problem s rychlosti pocitace...winmon.exe

[tepan]

Dobry den,chtel bych poradit.Od vcerejska se mi vyrazne zpomaluje pocitac.Muzete poradit...a chtel bych vedet,co je proces winmon.exe...bere si 50 procent z procesoru

[Márty84]

Zdravim

Winmon.exe je smejd.

Dejte log z RSIT

Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[tepan]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Tepan at 2014-02-07 21:09:21
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 9 GB (5%) free of 175 GB
Total RAM: 4095 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:09:23, on 7.2.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Program Files\Retro PC Calculator\ntvmon32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
C:\Users\Tepan\AppData\Local\Temp\mexe.com
C:\Program Files\trend micro\Tepan.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [DelReg] C:\Program Files (x86)\MSI\DualCoreCenter\DelReg.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Tepan\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Tepan\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [Easy Driver Pro] C:\Program Files (x86)\Probit Software\Easy Driver Pro\DPLauncher.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Xfire.lnk = C:\Program Files (x86)\Xfire\Xfire.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update SecretSauce - Unknown owner - C:\Program Files (x86)\SecretSauce\updateSecretSauce.exe
O23 - Service: Util SecretSauce - Unknown owner - C:\Program Files (x86)\SecretSauce\bin\utilSecretSauce.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 9427 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
C:\PROGRA~2\AVG\AVG2013\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=892ded34-026d-4477-bb38-1512f2f01054 /coreSdkOptions=4382 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\b866626c-63f9-4876-a430-c2180c750458-15c-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2013\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2013" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
atieclxx
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"taskhost.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe"
"C:\Program Files (x86)\SecretSauce\updateSecretSauce.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Retro PC Calculator\ntvmon32.exe"
\??\C:\Windows\system32\conhost.exe "789476103865551078-2085116438-1432509425-1922295429900838201681373548-508901909
"C:\Windows\SysWOW64\rundll32.exe" "C:\Users\Tepan\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
"C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgemca.exe"
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe" /TUStart /pid:1828
"C:\Program Files (x86)\SecretSauce\bin\utilSecretSauce.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-2f1f5558-f1e3-4ef6-b479-61f3042b1c78 -SystemEventPortName:HostProcess-96d35a59-a3d7-40f2-9f45-ded979c26716 -IoCancelEventPortName:HostProcess-9f9dceb2-8687-4315-a499-3a586d33746d -NonStateChangingEventPortName:HostProcess-a25ba174-6a4c-4304-bef7-c0f3671f6e9b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ca6ce513-212a-41f1-b612-cd72a510514e -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Retro PC Calculator\winmon.exe" -o stratum+tcp://hk-1.liteguardian.com:3335 -t 1 -u butt3rfly.1 -p x
\??\C:\Windows\system32\conhost.exe "-1555908862-307944595-1951360271-15203416102008221921-1812573829763840422-1761585924
"C:\totalcmd\TOTALCMD.EXE"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3600.2059bc00.697768211 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3600 "\\.\pipe\gecko-crash-server-pipe.3600" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --proxy-stub-channel=Flash700.6EAEB990.27191 --host-broker-channel=Flash700.6EAEB990.11174 --host-pid=700 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --channel=3396.0039F3A8.1327911261 --proxy-stub-channel=Flash700.6EAEB990.27191 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" --host-npapi-version=27 --type=renderer
"C:\Users\Tepan\AppData\Local\Temp\mexe.com"
"D:\stazeno z netu\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\HDvid Codec V6.0-chromeinstaller.job
C:\Windows\tasks\HDvid Codec V6.0-codedownloader.job
C:\Windows\tasks\HDvid Codec V6.0-enabler.job
C:\Windows\tasks\HDvid Codec V6.0-firefoxinstaller.job
C:\Windows\tasks\HDvid Codec V6.0-updater.job
C:\Windows\tasks\ROC_REG_JAN_DELETE.job
C:\Windows\tasks\Torntv V6.0-chromeinstaller.job
C:\Windows\tasks\Torntv V6.0-codedownloader.job
C:\Windows\tasks\Torntv V6.0-enabler.job
C:\Windows\tasks\Torntv V6.0-firefoxinstaller.job
C:\Windows\tasks\Torntv V6.0-updater.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Tepan\AppData\Roaming\Mozilla\Firefox\Profiles\9dgbgoc5.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.44 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.43 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411591160}]
Torntv V6.0 - C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-bho64.dll [2014-01-26 969216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411591171}]
HDvid Codec V6.0 - C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-bho64.dll [2014-01-23 969216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-18 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-09-09 12856936]
"VDownloader"=C:\Program Files\VDownloader\VDownloader.exe [2013-09-05 822272]
"Windows NTV Host Monitor"=C:\Program Files\Retro PC Calculator\ntvmon32.exe [2014-01-03 1716224]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=C:\Users\Tepan\AppData\Roaming\Seznam.cz\szninstall.exe [2012-09-13 1009288]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2014-01-29 3598680]
"NextLive"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2014-01-07 1815464]
"Easy Driver Pro"=C:\Program Files (x86)\Probit Software\Easy Driver Pro\DPLauncher.exe [2013-05-05 198960]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"amd_dc_opt"=C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2013\avgui.exe [2013-11-20 4411952]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-12-19 642808]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2012-09-13 1009288]
"DelReg"=C:\Program Files (x86)\MSI\DualCoreCenter\DelReg.exe [2008-05-13 196608]

