Prosim o preventivku, NTB je silene pomaly

Zpráva

Ot@s · #1 Příspěvek od **Ot@s** » 30 pro 2013 21:29

Zdarec, od doby co si začaly děti půjčovat můj NTB, nemůžu se s ním domluvit. Už jednou jste mi tu pomohli, k mé obrovské spokojenosti. Díky.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:23:44, on 30.12.2013
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16502)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe
C:\Program Files (x86)\ASUSTek Computer Inc\ASUS U3100MINI PLUS V2 Utilities\RTLRCtl.exe
C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe
C:\Program Files (x86)\Common Files\Panasonic\VideoCam Suite AutoStart\VideoCamSuiteAutoStart.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\NTI\Packard Bell MyBackup\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Users\Otas\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Windows\Samsung\PanelMgr\SSMMgr.exe
C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
E:\Hry\STALKER - Call Of Pripyat\4\4Story_CZ\PrePatch.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
C:\Program Files (x86)\Common Files\Research In Motion\nginx\nginx.exe
C:\Program Files (x86)\Common Files\Research In Motion\nginx\nginx.exe
C:\program files (x86)\research in motion\blackberry link\BlackBerryLink.Helper.exe
C:\Program Files (x86)\Research In Motion\BlackBerry Link\BlackBerryLink.AutoUpdate.exe
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvh.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Corel\Corel Graphics 11\Programs\CorelPP.exe
C:\Users\Otas\Downloads\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dalesearch.com/?babsrc=HP_ss ... 0&tsp=5007
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.chatzum.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AppGraffiti - {6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} - C:\PROGRA~2\APPGRA~1\APPGRA~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NTI\Packard Bell MyBackup\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun
O4 - HKLM\..\Run: [3200 Scan2PC] "C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [4StoryPrePatch] E:\Hry\STALKER - Call Of Pripyat\4\4Story_CZ\PrePatch.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKLM\..\Run: [RIM PeerManager] "C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
O4 - HKLM\..\RunOnce: [20131224] C:\Program Files\AVAST Software\Avast\setup\emupdate\abec5503-6432-4f87-9359-a7cb479320c7.exe /check
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [MyTomTomSA.exe] C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe
O4 - HKCU\..\Run: [AGupdate] C:\Program Files (x86)\AppGraffiti\AGupdate.exe
O4 - Startup: Dropbox.lnk = Otas\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4 - Global Startup: Remote Control.lnk = C:\Program Files (x86)\ASUSTek Computer Inc\ASUS U3100MINI PLUS V2 Utilities\RTLRCtl.exe
O4 - Global Startup: TMMonitor.lnk = C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe
O4 - Global Startup: VideoCam Suite.lnk = ?
O8 - Extra context menu item: Clip Image - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Clip selection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
O8 - Extra context menu item: Clip this page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: Nová poznámka - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\SysWOW64\bgsvcgen.exe
O23 - Service: BlackBerry Device Manager - Research In Motion Limited - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
O23 - Service: DraftSight API Service - Dassault Systemes - C:\Program Files (x86)\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Packard Bell MyBackup\IScheduleSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RIM MDNS - Apple Inc. - C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
O23 - Service: BlackBerry Link Communication Manager (RIM Tunnel Service) - Research In Motion Limited - C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WTService - Unknown owner - C:\Windows\system32\atwtusb.exe (file missing)

--
End of file - 15781 bytes

#2 Příspěvek od **Márty84** » 31 pro 2013 15:59

Zdravim

Log z HJT je uz nekolik let nedostacujici.

Dejte mi sem log z RSIT http://forum.viry.cz/viewtopic.php?f=24&t=130784 . A jelikoz to vypada na 64bit system, nezapomente stahnout RSITx64

Ot@s · #3 Příspěvek od **Ot@s** » 31 pro 2013 19:20

Zdarec...tak posílám ten správný log...

