Problémy se Službou oznamování událostí systému a uživ. účty

Zpráva

Gon · #1 Příspěvek od **Gon** » 06 pro 2013 21:01

Dobrý den,
prosím o pomoc - Win 7 mi před cca týdnem začal hlásit nepřipojení k výše zmíněné službě a neumožňuje se přihlásit k běžným (nesprávcovským) účtům na PC. Po prostudování příbužného tématu a stažení FRST přikládám výsledek scanu a předem děkuji za pomoc.
Josef

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-12-2013
Ran by Vavrovi (administrator) on VAVROVI-PC on 06-12-2013 20:51:47
Running from C:\Users\Vavrovi\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Soluto) C:\Program Files\Soluto\Soluto.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
() C:\Windows\DAODx.exe
(Ulead Systems) C:\Program Files (x86)\Common Files\Ulead Systems\DVD\USISrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Soluto) C:\Program Files\Soluto\SolutoLauncherService.exe
(Soluto) C:\Program Files\Soluto\SolutoService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
(AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\SLSTaskbar.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\SLSTaskbar64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files\Soluto\soluto.exe /userinit
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKLM-x32\...\Run: [AMD AVT] - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641664 2012-04-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [NeroFilterCheck] - C:\Program Files (x86)\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM-x32\...\Run: [USIUDF_Eject_Monitor] - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\USISrv.exe [81920 2004-05-28] (Ulead Systems)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411952 2013-09-23] (AVG Technologies CZ, s.r.o.)
HKU\HANUŠ\...\Policies\system: [LogonHoursAction] 2
HKU\HANUŠ\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Kačenka\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKU\Kačenka\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20549280 2013-10-21] (Skype Technologies S.A.)
HKU\Kačenka\...\Policies\system: [LogonHoursAction] 2
HKU\Kačenka\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... SPV=IEOB13
URLSearchHook: HKLM-x32 - Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files (x86)\Ashampoo_US\prxtbAsha.dll (Conduit Ltd.)
URLSearchHook: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
URLSearchHook: HKCU - Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files (x86)\Ashampoo_US\prxtbAsha.dll (Conduit Ltd.)
SearchScopes: HKCU - DefaultScope {f8a5ee7f-d453-4a8f-9460-4a506e0ca154} URL = http://search.seznam.cz/?q={searchTerms ... earch_9973
SearchScopes: HKCU - {4995f1fb-b6d7-4eff-b5b9-c4866309bd4d} URL = http://www.firmy.cz/phr/{searchTerms}?s ... earch_9973
SearchScopes: HKCU - {4c6ae614-ece8-44e9-bb62-537c9c032a65} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... earch_9973
SearchScopes: HKCU - {8e451643-85df-49d4-a2ee-ade4e47545c4} URL = http://www.mapy.cz/?query={searchTerms} ... earch_9973
SearchScopes: HKCU - {C7A84698-4D50-4258-834D-E6C2588E5A20} URL = http://search.conduit.com/ResultsExt.as ... SPV=IEOB13
SearchScopes: HKCU - {f8a5ee7f-d453-4a8f-9460-4a506e0ca154} URL = http://search.seznam.cz/?q={searchTerms ... earch_9973
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files (x86)\Ashampoo_US\prxtbAsha.dll (Conduit Ltd.)
BHO-x32: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Lištička - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\bin\listicka.dll ()
Toolbar: HKLM-x32 - Nástroje Lištičky - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files (x86)\Seznam.cz\bin\toolbar\toolbar.dll ()
Toolbar: HKLM-x32 - Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files (x86)\Ashampoo_US\prxtbAsha.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
Toolbar: HKCU - No Name - {124D001A-BDCB-472F-AA59-BBE7E4BC3204} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37

FireFox:
========
FF ProfilePath: C:\Users\Vavrovi\AppData\Roaming\Mozilla\Firefox\Profiles\qu92o0nf.default
FF Homepage: hxxp://www.seznam.cz/
FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8 ... &gfns=1&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Ashampoo US - C:\Users\Vavrovi\AppData\Roaming\Mozilla\Firefox\Profiles\qu92o0nf.default\Extensions\{124d001a-bdcb-472f-aa59-bbe7e4bc3204}
FF Extension: Adblock Plus - C:\Users\Vavrovi\AppData\Roaming\Mozilla\Firefox\Profiles\qu92o0nf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Users\Vavrovi\AppData\Roaming\Mozilla\Firefox\Profiles\qu92o0nf.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [{ea614400-e918-4741-9a97-7a972ff7c30b}] - C:\Program Files (x86)\Seznam.cz\bin\firefox
FF Extension: Seznam Lištička - C:\Program Files (x86)\Seznam.cz\bin\firefox
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Foxit Reader Plugin for Mozilla) - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll No File
CHR Extension: (Docs) - C:\Users\Vavrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Google Drive) - C:\Users\Vavrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0
CHR Extension: (YouTube) - C:\Users\Vavrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\Vavrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (Gmail) - C:\Users\Vavrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\Kačenka\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-04-05] (Advanced Micro Devices, Inc.)
R2 avgfws; C:\Program Files (x86)\AVG\AVG2013\avgfws.exe [1432080 2013-09-04] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
R2 SolutoLauncherService; C:\Program Files\Soluto\SolutoLauncherService.exe [169016 2012-11-08] (Soluto)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2099000 2013-10-30] (AVG)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [42808 2013-10-30] (AVG)