C:\Users\Tepan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Xfire.lnk - C:\Program Files (x86)\Xfire\Xfire.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-02-07 21:02:45 ----AD---- C:\Windows\VDLL.DLL
2014-02-07 21:02:45 ----AD---- C:\Windows\SYSWOW64\runouce.exe
2014-02-07 21:02:45 ----AD---- C:\Windows\rundll16.exe
2014-02-07 21:02:45 ----AD---- C:\Windows\RUNDL132.EXE
2014-02-07 21:02:45 ----AD---- C:\Windows\logo1_.exe
2014-02-07 21:02:45 ----AD---- C:\Windows\logo_1.exe
2014-02-07 20:53:40 ----A---- C:\Windows\SYSWOW64\msvcr80.dll
2014-02-07 20:53:39 ----A---- C:\Windows\SYSWOW64\msvcp80.dll
2014-02-07 20:53:38 ----A---- C:\Windows\SYSWOW64\eEmpty.exe
2014-02-07 20:53:33 ----D---- C:\ProgramData\MicroWorld
2014-02-07 14:13:13 ----D---- C:\Program Files (x86)\Atari
2014-02-07 13:13:54 ----SD---- C:\Program Files (x86)\Xfire
2014-02-07 13:13:54 ----D---- C:\Users\Tepan\AppData\Roaming\Xfire
2014-02-07 10:11:59 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2014-02-01 12:03:00 ----D---- C:\Program Files (x86)\Probit Software
2014-01-26 14:56:12 ----D---- C:\Users\Tepan\AppData\Roaming\cef-cache
2014-01-26 14:56:04 ----D---- C:\Users\Tepan\AppData\Roaming\Party
2014-01-26 14:54:18 ----D---- C:\Programs
2014-01-26 10:58:35 ----D---- C:\Users\Tepan\AppData\Roaming\PacificPoker
2014-01-26 10:58:29 ----D---- C:\Program Files (x86)\PacificPoker
2014-01-26 08:36:05 ----A---- C:\Windows\SpeedItup Free Uninstall Log.txt
2014-01-26 06:31:39 ----D---- C:\Program Files (x86)\Torntv V6.0
2014-01-26 06:27:20 ----D---- C:\Program Files (x86)\DownLite
2014-01-26 06:27:08 ----D---- C:\Program Files\Retro PC Calculator
2014-01-26 06:27:05 ----A---- C:\ProgramData\spds90.txt
2014-01-26 06:26:55 ----D---- C:\Program Files (x86)\SpeedItup Free
2014-01-26 06:26:55 ----A---- C:\Windows\SpeedItup Free Setup Log.txt
2014-01-24 18:17:06 ----D---- C:\Program Files (x86)\Steam
2014-01-24 10:35:12 ----D---- C:\Users\Tepan\AppData\Roaming\newnext.me
2014-01-24 10:34:58 ----D---- C:\Program Files (x86)\Mobogenie
2014-01-24 10:33:39 ----D---- C:\Users\Tepan\AppData\Roaming\Oxy
2014-01-23 10:35:36 ----D---- C:\Program Files (x86)\SecretSauce
2014-01-23 10:35:01 ----D---- C:\Program Files (x86)\HDvid Codec V6.0
2014-01-23 09:04:03 ----D---- C:\Windows\CD95F661A5C444F5A6AAECDD91C240D9.TMP
2014-01-23 08:56:17 ----D---- C:\GTA 5
2014-01-23 03:24:54 ----D---- C:\Program Files (x86)\VS Revo Group
2014-01-20 16:55:20 ----D---- C:\ProgramData\Oracle
2014-01-20 11:18:17 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-01-20 11:18:13 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-01-20 11:18:13 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-01-20 11:18:12 ----A---- C:\Windows\SYSWOW64\java.exe
2014-01-18 17:14:55 ----D---- C:\Windows\rescache
2014-01-15 17:36:03 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-01-15 17:36:03 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-01-15 17:36:03 ----A---- C:\Windows\system32\wmploc.DLL
2014-01-15 17:36:02 ----A---- C:\Windows\system32\wmp.dll
2014-01-15 17:30:48 ----D---- C:\Windows\Migration
2014-01-15 17:07:32 ----A---- C:\Windows\system32\authui.dll
2014-01-15 17:07:31 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-01-15 17:07:31 ----A---- C:\Windows\SYSWOW64\credui.dll
2014-01-15 17:07:31 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-01-15 17:07:31 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2014-01-15 17:07:31 ----A---- C:\Windows\system32\credui.dll
2014-01-15 17:07:22 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2014-01-15 17:07:22 ----A---- C:\Windows\system32\cryptdlg.dll
2014-01-15 17:07:14 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-01-15 17:07:14 ----A---- C:\Windows\system32\msieftp.dll
2014-01-15 17:07:13 ----A---- C:\Windows\system32\wwansvc.dll
2014-01-15 17:07:12 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-01-15 17:07:12 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-01-15 17:07:12 ----A---- C:\Windows\system32\wwanprotdim.dll
2014-01-15 17:07:12 ----A---- C:\Windows\system32\WebClnt.dll
2014-01-15 17:07:12 ----A---- C:\Windows\system32\davclnt.dll
2014-01-15 17:07:11 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-01-15 17:07:10 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-01-15 17:07:10 ----A---- C:\Windows\system32\WMPhoto.dll
2014-01-15 17:07:10 ----A---- C:\Windows\system32\drivers\ataport.sys
2014-01-15 17:06:50 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-01-15 17:06:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-01-15 17:06:49 ----A---- C:\Windows\system32\drivers\netio.sys
2014-01-15 17:05:59 ----A---- C:\Windows\system32\scavengeui.dll
2014-01-15 13:49:17 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-01-15 13:49:17 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-01-15 13:49:17 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-01-15 13:49:17 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-01-15 13:49:17 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-01-15 13:49:17 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-01-15 13:49:17 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-01-15 13:49:16 ----A---- C:\Windows\system32\win32k.sys
2014-01-10 03:51:27 ----D---- C:\Poker
2014-01-08 04:09:30 ----ASH---- C:\pagefile.sys