Logfile of random's system information tool 1.08 (written by random/random)
Run by Otas at 2013-12-31 19:11:39
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 27 GB (26%) free of 102 GB
Total RAM: 3948 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:11:44, on 31.12.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16502)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\ASUSTek Computer Inc\ASUS U3100MINI PLUS V2 Utilities\RTLRCtl.exe
C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe
C:\Program Files (x86)\Common Files\Panasonic\VideoCam Suite AutoStart\VideoCamSuiteAutoStart.exe
C:\Users\Otas\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files (x86)\NTI\Packard Bell MyBackup\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Windows\Samsung\PanelMgr\SSMMgr.exe
C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
E:\Hry\STALKER - Call Of Pripyat\4\4Story_CZ\PrePatch.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
C:\Program Files (x86)\Common Files\Research In Motion\nginx\nginx.exe
C:\Program Files (x86)\Common Files\Research In Motion\nginx\nginx.exe
C:\program files (x86)\research in motion\blackberry link\BlackBerryLink.Helper.exe
C:\Program Files (x86)\Research In Motion\BlackBerry Link\BlackBerryLink.AutoUpdate.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Common Files\Research In Motion\RIMDeviceManager\RIMDeviceManager.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Otas.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dalesearch.com/?babsrc=HP_ss ... 0&tsp=5007
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.chatzum.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AppGraffiti - {6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} - C:\PROGRA~2\APPGRA~1\APPGRA~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NTI\Packard Bell MyBackup\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun
O4 - HKLM\..\Run: [3200 Scan2PC] "C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [4StoryPrePatch] E:\Hry\STALKER - Call Of Pripyat\4\4Story_CZ\PrePatch.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKLM\..\Run: [RIM PeerManager] "C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [MyTomTomSA.exe] C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe
O4 - HKCU\..\Run: [AGupdate] C:\Program Files (x86)\AppGraffiti\AGupdate.exe
O4 - Startup: Dropbox.lnk = Otas\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4 - Global Startup: Remote Control.lnk = C:\Program Files (x86)\ASUSTek Computer Inc\ASUS U3100MINI PLUS V2 Utilities\RTLRCtl.exe
O4 - Global Startup: TMMonitor.lnk = C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe
O4 - Global Startup: VideoCam Suite.lnk = ?
O8 - Extra context menu item: Clip Image - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Clip selection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
O8 - Extra context menu item: Clip this page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: Nová poznámka - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\SysWOW64\bgsvcgen.exe
O23 - Service: BlackBerry Device Manager - Research In Motion Limited - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
O23 - Service: DraftSight API Service - Dassault Systemes - C:\Program Files (x86)\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Packard Bell MyBackup\IScheduleSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RIM MDNS - Apple Inc. - C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
O23 - Service: BlackBerry Link Communication Manager (RIM Tunnel Service) - Research In Motion Limited - C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WTService - Unknown owner - C:\Windows\system32\atwtusb.exe (file missing)

