE82F1C} => Iexplore.exe http://ui.skype.com/ui/0/4.2.0.152/cs/p ... tinstaller
Task: {FD4BA4E4-F6F1-41EB-9D13-C81BDC187D7F} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-11-24] (AVAST Software)
Task: {FFD6B567-5276-4867-9006-38392BFB89FD} - System32\Tasks\{AE036DD5-A391-40D9-AFDE-A8D717D0680A} => Iexplore.exe http://ui.skype.com/ui/0/4.2.0.152/cs/a ... baroffered
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2009-09-07 19:41 - 2009-09-07 19:41 - 00036864 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3016.0__4df5dcab8860d239\Framework.Utility.dll
2009-09-07 19:41 - 2009-09-07 19:41 - 00061440 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3016.0__3036420f80dd6947\Framework.Library.dll
2009-09-07 19:41 - 2009-09-07 19:41 - 00020480 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Model.ControllerInterface\3.0.3016.0__d842b71b4d6ed079\Framework.Model.ControllerInterface.dll
2009-05-13 18:44 - 2009-05-13 18:44 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2009-10-11 18:25 - 2009-10-11 18:25 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2013-11-27 18:31 - 2013-11-27 14:55 - 02149376 _____ () C:\Program Files\AVAST Software\Avast\defs\13112701\algo.dll
2013-11-24 17:46 - 2013-11-24 17:46 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00014848 _____ () C:\Program Files (x86)\Mobile Partner\isaputrace.dll
2010-02-23 18:43 - 2009-07-30 22:01 - 00110592 _____ () C:\Program Files (x86)\Mobile Partner\DeviceMgrPlugin.dll
2010-02-23 18:43 - 2009-09-19 10:59 - 00114688 _____ () C:\Program Files (x86)\Mobile Partner\NetInfoPlugin.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00086016 _____ () C:\Program Files (x86)\Mobile Partner\DialUpPlugin.dll
2010-02-23 18:43 - 2009-08-29 16:18 - 00888832 _____ () C:\Program Files (x86)\Mobile Partner\NDISAPI.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00147456 _____ () C:\Program Files (x86)\Mobile Partner\DetectDev.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00524288 _____ () C:\Program Files (x86)\Mobile Partner\atcomm.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00061440 _____ () C:\Program Files (x86)\Mobile Partner\XCodec.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00040960 _____ () C:\Program Files (x86)\Mobile Partner\DeviceOperate.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00057344 _____ () C:\Program Files (x86)\Mobile Partner\ConfigFilePlugin.dll
2010-02-23 18:43 - 2009-07-31 11:12 - 00167936 _____ () C:\Program Files (x86)\Mobile Partner\DeviceMgrUIPlugin.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00139264 _____ () C:\Program Files (x86)\Mobile Partner\LocaleMgrPlugin.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00090112 _____ () C:\Program Files (x86)\Mobile Partner\FileManager.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00159744 _____ () C:\Program Files (x86)\Mobile Partner\SMSPlugin.dll
2010-02-23 18:43 - 2009-09-23 15:51 - 00032768 _____ () C:\Program Files (x86)\Mobile Partner\NotifyServicePlugin.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:1D32EC29
AlternateDataStreams: C:\ProgramData\TEMP:AB689DEA
AlternateDataStreams: C:\ProgramData\TEMP:E3C56885
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/26/2013 07:01:56 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.
System errors:
=============
Error: (11/27/2013 06:28:53 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby regi zlyhalo kvôli nasledujúcej chybe:
%%2
Error: (11/27/2013 06:28:29 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby eamonm zlyhalo kvôli nasledujúcej chybe:
%%2
Error: (11/26/2013 08:52:51 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80070643: Program Internet Explorer 11 pre systém Windows 7 pre systémy s procesorom x64.
Error: (11/26/2013 07:31:49 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby Update LemurLeap zlyhalo kvôli nasledujúcej chybe:
%%1053
Error: (11/26/2013 07:31:49 PM) (Source: Service Control Manager) (User: )
Description: Počas čakania na pripojenie služby Update LemurLeap bol dosiahnutý časový limit (30000 ms).
Error: (11/26/2013 07:31:12 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby regi zlyhalo kvôli nasledujúcej chybe:
%%2
Error: (11/26/2013 07:30:15 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby eamonm zlyhalo kvôli nasledujúcej chybe:
%%2
Microsoft Office Sessions:
=========================
Error: (11/26/2013 07:01:56 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
CodeIntegrity Errors:
===================================
Date: 2010-02-22 17:50:26.768
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:26.768
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:26.752
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:26.721
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:25.645
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:25.629
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:25.614
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:25.598
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:24.958
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2010-02-22 17:50:24.927
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ProgramData\Spyware Terminator\fileobjinfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Percentage of memory in use: 47%
Total physical RAM: 2814.36 MB
Available physical RAM: 1491.18 MB
Total Pagefile: 5626.9 MB
Available Pagefile: 3855.06 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: (ACER) (Fixed) (Total:286.27 GB) (Free:177.09 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 298 GB) (Disk ID: 76FF76FF)
Partition 1: (Not Active) - (Size=12 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=286 GB) - (Type=07 NTFS)
==================== End Of Log ============================
==================== End Of Log ============================
Re: pomaly pc, prosim o pomoc
Nepostupujete dle navodu 
My si je nepiseme jen tak z nudy a sami pro sebe...Navic urcite musel i FRSTLauncher upozornit, ze FRST neni na plose FRST ma byt na plose
Running from C:\Users\Janka\Downloads
Takze jej tam presunte i spolu s FRSTLauncherem Spustte FRSTLauncher"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: pomaly pc, prosim o pomoc
ospravedlujem sa, dufam, ze teraz to uz bude dobre
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-11-2013
Ran by Janka (administrator) on JANKA-PC on 29-11-2013 19:42:21
Running from C:\Users\Janka\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
() C:\Windows\PLFSetI.exe
() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
(Acer Inc.) C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(LemurLeap) C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe
(LemurLeap) C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
() C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
() C:\Program Files (x86)\EA Sports\NHL 09\nhl2009.exe
(Farbar) C:\Users\Janka\Downloads\FRST64 (1).exe
(forum.viry.cz) C:\Users\Janka\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8060960 2009-08-06] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint2K\Apoint.exe [306688 2009-06-23] (Alps Electric Co., Ltd.)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2008-07-30] ()
HKLM\...\Run: [ePower_DMC] - C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [492032 2009-07-21] (Acer Inc.)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-24] (Google Inc.)