======List of files/folders modified in the last 1 month======

2014-02-07 21:09:23 ----D---- C:\Program Files\trend micro
2014-02-07 21:09:04 ----D---- C:\Windows\Temp
2014-02-07 21:02:45 ----D---- C:\Windows\SysWOW64
2014-02-07 21:02:45 ----D---- C:\Windows
2014-02-07 20:53:34 ----D---- C:\Program Files (x86)\Common Files
2014-02-07 20:53:33 ----HD---- C:\ProgramData
2014-02-07 20:43:56 ----D---- C:\Users\Tepan\AppData\Roaming\Seznam.cz
2014-02-07 20:40:21 ----D---- C:\Windows\system32\catroot2
2014-02-07 20:39:00 ----D---- C:\Program Files (x86)\Origin
2014-02-07 20:38:04 ----D---- C:\Windows\system32\config
2014-02-07 20:37:43 ----D---- C:\AdwCleaner
2014-02-07 19:46:07 ----D---- C:\Users\Tepan\AppData\Roaming\uTorrent
2014-02-07 17:18:28 ----D---- C:\ProgramData\MFAData
2014-02-07 16:37:01 ----SHD---- C:\System Volume Information
2014-02-07 16:22:59 ----D---- C:\Users\Tepan\AppData\Roaming\vlc
2014-02-07 14:53:49 ----D---- C:\Stazeno z torrentu
2014-02-07 14:21:50 ----RSD---- C:\Windows\assembly
2014-02-07 14:13:13 ----D---- C:\Program Files (x86)
2014-02-07 13:23:08 ----D---- C:\Program Files (x86)\Full Tilt Poker
2014-02-07 13:13:54 ----D---- C:\Windows\Prefetch
2014-02-07 13:04:58 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-02-07 10:12:35 ----D---- C:\Windows\SYSWOW64\drivers
2014-02-07 09:04:45 ----SHD---- C:\Windows\Installer
2014-02-07 07:05:22 ----D---- C:\Windows\System32
2014-02-07 07:05:22 ----D---- C:\Windows\inf
2014-02-07 07:05:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-02-07 07:04:58 ----D---- C:\Program Files (x86)\PokerStars
2014-02-04 23:46:16 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-02-02 17:55:16 ----D---- C:\Windows\Tasks
2014-02-02 17:55:16 ----D---- C:\Windows\system32\Tasks
2014-02-01 12:04:00 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-01-27 06:36:02 ----D---- C:\Filmy
2014-01-26 06:27:08 ----RD---- C:\Program Files
2014-01-24 15:43:17 ----RSD---- C:\Windows\Fonts
2014-01-24 09:29:06 ----D---- C:\Users\Tepan\AppData\Roaming\DAEMON Tools Lite
2014-01-23 10:35:56 ----D---- C:\Program Files (x86)\ffdshow
2014-01-23 03:56:12 ----D---- C:\Hry
2014-01-23 03:42:04 ----D---- C:\Windows\debug
2014-01-23 03:05:42 ----D---- C:\ProgramData\DatacardService
2014-01-23 03:05:31 ----D---- C:\Windows\system32\drivers
2014-01-23 03:05:28 ----D---- C:\Windows\system32\DriverStore
2014-01-23 03:05:28 ----D---- C:\Windows\system32\catroot
2014-01-23 02:51:01 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-01-22 06:37:37 ----D---- C:\Users\Tepan\AppData\Roaming\Skype
2014-01-20 11:18:12 ----D---- C:\Program Files (x86)\Java
2014-01-18 07:39:56 ----D---- C:\Windows\Microsoft.NET
2014-01-15 17:42:17 ----D---- C:\Windows\winsxs
2014-01-15 17:39:06 ----D---- C:\Windows\AppPatch
2014-01-15 17:39:06 ----D---- C:\Program Files\Windows Media Player
2014-01-15 17:39:06 ----D---- C:\Program Files (x86)\Windows Media Player
2014-01-15 17:39:05 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-01-15 17:39:05 ----D---- C:\Windows\system32\cs-CZ
2014-01-15 17:31:04 ----D---- C:\Windows\SYSWOW64\en-US
2014-01-15 17:31:04 ----D---- C:\Windows\system32\en-US
2014-01-15 17:30:48 ----SD---- C:\ProgramData\Microsoft
2014-01-15 17:11:28 ----D---- C:\Windows\system32\MRT
2014-01-15 17:09:07 ----A---- C:\Windows\system32\MRT.exe