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [50296 2012-09-04] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206648 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-09-05] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2013-03-21] (AVG Technologies CZ, s.r.o.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-12-16] (DT Soft Ltd)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2012-08-20] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12384 2012-08-20] ()
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2013-09-18] (TuneUp Software)
S3 ULCDRHlp; C:\Windows\SysWow64\Drivers\ULCDRHlp.sys [27232 2004-06-04] (Ulead Systems, Inc.)
S1 USIUDF; C:\Windows\SysWow64\Drivers\USIUDF.sys [292288 2004-05-29] (Ulead Systems, Inc.)
R2 WinisoCDBus; C:\Windows\System32\drivers\WinisoCDBus.sys [204032 2012-10-18] (WinISO.com)
R3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [x]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-12-06 20:51 - 2013-12-06 20:52 - 00017733 _____ C:\Users\Vavrovi\Desktop\FRST.txt
2013-12-06 20:51 - 2013-12-06 20:51 - 00000000 ____D C:\FRST
2013-12-06 20:50 - 2013-12-06 20:50 - 00112640 _____ C:\Users\Vavrovi\Desktop\FRSTLauncher.exe
2013-12-06 20:46 - 2013-12-06 20:47 - 01925820 _____ (Farbar) C:\Users\Vavrovi\Desktop\FRST64.exe
2013-12-06 20:02 - 2013-12-06 20:08 - 00003071 _____ C:\Windows\diagwrn.xml
2013-12-06 20:02 - 2013-12-06 20:08 - 00002131 _____ C:\Windows\diagerr.xml
2013-12-04 20:23 - 2013-12-06 20:24 - 00001408 _____ C:\Windows\setupact.log
2013-12-04 20:23 - 2013-10-30 11:27 - 00042808 _____ (AVG) C:\Windows\system32\uxtuneup.dll
2013-12-04 20:23 - 2013-10-30 11:27 - 00035640 _____ (AVG) C:\Windows\SysWOW64\uxtuneup.dll
2013-12-04 20:22 - 2013-12-04 20:22 - 00002226 _____ C:\Users\Public\Desktop\AVG PC TuneUp 2014.lnk
2013-12-04 20:22 - 2013-12-04 20:22 - 00002212 _____ C:\Users\Public\Desktop\AVG údržba 1 kliknutím.lnk
2013-12-04 20:22 - 2013-10-30 11:27 - 00040248 _____ (AVG) C:\Windows\system32\TURegOpt.exe
2013-12-04 20:22 - 2013-10-30 11:27 - 00029496 _____ (AVG) C:\Windows\system32\authuitu.dll
2013-12-04 20:22 - 2013-10-30 11:27 - 00025400 _____ (AVG) C:\Windows\SysWOW64\authuitu.dll
2013-12-04 20:21 - 2013-12-04 20:21 - 00002221 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-04 20:20 - 2013-12-04 20:25 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-12-04 20:20 - 2013-12-04 20:20 - 78388136 _____ (AVG) C:\Users\Vavrovi\Downloads\avg_tuh_stf_all_2014_204_24c44.exe
2013-12-04 20:09 - 2013-12-04 20:09 - 01551706 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-12-04 20:07 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-12-04 20:04 - 2013-12-04 20:04 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-04 20:04 - 2013-12-04 20:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-04 20:04 - 2013-12-04 20:04 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-04 20:04 - 2013-12-04 20:04 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-04 20:04 - 2013-12-04 20:04 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-04 20:04 - 2013-12-04 20:04 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-04 20:04 - 2013-12-04 20:04 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-04 20:04 - 2013-12-04 20:04 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-04 20:04 - 2013-12-04 20:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-04 20:04 - 2013-12-04 20:04 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-04 20:04 - 2013-12-04 20:04 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-04 19:59 - 2013-12-04 19:59 - 00000000 ____D C:\Windows\pss
2013-12-04 19:57 - 2013-12-04 19:57 - 00002059 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2013-12-04 19:57 - 2013-12-04 19:57 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2013-12-02 17:18 - 2013-12-02 17:18 - 00000000 ____D C:\Users\Guest\AppData\Roaming\AVG2013
2013-12-02 17:18 - 2013-12-02 17:18 - 00000000 ____D C:\Users\Guest\AppData\Roaming\ATI
2013-12-02 17:18 - 2013-12-02 17:18 - 00000000 ____D C:\Users\Guest\AppData\Local\Avg2013
2013-12-02 17:18 - 2013-12-02 17:18 - 00000000 ____D C:\Users\Guest\AppData\Local\ATI
2013-12-02 17:18 - 2013-12-02 17:18 - 00000000 ____D C:\Users\Guest\AppData\Local\AMD
2013-12-02 17:17 - 2013-12-04 20:15 - 00001402 _____ C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-02 17:17 - 2013-12-02 17:17 - 00076480 _____ C:\Users\Guest\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-02 17:17 - 2013-12-02 17:17 - 00000000 ___RD C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-02 17:17 - 2013-12-02 17:17 - 00000000 ___RD C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-02 17:17 - 2013-12-02 17:17 - 00000000 ____D C:\Users\Guest\AppData\Roaming\Adobe
2013-12-02 17:17 - 2013-12-02 17:17 - 00000000 ____D C:\Users\Guest\AppData\Local\VirtualStore
2013-12-02 17:16 - 2013-12-02 17:17 - 00000000 ____D C:\Users\Guest
2013-12-02 17:16 - 2013-12-02 17:16 - 00000020 ___SH C:\Users\Guest\ntuser.ini
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Šablony
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Soubory cookie
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Poslední
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Okolní tiskárny
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Okolní síť
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Nabídka Start
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Dokumenty
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Documents\Obrázky
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Documents\Hudba
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Documents\Filmy
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Data aplikací
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\AppData\Local\Data aplikací
2013-12-02 17:16 - 2013-01-11 14:50 - 00000000 ____D C:\Users\Guest\AppData\Roaming\TuneUp Software
2013-12-02 17:16 - 2009-07-14 05:54 - 00000000 ___RD C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-02 17:16 - 2009-07-14 05:49 - 00000000 ___RD C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-11-21 11:35 - 2013-11-21 11:36 - 00000000 ____D C:\Users\Kačenka\Desktop\Terka_šaty
2013-11-20 17:38 - 2013-11-20 17:51 - 00000000 ____D C:\Users\Kačenka\Desktop\k_vyvolání
2013-11-20 12:27 - 2013-11-20 18:20 - 00000000 ____D C:\ProgramData\tmp
2013-11-20 12:27 - 2013-11-20 18:07 - 00000000 ____D C:\ProgramData\hps
2013-11-20 12:27 - 2013-11-20 12:27 - 00001347 _____ C:\Users\Public\Desktop\Globus - domaci fotosberna.lnk
2013-11-20 12:27 - 2013-11-20 12:27 - 00001347 _____ C:\Users\Public\Desktop\CEWE prezentace fotografií.lnk
2013-11-20 12:25 - 2013-11-20 12:25 - 00000000 ____D C:\Program Files (x86)\Globus
2013-11-20 12:24 - 2013-11-20 12:24 - 01636944 _____ C:\Users\Kačenka\Downloads\setup_Globus_domaci_fotosberna.exe
2013-11-18 19:29 - 2013-11-18 19:35 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2013-11-17 20:09 - 2013-11-17 20:09 - 00001075 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-15 20:13 - 2013-11-15 20:13 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-13 11:39 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 11:39 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 11:39 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 11:39 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 11:39 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 11:39 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 11:39 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 11:39 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 11:39 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 11:38 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 11:38 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 11:38 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 11:38 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 11:38 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 11:38 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 11:38 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 11:38 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 11:38 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 11:38 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 11:38 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 11:38 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 11:38 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 11:38 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 11:38 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 11:38 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 11:38 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 11:38 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 11:38 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 11:38 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 11:38 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