--
End of file - 15904 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
/QuitInfo:0000000000000498;000000000000049C; /AddRef;
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Windows\SysWOW64\bgsvcgen.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}"
"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe"
"C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe"
"C:\Program Files (x86)\NTI\Packard Bell MyBackup\IScheduleSvc.exe"
"taskhost.exe"
/QuitInfo:00000000000005F0;00000000000005F4; /AddRef;
/QuitInfo:00000000000005D8;00000000000005FC;
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\PANDORA.TV\PanService\KMPProcess.exe" KMPProcess
"C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
/loadhooks /Parent:0000000000000A18
"C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3436
C:\Windows\system32\atwtusb.exe -s
C:\Windows\system32\atwtusb.exe
"C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe" service
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe"
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\WTMKM.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\ASUSTek Computer Inc\ASUS U3100MINI PLUS V2 Utilities\RTLRCtl.exe"
"C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe"
"C:\Program Files (x86)\Common Files\Panasonic\VideoCam Suite AutoStart\VideoCamSuiteAutoStart.exe"
"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe"
"C:\Users\Otas\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe"
"C:\Program Files (x86)\NTI\Packard Bell MyBackup\BackupManagerTray.exe" -h -k
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\Samsung\PanelMgr\SSMMgr.exe" /autorun
"C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe"
C:\Windows\Samsung\PanelMgr\caller64.exe Samsung PanelMgr
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"E:\Hry\STALKER - Call Of Pripyat\4\4Story_CZ\PrePatch.exe"
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe"
"C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
ArcCon.ac 132256 0
"C:\Program Files (x86)\Common Files\Research In Motion\nginx\\nginx.exe" -c "C:\Users\Otas\AppData\Roaming\Research In Motion\BlackBerry 10 Desktop\RemoteAccess\nginx\conf\nginx.conf"
"C:\Program Files (x86)\Common Files\Research In Motion\nginx\\nginx.exe" -c "C:\Users\Otas\AppData\Roaming\Research In Motion\BlackBerry 10 Desktop\RemoteAccess\nginx\conf\nginx.conf"
\??\C:\Windows\system32\conhost.exe "599106593-541815427-1656067766-558243288152519612114185920091626748115-1324850325
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\program files (x86)\research in motion\blackberry link\BlackBerryLink.Helper.exe" /dts
"C:\Program Files (x86)\Research In Motion\BlackBerry Link\BlackBerryLink.AutoUpdate.exe" /noprogress
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -critical
"C:\Program Files (x86)\Common Files\Research In Motion\RIMDeviceManager\RIMDeviceManager.exe" /RunServer
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3356.0.1054208916\234034567" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2372 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:10a stable:r5 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --disable-accelerated-video-decode --channel="3356.4.2107716642\438093931" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:10a stable:r5 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --instant-process --disable-html-notifications --disable-accelerated-video-decode --channel="3356.8.1582453459\753249789" /prefetch:673131151
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=2640.17a92e00.1721194735 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 2640 "\\.\pipe\gecko-crash-server-pipe.2640" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe" --proxy-stub-channel=Flash6516.1013B990.20201 --host-broker-channel=Flash6516.1013B990.14180 --host-pid=6516 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe" --channel=3816.002CF588.28391040 --proxy-stub-channel=Flash6516.1013B990.20201 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll" --host-npapi-version=27 --type=renderer
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:10a stable:r5 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_31/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --disable-accelerated-video-decode --channel="3356.10.489516823\1486030914" /prefetch:673131151
"C:\Users\Otas\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-10-22 1567016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}]
AppGraffiti - C:\PROGRA~2\APPGRA~1\APPGRA~2.DLL [2013-12-05 1665192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-10-09 6270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}]
AppGraffiti - C:\PROGRA~2\APPGRA~1\APPGRA~1.DLL [2013-12-05 1038504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-12 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-10-22 606544]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
Evernote extension - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2013-10-03 583520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-10-22 1567016]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-10-22 606544]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-05-09 168216]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-05-09 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-05-09 416024]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2010-11-12 2588968]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-10 11785832]
"Power Management"=C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [2011-05-10 1831528]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-29 497648]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2010-12-17 438784]
"MacrokeyManager"=C:\Windows\system32\WTMKM.exe [2011-06-01 7329792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-14 20584608]
"MyTomTomSA.exe"=C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe [2013-05-23 455608]
"AGupdate"=C:\Program Files (x86)\AppGraffiti\AGupdate.exe [2013-03-19 894048]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-09-14 283160]
"BackupManagerTray"=C:\Program Files (x86)\NTI\Packard Bell MyBackup\BackupManagerTray.exe [2012-01-05 295448]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2011-03-14 1081424]
"Samsung PanelMgr"=C:\Windows\Samsung\PanelMgr\SSMMgr.exe [2011-07-06 688128]
"3200 Scan2PC"=C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe [2010-05-18 1989120]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"4StoryPrePatch"=E:\Hry\STALKER - Call Of Pripyat\4\4Story_CZ\PrePatch.exe [2013-02-19 327680]
"ArcSoft Connection Service"=C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27 207424]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-10-26 3567800]
"RIMBBLaunchAgent.exe"=C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [2013-09-09 443408]
"RIM PeerManager"=C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe [2013-11-05 4424704]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Remote Control.lnk - C:\Program Files (x86)\ASUSTek Computer Inc\ASUS U3100MINI PLUS V2 Utilities\RTLRCtl.exe
TMMonitor.lnk - C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe
VideoCam Suite.lnk - C:\Program Files (x86)\Common Files\Panasonic\VideoCam Suite AutoStart\VideoCamSuiteAutoStart.exe

C:\Users\Otas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Otas\AppData\Roaming\Dropbox\bin\Dropbox.exe
EvernoteClipper.lnk - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-04-15 385024]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2013-12-31 19:11:40 ----D---- C:\Program Files\trend micro
2013-12-31 19:11:39 ----D---- C:\rsit
2013-12-23 20:08:01 ----D---- C:\ProgramData\T-Mobile
2013-12-22 19:04:22 ----D---- C:\Program Files (x86)\Mozilla Firefox