MountPoints2: {1e067ae3-20a2-11df-9fe8-00262d521594} - E:\AutoRun.exe
MountPoints2: {6b1a6a73-1ff2-11df-ac7a-00262d521594} - F:\autorun.exe
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-07-02] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1130504 2009-08-28] (Dritek System Inc.)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [37888 2010-01-13] (Nullsoft, Inc.)
HKLM-x32\...\Run: [NWEReboot] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-24] (AVAST Software)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] ()
AppInit_DLLs: [ ] ()
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.sk/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapBHO.dll (LemurLeap)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{12AB0BDB-5BE8-4AFA-B06A-3FA9CBD15E3B}: [NameServer]213.151.200.31 85.237.225.250
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR Extension: (Google Docs) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (avast! Online Security) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_1
CHR Extension: (LemurLeap) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof\1.0.0_1
CHR HKLM-x32\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files (x86)\BetterSurf\ch\Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-24] (AVAST Software)
S3 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [544768 2009-08-24] (mst software GmbH, Germany)
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2009-08-12] ()
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [253952 2009-07-10] (Acer Incorporated)
R2 Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [65312 2013-10-03] (LemurLeap)
R2 Util LemurLeap; C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe [65312 2013-10-13] (LemurLeap)
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-24] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-24] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-24] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-24] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-24] ()
R3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114560 2009-07-24] (Huawei Technologies Co., Ltd.)
R3 O2MDRDR; C:\Windows\system32\DRIVERS\o2mdx64.sys [63264 2009-05-07] (O2Micro )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2010-02-22] ()
U3 a0rx22xm; C:\Windows\System32\Drivers\a0rx22xm.sys [0 ] (Microsoft Corporation)
S2 eamonm; system32\DRIVERS\eamonm.sys [x]
S2 regi; \??\C:\Windows\system32\drivers\regi.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-29 19:42 - 2013-11-29 19:43 - 00013284 _____ C:\Users\Janka\Desktop\FRST.txt
2013-11-29 19:39 - 2013-11-29 19:40 - 01959024 _____ (Farbar) C:\Users\Janka\Downloads\FRST64 (1).exe
2013-11-29 19:38 - 2013-11-29 19:38 - 01959024 _____ (Farbar) C:\Users\Janka\Desktop\FRST64.exe
2013-11-27 18:42 - 2013-11-27 18:43 - 00024387 _____ C:\Users\Janka\Downloads\Addition.txt
2013-11-27 18:40 - 2013-11-27 18:40 - 00112640 _____ (forum.viry.cz) C:\Users\Janka\Desktop\FRSTLauncher.exe
2013-11-27 18:40 - 2013-11-27 18:40 - 00000000 ____D C:\FRST
2013-11-26 20:51 - 2013-11-26 20:52 - 00004564 _____ C:\Windows\IE11_main.log
2013-11-26 19:26 - 2013-11-26 19:26 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (2).exe
2013-11-26 19:25 - 2013-11-26 19:28 - 00000000 ____D C:\AdwCleaner
2013-11-26 19:24 - 2013-11-26 19:24 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (1).exe
2013-11-26 19:10 - 2013-11-26 19:11 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Janka\Downloads\AdobeAIRInstaller.exe
2013-11-26 18:35 - 2013-11-26 19:25 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner.exe
2013-11-26 18:29 - 2013-11-26 18:29 - 00004581 _____ C:\Users\Janka\Desktop\JRT.txt
2013-11-25 19:54 - 2013-11-25 19:54 - 01034531 _____ (Thisisu) C:\Users\Janka\Desktop\JRT.exe
2013-11-25 19:52 - 2013-11-25 19:52 - 00000000 ____D C:\Windows\ERUNT
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64.exe
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64 (1).exe
2013-11-24 17:53 - 2013-11-24 17:53 - 00000000 ____D C:\Users\Janka\AppData\Roaming\AVAST Software
2013-11-24 17:52 - 2013-11-24 17:52 - 00001976 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-11-24 17:52 - 2013-11-24 17:52 - 00000000 ____D C:\Users\Janka\AppData\Local\avgchrome
2013-11-24 17:51 - 2013-11-24 17:51 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-24 17:50 - 2013-11-24 17:50 - 00002237 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-24 17:47 - 2013-11-29 18:52 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-24 17:47 - 2013-11-29 17:52 - 00000930 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-24 17:47 - 2013-11-24 17:47 - 00003930 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-24 17:47 - 2013-11-24 17:47 - 00003678 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-24 17:46 - 2013-11-24 17:46 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-24 17:46 - 2013-11-24 17:46 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-24 17:46 - 2013-11-24 17:46 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-24 17:37 - 2013-11-24 17:37 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-24 17:36 - 2013-11-24 17:36 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-24 13:37 - 2013-11-29 13:47 - 00000504 _____ C:\Windows\setupact.log
2013-11-24 13:37 - 2013-11-24 22:22 - 00010848 _____ C:\Windows\PFRO.log
2013-11-24 13:37 - 2013-11-24 13:37 - 00000000 _____ C:\Windows\setuperr.log
2013-11-17 08:52 - 2013-11-17 08:52 - 00000000 __SHD C:\found.000
2013-11-16 18:59 - 2013-10-12 09:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-16 18:59 - 2013-10-12 09:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-16 18:59 - 2013-10-12 07:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-16 18:59 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-16 18:59 - 2013-10-12 06:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-16 18:59 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-16 18:58 - 2013-10-12 09:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-16 18:58 - 2013-10-12 09:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-16 18:58 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-16 18:58 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-16 18:06 - 2013-11-25 17:32 - 00000000 ____D C:\Program Files\trend micro
2013-11-16 18:06 - 2013-11-16 18:06 - 00000000 ____D C:\rsit
2013-11-16 17:58 - 2013-11-16 17:58 - 00000000 _____ C:\extensions.sqlite
2013-11-16 17:31 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-16 17:31 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-16 17:31 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-16 17:31 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-16 17:31 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-16 17:31 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-16 17:31 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-16 17:31 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-16 17:31 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-16 17:30 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-16 17:30 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-16 17:30 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-16 17:30 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-16 17:30 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-16 17:30 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-16 17:30 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-16 17:30 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-16 17:30 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-16 17:30 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-16 17:30 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-16 17:30 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-16 17:30 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-16 17:30 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-16 17:30 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-16 17:30 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-16 17:30 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-16 17:30 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-16 17:30 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-16 17:30 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-16 17:30 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