==================== One Month Modified Files and Folders =======

2013-12-06 20:52 - 2013-12-06 20:51 - 00017733 _____ C:\Users\Vavrovi\Desktop\FRST.txt
2013-12-06 20:51 - 2013-12-06 20:51 - 00000000 ____D C:\FRST
2013-12-06 20:51 - 2009-07-14 05:45 - 00028928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-06 20:51 - 2009-07-14 05:45 - 00028928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-06 20:50 - 2013-12-06 20:50 - 00112640 _____ C:\Users\Vavrovi\Desktop\FRSTLauncher.exe
2013-12-06 20:47 - 2013-12-06 20:46 - 01925820 _____ (Farbar) C:\Users\Vavrovi\Desktop\FRST64.exe
2013-12-06 20:31 - 2012-12-26 12:45 - 00000000 ____D C:\ProgramData\MFAData
2013-12-06 20:29 - 2011-04-12 09:34 - 00668882 _____ C:\Windows\system32\perfh005.dat
2013-12-06 20:29 - 2011-04-12 09:34 - 00141542 _____ C:\Windows\system32\perfc005.dat
2013-12-06 20:29 - 2009-07-14 06:13 - 01584626 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-06 20:28 - 2012-10-24 09:51 - 01800358 _____ C:\Windows\WindowsUpdate.log
2013-12-06 20:24 - 2013-12-04 20:23 - 00001408 _____ C:\Windows\setupact.log
2013-12-06 20:24 - 2013-02-09 20:40 - 00000950 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-06 20:24 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-06 20:08 - 2013-12-06 20:02 - 00003071 _____ C:\Windows\diagwrn.xml
2013-12-06 20:08 - 2013-12-06 20:02 - 00002131 _____ C:\Windows\diagerr.xml
2013-12-06 20:08 - 2013-03-08 05:17 - 00000062 _____ C:\Windows\setuperr.log
2013-12-06 20:00 - 2012-11-09 21:07 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-06 19:59 - 2013-03-23 13:04 - 00000342 _____ C:\Windows\Tasks\HP Photo Creations Communicator.job
2013-12-06 19:19 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-06 19:15 - 2013-02-09 20:40 - 00000954 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-05 16:17 - 2013-02-09 20:41 - 00002192 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-12-05 16:15 - 2012-11-10 11:48 - 00001402 _____ C:\Users\Kačenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-04 20:25 - 2013-12-04 20:20 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-12-04 20:25 - 2013-02-04 21:07 - 00000000 ____D C:\Users\Vavrovi\AppData\Local\Downloaded Installations
2013-12-04 20:25 - 2012-12-26 14:30 - 00000000 __SHD C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2013-12-04 20:24 - 2012-12-26 14:31 - 00000000 ____D C:\ProgramData\AVG
2013-12-04 20:22 - 2013-12-04 20:22 - 00002226 _____ C:\Users\Public\Desktop\AVG PC TuneUp 2014.lnk
2013-12-04 20:22 - 2013-12-04 20:22 - 00002212 _____ C:\Users\Public\Desktop\AVG údržba 1 kliknutím.lnk
2013-12-04 20:22 - 2012-12-26 14:31 - 00000000 ____D C:\Users\Vavrovi\AppData\Roaming\AVG
2013-12-04 20:21 - 2013-12-04 20:21 - 00002221 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-04 20:21 - 2013-02-09 20:40 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-04 20:20 - 2013-12-04 20:20 - 78388136 _____ (AVG) C:\Users\Vavrovi\Downloads\avg_tuh_stf_all_2014_204_24c44.exe
2013-12-04 20:16 - 2012-11-09 19:42 - 00001402 _____ C:\Users\Vavrovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-04 20:15 - 2013-12-02 17:17 - 00001402 _____ C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-04 20:12 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-04 20:09 - 2013-12-04 20:09 - 01551706 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-12-04 20:04 - 2013-12-04 20:04 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-04 20:04 - 2013-12-04 20:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-04 20:04 - 2013-12-04 20:04 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-04 20:04 - 2013-12-04 20:04 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-04 20:04 - 2013-12-04 20:04 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-04 20:04 - 2013-12-04 20:04 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-04 20:04 - 2013-12-04 20:04 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-04 20:04 - 2013-12-04 20:04 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-04 20:04 - 2013-12-04 20:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-04 20:04 - 2013-12-04 20:04 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-04 20:04 - 2013-12-04 20:04 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-04 20:04 - 2013-12-04 20:04 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-04 20:04 - 2013-12-04 20:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-04 19:59 - 2013-12-04 19:59 - 00000000 ____D C:\Windows\pss
2013-12-04 19:57 - 2013-12-04 19:57 - 00002059 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2013-12-04 19:57 - 2013-12-04 19:57 - 00000000 ____D C:\Program Files (x86)\Foxit Software
2013-12-02 17:18 - 2013-12-02 17:18 - 00000000 ____D C:\Users\Guest\AppData\Roaming\AVG2013