======List of files/folders modified in the last 1 months======

2013-12-31 19:11:44 ----D---- C:\Windows\Prefetch
2013-12-31 19:11:41 ----D---- C:\Windows\Temp
2013-12-31 19:11:40 ----RD---- C:\Program Files
2013-12-31 18:55:01 ----D---- C:\Users\Otas\AppData\Roaming\Skype
2013-12-31 16:52:32 ----D---- C:\Windows\system32\config
2013-12-31 16:43:47 ----A---- C:\Windows\SYSWOW64\log.txt
2013-12-31 16:42:26 ----D---- C:\Users\Otas\AppData\Roaming\Dropbox
2013-12-31 16:41:39 ----A---- C:\Windows\win.ini
2013-12-31 16:31:17 ----D---- C:\Windows\inf
2013-12-30 21:36:58 ----D---- C:\Users\Otas\AppData\Roaming\SoftGrid Client
2013-12-30 13:13:53 ----D---- C:\Program Files (x86)\The KMPlayer
2013-12-30 12:45:47 ----D---- C:\Program Files (x86)\AppGraffiti
2013-12-28 21:04:45 ----SHD---- C:\System Volume Information
2013-12-25 15:49:14 ----D---- C:\Windows\System32
2013-12-25 15:49:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-12-23 23:23:25 ----D---- C:\Windows\system32\catroot2
2013-12-23 20:08:01 ----HD---- C:\ProgramData
2013-12-23 18:13:12 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-23 11:15:55 ----RD---- C:\Program Files (x86)
2013-12-14 19:22:19 ----SHD---- C:\Windows\Installer
2013-12-14 19:22:18 ----SHD---- C:\Config.Msi
2013-12-11 18:59:29 ----D---- C:\Windows\SysWOW64
2013-12-11 18:59:27 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-12-06 22:16:17 ----D---- C:\Users\Otas\AppData\Roaming\vlc

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-10-22 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-10-22 205320]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2010-09-14 437272]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2012-10-08 30056]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-09-17 834544]
R1 aswKbd;aswKbd; \??\C:\Windows\system32\drivers\aswKbd.sys [2013-10-22 28184]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-10-22 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-10-22 1032416]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-11-09 409832]
R1 aswTdi;aswTdi; \??\C:\Windows\system32\drivers\aswTdi.sys [2013-10-22 65264]
R1 cdrbsdrv;cdrbsdrv; C:\Windows\system32\drivers\cdrbsdrv.sys [2006-08-25 39208]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; \??\C:\Windows\system32\drivers\aswFsBlk.sys [2013-10-22 38984]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-10-22 84328]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2012-01-18 88480]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2012-01-18 46400]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 47632]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2011-03-14 11576]
R3 Afc;PPdus ASPI Shell; C:\Windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 ASUSVRC64;ASUSTeK Virtual Capture Device; C:\Windows\system32\DRIVERS\AsusVRC64.sys [2008-10-13 23424]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-11-09 2377216]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-01-21 67624]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-01-21 19496]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-05-16 51240]
R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2011-05-06 86056]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-11-12 138024]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-04-15 12228128]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-15 2814952]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2011-01-17 412712]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 moufiltr;Tablet Mouse Filter Driver; C:\Windows\system32\DRIVERS\moufiltr.sys [2009-03-08 7680]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2011-09-18 82816]
R3 rimvndis;BlackBerry Virtual Private Network; C:\Windows\System32\Drivers\rimvndis6_AMD64.sys [2013-04-26 17920]
R3 RimVSerPort;RIM Virtual Serial Port v2; C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys [2012-12-10 44544]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2009-12-02 721768]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2009-12-02 269672]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2009-12-02 25960]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2009-12-02 22376]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
R3 vhidmini;Generic Virtual HID Driver; C:\Windows\system32\DRIVERS\walvhid.sys [2009-08-26 7552]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S1 ASPI32;ASPI32; C:\Windows\system32\drivers\ASPI32.sys []
S2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys []
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2012-09-09 14448]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2012-09-09 27760]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 qrkis;Tether Miniport; C:\Windows\system32\DRIVERS\qrkis.sys [2009-07-31 50856]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RimUsb;zařízení BlackBerry Smartphone; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [2013-06-27 79872]
S3 RTL2832UBDA;REALTEK 2832U BDA Driver; C:\Windows\system32\drivers\RTL2832UBDA.sys [2011-07-01 225128]
S3 RTL2832UUSB;REALTEK 2832U USB Driver; C:\Windows\System32\Drivers\RTL2832UUSB.sys [2011-05-17 39016]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\drivers\usb8023x.sys [2013-02-12 19968]
S3 usbrndis6;Adaptér USB RNDIS6; C:\Windows\system32\DRIVERS\usb80236.sys [2013-02-12 19968]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9; c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [2010-09-30 169408]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-10-22 50344]
R2 bgsvcgen;B's Recorder GOLD Library General Service; C:\Windows\SysWOW64\bgsvcgen.exe [2007-06-15 145504]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-02-28 821664]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2011-03-14 352336]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2011-05-10 872552]
R2 GREGService;GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [2011-05-26 29696]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-09-14 13336]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2011-04-22 244624]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-22 325656]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Packard Bell MyBackup\IScheduleSvc.exe [2012-01-05 256536]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-02 891240]
R2 PanService;PandoraService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [2013-07-08 1922600]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-26 76888]
R2 RIM MDNS;RIM MDNS; C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe [2013-11-05 389632]
R2 RIM Tunnel Service;BlackBerry Link Communication Manager; C:\Program Files (x86)\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe [2013-11-05 1286656]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2009-12-02 483688]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-22 2656280]
R3 BlackBerry Device Manager;BlackBerry Device Manager; C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [2013-09-09 585728]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2009-12-02 209768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-07 116648]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-08 1258856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 DraftSight API Service;DraftSight API Service; C:\Program Files (x86)\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [2012-01-24 78336]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-01-09 1030600]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-07 116648]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-22 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2009-11-19 4925184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-01-04 718888]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-09-16 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