==================== One Month Modified Files and Folders =======
2013-11-29 19:43 - 2013-11-29 19:42 - 00013284 _____ C:\Users\Janka\Desktop\FRST.txt
2013-11-29 19:40 - 2013-11-29 19:39 - 01959024 _____ (Farbar) C:\Users\Janka\Downloads\FRST64 (1).exe
2013-11-29 19:38 - 2013-11-29 19:38 - 01959024 _____ (Farbar) C:\Users\Janka\Desktop\FRST64.exe
2013-11-29 18:59 - 2009-10-11 18:21 - 01598318 _____ C:\Windows\WindowsUpdate.log
2013-11-29 18:52 - 2013-11-24 17:47 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-29 17:52 - 2013-11-24 17:47 - 00000930 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-29 13:56 - 2009-07-14 05:45 - 00017600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-29 13:56 - 2009-07-14 05:45 - 00017600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-29 13:48 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-29 13:47 - 2013-11-24 13:37 - 00000504 _____ C:\Windows\setupact.log
2013-11-27 18:43 - 2013-11-27 18:42 - 00024387 _____ C:\Users\Janka\Downloads\Addition.txt
2013-11-27 18:40 - 2013-11-27 18:40 - 00112640 _____ (forum.viry.cz) C:\Users\Janka\Desktop\FRSTLauncher.exe
2013-11-27 18:40 - 2013-11-27 18:40 - 00000000 ____D C:\FRST
2013-11-26 20:52 - 2013-11-26 20:51 - 00004564 _____ C:\Windows\IE11_main.log
2013-11-26 20:50 - 2013-10-12 13:17 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-11-26 19:28 - 2013-11-26 19:25 - 00000000 ____D C:\AdwCleaner
2013-11-26 19:28 - 2010-02-23 10:21 - 00000000 ____D C:\ProgramData\ICQ
2013-11-26 19:26 - 2013-11-26 19:26 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (2).exe
2013-11-26 19:25 - 2013-11-26 18:35 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner.exe
2013-11-26 19:24 - 2013-11-26 19:24 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (1).exe
2013-11-26 19:11 - 2013-11-26 19:10 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Janka\Downloads\AdobeAIRInstaller.exe
2013-11-26 18:29 - 2013-11-26 18:29 - 00004581 _____ C:\Users\Janka\Desktop\JRT.txt
2013-11-26 18:29 - 2011-05-08 16:57 - 00001421 _____ C:\Users\Janka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-25 19:54 - 2013-11-25 19:54 - 01034531 _____ (Thisisu) C:\Users\Janka\Desktop\JRT.exe
2013-11-25 19:52 - 2013-11-25 19:52 - 00000000 ____D C:\Windows\ERUNT
2013-11-25 19:43 - 2010-02-22 17:32 - 00000952 ___SH C:\ProgramData\KGyGaAvL.sys
2013-11-25 17:32 - 2013-11-16 18:06 - 00000000 ____D C:\Program Files\trend micro
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64.exe
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64 (1).exe
2013-11-24 22:22 - 2013-11-24 13:37 - 00010848 _____ C:\Windows\PFRO.log
2013-11-24 19:47 - 2012-02-12 16:54 - 36974310 _____ C:\Users\Janka\Downloads\Norton-Internet-Security-2010-CZ-+crack+navod.rar
2013-11-24 19:47 - 2011-09-15 14:56 - 40528015 _____ C:\Users\Janka\Downloads\NOD32--4.2-+-crack---64bit.rar
2013-11-24 18:06 - 2010-02-22 16:21 - 00000000 ____D C:\Users\Janka\AppData\Local\Google
2013-11-24 17:53 - 2013-11-24 17:53 - 00000000 ____D C:\Users\Janka\AppData\Roaming\AVAST Software
2013-11-24 17:52 - 2013-11-24 17:52 - 00001976 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-11-24 17:52 - 2013-11-24 17:52 - 00000000 ____D C:\Users\Janka\AppData\Local\avgchrome
2013-11-24 17:51 - 2013-11-24 17:51 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-24 17:51 - 2009-08-28 20:32 - 00000000 ____D C:\ProgramData\Google
2013-11-24 17:51 - 2009-08-28 20:32 - 00000000 ____D C:\Program Files\Google
2013-11-24 17:51 - 2009-08-28 20:32 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-24 17:50 - 2013-11-24 17:50 - 00002237 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-24 17:47 - 2013-11-24 17:47 - 00003930 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-24 17:47 - 2013-11-24 17:47 - 00003678 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-24 17:46 - 2013-11-24 17:46 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-24 17:46 - 2013-11-24 17:46 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-24 17:46 - 2013-11-24 17:46 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-24 17:37 - 2013-11-24 17:37 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-24 17:36 - 2013-11-24 17:36 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-24 17:27 - 2010-02-23 10:34 - 00000000 ____D C:\Program Files (x86)\ESET
2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2013-11-24 13:51 - 2010-02-22 17:35 - 00000000 ____D C:\Users\Janka\AppData\Roaming\Winamp
2013-11-24 13:37 - 2013-11-24 13:37 - 00000000 _____ C:\Windows\setuperr.log
2013-11-23 16:37 - 2009-07-27 21:41 - 00000000 ____D C:\Windows\Panther
2013-11-17 09:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-17 08:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sk-SK
2013-11-17 08:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sk-SK
2013-11-17 08:52 - 2013-11-17 08:52 - 00000000 __SHD C:\found.000
2013-11-16 18:55 - 2013-07-29 15:17 - 00000000 ____D C:\Windows\system32\MRT
2013-11-16 18:50 - 2010-02-23 10:22 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-16 18:06 - 2013-11-16 18:06 - 00000000 ____D C:\rsit
2013-11-16 17:58 - 2013-11-16 17:58 - 00000000 _____ C:\extensions.sqlite
2013-11-16 17:44 - 2013-10-12 10:14 - 00000000 ____D C:\Windows\Minidump
2013-11-11 05:50 - 2010-02-23 10:11 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
Some content of TEMP:
====================
C:\Users\Janka\AppData\Local\Temp\Quarantine.exe
C:\Users\Janka\AppData\Local\Temp\uninst1.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Janka\Desktop" je 475 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-11-2013
Ran by Janka (administrator) on JANKA-PC on 29-11-2013 19:42:21
Running from C:\Users\Janka\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
() C:\Windows\PLFSetI.exe
() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
(Acer Inc.) C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(LemurLeap) C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe
(LemurLeap) C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(InterVideo) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
() C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
() C:\Program Files (x86)\EA Sports\NHL 09\nhl2009.exe
(Farbar) C:\Users\Janka\Downloads\FRST64 (1).exe
(forum.viry.cz) C:\Users\Janka\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8060960 2009-08-06] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint2K\Apoint.exe [306688 2009-06-23] (Alps Electric Co., Ltd.)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2008-07-30] ()
HKLM\...\Run: [ePower_DMC] - C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [492032 2009-07-21] (Acer Inc.)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-24] (Google Inc.)