2013-12-02 17:18 - 2013-12-02 17:18 - 00000000 ____D C:\Users\Guest\AppData\Roaming\ATI
2013-12-02 17:18 - 2013-12-02 17:18 - 00000000 ____D C:\Users\Guest\AppData\Local\Avg2013
2013-12-02 17:18 - 2013-12-02 17:18 - 00000000 ____D C:\Users\Guest\AppData\Local\ATI
2013-12-02 17:18 - 2013-12-02 17:18 - 00000000 ____D C:\Users\Guest\AppData\Local\AMD
2013-12-02 17:17 - 2013-12-02 17:17 - 00076480 _____ C:\Users\Guest\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-02 17:17 - 2013-12-02 17:17 - 00000000 ___RD C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-02 17:17 - 2013-12-02 17:17 - 00000000 ___RD C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-02 17:17 - 2013-12-02 17:17 - 00000000 ____D C:\Users\Guest\AppData\Roaming\Adobe
2013-12-02 17:17 - 2013-12-02 17:17 - 00000000 ____D C:\Users\Guest\AppData\Local\VirtualStore
2013-12-02 17:17 - 2013-12-02 17:16 - 00000000 ____D C:\Users\Guest
2013-12-02 17:16 - 2013-12-02 17:16 - 00000020 ___SH C:\Users\Guest\ntuser.ini
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Šablony
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Soubory cookie
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Poslední
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Okolní tiskárny
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Okolní síť
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Nabídka Start
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Dokumenty
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Documents\Obrázky
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Documents\Hudba
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Documents\Filmy
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\Data aplikací
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2013-12-02 17:16 - 2013-12-02 17:16 - 00000000 _SHDL C:\Users\Guest\AppData\Local\Data aplikací
2013-11-29 18:10 - 2013-02-09 20:40 - 00003950 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-29 18:10 - 2013-02-09 20:40 - 00003698 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-25 09:24 - 2012-11-10 11:46 - 00000644 __RSH C:\Users\Kačenka\ntuser.pol
2013-11-25 09:24 - 2012-11-10 11:45 - 00000000 ____D C:\Users\Kačenka
2013-11-24 08:01 - 2012-11-10 07:09 - 00001256 __RSH C:\Users\HANUŠ\ntuser.pol
2013-11-24 08:01 - 2012-11-10 07:09 - 00000000 ____D C:\Users\HANUŠ
2013-11-24 08:01 - 2012-11-09 19:48 - 00000644 __RSH C:\Users\Vavrovi\ntuser.pol
2013-11-24 08:01 - 2012-11-09 19:41 - 00000000 ____D C:\Users\Vavrovi
2013-11-23 06:59 - 2009-07-14 06:08 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-22 08:32 - 2013-03-05 19:04 - 00000000 ____D C:\Users\Kačenka\AppData\Roaming\Skype
2013-11-21 20:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-11-21 11:36 - 2013-11-21 11:35 - 00000000 ____D C:\Users\Kačenka\Desktop\Terka_šaty
2013-11-20 20:10 - 2012-11-09 21:07 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-20 20:10 - 2012-11-09 21:07 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-20 20:10 - 2012-11-09 21:07 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-20 18:20 - 2013-11-20 12:27 - 00000000 ____D C:\ProgramData\tmp
2013-11-20 18:07 - 2013-11-20 12:27 - 00000000 ____D C:\ProgramData\hps
2013-11-20 17:51 - 2013-11-20 17:38 - 00000000 ____D C:\Users\Kačenka\Desktop\k_vyvolání
2013-11-20 12:27 - 2013-11-20 12:27 - 00001347 _____ C:\Users\Public\Desktop\Globus - domaci fotosberna.lnk
2013-11-20 12:27 - 2013-11-20 12:27 - 00001347 _____ C:\Users\Public\Desktop\CEWE prezentace fotografií.lnk
2013-11-20 12:25 - 2013-11-20 12:25 - 00000000 ____D C:\Program Files (x86)\Globus
2013-11-20 12:24 - 2013-11-20 12:24 - 01636944 _____ C:\Users\Kačenka\Downloads\setup_Globus_domaci_fotosberna.exe
2013-11-18 19:35 - 2013-11-18 19:29 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2013-11-17 20:09 - 2013-11-17 20:09 - 00001075 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-17 20:09 - 2012-11-09 20:09 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-11-17 05:56 - 2012-11-09 20:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-15 20:13 - 2013-11-15 20:13 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-15 19:50 - 2012-12-26 19:30 - 00001940 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-11-15 19:49 - 2013-10-18 18:49 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-11-13 12:56 - 2009-07-14 03:34 - 00000499 _____ C:\Windows\win.ini
2013-11-13 12:55 - 2013-07-12 21:54 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 12:54 - 2012-11-10 09:00 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-13 12:03 - 2013-10-12 20:32 - 00014848 _____ C:\Users\Kačenka\Desktop\listopad2013_rodiny.xls
2013-11-09 19:58 - 2013-03-05 19:03 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-09 19:58 - 2013-03-05 19:03 - 00000000 ____D C:\ProgramData\Skype

