mám taký problém, že mi dnes začal eset vyhadzovať nasledujúce varovanie
- Bez názvu.png (18.64 KiB) Zobrazeno 846 x
Veľmi pekne ďakujem za pomoc
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
uTorrentControl2.crx
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
uTorrentControl2.crx
Zdravím,
mám taký problém, že mi dnes začal eset vyhadzovať nasledujúce varovanie neviem prečo, keďže som nič neinštalovala ani nesťahovala a pred tým mi to nerobilo. Vyhadzuje to každých pár sekund, úplne mi to znemožňuje prácu s PC. Čokolvek stlačím nemá to účinok aj tak eset okno vyskočí nanovo. Pokúšala som sa to nájsť a zmazať ale neviem kde to je.
Veľmi pekne ďakujem za pomoc
mám taký problém, že mi dnes začal eset vyhadzovať nasledujúce varovanie neviem prečo, keďže som nič neinštalovala ani nesťahovala a pred tým mi to nerobilo. Vyhadzuje to každých pár sekund, úplne mi to znemožňuje prácu s PC. Čokolvek stlačím nemá to účinok aj tak eset okno vyskočí nanovo. Pokúšala som sa to nájsť a zmazať ale neviem kde to je.
Veľmi pekne ďakujem za pomoc
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: uTorrentControl2.crx
Zdravím!
Jedná so varování AV Eset, že vstupujete na nebezpečný web. Pokud kliknete na >Prerušiť<, spojení bude ukončeno a žádný nebezpečný objekt se do PC nedostane.
Jedná so varování AV Eset, že vstupujete na nebezpečný web. Pokud kliknete na >Prerušiť<, spojení bude ukončeno a žádný nebezpečný objekt se do PC nedostane.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: uTorrentControl2.crx
ale ono to vyskakuje stále len čo spustím chrome. Každých pár sekúnd aj keď dám prerušiť
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: uTorrentControl2.crx
Asi se tam snaží připojit a Eset to blokuje. Zkuste tento postup: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .Cloie píše:ale ono to vyskakuje stále len čo spustím chrome. Každých pár sekúnd aj keď dám prerušiť
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: uTorrentControl2.crx
Ďakujem tak v návode písali že FRST.txt mám skopírovať sem a ten druhý súbor dať do prílohy do tématu tak hádam dobre:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 27-02-2014 02
Ran by Cloie (administrator) on CLOIE-PC on 27-02-2014 11:12:18
Running from C:\Users\Cloie\Desktop
Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(CA) C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10_50.LANNERSQL\MSSQL\Binn\sqlservr.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTLite.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Cloie\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-08-14] (Synaptics, Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-29] ()
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [3117384 2012-11-16] (ESET)
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files\DAEMON Tools Lite\DTLite.exe [4910912 2011-08-02] (DT Soft Ltd)
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\Run: [Google Update] - C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-11-30] (Google Inc.)
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: D - D:\LGAutoRun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: E - E:\SETUP.EXE
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: H - H:\LGAutoRun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: {10a01288-07f1-11e1-8dda-001e3337cc89} - E:\autorun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: {e38af3db-ae87-11e2-88a4-028037090300} - H:\LGAutoRun.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x625FB091E5C5CD01
URLSearchHook: HKCU - (No Name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - No File
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 212.89.224.66 212.89.224.67
Tcpip\..\Interfaces\{03A4F2DA-B7E0-4D54-81A4-EAD3AEE79D3F}: [NameServer]160.218.161.60 194.228.211.33
FireFox:
========
FF ProfilePath: C:\Users\Cloie\AppData\Roaming\Mozilla\Firefox\Profiles\74lcll6h.default
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=2&CUI=UN17978861513272726&UM=&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Cloie\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Cloie\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: uTorrentControl2 - C:\Users\Cloie\AppData\Roaming\Mozilla\Firefox\Profiles\74lcll6h.default\Extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} [2013-11-07]
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011-11-04]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-01-21]
========================== Services (Whitelisted) =================
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [913184 2012-11-16] (ESET)
R2 LogWatch; C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe [75016 2007-12-15] (CA)
R2 MSSQL$LANNERSQL; C:\Program Files\Microsoft SQL Server\MSSQL10_50.LANNERSQL\MSSQL\Binn\sqlservr.exe [42884448 2010-04-03] (Microsoft Corporation)
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe [3004416 2007-11-07] (Microsoft Corporation)
S4 SQLAgent$LANNERSQL; C:\Program Files\Microsoft SQL Server\MSSQL10_50.LANNERSQL\MSSQL\Binn\SQLAGENT.EXE [367456 2010-04-03] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [23040 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [27776 2012-07-03] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis.sys [73728 2012-07-04] (LG Electronics Inc.)