#4 Příspěvek od **Márty84** » 31 pro 2013 19:46

Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Ot@s · #5 Příspěvek od **Ot@s** » 31 pro 2013 22:32

Tady je ten log...

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.12.31.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Otas :: KRAM [administrátor]

Ochrana: Povolena

31.12.2013 21:26:38
MBAM-log-2013-12-31 (22-28-57).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 410671
Uplynulý čas: 1 hodin, 1 minut, 6 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 12
HKCR\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{CCB69577-088B-4004-9ED8-FF5BCC83A039} (PUP.Optional.RebateInformer.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039} (PUP.Optional.RebateInformer.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{DB02BC6B-B0F0-4074-99E6-884B70FCB6AE} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{022C9F90-2E96-47D6-A971-107650154563} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}_is1 (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\1ClickDownload (PUP.Optional.1ClickDownload.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|AGupdate (PUP.Optional.AppGraffiti.A) -> Data: C:\Program Files (x86)\AppGraffiti\AGupdate.exe -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 1
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (Hijack.StartPage) -> Špatný: (http://www.dalesearch.com/?babsrc=HP_ss ... 0&tsp=5007) Dobrý: (http://www.google.com) -> Nebyla provedena žádná instrukce.

Nalezené složky: 5
C:\Users\Otas\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\Update (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Users\Otas\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Otas\AppData\Roaming\OpenCandy\4C47BA6C6F824B0AA13339D14B48DD98 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 241
C:\Program Files (x86)\AppGraffiti\AppGraffiti.dll (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Users\Otas\Desktop\S.T.A.L.K.E.R. COP Trainer +10_.exe (HackTool.GamesCheat.Gen) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz4D2B.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz4E26.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz4F4F.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz502B.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz5164.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz525E.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz5349.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz5434.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz552F.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz5629.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz5772.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz58CA.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz5A13.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz5B8A.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz5CF2.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz5E3B.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz5F45.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz606E.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz61F5.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz62C1.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz63AC.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz64B6.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz65C0.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz66CB.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz67D5.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz6A55.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz6B60.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz6D06.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz6E20.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz6F39.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz7044.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz714E.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz7268.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Menus 16x9\Standardní nabídky\trz7381.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trz8915.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trz89F0.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trz8D2C.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trz91A0.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trz927B.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trz9CC9.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trz9EDC.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzA0E0.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzA1BB.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzA297.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzA382.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzA48C.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzA577.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzA662.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzA73D.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzA867.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzA9A0.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzAC4F.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzAEDF.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds\trzB0C4.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzB873.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzBA38.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzBB71.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzBD17.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzC091.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzC266.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzC5C1.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzC852.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzCCB6.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzCFA4.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzD224.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzD476.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzD59F.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzD6F8.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzD8EC.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzDB2E.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzE02E.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzE186.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\Motion Backgrounds 16x9\trzE33C.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\trzE4B4.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz1068.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz1192.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz12AB.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz13A6.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz14A1.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz15DA.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz16C5.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz17BF.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz18BA.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz19B4.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz1C45.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz1E1A.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz1F24.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz203E.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz21F4.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz24B.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz252F.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz261A.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz2734.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz286D.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz38D3.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz3A1B.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz3C8C.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz3D2.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz3EBF.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz40D2.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz4575.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz46AE.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz47A8.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz4901.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz4B04.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz4EB.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz54D5.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz5775.