Some content of TEMP:
====================
C:\Users\HANUŠ\AppData\Local\Temp\vlc-2.0.6-win32.exe
C:\Users\Kačenka\AppData\Local\Temp\Foxit Updater.exe
C:\Users\Kačenka\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Kačenka\AppData\Local\Temp\tbedrs.dll

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2013-12-06 19:11

==================== End Of Log ============================

#2 Příspěvek od **Rudy** » 06 pro 2013 21:32

Zdravím!
Zkuste nejprve obnovu systému k datu, kdy korektně fungoval.

Gon · #3 Příspěvek od **Gon** » 06 pro 2013 22:12

Zdravím,
bohužel mi systém nabízí jen jeden bod obnovení a ten je až PO datu, kdy problémy začaly. Nevím, zda jsou ještě nějaké jiné (skryté) dřívější body obnovy, které se zobrazují, ale předpokládádm, že asi nebudou. Co dál?
Josef

#4 Příspěvek od **Rudy** » 06 pro 2013 22:18

Startmenu>přík. řádek> (napsat) services.msc>Enter. Najděte příslušnou službu a přesvědčte, zda je zapnuta. Pokud ne, zapněte na "automaticky". Nastavení uložte a restartujte PC.

Gon · #5 Příspěvek od **Gon** » 07 pro 2013 12:23

V Services jsou na automatiku zapnuty jak Služba oznamování událostí systému, tak související Systém událostí COM+, přepnul jsem i Systémovou aplikaci modelu COM+ na automatiku, ale i po restartu problém trvá. Pro info připojuji hlášení Eventu - hlásí tyto Chyby:
1. Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
2. Název chybující aplikace: Fuel.Service.exe, verze: 1.0.0.0, časové razítko: 0x4f7e4d8c
Název chybujícího modulu: Device.dll, verze: 4.1.0.0, časové razítko: 0x4f55e10b
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000033c1
ID chybujícího procesu: 0x7a8
Čas spuštění chybující aplikace: 0x01cef33958772ccf
Cesta k chybující aplikaci: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
Cesta k chybujícímu modulu: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
ID zprávy: ee56c712-5f2f-11e3-a59c-3085a99c5b53
3. Načtení \SystemRoot\SysWow64\Drivers\USIUDF.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru o kompatibilní verzi ovladače.
4. Načtení \SystemRoot\SysWow64\Drivers\ULCDRHlp.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru o kompatibilní verzi ovladače.
5. Načtení \SystemRoot\SysWow64\Drivers\ULCDRHlp.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru o kompatibilní verzi ovladače.
6. Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto chybou:
Přístup byl odepřen.
7.Služba Windows Presentation Foundation Font Cache 3.0.0.0 přestala během spouštění reagovat.
8. Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
USIUDF
9. Služba AMD FUEL Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Hlášené upozornění Eventu:
1. Nepodařilo se načíst ovladač \Driver\ULCDRHlp pro zařízení DTSOFTBUS&Rev1\DTCDROM&Rev1\1&1a590e2c&1&00.
2. Překlad názvu ae.operations.prodenv6.mysoluto.com nebyl v požadované době dokončen. Žádný z nakonfigurovaných serverů DNS neodpověděl.
3. Systém Windows zjistil, že soubor registru je stále používán jinými aplikacemi nebo službami. Soubor bude nyní uvolněn. Aplikace nebo služby, které soubor registru používají, nemusejí potom fungovat správně.
PODROBNOSTI –
1 user registry handles leaked from \Registry\User\S-1-5-21-247970727-2702117563-1250308317-1001:
Process 3428 (\Device\HarddiskVolume2\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe) has opened key \REGISTRY\USER\S-1-5-21-247970727-2702117563-1250308317-1001