R1 dpmconv; C:\Windows\System32\DRIVERS\dpmconv32.sys [288256 2010-04-28] (SIEMENS AG)
R1 Dpmtrcdd; C:\Windows\System32\DRIVERS\DPMTRCDD32.sys [72248 2010-03-22] (SIEMENS AG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [232512 2011-11-07] (DT Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [169120 2012-11-16] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [120152 2012-03-14] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [148504 2012-03-14] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [33656 2012-03-14] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [50152 2012-11-16] (ESET)
S4 RsFx0150; C:\Windows\System32\DRIVERS\RsFx0150.sys [240608 2010-04-03] (Microsoft Corporation)
R3 RTL8187B; C:\Windows\System32\DRIVERS\RTL8187B.sys [379904 2010-03-31] (Realtek Semiconductor Corporation )
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mdfl; C:\Windows\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation)
S3 s0016mdm; C:\Windows\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\Windows\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016nd5; C:\Windows\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\Windows\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\Windows\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
R3 S7odpx2x32; C:\Windows\System32\Drivers\S7odpx2x32.sys [87552 2010-03-18] (SIEMENS AG)
S3 s7oefs_x; C:\Windows\System32\drivers\s7oefs_x.sys [30512 2002-10-18] (SIEMENS AG)
R2 S7opcsrtx; C:\Windows\System32\DRIVERS\s7opcsrtx.sys [31744 2010-06-07] (SIEMENS AG)
R2 S7otranx32; C:\Windows\System32\Drivers\S7otranx32.sys [521216 2010-03-18] (SIEMENS AG)
R2 s7snsrtx; C:\Windows\System32\DRIVERS\s7snsrtx.sys [73088 2009-02-24] (SIEMENS AG)
R2 SNTIE; C:\Windows\System32\DRIVERS\sntie.sys [336128 2010-01-24] (SIEMENS AG)
R1 vsnl2ada; C:\Windows\System32\DRIVERS\vsnl2ada32.sys [98944 2010-03-22] (SIEMENS AG)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-27 11:12 - 2014-02-27 11:13 - 00011558 _____ () C:\Users\Cloie\Desktop\FRST.txt
2014-02-27 11:11 - 2014-02-27 11:12 - 00000000 ____D () C:\FRST
2014-02-27 11:10 - 2014-02-27 11:10 - 00112640 _____ (forum.viry.cz) C:\Users\Cloie\Desktop\FRSTLauncher.exe
2014-02-27 11:08 - 2014-02-27 11:08 - 00112640 _____ (forum.viry.cz) C:\Users\Cloie\Downloads\Nepotvrdené 237081.crdownload
2014-02-27 11:07 - 2014-02-27 11:08 - 01143808 _____ (Farbar) C:\Users\Cloie\Desktop\FRST.exe
2014-02-27 09:24 - 2014-02-27 09:24 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-26 10:30 - 2014-02-26 10:33 - 00000000 ____D () C:\Users\Cloie\Documents\Visual Studio 2005
2014-02-26 10:30 - 2014-02-26 10:30 - 00000000 ____D () C:\Users\Cloie\Downloads\Prj_integrals - Copy
2014-02-26 10:29 - 2014-02-26 10:29 - 08226192 _____ () C:\Users\Cloie\Downloads\Prj_integrals - Copy.zip
2014-02-24 13:47 - 2014-02-27 11:01 - 00000112 _____ () C:\Windows\setupact.log
2014-02-24 13:47 - 2014-02-24 13:47 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-24 13:46 - 2014-02-27 11:01 - 00088704 _____ () C:\Windows\PFRO.log
2014-02-24 12:20 - 2014-02-24 12:20 - 00010593 _____ () C:\Windows\CSTBox.INI
2014-02-24 08:08 - 2014-02-24 08:08 - 00000000 ____D () C:\Users\Cloie\AppData\Roaming\e-academy Inc
2014-02-15 12:17 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-15 12:17 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-15 12:17 - 2014-02-06 11:19 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-15 12:17 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-15 12:17 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-15 12:17 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-15 12:17 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-15 12:17 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-15 12:17 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-15 12:17 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-15 12:17 - 2014-02-06 10:47 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-15 12:17 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-15 12:17 - 2014-02-06 10:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-15 12:17 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-15 12:17 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-15 12:17 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-15 12:17 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-15 12:17 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-15 12:17 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-15 12:17 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-15 12:17 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-15 11:52 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-14 14:25 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-14 14:25 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-14 14:25 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-14 14:23 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-14 14:23 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-14 14:23 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-14 14:23 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-14 14:23 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-14 14:23 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-14 14:23 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-14 14:23 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-14 14:23 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-14 14:23 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-14 14:23 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