MountPoints2: {1e067ae3-20a2-11df-9fe8-00262d521594} - E:\AutoRun.exe
MountPoints2: {6b1a6a73-1ff2-11df-ac7a-00262d521594} - F:\autorun.exe
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-07-02] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1130504 2009-08-28] (Dritek System Inc.)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [37888 2010-01-13] (Nullsoft, Inc.)
HKLM-x32\...\Run: [NWEReboot] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-24] (AVAST Software)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] ()
AppInit_DLLs: [ ] ()
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.sk/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapBHO.dll (LemurLeap)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{12AB0BDB-5BE8-4AFA-B06A-3FA9CBD15E3B}: [NameServer]213.151.200.31 85.237.225.250
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR Extension: (Google Docs) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (avast! Online Security) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_1
CHR Extension: (LemurLeap) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof\1.0.0_1
CHR HKLM-x32\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files (x86)\BetterSurf\ch\Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-24] (AVAST Software)
S3 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [544768 2009-08-24] (mst software GmbH, Germany)
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2009-08-12] ()
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [253952 2009-07-10] (Acer Incorporated)
R2 Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [65312 2013-10-03] (LemurLeap)
R2 Util LemurLeap; C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe [65312 2013-10-13] (LemurLeap)
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-24] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-24] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-24] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-24] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-24] ()
R3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114560 2009-07-24] (Huawei Technologies Co., Ltd.)
R3 O2MDRDR; C:\Windows\system32\DRIVERS\o2mdx64.sys [63264 2009-05-07] (O2Micro )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2010-02-22] ()
U3 a0rx22xm; C:\Windows\System32\Drivers\a0rx22xm.sys [0 ] (Microsoft Corporation)
S2 eamonm; system32\DRIVERS\eamonm.sys [x]
S2 regi; \??\C:\Windows\system32\drivers\regi.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-29 19:42 - 2013-11-29 19:43 - 00013284 _____ C:\Users\Janka\Desktop\FRST.txt
2013-11-29 19:39 - 2013-11-29 19:40 - 01959024 _____ (Farbar) C:\Users\Janka\Downloads\FRST64 (1).exe
2013-11-29 19:38 - 2013-11-29 19:38 - 01959024 _____ (Farbar) C:\Users\Janka\Desktop\FRST64.exe
2013-11-27 18:42 - 2013-11-27 18:43 - 00024387 _____ C:\Users\Janka\Downloads\Addition.txt
2013-11-27 18:40 - 2013-11-27 18:40 - 00112640 _____ (forum.viry.cz) C:\Users\Janka\Desktop\FRSTLauncher.exe
2013-11-27 18:40 - 2013-11-27 18:40 - 00000000 ____D C:\FRST
2013-11-26 20:51 - 2013-11-26 20:52 - 00004564 _____ C:\Windows\IE11_main.log
2013-11-26 19:26 - 2013-11-26 19:26 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (2).exe
2013-11-26 19:25 - 2013-11-26 19:28 - 00000000 ____D C:\AdwCleaner
2013-11-26 19:24 - 2013-11-26 19:24 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (1).exe
2013-11-26 19:10 - 2013-11-26 19:11 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Janka\Downloads\AdobeAIRInstaller.exe
2013-11-26 18:35 - 2013-11-26 19:25 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner.exe
2013-11-26 18:29 - 2013-11-26 18:29 - 00004581 _____ C:\Users\Janka\Desktop\JRT.txt
2013-11-25 19:54 - 2013-11-25 19:54 - 01034531 _____ (Thisisu) C:\Users\Janka\Desktop\JRT.exe
2013-11-25 19:52 - 2013-11-25 19:52 - 00000000 ____D C:\Windows\ERUNT
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64.exe
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64 (1).exe
2013-11-24 17:53 - 2013-11-24 17:53 - 00000000 ____D C:\Users\Janka\AppData\Roaming\AVAST Software
2013-11-24 17:52 - 2013-11-24 17:52 - 00001976 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-11-24 17:52 - 2013-11-24 17:52 - 00000000 ____D C:\Users\Janka\AppData\Local\avgchrome
2013-11-24 17:51 - 2013-11-24 17:51 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-24 17:50 - 2013-11-24 17:50 - 00002237 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-24 17:47 - 2013-11-29 18:52 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-24 17:47 - 2013-11-29 17:52 - 00000930 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-24 17:47 - 2013-11-24 17:47 - 00003930 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-24 17:47 - 2013-11-24 17:47 - 00003678 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-24 17:46 - 2013-11-24 17:46 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-24 17:46 - 2013-11-24 17:46 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-24 17:46 - 2013-11-24 17:46 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-24 17:37 - 2013-11-24 17:37 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-24 17:36 - 2013-11-24 17:36 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-24 13:37 - 2013-11-29 13:47 - 00000504 _____ C:\Windows\setupact.log
2013-11-24 13:37 - 2013-11-24 22:22 - 00010848 _____ C:\Windows\PFRO.log
2013-11-24 13:37 - 2013-11-24 13:37 - 00000000 _____ C:\Windows\setuperr.log
2013-11-17 08:52 - 2013-11-17 08:52 - 00000000 __SHD C:\found.000
2013-11-16 18:59 - 2013-10-12 09:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-16 18:59 - 2013-10-12 09:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-16 18:59 - 2013-10-12 09:43 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-16 18:59 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-16 18:59 - 2013-10-12 07:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-16 18:59 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-16 18:59 - 2013-10-12 06:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-16 18:59 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-16 18:58 - 2013-10-12 09:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-16 18:58 - 2013-10-12 09:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-16 18:58 - 2013-10-12 09:43 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-16 18:58 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-16 18:58 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-16 18:58 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-16 18:06 - 2013-11-25 17:32 - 00000000 ____D C:\Program Files\trend micro
2013-11-16 18:06 - 2013-11-16 18:06 - 00000000 ____D C:\rsit
2013-11-16 17:58 - 2013-11-16 17:58 - 00000000 _____ C:\extensions.sqlite