#6 Příspěvek od **Rudy** » 07 pro 2013 12:46

OK. Zkusíme vyčistit a pak se pokusíme o opravu.

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... SPV=IEOB13
URLSearchHook: HKLM-x32 - Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files (x86)\Ashampoo_US\prxtbAsha.dll (Conduit Ltd.)
URLSearchHook: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
URLSearchHook: HKCU - Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files (x86)\Ashampoo_US\prxtbAsha.dll (Conduit Ltd.)
SearchScopes: HKCU - {C7A84698-4D50-4258-834D-E6C2588E5A20} URL = http://search.conduit.com/ResultsExt.as ... SPV=IEOB13
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files (x86)\Ashampoo_US\prxtbAsha.dll (Conduit Ltd.)
BHO-x32: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Toolbar: HKLM-x32 - Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files (x86)\Ashampoo_US\prxtbAsha.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
Toolbar: HKCU - No Name - {124D001A-BDCB-472F-AA59-BBE7E4BC3204} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
C:\Program Files\McAfee Security Scan
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
CHR HKLM-x32\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\Kačenka\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
C:\Users\HANUŠ\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Pak znovu spusťte FRST a klikněte na >Fix<. Zkopírujte sem pak log, který se na závěr vytvoří.

Gon · #7 Příspěvek od **Gon** » 07 pro 2013 20:05

Děkuji, provedeno dle návodu.
Log z FRST:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-12-2013 2
Ran by Vavrovi at 2013-12-07 20:03:20 Run:1
Running from C:\Users\Vavrovi\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... SPV=IEOB13
URLSearchHook: HKLM-x32 - Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files (x86)\Ashampoo_US\prxtbAsha.dll (Conduit Ltd.)
URLSearchHook: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
URLSearchHook: HKCU - Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files (x86)\Ashampoo_US\prxtbAsha.dll (Conduit Ltd.)
SearchScopes: HKCU - {C7A84698-4D50-4258-834D-E6C2588E5A20} URL = http://search.conduit.com/ResultsExt.as ... SPV=IEOB13
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files (x86)\Ashampoo_US\prxtbAsha.dll (Conduit Ltd.)
BHO-x32: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Toolbar: HKLM-x32 - Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files (x86)\Ashampoo_US\prxtbAsha.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
Toolbar: HKCU - No Name - {124D001A-BDCB-472F-AA59-BBE7E4BC3204} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
C:\Program Files\McAfee Security Scan
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
CHR HKLM-x32\...\Chrome\Extension: [ejpbbhjlbipncjklfjjaedaieimbmdda] - C:\Users\Kačenka\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
C:\Users\HANUŠ\AppData\Local\Temp
End
*****************

HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\URLSearchHooks\\{124d001a-bdcb-472f-aa59-bbe7e4bc3204} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{124d001a-bdcb-472f-aa59-bbe7e4bc3204} => Key deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\URLSearchHooks\\{7473b6bd-4691-4744-a82b-7854eb3d70b6} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{7473b6bd-4691-4744-a82b-7854eb3d70b6} => Key deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{124d001a-bdcb-472f-aa59-bbe7e4bc3204} => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C7A84698-4D50-4258-834D-E6C2588E5A20} => Key deleted successfully.
HKCR\CLSID\{C7A84698-4D50-4258-834D-E6C2588E5A20} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} => Key deleted successfully.
HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{124d001a-bdcb-472f-aa59-bbe7e4bc3204} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{124d001a-bdcb-472f-aa59-bbe7e4bc3204} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7473b6bd-4691-4744-a82b-7854eb3d70b6} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{7473b6bd-4691-4744-a82b-7854eb3d70b6} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{124d001a-bdcb-472f-aa59-bbe7e4bc3204} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{124d001a-bdcb-472f-aa59-bbe7e4bc3204} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{7473b6bd-4691-4744-a82b-7854eb3d70b6} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{7473b6bd-4691-4744-a82b-7854eb3d70b6} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{34AB3C4C-DA1A-4067-96F4-31452C7CFE65} => Value deleted successfully.
HKCR\CLSID\{34AB3C4C-DA1A-4067-96F4-31452C7CFE65} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{124D001A-BDCB-472F-AA59-BBE7E4BC3204} => Value deleted successfully.
HKCR\CLSID\{124D001A-BDCB-472F-AA59-BBE7E4BC3204} => Key not found.
HKCR\PROTOCOLS\Handler\skype-ie-addon-data => Key deleted successfully.
HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8} => Key deleted successfully.
HKCR\Wow6432Node\PROTOCOLS\Handler\skype-ie-addon-data => Key not found.
HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8} => Key deleted successfully.
HKCR\PROTOCOLS\Filter\text/xml => Key deleted successfully.
HKCR\CLSID\{807553E5-5146-11D5-A672-00B0D022E945} => Key not found.
C:\Program Files\McAfee Security Scan => Moved successfully.
HKLM\Software\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin => Key deleted successfully.
C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll => Moved successfully.
HKLM\Software\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin => Key deleted successfully.
C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll not found.
HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File => Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda => Key deleted successfully.
C:\Users\Kačenka\AppData\Local\CRE\ejpbbhjlbipncjklfjjaedaieimbmdda.crx => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl => Key deleted successfully.
C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx => Moved successfully.
C:\Users\HANUŠ\AppData\Local\Temp => Moved successfully.