==================== One Month Modified Files and Folders =======
2014-02-27 11:13 - 2014-02-27 11:12 - 00011558 _____ () C:\Users\Cloie\Desktop\FRST.txt
2014-02-27 11:12 - 2014-02-27 11:11 - 00000000 ____D () C:\FRST
2014-02-27 11:11 - 2012-11-02 21:25 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-27 11:10 - 2014-02-27 11:10 - 00112640 _____ (forum.viry.cz) C:\Users\Cloie\Desktop\FRSTLauncher.exe
2014-02-27 11:09 - 2012-06-21 08:46 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-27 11:09 - 2011-11-02 10:30 - 01263637 _____ () C:\Windows\WindowsUpdate.log
2014-02-27 11:08 - 2014-02-27 11:08 - 00112640 _____ (forum.viry.cz) C:\Users\Cloie\Downloads\Nepotvrdené 237081.crdownload
2014-02-27 11:08 - 2014-02-27 11:07 - 01143808 _____ (Farbar) C:\Users\Cloie\Desktop\FRST.exe
2014-02-27 11:01 - 2014-02-24 13:47 - 00000112 _____ () C:\Windows\setupact.log
2014-02-27 11:01 - 2014-02-24 13:46 - 00088704 _____ () C:\Windows\PFRO.log
2014-02-27 11:01 - 2012-11-01 09:53 - 00000918 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-27 11:01 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-27 09:40 - 2012-11-01 09:53 - 00000922 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-27 09:24 - 2014-02-27 09:24 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-27 09:16 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-27 09:14 - 2012-11-30 00:35 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job
2014-02-27 08:39 - 2011-11-03 12:33 - 00002380 _____ () C:\Users\Cloie\Desktop\Google Chrome.lnk
2014-02-27 08:13 - 2012-11-30 00:35 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job
2014-02-27 08:11 - 2011-11-07 16:10 - 00000000 ____D () C:\Program Files\DOSBox-0.74
2014-02-27 08:10 - 2011-11-02 10:40 - 00864312 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-26 10:33 - 2014-02-26 10:30 - 00000000 ____D () C:\Users\Cloie\Documents\Visual Studio 2005
2014-02-26 10:32 - 2011-11-04 08:36 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-26 10:30 - 2014-02-26 10:30 - 00000000 ____D () C:\Users\Cloie\Downloads\Prj_integrals - Copy
2014-02-26 10:29 - 2014-02-26 10:29 - 08226192 _____ () C:\Users\Cloie\Downloads\Prj_integrals - Copy.zip
2014-02-25 10:47 - 2013-02-20 22:36 - 00380416 ___SH () C:\Users\Cloie\Thumbs.db
2014-02-24 13:48 - 2009-07-14 05:33 - 01754640 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-24 13:47 - 2014-02-24 13:47 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-24 13:44 - 2009-07-14 05:34 - 00010240 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-24 13:44 - 2009-07-14 05:34 - 00010240 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-24 13:42 - 2011-11-07 14:20 - 00000000 ____D () C:\Users\Cloie\AppData\Roaming\DAEMON Tools Lite
2014-02-24 13:42 - 2011-11-02 19:25 - 00000000 ____D () C:\Windows\Panther
2014-02-24 13:35 - 2012-08-16 23:21 - 00065536 ___SH () C:\Users\Cloie\Documents\Thumbs.db
2014-02-24 13:28 - 2012-05-16 14:00 - 00000000 ____D () C:\Program Files\Maxis
2014-02-24 13:26 - 2013-12-22 00:09 - 00000000 ____D () C:\ProgramData\Sony Mobile
2014-02-24 13:26 - 2013-12-22 00:08 - 00000000 ____D () C:\Program Files\Sony Mobile
2014-02-24 13:25 - 2014-01-17 16:31 - 00000000 ____D () C:\Users\Cloie\AppData\Roaming\TeamViewer
2014-02-24 13:22 - 2013-12-22 01:03 - 00000000 ____D () C:\Users\Cloie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sony Mobile
2014-02-24 13:20 - 2011-11-04 11:59 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-02-24 13:18 - 2011-11-04 14:05 - 00000000 ____D () C:\Program Files\EA GAMES
2014-02-24 12:38 - 2013-12-07 16:06 - 00000000 ____D () C:\Program Files\Lanner Group
2014-02-24 12:25 - 2011-11-05 01:26 - 00000000 ____D () C:\Program Files\GRETECH
2014-02-24 12:20 - 2014-02-24 12:20 - 00010593 _____ () C:\Windows\CSTBox.INI
2014-02-24 12:17 - 2012-05-11 20:15 - 00000000 ____D () C:\Program Files\Sierra
2014-02-24 11:08 - 2012-11-01 12:44 - 00000000 ___SD () C:\Users\Cloie\Disk Google
2014-02-24 08:08 - 2014-02-24 08:08 - 00000000 ____D () C:\Users\Cloie\AppData\Roaming\e-academy Inc
2014-02-22 09:44 - 2012-07-15 23:10 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-22 09:44 - 2012-07-15 23:10 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-15 19:21 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-02-15 12:11 - 2013-07-13 02:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-15 12:01 - 2011-11-02 11:30 - 85946576 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-15 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-02-06 14:55 - 2013-01-27 13:08 - 00000000 ____D () C:\Users\Cloie\AppData\Roaming\vlc