2014-01-10 04:14:12 ----D---- C:\Windows\Panther
2014-01-10 04:14:09 ----D---- C:\Windows\Logs
2014-01-10 03:53:44 ----D---- C:\Windows\Downloaded Program Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-07-20 71480]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-07-20 311608]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-07-01 116536]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-10-23 45880]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-02-07 381440]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-11-25 246072]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-07-20 206648]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2013-03-21 240952]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 47632]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-19 11278336]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-19 552960]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-11-06 96256]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-09-13 3076456]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2012-09-19 11880]
S3 adh0ettx;adh0ettx; C:\Windows\system32\drivers\adh0ettx.sys []
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-19 11278336]
S3 cpuz130;cpuz130; \??\C:\Users\Tepan\AppData\Local\Temp\cpuz130\cpuz_x64.sys []
S3 cpuz135;cpuz135; \??\C:\Users\Tepan\AppData\Local\Temp\cpuz135\cpuz135_x64.sys []
S3 ENTECH64;ENTECH64; \??\C:\Windows\system32\DRIVERS\ENTECH64.sys [2008-09-17 12744]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys []
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys []
S3 FLASHSYS;FLASHSYS; \??\C:\Program Files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys [2008-02-15 15192]
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys []
S3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys []
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys []
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys []
S3 NTIOLib_1_0_6;NTIOLib_1_0_6; \??\C:\Program Files (x86)\Setup Files\Ms7529v470\NTIOLib_X64.sys [2011-01-06 11888]
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S4 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-19 240640]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-11-20 283136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-04-15 76888]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2012-09-19 2365792]
R2 Update SecretSauce;Update SecretSauce; C:\Program Files (x86)\SecretSauce\updateSecretSauce.exe [2014-02-05 80160]
R2 Util SecretSauce;Util SecretSauce; C:\Program Files (x86)\SecretSauce\bin\utilSecretSauce.exe [2014-02-05 80160]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-18 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-04 257928]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-18 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-20 119408]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-01-07 569768]
S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[tepan]

Soubor C:\Users\Tepan\AppData\Local\Temp\Quarantine.exe je infikovaný virem Gen:Trojan.Heur.AutoIT.vmNfbiFxA2km (DB) !! Provedené akce: Ponecháno, neodstraněno!.
Soubor C:\Users\Tepan\AppData\Local\Temp\Quarantine.exe je infikovaný virem Gen:Trojan.Heur.AutoIT.vmNfbiFxA2km (DB) !! Provedené akce: Ponecháno, neodstraněno!.