==== End of Fixlog ====

Co dál?

#8 Příspěvek od **Rudy** » 07 pro 2013 20:08

Nastala nějaká změna?

Gon · #9 Příspěvek od **Gon** » 07 pro 2013 21:13

Bohužel, i po restartu PC opět všechno při starém - problém zůstává.

#10 Příspěvek od **Rudy** » 07 pro 2013 21:15

Dejte log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware.

Gon · #11 Příspěvek od **Gon** » 07 pro 2013 21:56

Provedeno, posílám finální log:
omboFix 13-12-07.01 - Vavrovi 07.12.2013 21:20:54.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.8138.6422 [GMT 1:00]
Spuštěný z: c:\users\Vavrovi\Desktop\ComboFix.exe
AV: AVG Internet Security 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
FW: AVG Internet Security 2013 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
SP: AVG Internet Security 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\xml26F1.tmp
c:\programdata\xml26F2.tmp
c:\programdata\xml26F3.tmp
c:\users\Vavrovi\AppData\Roaming\0ad
c:\users\Vavrovi\AppData\Roaming\0ad\config\user.cfg
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-11-07 do 2013-12-07 )))))))))))))))))))))))))))))))
.
.
2013-12-07 20:27 . 2013-12-07 20:27 -------- d-----w- c:\users\Kačenka\AppData\Local\temp
2013-12-07 20:27 . 2013-12-07 20:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-12-06 19:51 . 2013-12-07 19:03 -------- d-----w- C:\FRST
2013-12-04 19:23 . 2013-10-30 10:27 42808 ----a-w- c:\windows\system32\uxtuneup.dll
2013-12-04 19:23 . 2013-10-30 10:27 35640 ----a-w- c:\windows\SysWow64\uxtuneup.dll
2013-12-04 19:22 . 2013-10-30 10:27 40248 ----a-w- c:\windows\system32\TURegOpt.exe
2013-12-04 19:22 . 2013-10-30 10:27 29496 ----a-w- c:\windows\system32\authuitu.dll
2013-12-04 19:22 . 2013-10-30 10:27 25400 ----a-w- c:\windows\SysWow64\authuitu.dll
2013-12-04 19:20 . 2013-12-04 19:25 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-12-04 19:08 . 2013-12-04 19:08 -------- d-----w- c:\windows\Migration
2013-12-04 19:07 . 2013-10-14 17:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2013-12-04 18:59 . 2013-12-04 19:00 -------- d-----w- c:\users\Vavrovi\AppData\Local\ElevatedDiagnostics
2013-12-04 18:57 . 2013-12-04 18:57 -------- d-----w- c:\program files (x86)\Foxit Software
2013-12-02 16:16 . 2013-12-02 16:17 -------- d-----w- c:\users\Guest
2013-11-20 11:27 . 2013-11-20 17:20 -------- d-----w- c:\programdata\tmp
2013-11-20 11:27 . 2013-11-20 17:07 -------- d-----w- c:\programdata\hps
2013-11-20 11:25 . 2013-11-20 11:25 -------- d-----w- c:\program files (x86)\Globus
2013-11-13 10:39 . 2013-10-05 20:25 1474048 ----a-w- c:\windows\system32\crypt32.dll
2013-11-13 10:39 . 2013-10-05 19:57 1168384 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-11-13 10:39 . 2013-09-28 01:09 497152 ----a-w- c:\windows\system32\drivers\afd.sys
2013-11-13 10:39 . 2013-10-04 02:28 190464 ----a-w- c:\windows\system32\SmartcardCredentialProvider.dll
2013-11-13 10:39 . 2013-10-04 02:25 197120 ----a-w- c:\windows\system32\credui.dll
2013-11-13 10:39 . 2013-10-04 02:24 1930752 ----a-w- c:\windows\system32\authui.dll
2013-11-13 10:39 . 2013-10-04 01:58 152576 ----a-w- c:\windows\SysWow64\SmartcardCredentialProvider.dll
2013-11-13 10:39 . 2013-10-04 01:56 168960 ----a-w- c:\windows\SysWow64\credui.dll
2013-11-13 10:39 . 2013-10-04 01:56 1796096 ----a-w- c:\windows\SysWow64\authui.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-20 19:10 . 2012-11-09 20:07 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-20 19:10 . 2012-11-09 20:07 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-11-13 11:54 . 2012-11-10 08:00 82896128 ----a-w- c:\windows\system32\MRT.exe
2013-09-25 02:22 . 2013-11-13 10:38 340992 ----a-w- c:\windows\system32\schannel.dll
2013-09-25 01:57 . 2013-11-13 10:38 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2013-09-11 20:21 . 2013-09-11 20:21 863344 ----a-w- c:\windows\SysWow64\msvcr110_clr0400.dll
2013-09-11 20:21 . 2013-09-11 20:21 501872 ----a-w- c:\windows\SysWow64\msvcp110_clr0400.dll
2013-09-11 20:21 . 2013-09-11 20:21 28776 ----a-w- c:\windows\SysWow64\aspnet_counters.dll
2013-09-11 20:21 . 2013-09-11 20:21 18000 ----a-w- c:\windows\SysWow64\msvcr100_clr0400.dll
2013-09-11 18:39 . 2013-09-11 18:39 855664 ----a-w- c:\windows\system32\msvcr110_clr0400.dll
2013-09-11 18:39 . 2013-09-11 18:39 614000 ----a-w- c:\windows\system32\msvcp110_clr0400.dll
2013-09-11 18:39 . 2013-09-11 18:39 30312 ----a-w- c:\windows\system32\aspnet_counters.dll
2013-09-11 18:39 . 2013-09-11 18:39 18000 ----a-w- c:\windows\system32\msvcr100_clr0400.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-05 641664]
"NeroFilterCheck"="c:\program files (x86)\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"USIUDF_Eject_Monitor"="c:\program files (x86)\Common Files\Ulead Systems\DVD\USISrv.exe" [2004-05-28 81920]
"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2013-09-22 4411952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.8.130\McCHSvc.exe;c:\program files\McAfee Security Scan\3.8.130\McCHSvc.exe [x]
R3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys;c:\windows\SYSNATIVE\pwdrvio.sys [x]
R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys;c:\windows\SYSNATIVE\pwdspio.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S0 Soluto;Soluto;c:\windows\system32\Drivers\Soluto.sys;c:\windows\SYSNATIVE\Drivers\Soluto.sys [x]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys;c:\windows\SYSNATIVE\DRIVERS\avgfwd6a.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2013\avgfws.exe;c:\program files (x86)\AVG\AVG2013\avgfws.exe [x]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [x]
S2 SolutoLauncherService;Soluto Launcher Service;c:\program files\Soluto\SolutoLauncherService.exe;c:\program files\Soluto\SolutoLauncherService.exe [x]
S2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe;c:\program files\Soluto\SolutoService.exe [x]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]
S2 WinisoCDBus;WinISO Virtual CD Drive;c:\windows\system32\drivers\WinisoCDBus.sys;c:\windows\SYSNATIVE\drivers\WinisoCDBus.sys [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 cpuz136;cpuz136;c:\windows\TEMP\cpuz136\cpuz136_x64.sys;c:\windows\TEMP\cpuz136\cpuz136_x64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-12-05 15:15 1210320 ----a-w- c:\program files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-12-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-09 19:10]
.
2013-12-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-09 19:40]
.
2013-12-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-09 19:40]
.
2013-12-07 c:\windows\Tasks\HP Photo Creations Communicator.job
- c:\programdata\HP Photo Creations\Communicator.exe [2013-03-23 12:05]
.
2013-01-31 c:\windows\Tasks\ROC_REG_JAN_DELETE.job
- c:\programdata\AVG January 2013 Campaign\ROC.exe [2013-01-30 21:16]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-06-12 6548112]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: {{0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - c:\program files (x86)\Seznam.cz\bin\listicka.dll
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
FF - ProfilePath - c:\users\Vavrovi\AppData\Roaming\Mozilla\Firefox\Profiles\qu92o0nf.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8 ... &gfns=1&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-12-07 21:39:38
ComboFix-quarantined-files.txt 2013-12-07 20:39
.
Před spuštěním: Volných bajtů: 51 049 955 328
Po spuštění: Volných bajtů: 51 114 131 456
.
- - End Of File - - 5EAD0F5A13D01C720F1364E5ACAF3AC3
A36C5E4F47E84449FF07ED3517B43A31