2014-02-06 11:38 - 2014-02-15 12:17 - 17103872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 11:20 - 2014-02-15 12:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 11:19 - 2014-02-15 12:17 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 11:01 - 2014-02-15 12:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 11:00 - 2014-02-15 12:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-15 12:17 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 10:52 - 2014-02-15 12:17 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 10:52 - 2014-02-15 12:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 10:49 - 2014-02-15 12:17 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 10:47 - 2014-02-15 12:17 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 10:47 - 2014-02-15 12:17 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 10:46 - 2014-02-15 12:17 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 10:34 - 2014-02-15 12:17 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 10:25 - 2014-02-15 12:17 - 04244480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 10:25 - 2014-02-15 12:17 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 10:13 - 2014-02-15 12:17 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:09 - 2014-02-15 12:17 - 01964032 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:03 - 2014-02-15 12:17 - 11266048 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 09:41 - 2014-02-15 12:17 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 09:36 - 2014-02-15 12:17 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:34 - 2014-02-15 12:17 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: ESET Smart Security 5.2 (Enabled - Up to date) {77DEAFED-8149-104B-25A1-21771CA47CD1}
AS: ESET Smart Security 5.2 (Enabled - Up to date) {CCBF4E09-A773-1FC5-1F11-1A056723366C}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET personal firewall (Enabled) {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Cloie\Desktop" je 359 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 27-02-2014 02
Ran by Cloie (administrator) on CLOIE-PC on 27-02-2014 11:12:18
Running from C:\Users\Cloie\Desktop
Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(CA) C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10_50.LANNERSQL\MSSQL\Binn\sqlservr.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTLite.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Users\Cloie\AppData\Local\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Cloie\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-08-14] (Synaptics, Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-29] ()
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [3117384 2012-11-16] (ESET)
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files\DAEMON Tools Lite\DTLite.exe [4910912 2011-08-02] (DT Soft Ltd)
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\Run: [Google Update] - C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-11-30] (Google Inc.)
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: D - D:\LGAutoRun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: E - E:\SETUP.EXE
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: H - H:\LGAutoRun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: {10a01288-07f1-11e1-8dda-001e3337cc89} - E:\autorun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: {e38af3db-ae87-11e2-88a4-028037090300} - H:\LGAutoRun.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x625FB091E5C5CD01
URLSearchHook: HKCU - (No Name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - No File
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 212.89.224.66 212.89.224.67
Tcpip\..\Interfaces\{03A4F2DA-B7E0-4D54-81A4-EAD3AEE79D3F}: [NameServer]160.218.161.60 194.228.211.33
FireFox:
========
FF ProfilePath: C:\Users\Cloie\AppData\Roaming\Mozilla\Firefox\Profiles\74lcll6h.default
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=2&CUI=UN17978861513272726&UM=&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Cloie\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Cloie\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: uTorrentControl2 - C:\Users\Cloie\AppData\Roaming\Mozilla\Firefox\Profiles\74lcll6h.default\Extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} [2013-11-07]
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011-11-04]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-01-21]
========================== Services (Whitelisted) =================
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [913184 2012-11-16] (ESET)
R2 LogWatch; C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe [75016 2007-12-15] (CA)
R2 MSSQL$LANNERSQL; C:\Program Files\Microsoft SQL Server\MSSQL10_50.LANNERSQL\MSSQL\Binn\sqlservr.exe [42884448 2010-04-03] (Microsoft Corporation)
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe [3004416 2007-11-07] (Microsoft Corporation)
S4 SQLAgent$LANNERSQL; C:\Program Files\Microsoft SQL Server\MSSQL10_50.LANNERSQL\MSSQL\Binn\SQLAGENT.EXE [367456 2010-04-03] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [23040 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [27776 2012-07-03] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis.sys [73728 2012-07-04] (LG Electronics Inc.)