[Márty84]

Nalezy nechte odstranit. Po odstraneni a restartu pc test zopakujte. Napiste, jestli zase neco nasel. Podle toho zvolim dalsi postup.

[tepan]

jak je odstranim?nikde tuto moznost v MWAV nevidim.

[tepan]

odstranil jsem to rucne..

[Márty84]

Jenze ja chtel test MBAM, ne MWAV.

[tepan]

omlouvam se uz to skenuji

[tepan]

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2014.02.07.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Tepan :: TEPAN-PC [administrátor]

8.2.2014 0:26:33
MBAM-log-2014-02-08 (01-58-43).txt

Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 393009
Uplynulý čas: 1 hodin, 27 minut, 42 sekund

Nalezené procesy v paměti: 1
C:\Program Files (x86)\SecretSauce\bin\utilSecretSauce.exe (PUP.Optional.SecretSauce.A) -> 3452 -> Nebyla provedena žádná instrukce.

Nalezené moduly v paměti: 1
C:\Users\Tepan\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.

Nalezené klíče v registru: 8
HKLM\SYSTEM\CurrentControlSet\Services\Util SecretSauce (PUP.Optional.SecretSauce.A) -> Nebyla provedena žádná instrukce.
HKLM\SYSTEM\CurrentControlSet\Services\Update SecretSauce (PUP.Optional.SecretSauce.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} (PUP.Optional.BrowseFox.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} (PUP.Optional.OptimzerPro.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\HDvid Codec V6.0 (PUP.Optional.HDVidCndec.A) -> Nebyla provedena žádná instrukce.
HKLM\Software\Torntv V6.0 (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HDvid Codec V6.0 (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Torntv V6.0 (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|NextLive (PUP.Optional.NextLive.A) -> Data: C:\Windows\SysWOW64\rundll32.exe "C:\Users\Tepan\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 6
C:\Program Files (x86)\SecretSauce (PUP.Optional.SecretSauce.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\SecretSauce\bin (PUP.Optional.SecretSauce.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0 (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0 (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Users\Tepan\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
C:\Users\Tepan\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 66
C:\Users\Tepan\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\SecretSauce\bin\utilSecretSauce.exe (PUP.Optional.SecretSauce.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\SecretSauce\updateSecretSauce.exe (PUP.Optional.SecretSauce.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-bg.exe (PUP.Optional.HDvidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-bho64.dll (PUP.Optional.HDvidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-buttonutil.exe (PUP.Optional.HDvidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-buttonutil64.exe (PUP.Optional.HDvidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-chromeinstaller.exe (PUP.Optional.HDvidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-codedownloader.exe (PUP.Optional.HDvidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-enabler.exe (PUP.Optional.HDvidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-firefoxinstaller.exe (PUP.Optional.HDvidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-updater.exe (PUP.Optional.HDvidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\utils.exe (PUP.Optional.HDVidCndec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-bg.exe (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-bho64.dll (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-buttonutil.exe (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-buttonutil64.exe (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-chromeinstaller.exe (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-codedownloader.exe (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-enabler.exe (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-updater.exe (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Users\Tepan\AppData\Local\genienext\nengine.dll (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
C:\Users\Tepan\AppData\Local\Temp\DTLite4481-0347.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\Tepan\Downloads\Downlite_Setup (1).exe (PUP.Optional.OptimumInstaller.A) -> Nebyla provedena žádná instrukce.
C:\Users\Tepan\Downloads\Downlite_Setup (2).exe (PUP.Optional.OptimumInstaller.A) -> Nebyla provedena žádná instrukce.
C:\Users\Tepan\Downloads\Downlite_Setup.exe (PUP.Optional.OptimumInstaller.A) -> Nebyla provedena žádná instrukce.
C:\Users\Tepan\Videos\iLividSetup.exe (PUP.Optional.Bandoo) -> Nebyla provedena žádná instrukce.
D:\Autocad\Autocad2012\AutoCadkey.rar (PUP.RiskwareTool.CK) -> Nebyla provedena žádná instrukce.
D:\Programy\Daemoon tools\DTLite4461-0328.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\Torntv V6.0-chromeinstaller.job (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\Torntv V6.0-codedownloader.job (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\Torntv V6.0-enabler.job (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\Torntv V6.0-firefoxinstaller.job (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\Torntv V6.0-updater.job (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Windows\inf\ntvdm.inf (Malware.Trace) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\HDvid Codec V6.0-chromeinstaller.job (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\HDvid Codec V6.0-codedownloader.job (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\HDvid Codec V6.0-enabler.job (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\HDvid Codec V6.0-firefoxinstaller.job (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\HDvid Codec V6.0-updater.job (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\SecretSauce\SecretSauce.ico (PUP.Optional.SecretSauce.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\SecretSauce\SecretSauceUninstall.exe (PUP.Optional.SecretSauce.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\SecretSauce\updateSecretSauce.InstallState (PUP.Optional.SecretSauce.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\SecretSauce\bin\utilSecretSauce.InstallState (PUP.Optional.SecretSauce.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\45971.crx (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\45971.xpi (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\background.html (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-buttonutil.dll (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-buttonutil64.dll (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0-helper.exe (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\HDvid Codec V6.0.ico (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\Installer.log (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\HDvid Codec V6.0\Uninstall.exe (PUP.Optional.HDVidCodec.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\45960.crx (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\45960.xpi (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\background.html (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Installer.log (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-buttonutil.dll (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-buttonutil64.dll (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0-helper.exe (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Torntv V6.0.ico (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\Uninstall.exe (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Torntv V6.0\utils.exe (PUP.Optional.TornTV.A) -> Nebyla provedena žádná instrukce.
C:\Users\Tepan\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.
C:\Users\Tepan\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Nebyla provedena žádná instrukce.