2013-11-16 17:31 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-16 17:31 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-16 17:31 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-16 17:31 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-16 17:31 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-16 17:31 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-16 17:31 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-16 17:31 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-16 17:31 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-16 17:30 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-16 17:30 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-16 17:30 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-16 17:30 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-16 17:30 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-16 17:30 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-16 17:30 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-16 17:30 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-16 17:30 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-16 17:30 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-16 17:30 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-16 17:30 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-16 17:30 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-16 17:30 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-16 17:30 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-16 17:30 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-16 17:30 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-16 17:30 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-16 17:30 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-16 17:30 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-16 17:30 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
==================== One Month Modified Files and Folders =======
2013-11-29 19:43 - 2013-11-29 19:42 - 00013284 _____ C:\Users\Janka\Desktop\FRST.txt
2013-11-29 19:40 - 2013-11-29 19:39 - 01959024 _____ (Farbar) C:\Users\Janka\Downloads\FRST64 (1).exe
2013-11-29 19:38 - 2013-11-29 19:38 - 01959024 _____ (Farbar) C:\Users\Janka\Desktop\FRST64.exe
2013-11-29 18:59 - 2009-10-11 18:21 - 01598318 _____ C:\Windows\WindowsUpdate.log
2013-11-29 18:52 - 2013-11-24 17:47 - 00000934 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-29 17:52 - 2013-11-24 17:47 - 00000930 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-29 13:56 - 2009-07-14 05:45 - 00017600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-29 13:56 - 2009-07-14 05:45 - 00017600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-29 13:48 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-29 13:47 - 2013-11-24 13:37 - 00000504 _____ C:\Windows\setupact.log
2013-11-27 18:43 - 2013-11-27 18:42 - 00024387 _____ C:\Users\Janka\Downloads\Addition.txt
2013-11-27 18:40 - 2013-11-27 18:40 - 00112640 _____ (forum.viry.cz) C:\Users\Janka\Desktop\FRSTLauncher.exe
2013-11-27 18:40 - 2013-11-27 18:40 - 00000000 ____D C:\FRST
2013-11-26 20:52 - 2013-11-26 20:51 - 00004564 _____ C:\Windows\IE11_main.log
2013-11-26 20:50 - 2013-10-12 13:17 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-11-26 19:28 - 2013-11-26 19:25 - 00000000 ____D C:\AdwCleaner
2013-11-26 19:28 - 2010-02-23 10:21 - 00000000 ____D C:\ProgramData\ICQ
2013-11-26 19:26 - 2013-11-26 19:26 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (2).exe
2013-11-26 19:25 - 2013-11-26 18:35 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner.exe
2013-11-26 19:24 - 2013-11-26 19:24 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (1).exe
2013-11-26 19:11 - 2013-11-26 19:10 - 18095192 _____ (Adobe Systems Inc.) C:\Users\Janka\Downloads\AdobeAIRInstaller.exe
2013-11-26 18:29 - 2013-11-26 18:29 - 00004581 _____ C:\Users\Janka\Desktop\JRT.txt
2013-11-26 18:29 - 2011-05-08 16:57 - 00001421 _____ C:\Users\Janka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-25 19:54 - 2013-11-25 19:54 - 01034531 _____ (Thisisu) C:\Users\Janka\Desktop\JRT.exe
2013-11-25 19:52 - 2013-11-25 19:52 - 00000000 ____D C:\Windows\ERUNT
2013-11-25 19:43 - 2010-02-22 17:32 - 00000952 ___SH C:\ProgramData\KGyGaAvL.sys
2013-11-25 17:32 - 2013-11-16 18:06 - 00000000 ____D C:\Program Files\trend micro
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64.exe
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64 (1).exe
2013-11-24 22:22 - 2013-11-24 13:37 - 00010848 _____ C:\Windows\PFRO.log
2013-11-24 19:47 - 2012-02-12 16:54 - 36974310 _____ C:\Users\Janka\Downloads\Norton-Internet-Security-2010-CZ-+crack+navod.rar
2013-11-24 19:47 - 2011-09-15 14:56 - 40528015 _____ C:\Users\Janka\Downloads\NOD32--4.2-+-crack---64bit.rar
2013-11-24 18:06 - 2010-02-22 16:21 - 00000000 ____D C:\Users\Janka\AppData\Local\Google
2013-11-24 17:53 - 2013-11-24 17:53 - 00000000 ____D C:\Users\Janka\AppData\Roaming\AVAST Software
2013-11-24 17:52 - 2013-11-24 17:52 - 00001976 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-11-24 17:52 - 2013-11-24 17:52 - 00000000 ____D C:\Users\Janka\AppData\Local\avgchrome
2013-11-24 17:51 - 2013-11-24 17:51 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-24 17:51 - 2009-08-28 20:32 - 00000000 ____D C:\ProgramData\Google
2013-11-24 17:51 - 2009-08-28 20:32 - 00000000 ____D C:\Program Files\Google
2013-11-24 17:51 - 2009-08-28 20:32 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-24 17:50 - 2013-11-24 17:50 - 00002237 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-24 17:47 - 2013-11-24 17:47 - 00003930 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-24 17:47 - 2013-11-24 17:47 - 00003678 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-24 17:46 - 2013-11-24 17:46 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-24 17:46 - 2013-11-24 17:46 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
Kód: Vybrat vše
2013-11-24 17:46 - 2013-11-24 17:46 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-24 17:46 - 2013-11-24 17:46 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-24 17:46 - 2013-11-24 17:46 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-24 17:37 - 2013-11-24 17:37 - 00000000 ____D C:\Program Files\AVAST Software
2013-11-24 17:36 - 2013-11-24 17:36 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-24 17:27 - 2010-02-23 10:34 - 00000000 ____D C:\Program Files (x86)\ESET
2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2013-11-24 13:51 - 2010-02-22 17:35 - 00000000 ____D C:\Users\Janka\AppData\Roaming\Winamp
2013-11-24 13:37 - 2013-11-24 13:37 - 00000000 _____ C:\Windows\setuperr.log
2013-11-23 16:37 - 2009-07-27 21:41 - 00000000 ____D C:\Windows\Panther
2013-11-17 09:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-17 08:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sk-SK
2013-11-17 08:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sk-SK
2013-11-17 08:52 - 2013-11-17 08:52 - 00000000 __SHD C:\found.000
2013-11-16 18:55 - 2013-07-29 15:17 - 00000000 ____D C:\Windows\system32\MRT
2013-11-16 18:50 - 2010-02-23 10:22 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-16 18:06 - 2013-11-16 18:06 - 00000000 ____D C:\rsit
2013-11-16 17:58 - 2013-11-16 17:58 - 00000000 _____ C:\extensions.sqlite
2013-11-16 17:44 - 2013-10-12 10:14 - 00000000 ____D C:\Windows\Minidump
2013-11-11 05:50 - 2010-02-23 10:11 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
Some content of TEMP:
====================
C:\Users\Janka\AppData\Local\Temp\Quarantine.exe
C:\Users\Janka\AppData\Local\Temp\uninst1.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Janka\Desktop" je 475 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
- Přílohy
-
- Addition.rar
- (4.05 KiB) Staženo 39 x
Re: pomaly pc, prosim o pomoc
Tvorba fixlistu pro FRST
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
Start HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-24] (Google Inc.) MountPoints2: {1e067ae3-20a2-11df-9fe8-00262d521594} - E:\AutoRun.exe MountPoints2: {6b1a6a73-1ff2-11df-ac7a-00262d521594} - F:\autorun.exe HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated) HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [37888 2010-01-13] (Nullsoft, Inc.) HKLM-x32\...\Run: [NWEReboot] - [x] HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] () HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] () AppInit_DLLs: [ ] () BHO-x32: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapBHO.dll (LemurLeap) Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File CHR Extension: (LemurLeap) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof\1.0.0_1 CHR HKLM-x32\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files (x86)\BetterSurf\ch\Chrome.crx CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx R2 Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [65312 2013-10-03] (LemurLeap) R2 Util LemurLeap; C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe [65312 2013-10-13] (LemurLeap) U3 abl0euuv; C:\Windows\System32\Drivers\abl0euuv.sys [0 ] (Microsoft Corporation) S2 eamonm; system32\DRIVERS\eamonm.sys [x] S2 regi; \??\C:\Windows\system32\drivers\regi.sys [x] C:\Program Files (x86)\LemurLeap C:\Program Files (x86)\BetterSurf 2013-11-27 18:40 - 2013-11-27 18:40 - 00112640 _____ (forum.viry.cz) C:\Users\Janka\Downloads\FRSTLauncher.exe 2013-11-27 18:40 - 2013-11-27 18:40 - 00029696 _____ C:\Users\Janka\AppData\Local\MSGBOX.EXE 2013-11-27 18:40 - 2013-11-27 18:40 - 00015327 _____ C:\Users\Janka\Desktop\LM.bat 2013-11-27 18:39 - 2013-11-27 18:40 - 01958818 _____ (Farbar) C:\Users\Janka\Downloads\FRST64.exe 2013-11-26 19:26 - 2013-11-26 19:26 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (2).exe 2013-11-26 19:24 - 2013-11-26 19:24 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (1).exe 2013-11-26 18:35 - 2013-11-26 19:25 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner.exe 2013-11-26 18:29 - 2013-11-26 18:29 - 00004581 _____ C:\Users\Janka\Desktop\JRT.txt 2013-11-25 19:54 - 2013-11-25 19:54 - 01034531 _____ (Thisisu) C:\Users\Janka\Desktop\JRT.exe2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64.exe 2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64 (1).exe 2013-11-24 17:52 - 2013-11-24 17:52 - 00000000 ____D C:\Users\Janka\AppData\Local\avgchrome 2013-11-24 19:47 - 2012-02-12 16:54 - 36974310 _____ C:\Users\Janka\Downloads\Norton-Internet-Security-2010-CZ-+crack+navod.rar 2013-11-24 19:47 - 2011-09-15 14:56 - 40528015 _____ C:\Users\Janka\Downloads\NOD32--4.2-+-crack---64bit.rar 2013-11-24 17:27 - 2010-02-23 10:34 - 00000000 ____D C:\Program Files (x86)\ESET 2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy 2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy C:\Users\Janka\AppData\Local\Temp\Quarantine.exe C:\Users\Janka\AppData\Local\Temp\uninst1.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe AlternateDataStreams: C:\ProgramData\TEMP:1D32EC29 AlternateDataStreams: C:\ProgramData\TEMP:AB689DEA AlternateDataStreams: C:\ProgramData\TEMP:E3C56885 Hosts: CMD: shutdown /r /f /t 2 End- Ulozte vytvoreny TXT jako fixlist.txt
- Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
- Kliknete na Fix
- Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: pomaly pc, prosim o pomoc
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 28-11-2013
Ran by Janka at 2013-11-30 14:43:04 Run:1
Running from C:\Users\Janka\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-24] (Google Inc.)
MountPoints2: {1e067ae3-20a2-11df-9fe8-00262d521594} - E:\AutoRun.exe
MountPoints2: {6b1a6a73-1ff2-11df-ac7a-00262d521594} - F:\autorun.exe
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [37888 2010-01-13] (Nullsoft, Inc.)
HKLM-x32\...\Run: [NWEReboot] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] ()
AppInit_DLLs: [ ] ()
BHO-x32: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapBHO.dll (LemurLeap)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
CHR Extension: (LemurLeap) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof\1.0.0_1
CHR HKLM-x32\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files (x86)\BetterSurf\ch\Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
R2 Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [65312 2013-10-03] (LemurLeap)
R2 Util LemurLeap; C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe [65312 2013-10-13] (LemurLeap)
U3 abl0euuv; C:\Windows\System32\Drivers\abl0euuv.sys [0 ] (Microsoft Corporation)
S2 eamonm; system32\DRIVERS\eamonm.sys [x]
S2 regi; \??\C:\Windows\system32\drivers\regi.sys [x]
C:\Program Files (x86)\LemurLeap
C:\Program Files (x86)\BetterSurf
2013-11-27 18:40 - 2013-11-27 18:40 - 00112640 _____ (forum.viry.cz) C:\Users\Janka\Downloads\FRSTLauncher.exe
2013-11-27 18:40 - 2013-11-27 18:40 - 00029696 _____ C:\Users\Janka\AppData\Local\MSGBOX.EXE
2013-11-27 18:40 - 2013-11-27 18:40 - 00015327 _____ C:\Users\Janka\Desktop\LM.bat
2013-11-27 18:39 - 2013-11-27 18:40 - 01958818 _____ (Farbar) C:\Users\Janka\Downloads\FRST64.exe
2013-11-26 19:26 - 2013-11-26 19:26 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (2).exe
2013-11-26 19:24 - 2013-11-26 19:24 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (1).exe
2013-11-26 18:35 - 2013-11-26 19:25 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner.exe
2013-11-26 18:29 - 2013-11-26 18:29 - 00004581 _____ C:\Users\Janka\Desktop\JRT.txt
2013-11-25 19:54 - 2013-11-25 19:54 - 01034531 _____ (Thisisu) C:\Users\Janka\Desktop\JRT.exe2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64.exe
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64 (1).exe
2013-11-24 17:52 - 2013-11-24 17:52 - 00000000 ____D C:\Users\Janka\AppData\Local\avgchrome
2013-11-24 19:47 - 2012-02-12 16:54 - 36974310 _____ C:\Users\Janka\Downloads\Norton-Internet-Security-2010-CZ-+crack+navod.rar
2013-11-24 19:47 - 2011-09-15 14:56 - 40528015 _____ C:\Users\Janka\Downloads\NOD32--4.2-+-crack---64bit.rar
2013-11-24 17:27 - 2010-02-23 10:34 - 00000000 ____D C:\Program Files (x86)\ESET
2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
C:\Users\Janka\AppData\Local\Temp\Quarantine.exe
C:\Users\Janka\AppData\Local\Temp\uninst1.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\ProgramData\TEMP:1D32EC29
AlternateDataStreams: C:\ProgramData\TEMP:AB689DEA
AlternateDataStreams: C:\ProgramData\TEMP:E3C56885
Hosts:
CMD: shutdown /r /f /t 2
End
*****************
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\swg => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e067ae3-20a2-11df-9fe8-00262d521594} => Key deleted successfully.