R1 dpmconv; C:\Windows\System32\DRIVERS\dpmconv32.sys [288256 2010-04-28] (SIEMENS AG)
R1 Dpmtrcdd; C:\Windows\System32\DRIVERS\DPMTRCDD32.sys [72248 2010-03-22] (SIEMENS AG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [232512 2011-11-07] (DT Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [169120 2012-11-16] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [120152 2012-03-14] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [148504 2012-03-14] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [33656 2012-03-14] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [50152 2012-11-16] (ESET)
S4 RsFx0150; C:\Windows\System32\DRIVERS\RsFx0150.sys [240608 2010-04-03] (Microsoft Corporation)
R3 RTL8187B; C:\Windows\System32\DRIVERS\RTL8187B.sys [379904 2010-03-31] (Realtek Semiconductor Corporation )
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mdfl; C:\Windows\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation)
S3 s0016mdm; C:\Windows\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\Windows\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016nd5; C:\Windows\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\Windows\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\Windows\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
R3 S7odpx2x32; C:\Windows\System32\Drivers\S7odpx2x32.sys [87552 2010-03-18] (SIEMENS AG)
S3 s7oefs_x; C:\Windows\System32\drivers\s7oefs_x.sys [30512 2002-10-18] (SIEMENS AG)
R2 S7opcsrtx; C:\Windows\System32\DRIVERS\s7opcsrtx.sys [31744 2010-06-07] (SIEMENS AG)
R2 S7otranx32; C:\Windows\System32\Drivers\S7otranx32.sys [521216 2010-03-18] (SIEMENS AG)
R2 s7snsrtx; C:\Windows\System32\DRIVERS\s7snsrtx.sys [73088 2009-02-24] (SIEMENS AG)
R2 SNTIE; C:\Windows\System32\DRIVERS\sntie.sys [336128 2010-01-24] (SIEMENS AG)
R1 vsnl2ada; C:\Windows\System32\DRIVERS\vsnl2ada32.sys [98944 2010-03-22] (SIEMENS AG)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-27 11:12 - 2014-02-27 11:13 - 00011558 _____ () C:\Users\Cloie\Desktop\FRST.txt
2014-02-27 11:11 - 2014-02-27 11:12 - 00000000 ____D () C:\FRST
2014-02-27 11:10 - 2014-02-27 11:10 - 00112640 _____ (forum.viry.cz) C:\Users\Cloie\Desktop\FRSTLauncher.exe
2014-02-27 11:08 - 2014-02-27 11:08 - 00112640 _____ (forum.viry.cz) C:\Users\Cloie\Downloads\Nepotvrdené 237081.crdownload
2014-02-27 11:07 - 2014-02-27 11:08 - 01143808 _____ (Farbar) C:\Users\Cloie\Desktop\FRST.exe
2014-02-27 09:24 - 2014-02-27 09:24 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-26 10:30 - 2014-02-26 10:33 - 00000000 ____D () C:\Users\Cloie\Documents\Visual Studio 2005
2014-02-26 10:30 - 2014-02-26 10:30 - 00000000 ____D () C:\Users\Cloie\Downloads\Prj_integrals - Copy
2014-02-26 10:29 - 2014-02-26 10:29 - 08226192 _____ () C:\Users\Cloie\Downloads\Prj_integrals - Copy.zip
2014-02-24 13:47 - 2014-02-27 11:01 - 00000112 _____ () C:\Windows\setupact.log
2014-02-24 13:47 - 2014-02-24 13:47 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-24 13:46 - 2014-02-27 11:01 - 00088704 _____ () C:\Windows\PFRO.log
2014-02-24 12:20 - 2014-02-24 12:20 - 00010593 _____ () C:\Windows\CSTBox.INI
2014-02-24 08:08 - 2014-02-24 08:08 - 00000000 ____D () C:\Users\Cloie\AppData\Roaming\e-academy Inc
2014-02-15 12:17 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-15 12:17 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-15 12:17 - 2014-02-06 11:19 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-15 12:17 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-15 12:17 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-15 12:17 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-15 12:17 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-15 12:17 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-15 12:17 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-15 12:17 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-15 12:17 - 2014-02-06 10:47 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-15 12:17 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-15 12:17 - 2014-02-06 10:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-15 12:17 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-15 12:17 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-15 12:17 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-15 12:17 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-15 12:17 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-15 12:17 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-15 12:17 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-15 12:17 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-15 11:52 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-14 14:25 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-14 14:25 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-14 14:25 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-14 14:23 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-14 14:23 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-14 14:23 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-14 14:23 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-14 14:23 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-14 14:23 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-14 14:23 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-14 14:23 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-14 14:23 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-14 14:23 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-14 14:23 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
==================== One Month Modified Files and Folders =======
2014-02-27 11:13 - 2014-02-27 11:12 - 00011558 _____ () C:\Users\Cloie\Desktop\FRST.txt
2014-02-27 11:12 - 2014-02-27 11:11 - 00000000 ____D () C:\FRST
2014-02-27 11:11 - 2012-11-02 21:25 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-27 11:10 - 2014-02-27 11:10 - 00112640 _____ (forum.viry.cz) C:\Users\Cloie\Desktop\FRSTLauncher.exe
2014-02-27 11:09 - 2012-06-21 08:46 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-27 11:09 - 2011-11-02 10:30 - 01263637 _____ () C:\Windows\WindowsUpdate.log
2014-02-27 11:08 - 2014-02-27 11:08 - 00112640 _____ (forum.viry.cz) C:\Users\Cloie\Downloads\Nepotvrdené 237081.crdownload
2014-02-27 11:08 - 2014-02-27 11:07 - 01143808 _____ (Farbar) C:\Users\Cloie\Desktop\FRST.exe
2014-02-27 11:01 - 2014-02-24 13:47 - 00000112 _____ () C:\Windows\setupact.log
2014-02-27 11:01 - 2014-02-24 13:46 - 00088704 _____ () C:\Windows\PFRO.log