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz5969.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz6424.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz6C0.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz7DA.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz8B25.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz8C2F.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz8C5.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz8D39.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trz9EF.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trzBF2.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trzE73.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trzF2.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trzF4AC.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trzF5E.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trzF671.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trzF808.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trzFAF6.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trzFCCB.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trzFEAF.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Looks\Standard\trzFFD9.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\trz8F0E.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz10AD.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz11C7.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz12A3.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz1439.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz1543.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz164E.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz1758.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz1872.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz1A9.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz429.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz591.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz972A.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz9863.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz9AC4.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trz9BEE.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzAC0.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzB124.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzB2BA.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzB74D.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzBA6A.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzBD0A.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzC09.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzC499.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzCFA2.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzDAF.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzE0C2.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzE297.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzE3EF.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzE576.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzE6A0.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzEB81.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzECAA.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzEF8.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzEF88.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzF0E1.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzF545.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzF749.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzFC68.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzFD91.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Emphasis\trzFEF9.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz1FA3.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz207F.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz2179.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz2293.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz237E.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz2469.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz290C.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz2B6D.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz2CB6.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz2DD0.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz2F37.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz3070.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz3284.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz33FB.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz3544.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz37A5.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz38FD.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz39E8.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz3AC4.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz3B9F.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz3C9A.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz3D94.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz3E8F.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz3FB8.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz416E.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz4259.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz45B4.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz4844.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz4A0A.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz4B33.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz4C8B.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz4DD4.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz4F1D.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz5120.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz543D.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz5779.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz59BB.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz5DE1.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz6042.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz61AA.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz62E3.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz642C.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz6593.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz66CC.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz6815.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz69EA.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz6C8A.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz72B2.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz74E5.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz7737.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz7979.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz7BFA.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz7E0D.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz7F46.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz806F.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz81E7.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz8301.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz83FB.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz84E6.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Public\Documents\Pinnacle\Content\MotionTitles\-Motions\Enter\trz8600.tmp (Trojan.Dropper) -> Nebyla provedena žádná instrukce.
C:\Users\Otas\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\unins000.dat (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\AGupdate.exe (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\AppGraffiti.exe (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\AppGraffiti._dll (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\AppGraffiti._exe (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\AppGraffiti64.dll (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\config.dat (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\unins000.exe (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Users\Otas\AppData\Roaming\OpenCandy\4C47BA6C6F824B0AA13339D14B48DD98\PasswordBoxCHSTORE_p1v0.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.

(konec)

#6 Příspěvek od **Márty84** » 01 led 2014 00:54

Nalezy nechte odstranit. Po odstraneni a restartu pc test zopakujte, at vime, jestli se to nevraci. Napiste zda neco nasel a podle vysledku zvolim dalsi postup

Ot@s · #7 Příspěvek od **Ot@s** » 01 led 2014 12:07

Tak jsem provedl odstranění, restart a znovu test a přikládám log...našel ještě 29 sviní...