(konec)

[Márty84]

Nalezy nechte odstranit. Po odstraneni a restartu pc test zopakujte. Napiste, jestli zase neco nasel. Podle toho zvolim dalsi postup.

[tepan]

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2014.02.07.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Tepan :: TEPAN-PC [administrátor]

8.2.2014 11:15:57
mbam-log-2014-02-08 (11-15-57).txt

Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 399587
Uplynulý čas: 1 hodin, 27 minut, 28 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

[Márty84]

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.

[tepan]

# AdwCleaner v3.018 - Report created 08/02/2014 at 15:59:37
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Tepan - TEPAN-PC
# Running from : D:\stazeno z netu\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Windows\System32\Tasks\GoforFilesUpdate
Folder Found : C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkfggacklibaabdomphfdpcodjgihgon
Folder Found : C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\olakgnkoldmagdblaalodobkmeokmgjj
Folder Found C:\Users\Tepan\AppData\Roaming\goforfiles
Folder Found C:\Users\Tepan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LSHunter.TV

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455595560}
Key Found : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455595571}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466596660}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466596671}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444594460}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444594471}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\kkfggacklibaabdomphfdpcodjgihgon
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455595560}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455595571}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466596660}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466596671}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Users\Tepan\AppData\Roaming\Mozilla\Firefox\Profiles\9dgbgoc5.default\prefs.js ]


[ File : C:\Users\Tepan\AppData\Roaming\Mozilla\Firefox\Profiles\duqg3f4d.default-1367452016009\prefs.js ]


-\\ Google Chrome v32.0.1700.107

[ File : C:\Users\Tepan\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [4261 octets] - [06/12/2013 11:08:41]
AdwCleaner[R1].txt - [2945 octets] - [07/02/2014 12:49:41]
AdwCleaner[R2].txt - [1369 octets] - [07/02/2014 20:36:37]
AdwCleaner[R3].txt - [2923 octets] - [08/02/2014 15:56:02]
AdwCleaner[R4].txt - [2643 octets] - [08/02/2014 15:59:37]
AdwCleaner[S0].txt - [4136 octets] - [06/12/2013 11:29:19]
AdwCleaner[S1].txt - [2912 octets] - [07/02/2014 12:52:35]
AdwCleaner[S2].txt - [1432 octets] - [07/02/2014 20:37:35]

########## EOF - C:\AdwCleaner\AdwCleaner[R4].txt - [2883 octets] ##########

[Márty84]

Znovu ukoncete vsechny programy a spustte AdwCleaner jako spravce.
Tentokrat kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zase zkopirujte.