2014-02-27 11:01 - 2012-11-01 09:53 - 00000918 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-27 11:01 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-27 09:40 - 2012-11-01 09:53 - 00000922 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-27 09:24 - 2014-02-27 09:24 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-27 09:16 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-27 09:14 - 2012-11-30 00:35 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job
2014-02-27 08:39 - 2011-11-03 12:33 - 00002380 _____ () C:\Users\Cloie\Desktop\Google Chrome.lnk
2014-02-27 08:13 - 2012-11-30 00:35 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job
2014-02-27 08:11 - 2011-11-07 16:10 - 00000000 ____D () C:\Program Files\DOSBox-0.74
2014-02-27 08:10 - 2011-11-02 10:40 - 00864312 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-26 10:33 - 2014-02-26 10:30 - 00000000 ____D () C:\Users\Cloie\Documents\Visual Studio 2005
2014-02-26 10:32 - 2011-11-04 08:36 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-26 10:30 - 2014-02-26 10:30 - 00000000 ____D () C:\Users\Cloie\Downloads\Prj_integrals - Copy
2014-02-26 10:29 - 2014-02-26 10:29 - 08226192 _____ () C:\Users\Cloie\Downloads\Prj_integrals - Copy.zip
2014-02-25 10:47 - 2013-02-20 22:36 - 00380416 ___SH () C:\Users\Cloie\Thumbs.db
2014-02-24 13:48 - 2009-07-14 05:33 - 01754640 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-24 13:47 - 2014-02-24 13:47 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-24 13:44 - 2009-07-14 05:34 - 00010240 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-24 13:44 - 2009-07-14 05:34 - 00010240 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-24 13:42 - 2011-11-07 14:20 - 00000000 ____D () C:\Users\Cloie\AppData\Roaming\DAEMON Tools Lite
2014-02-24 13:42 - 2011-11-02 19:25 - 00000000 ____D () C:\Windows\Panther
2014-02-24 13:35 - 2012-08-16 23:21 - 00065536 ___SH () C:\Users\Cloie\Documents\Thumbs.db
2014-02-24 13:28 - 2012-05-16 14:00 - 00000000 ____D () C:\Program Files\Maxis
2014-02-24 13:26 - 2013-12-22 00:09 - 00000000 ____D () C:\ProgramData\Sony Mobile
2014-02-24 13:26 - 2013-12-22 00:08 - 00000000 ____D () C:\Program Files\Sony Mobile
2014-02-24 13:25 - 2014-01-17 16:31 - 00000000 ____D () C:\Users\Cloie\AppData\Roaming\TeamViewer
2014-02-24 13:22 - 2013-12-22 01:03 - 00000000 ____D () C:\Users\Cloie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sony Mobile
2014-02-24 13:20 - 2011-11-04 11:59 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-02-24 13:18 - 2011-11-04 14:05 - 00000000 ____D () C:\Program Files\EA GAMES
2014-02-24 12:38 - 2013-12-07 16:06 - 00000000 ____D () C:\Program Files\Lanner Group
2014-02-24 12:25 - 2011-11-05 01:26 - 00000000 ____D () C:\Program Files\GRETECH
2014-02-24 12:20 - 2014-02-24 12:20 - 00010593 _____ () C:\Windows\CSTBox.INI
2014-02-24 12:17 - 2012-05-11 20:15 - 00000000 ____D () C:\Program Files\Sierra
2014-02-24 11:08 - 2012-11-01 12:44 - 00000000 ___SD () C:\Users\Cloie\Disk Google
2014-02-24 08:08 - 2014-02-24 08:08 - 00000000 ____D () C:\Users\Cloie\AppData\Roaming\e-academy Inc
2014-02-22 09:44 - 2012-07-15 23:10 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-22 09:44 - 2012-07-15 23:10 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-15 19:21 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-02-15 12:11 - 2013-07-13 02:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-15 12:01 - 2011-11-02 11:30 - 85946576 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-15 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-02-06 14:55 - 2013-01-27 13:08 - 00000000 ____D () C:\Users\Cloie\AppData\Roaming\vlc
2014-02-06 11:38 - 2014-02-15 12:17 - 17103872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 11:20 - 2014-02-15 12:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 11:19 - 2014-02-15 12:17 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 11:01 - 2014-02-15 12:17 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 11:00 - 2014-02-15 12:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-15 12:17 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 10:52 - 2014-02-15 12:17 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 10:52 - 2014-02-15 12:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 10:49 - 2014-02-15 12:17 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 10:47 - 2014-02-15 12:17 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 10:47 - 2014-02-15 12:17 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 10:46 - 2014-02-15 12:17 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 10:34 - 2014-02-15 12:17 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 10:25 - 2014-02-15 12:17 - 04244480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 10:25 - 2014-02-15 12:17 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 10:13 - 2014-02-15 12:17 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:09 - 2014-02-15 12:17 - 01964032 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:03 - 2014-02-15 12:17 - 11266048 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 09:41 - 2014-02-15 12:17 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 09:36 - 2014-02-15 12:17 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:34 - 2014-02-15 12:17 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: ESET Smart Security 5.2 (Enabled - Up to date) {77DEAFED-8149-104B-25A1-21771CA47CD1}
AS: ESET Smart Security 5.2 (Enabled - Up to date) {CCBF4E09-A773-1FC5-1F11-1A056723366C}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET personal firewall (Enabled) {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Cloie\Desktop" je 359 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
- Přílohy
-
- Addition.rar
- (5.89 KiB) Staženo 46 x
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: uTorrentControl2.crx
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Pak znovu spusťte FRST a klikněte na >Fix<. Zkopírujte sem pak log, který se na závěr vytvoří.Start
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: D - D:\LGAutoRun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: E - E:\SETUP.EXE
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: H - H:\LGAutoRun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: {10a01288-07f1-11e1-8dda-001e3337cc89} - E:\autorun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: {e38af3db-ae87-11e2-88a4-028037090300} - H:\LGAutoRun.exe
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x625FB091E5C5CD01
URLSearchHook: HKCU - (No Name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - No File
FF Extension: uTorrentControl2 - C:\Users\Cloie\AppData\Roaming\Mozilla\Firefox\Profiles\74lcll6h.default\Extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} [2013-11-07]
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Windows\system32\Drivers\etc\hosts
Task: {36529AEC-FF95-4D29-8FFD-C24A42EE89A3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01] (Google Inc.)