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.12.31.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Otas :: KRAM [administrátor]

Ochrana: Povolena

1.1.2014 10:57:16
MBAM-log-2014-01-01 (12-04-18).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 410784
Uplynulý čas: 1 hodin, 2 minut, 27 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 12
HKCR\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{CCB69577-088B-4004-9ED8-FF5BCC83A039} (PUP.Optional.RebateInformer.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039} (PUP.Optional.RebateInformer.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8} (PUP.Optional.InboxToolBar.A) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{DB02BC6B-B0F0-4074-99E6-884B70FCB6AE} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{022C9F90-2E96-47D6-A971-107650154563} (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}_is1 (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\1ClickDownload (PUP.Optional.1ClickDownload.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|AGupdate (PUP.Optional.AppGraffiti.A) -> Data: C:\Program Files (x86)\AppGraffiti\AGupdate.exe -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 5
C:\Users\Otas\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\Update (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Users\Otas\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Otas\AppData\Roaming\OpenCandy\4C47BA6C6F824B0AA13339D14B48DD98 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 11
C:\Program Files (x86)\AppGraffiti\AppGraffiti.dll (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Users\Otas\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\unins000.dat (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\AGupdate.exe (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\AppGraffiti.exe (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\AppGraffiti._dll (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\AppGraffiti._exe (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\AppGraffiti64.dll (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\config.dat (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\AppGraffiti\unins000.exe (PUP.Optional.AppGraffiti.A) -> Nebyla provedena žádná instrukce.
C:\Users\Otas\AppData\Roaming\OpenCandy\4C47BA6C6F824B0AA13339D14B48DD98\PasswordBoxCHSTORE_p1v0.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.

(konec)

#8 Příspěvek od **Márty84** » 01 led 2014 12:45

Vsechny nalezy nechte odstranit.

Pak vymazte body obnovy http://forum.viry.cz/viewtopic.php?f=46&t=47040

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.

Ot@s · #9 Příspěvek od **Ot@s** » 01 led 2014 13:19

Jak jste psal o zrušení obnovy systému, tak nic takového mi to nenabídlo...pouze provést obnovu systému k určité události, ale nejde mi nastavit ten zákaz...
Tady je ten log...

# AdwCleaner v3.016 - Report created 01/01/2014 at 13:13:53
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Otas - KRAM
# Running from : C:\Users\Otas\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\chatzum_nt.exe
Folder Found C:\Program Files (x86)\DAEMON Tools Toolbar
Folder Found C:\Program Files (x86)\ChatZum Toolbar
Folder Found C:\Program Files (x86)\TornTV.com
Folder Found C:\Program Files (x86)\yourfiledownloader
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\boost_interprocess
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppGraffiti
Folder Found C:\Users\Otas\AppData\LocalLow\AppGraffiti
Folder Found C:\Users\Otas\AppData\Roaming\yourfiledownloader

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppGraffiti
Key Found : HKCU\Software\dt soft\daemon tools toolbar
Key Found : HKCU\Software\ChatZum Toolbar
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\WEDLMNGR
Key Found : HKCU\Software\YourFileDownloader
Key Found : [x64] HKCU\Software\APN PIP
Key Found : [x64] HKCU\Software\AppGraffiti
Key Found : [x64] HKCU\Software\dt soft\daemon tools toolbar
Key Found : [x64] HKCU\Software\ChatZum Toolbar
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\WEDLMNGR
Key Found : [x64] HKCU\Software\YourFileDownloader
Key Found : HKLM\Software\AppGraffiti
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppGraffiti.AppGraffitiJS
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{3E288F79-03E4-4983-A48E-0D879B51FF19}
Key Found : HKLM\Software\ChatZum Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\chatzum_nt_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\chatzum_nt_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_blackberry-desktop-manager_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_blackberry-desktop-manager_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Found : HKLM\Software\PIP
Key Found : HKLM\Software\VDownloader\OpenCandy
Key Found : HKLM\Software\YourFileDownloader
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16502

Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.chatzum.com/

-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Users\Otas\AppData\Roaming\Mozilla\Firefox\Profiles\ncxs7d47.default-1384026920426\prefs.js ]

-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Otas\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found : search_url
Found : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [9497 octets] - [01/01/2014 13:13:53]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [9557 octets] ##########

#10 Příspěvek od **Márty84** » 01 led 2014 13:32

Vy tam nemate toto? http://forum.viry.cz/viewtopic.php?f=46 ... 0#p1020613

Znovu ukoncete vsechny programy a spustte AdwCleaner jako spravce.
Tentokrat kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zase zkopirujte.

Ot@s · #11 Příspěvek od **Ot@s** » 01 led 2014 13:48

Omlouvam se...už jsem to našel..., takže body obnovy byly odstraněny a bylo provedeno smazání...