Co dál? (Omlouvám se, ale pokračovat budu až zítra-jsem dnes už od brzkého rána na nohou a síly docházejí. Každopádně děkuji.)
Josef

#12 Příspěvek od **Rudy** » 07 pro 2013 22:22

Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

Driver::
Skype C2C Service
McComponentHostService

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustrí a vykoná příkazy ze skriptu.

Obrázek

Gon · #13 Příspěvek od **Gon** » 08 pro 2013 13:23

Hotovo, ComboFix proběhl, Log Report příkládám.
Problém však stále zůstává.

#14 Příspěvek od **Rudy** » 08 pro 2013 18:03

OK. CF odinstalujte pomocí T-Cleaneru: http://img138.imageshack.us/img138/6433/cfscript.gif . Dále vyzkoušejte utilitu FixIt: http://support.microsoft.com/fixit/cs-cz .

Gon · #15 Příspěvek od **Gon** » 09 pro 2013 21:16

Pardon, T-Cleanerem je myšleno toto?

Citace:
KillAll::

Driver::
Skype C2C Service
McComponentHostService

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Reboot::

VIRY.CZ

Problémy se Službou oznamování událostí systému a uživ. účty

Problémy se Službou oznamování událostí systému a uživ. účty

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.

Re: Problémy se Službou oznamování událostí systému a uživ.