Task: {45EC613F-CA1D-4963-97BD-191C5857BC6B} - System32\Tasks\{E819C130-BB05-4AC6-986B-9B78276CDD41} => D:\Setup.exe
Task: {73804AC1-D9EF-4FB0-B75A-F2C2AE7F9914} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01] (Google Inc.)
Task: {7FDA0CB2-1245-4CE6-8B56-133AE6488985} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2219875723-2894990495-1743041032-1000
Task: {8DBCBD23-C852-4117-9C08-19D1CAB6E382} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe [2012-11-30] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: uTorrentControl2.crx
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 27-02-2014 02
Ran by Cloie at 2014-02-27 13:42:59 Run:1
Running from C:\Users\Cloie\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: D - D:\LGAutoRun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: E - E:\SETUP.EXE
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: H - H:\LGAutoRun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: {10a01288-07f1-11e1-8dda-001e3337cc89} - E:\autorun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: {e38af3db-ae87-11e2-88a4-028037090300} - H:\LGAutoRun.exe
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x625FB091E5C5CD01
URLSearchHook: HKCU - (No Name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - No File
FF Extension: uTorrentControl2 - C:\Users\Cloie\AppData\Roaming\Mozilla\Firefox\Profiles\74lcll6h.default\Extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} [2013-11-07]
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Windows\system32\Drivers\etc\hosts
Task: {36529AEC-FF95-4D29-8FFD-C24A42EE89A3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01] (Google Inc.)
Task: {45EC613F-CA1D-4963-97BD-191C5857BC6B} - System32\Tasks\{E819C130-BB05-4AC6-986B-9B78276CDD41} => D:\Setup.exe
Task: {73804AC1-D9EF-4FB0-B75A-F2C2AE7F9914} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01] (Google Inc.)
Task: {7FDA0CB2-1245-4CE6-8B56-133AE6488985} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2219875723-2894990495-1743041032-1000
Task: {8DBCBD23-C852-4117-9C08-19D1CAB6E382} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe [2012-11-30] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKU\1\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-2219875723-2894990495-1743041032-1000 => Key not found.
HKU\1\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-2219875723-2894990495-1743041032-1000 => Key not found.
HKU\1\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-2219875723-2894990495-1743041032-1000 => Key not found.
HKU\1\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{10a01288-07f1-11e1-8dda-001e3337cc89} => Key not found.
HKCR\CLSID\{10a01288-07f1-11e1-8dda-001e3337cc89} => Key not found.
HKU\1\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e38af3db-ae87-11e2-88a4-028037090300} => Key not found.
HKCR\CLSID\{e38af3db-ae87-11e2-88a4-028037090300} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{687578b9-7132-4a7a-80e4-30ee31099e03} => Value deleted successfully.
C:\Users\Cloie\AppData\Roaming\Mozilla\Firefox\Profiles\74lcll6h.default\Extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job => Moved successfully.
C:\Windows\system32\Drivers\etc\hosts => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{36529AEC-FF95-4D29-8FFD-C24A42EE89A3} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{36529AEC-FF95-4D29-8FFD-C24A42EE89A3} => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{45EC613F-CA1D-4963-97BD-191C5857BC6B} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45EC613F-CA1D-4963-97BD-191C5857BC6B} => Key deleted successfully.
C:\Windows\System32\Tasks\{E819C130-BB05-4AC6-986B-9B78276CDD41} => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E819C130-BB05-4AC6-986B-9B78276CDD41} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{73804AC1-D9EF-4FB0-B75A-F2C2AE7F9914} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73804AC1-D9EF-4FB0-B75A-F2C2AE7F9914} => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7FDA0CB2-1245-4CE6-8B56-133AE6488985} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FDA0CB2-1245-4CE6-8B56-133AE6488985} => Key deleted successfully.