# AdwCleaner v3.016 - Report created 01/01/2014 at 13:43:48
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Otas - KRAM
# Running from : C:\Users\Otas\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppGraffiti
Folder Deleted : C:\Program Files (x86)\ChatZum Toolbar
Folder Deleted : C:\Program Files (x86)\DAEMON Tools Toolbar
Folder Deleted : C:\Program Files (x86)\TornTV.com
Folder Deleted : C:\Program Files (x86)\yourfiledownloader
Folder Deleted : C:\Users\Otas\AppData\LocalLow\AppGraffiti
Folder Deleted : C:\Users\Otas\AppData\Roaming\yourfiledownloader
File Deleted : C:\chatzum_nt.exe

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppGraffiti.AppGraffitiJS
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\chatzum_nt_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\chatzum_nt_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_blackberry-desktop-manager_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_blackberry-desktop-manager_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3E288F79-03E4-4983-A48E-0D879B51FF19}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\AppGraffiti
Key Deleted : HKCU\Software\ChatZum Toolbar
Key Deleted : HKCU\Software\dt soft\daemon tools toolbar
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\WEDLMNGR
Key Deleted : HKCU\Software\YourFileDownloader
Key Deleted : HKLM\Software\AppGraffiti
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\ChatZum Toolbar
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\VDownloader\OpenCandy
Key Deleted : HKLM\Software\YourFileDownloader
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16502

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Users\Otas\AppData\Roaming\Mozilla\Firefox\Profiles\ncxs7d47.default-1384026920426\prefs.js ]

-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Otas\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : search_url
Deleted : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [9793 octets] - [01/01/2014 13:13:53]
AdwCleaner[R1].txt - [9853 octets] - [01/01/2014 13:42:57]
AdwCleaner[S0].txt - [9190 octets] - [01/01/2014 13:43:48]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9250 octets] ##########

#12 Příspěvek od **Márty84** » 01 led 2014 17:31

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

Ot@s · #13 Příspěvek od **Ot@s** » 01 led 2014 17:52

Avast si toho ani nevšiml...

RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Otas [Práva správce]
Mód : Kontrola -- Datum : 01/01/2014 17:51:12
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

ÿþ1

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) Hitachi HTS547550A9E384 +++++
--- User ---
[MBR] 1e1482ccedfba055b75520430b18f807
[BSP] 20daf54f80771505293fb81cf07ccd5f : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 20480 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 41945088 | Size: 100 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 42149888 | Size: 102408 Mo
3 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 251883135 | Size: 353947 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_01012014_175112.txt >>
RKreport[0]_S_01012014_174842.txt

#14 Příspěvek od **Márty84** » 01 led 2014 17:56

Ot@s píše:Avast si toho ani nevšiml...

To je dobre, ale kdysi mu to vadilo, tak to tam radeji vzdycky pisu

Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.

Ot@s · #15 Příspěvek od **Ot@s** » 01 led 2014 18:12

První log

RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Otas [Práva správce]
Mód : Odebrat -- Datum : 01/01/2014 18:05:04
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

ÿþ1

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) Hitachi HTS547550A9E384 +++++
--- User ---
[MBR] 1e1482ccedfba055b75520430b18f807
[BSP] 20daf54f80771505293fb81cf07ccd5f : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 20480 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 41945088 | Size: 100 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 42149888 | Size: 102408 Mo
3 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 251883135 | Size: 353947 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_01012014_180504.txt >>
RKreport[0]_D_01012014_180309.txt;RKreport[0]_S_01012014_174842.txt;RKreport[0]_S_01012014_175112.txt
RKreport[0]_S_01012014_175512.txt;RKreport[0]_S_01012014_180457.txt

Druhy log

RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Otas [Práva správce]
Mód : Oprava HOSTS -- Datum : 01/01/2014 18:07:05
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

ÿþ1

¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost

Dokončeno : << RKreport[0]_H_01012014_180705.txt >>
RKreport[0]_D_01012014_180309.txt;RKreport[0]_D_01012014_180504.txt;RKreport[0]

_S_01012014_174842.txt
RKreport[0]_S_01012014_175112.txt;RKreport[0]_S_01012014_175512.txt;RKreport[0]

_S_01012014_180457.txt

VIRY.CZ

Prosim o preventivku, NTB je silene pomaly

Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly

Re: Prosim o preventivku, NTB je silene pomaly