HKCR\CLSID\{1e067ae3-20a2-11df-9fe8-00262d521594} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b1a6a73-1ff2-11df-ac7a-00262d521594} => Key deleted successfully.
HKCR\CLSID\{6b1a6a73-1ff2-11df-ac7a-00262d521594} => Key not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\WinampAgent => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\NWEReboot => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKU\Default\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ScrSav => Value deleted successfully.
HKU\Default User\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ScrSav => Value not found.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{415419c3-dad0-4df1-ac37-22c72ad81878} => Key deleted successfully.
HKCR\PROTOCOLS\Filter\text/xml => Key deleted successfully.
HKCR\CLSID\{807553E5-5146-11D5-A672-00B0D022E945} => Key not found.
C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dedmngkbaffkenlfdcbganndoghblmap => Key deleted successfully.
"C:\Program Files (x86)\BetterSurf\ch\Chrome.crx" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof => Key deleted successfully.
C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx => Moved successfully.
Update LemurLeap => Service deleted successfully.
Util LemurLeap => Service deleted successfully.
abl0euuv => Service not found.
eamonm => Service deleted successfully.
regi => Service deleted successfully.
"C:\Program Files (x86)\LemurLeap" directory move:
C:\Program Files (x86)\LemurLeap\LemurLeapBHO.dll => Moved successfully.
C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe => Moved successfully.
C:\Program Files (x86)\LemurLeap\bin\sqlite3.dll => Moved successfully.
C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe => Moved successfully.
C:\Program Files (x86)\LemurLeap\bin\plugins\LemurLeap.FFUpdate.dll => Moved successfully.
C:\Program Files (x86)\LemurLeap\bin\plugins\LemurLeap.GCUpdate.dll => Moved successfully.
C:\Program Files (x86)\LemurLeap\bin\plugins\LemurLeap.IEUpdate.dll => Moved successfully.
"C:\Program Files (x86)\LemurLeap" => Directory moved successfully.
"C:\Program Files (x86)\BetterSurf" => File/Directory not found.
"C:\Users\Janka\Downloads\FRSTLauncher.exe" => File/Directory not found.
"C:\Users\Janka\AppData\Local\MSGBOX.EXE" => File/Directory not found.
"C:\Users\Janka\Desktop\LM.bat" => File/Directory not found.
"C:\Users\Janka\Downloads\FRST64.exe" => File/Directory not found.
C:\Users\Janka\Downloads\adwcleaner (2).exe => Moved successfully.
C:\Users\Janka\Downloads\adwcleaner (1).exe => Moved successfully.
C:\Users\Janka\Downloads\adwcleaner.exe => Moved successfully.
C:\Users\Janka\Desktop\JRT.txt => Moved successfully.
C:\Users\Janka\Downloads\RSITx64.exe => Moved successfully.
C:\Users\Janka\Downloads\RSITx64 (1).exe => Moved successfully.
C:\Users\Janka\AppData\Local\avgchrome => Moved successfully.
C:\Users\Janka\Downloads\Norton-Internet-Security-2010-CZ-+crack+navod.rar => Moved successfully.
C:\Users\Janka\Downloads\NOD32--4.2-+-crack---64bit.rar => Moved successfully.
C:\Program Files (x86)\ESET => Moved successfully.
C:\ProgramData\Spybot - Search & Destroy => Moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy => Moved successfully.
C:\Users\Janka\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\Janka\AppData\Local\Temp\uninst1.exe => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\ProgramData\TEMP => ":1D32EC29" ADS removed successfully.
C:\ProgramData\TEMP => ":AB689DEA" ADS removed successfully.
C:\ProgramData\TEMP => ":E3C56885" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
========= shutdown /r /f /t 2 =========
========= End of CMD: =========
The system needs a manual reboot.
==== End of Fixlog ====
Ran by Janka at 2013-11-30 14:43:04 Run:1
Running from C:\Users\Janka\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-11-24] (Google Inc.)
MountPoints2: {1e067ae3-20a2-11df-9fe8-00262d521594} - E:\AutoRun.exe
MountPoints2: {6b1a6a73-1ff2-11df-ac7a-00262d521594} - F:\autorun.exe
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [37888 2010-01-13] (Nullsoft, Inc.)