C:\Windows\System32\Tasks\Games\UpdateCheck_S-1-5-21-2219875723-2894990495-1743041032-1000 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Games\UpdateCheck_S-1-5-21-2219875723-2894990495-1743041032-1000 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8DBCBD23-C852-4117-9C08-19D1CAB6E382} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8DBCBD23-C852-4117-9C08-19D1CAB6E382} => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA => Key deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job not found.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job not found.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job not found.
==== End of Fixlog ====
Ran by Cloie at 2014-02-27 13:42:59 Run:1
Running from C:\Users\Cloie\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: D - D:\LGAutoRun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: E - E:\SETUP.EXE
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: H - H:\LGAutoRun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: {10a01288-07f1-11e1-8dda-001e3337cc89} - E:\autorun.exe
HKU\S-1-5-21-2219875723-2894990495-1743041032-1000\...\MountPoints2: {e38af3db-ae87-11e2-88a4-028037090300} - H:\LGAutoRun.exe
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x625FB091E5C5CD01
URLSearchHook: HKCU - (No Name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - No File
FF Extension: uTorrentControl2 - C:\Users\Cloie\AppData\Roaming\Mozilla\Firefox\Profiles\74lcll6h.default\Extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} [2013-11-07]
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Windows\system32\Drivers\etc\hosts
Task: {36529AEC-FF95-4D29-8FFD-C24A42EE89A3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01] (Google Inc.)
Task: {45EC613F-CA1D-4963-97BD-191C5857BC6B} - System32\Tasks\{E819C130-BB05-4AC6-986B-9B78276CDD41} => D:\Setup.exe
Task: {73804AC1-D9EF-4FB0-B75A-F2C2AE7F9914} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01] (Google Inc.)
Task: {7FDA0CB2-1245-4CE6-8B56-133AE6488985} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2219875723-2894990495-1743041032-1000
Task: {8DBCBD23-C852-4117-9C08-19D1CAB6E382} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe [2012-11-30] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job => C:\Users\Cloie\AppData\Local\Google\Update\GoogleUpdate.exe
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKU\1\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-2219875723-2894990495-1743041032-1000 => Key not found.
HKU\1\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-2219875723-2894990495-1743041032-1000 => Key not found.
HKU\1\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-2219875723-2894990495-1743041032-1000 => Key not found.
HKU\1\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{10a01288-07f1-11e1-8dda-001e3337cc89} => Key not found.
HKCR\CLSID\{10a01288-07f1-11e1-8dda-001e3337cc89} => Key not found.
HKU\1\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e38af3db-ae87-11e2-88a4-028037090300} => Key not found.
HKCR\CLSID\{e38af3db-ae87-11e2-88a4-028037090300} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{687578b9-7132-4a7a-80e4-30ee31099e03} => Value deleted successfully.
C:\Users\Cloie\AppData\Roaming\Mozilla\Firefox\Profiles\74lcll6h.default\Extensions\{687578b9-7132-4a7a-80e4-30ee31099e03} => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job => Moved successfully.
C:\Windows\system32\Drivers\etc\hosts => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{36529AEC-FF95-4D29-8FFD-C24A42EE89A3} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{36529AEC-FF95-4D29-8FFD-C24A42EE89A3} => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{45EC613F-CA1D-4963-97BD-191C5857BC6B} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45EC613F-CA1D-4963-97BD-191C5857BC6B} => Key deleted successfully.
C:\Windows\System32\Tasks\{E819C130-BB05-4AC6-986B-9B78276CDD41} => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E819C130-BB05-4AC6-986B-9B78276CDD41} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{73804AC1-D9EF-4FB0-B75A-F2C2AE7F9914} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73804AC1-D9EF-4FB0-B75A-F2C2AE7F9914} => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7FDA0CB2-1245-4CE6-8B56-133AE6488985} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FDA0CB2-1245-4CE6-8B56-133AE6488985} => Key deleted successfully.
C:\Windows\System32\Tasks\Games\UpdateCheck_S-1-5-21-2219875723-2894990495-1743041032-1000 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Games\UpdateCheck_S-1-5-21-2219875723-2894990495-1743041032-1000 => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8DBCBD23-C852-4117-9C08-19D1CAB6E382} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8DBCBD23-C852-4117-9C08-19D1CAB6E382} => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA => Key deleted successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job not found.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000Core.job not found.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2219875723-2894990495-1743041032-1000UA.job not found.
==== End of Fixlog ====
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: uTorrentControl2.crx
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: uTorrentControl2.crx
Ano prestalo mi to vyskakovať, ďakujem veľmi pekne.
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: uTorrentControl2.crx
Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: uTorrentControl2.crx
Bohužial, po vypnutí a zapnutí PC mi to opätovne začalo robiť. Idem zopakovať ten fix neviete ako to natrvalo odstrániť?
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: uTorrentControl2.crx
On to vlastně problém není, je to jen informace Esetu, že něco provedl. Teď nevím přesně, kde a jak se dá nastavit tichý režim v AV, ale asi někde v nastavení. Funkce Esetu se nezmění, jen nebudou vyskakovat hlášky.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?