HKLM-x32\...\Run: [NWEReboot] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162336 2009-07-22] ()
AppInit_DLLs: [ ] ()
BHO-x32: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapBHO.dll (LemurLeap)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
CHR Extension: (LemurLeap) - C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof\1.0.0_1
CHR HKLM-x32\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files (x86)\BetterSurf\ch\Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
R2 Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [65312 2013-10-03] (LemurLeap)
R2 Util LemurLeap; C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe [65312 2013-10-13] (LemurLeap)
U3 abl0euuv; C:\Windows\System32\Drivers\abl0euuv.sys [0 ] (Microsoft Corporation)
S2 eamonm; system32\DRIVERS\eamonm.sys [x]
S2 regi; \??\C:\Windows\system32\drivers\regi.sys [x]
C:\Program Files (x86)\LemurLeap
C:\Program Files (x86)\BetterSurf
2013-11-27 18:40 - 2013-11-27 18:40 - 00112640 _____ (forum.viry.cz) C:\Users\Janka\Downloads\FRSTLauncher.exe
2013-11-27 18:40 - 2013-11-27 18:40 - 00029696 _____ C:\Users\Janka\AppData\Local\MSGBOX.EXE
2013-11-27 18:40 - 2013-11-27 18:40 - 00015327 _____ C:\Users\Janka\Desktop\LM.bat
2013-11-27 18:39 - 2013-11-27 18:40 - 01958818 _____ (Farbar) C:\Users\Janka\Downloads\FRST64.exe
2013-11-26 19:26 - 2013-11-26 19:26 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (2).exe
2013-11-26 19:24 - 2013-11-26 19:24 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner (1).exe
2013-11-26 18:35 - 2013-11-26 19:25 - 01091882 _____ C:\Users\Janka\Downloads\adwcleaner.exe
2013-11-26 18:29 - 2013-11-26 18:29 - 00004581 _____ C:\Users\Janka\Desktop\JRT.txt
2013-11-25 19:54 - 2013-11-25 19:54 - 01034531 _____ (Thisisu) C:\Users\Janka\Desktop\JRT.exe2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64.exe
2013-11-25 17:31 - 2013-11-25 17:31 - 00935175 _____ C:\Users\Janka\Downloads\RSITx64 (1).exe
2013-11-24 17:52 - 2013-11-24 17:52 - 00000000 ____D C:\Users\Janka\AppData\Local\avgchrome
2013-11-24 19:47 - 2012-02-12 16:54 - 36974310 _____ C:\Users\Janka\Downloads\Norton-Internet-Security-2010-CZ-+crack+navod.rar
2013-11-24 19:47 - 2011-09-15 14:56 - 40528015 _____ C:\Users\Janka\Downloads\NOD32--4.2-+-crack---64bit.rar
2013-11-24 17:27 - 2010-02-23 10:34 - 00000000 ____D C:\Program Files (x86)\ESET
2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-11-24 17:24 - 2010-09-23 16:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
C:\Users\Janka\AppData\Local\Temp\Quarantine.exe
C:\Users\Janka\AppData\Local\Temp\uninst1.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\ProgramData\TEMP:1D32EC29
AlternateDataStreams: C:\ProgramData\TEMP:AB689DEA
AlternateDataStreams: C:\ProgramData\TEMP:E3C56885
Hosts:
CMD: shutdown /r /f /t 2
End
*****************
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\swg => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e067ae3-20a2-11df-9fe8-00262d521594} => Key deleted successfully.
HKCR\CLSID\{1e067ae3-20a2-11df-9fe8-00262d521594} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b1a6a73-1ff2-11df-ac7a-00262d521594} => Key deleted successfully.
HKCR\CLSID\{6b1a6a73-1ff2-11df-ac7a-00262d521594} => Key not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\WinampAgent => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\NWEReboot => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKU\Default\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ScrSav => Value deleted successfully.
HKU\Default User\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ScrSav => Value not found.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{415419c3-dad0-4df1-ac37-22c72ad81878} => Key deleted successfully.
HKCR\PROTOCOLS\Filter\text/xml => Key deleted successfully.
HKCR\CLSID\{807553E5-5146-11D5-A672-00B0D022E945} => Key not found.
C:\Users\Janka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dedmngkbaffkenlfdcbganndoghblmap => Key deleted successfully.
"C:\Program Files (x86)\BetterSurf\ch\Chrome.crx" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof => Key deleted successfully.
C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx => Moved successfully.
Update LemurLeap => Service deleted successfully.
Util LemurLeap => Service deleted successfully.
abl0euuv => Service not found.
eamonm => Service deleted successfully.
regi => Service deleted successfully.
"C:\Program Files (x86)\LemurLeap" directory move:
C:\Program Files (x86)\LemurLeap\LemurLeapBHO.dll => Moved successfully.
C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe => Moved successfully.
C:\Program Files (x86)\LemurLeap\bin\sqlite3.dll => Moved successfully.
C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe => Moved successfully.
C:\Program Files (x86)\LemurLeap\bin\plugins\LemurLeap.FFUpdate.dll => Moved successfully.
C:\Program Files (x86)\LemurLeap\bin\plugins\LemurLeap.GCUpdate.dll => Moved successfully.
C:\Program Files (x86)\LemurLeap\bin\plugins\LemurLeap.IEUpdate.dll => Moved successfully.
"C:\Program Files (x86)\LemurLeap" => Directory moved successfully.
"C:\Program Files (x86)\BetterSurf" => File/Directory not found.
"C:\Users\Janka\Downloads\FRSTLauncher.exe" => File/Directory not found.
"C:\Users\Janka\AppData\Local\MSGBOX.EXE" => File/Directory not found.
"C:\Users\Janka\Desktop\LM.bat" => File/Directory not found.
"C:\Users\Janka\Downloads\FRST64.exe" => File/Directory not found.
C:\Users\Janka\Downloads\adwcleaner (2).exe => Moved successfully.
C:\Users\Janka\Downloads\adwcleaner (1).exe => Moved successfully.
C:\Users\Janka\Downloads\adwcleaner.exe => Moved successfully.
C:\Users\Janka\Desktop\JRT.txt => Moved successfully.
C:\Users\Janka\Downloads\RSITx64.exe => Moved successfully.
C:\Users\Janka\Downloads\RSITx64 (1).exe => Moved successfully.
C:\Users\Janka\AppData\Local\avgchrome => Moved successfully.
C:\Users\Janka\Downloads\Norton-Internet-Security-2010-CZ-+crack+navod.rar => Moved successfully.
C:\Users\Janka\Downloads\NOD32--4.2-+-crack---64bit.rar => Moved successfully.
C:\Program Files (x86)\ESET => Moved successfully.
C:\ProgramData\Spybot - Search & Destroy => Moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy => Moved successfully.
C:\Users\Janka\AppData\Local\Temp\Quarantine.exe => Moved successfully.
C:\Users\Janka\AppData\Local\Temp\uninst1.exe => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\ProgramData\TEMP => ":1D32EC29" ADS removed successfully.
C:\ProgramData\TEMP => ":AB689DEA" ADS removed successfully.
C:\ProgramData\TEMP => ":E3C56885" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
========= shutdown /r /f /t 2 =========
========= End of CMD: =========
The system needs a manual reboot.
==== End of Fixlog ====
Re: pomaly pc, prosim o pomoc
Tak jeste uklidime 
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
OTC http://oldtimer.geekstogo.com/OTC.exe
TFC http://oldtimer.geekstogo.com/TFC.exe
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
A pokud nejsou problemy ci dotazy, je to z me strany vse 
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
A pokud nejsou problemy ci dotazy, je to z me strany vse "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: pomaly pc, prosim o pomoc
dakujem velmi pekne za pomoc 
Přispějete na provoz fóra?