Prosím o kontrolu PC- pokud možno vyosek

[frydas]

Mi nule mi vyosek skvěle ve všem pomohl a krásně vše vysvětlil, proto bych znovu rád spolupracoval s ním tady je RSIT log

Logfile of random's system information tool 1.08 (written by random/random)
Run by pc at 2014-03-03 18:36:22
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 1322 GB (69%) free of 1908 GB
Total RAM: 8191 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:36:30, on 3.3.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\pc\AppData\Local\WeatherAlerts\DesktopWeatherAlertsApp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Users\pc\AppData\Local\VNT\vntldr.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Windows\Counter Strike - Condition Zero (Ultimate Edition) Uninstaller.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\pc.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKLM\..\Run: [VNT] C:\Program Files (x86)\VNT\vntldr.exe
O4 - HKLM\..\Run: [20131121] C:\Program Files\AVAST Software\Avast\setup\emupdate\e7eb58fe-a5fa-4abc-b4b4-c7f7cafc8cbd.exe /check
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\pc\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
O4 - Startup: DesktopWeatherAlerts.lnk = pc\AppData\Local\WeatherAlerts\DesktopWeatherAlertsApp.exe
O4 - Startup: Weather Alerts.lnk = pc\AppData\Local\WeatherAlerts\WeatherAlerts.exe
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\Skype4COM.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MonectServerService - Monect - C:\Program Files (x86)\MonectHost\MonectServerService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protect Monitor (ProtectMonitor) - Unknown owner - C:\Program Files (x86)\PCData\StartHelp.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9816 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
taskeng.exe {12581EAC-3593-4F5B-9875-4BAC38180539}
"C:\Program Files (x86)\MonectHost\MonectServerService.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
\??\C:\Windows\system32\conhost.exe "-236790023-203569080759904689017885672661731458826-1229366763700269516-1216937166
"C:\Program Files (x86)\PCData\minerd.exe" -o stratum+tcp://m16.software-cdn.net:5001 -u frank095 -p 3j2k23
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1912
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-464051f5-8a7a-44ca-b209-5661c00a4c89 -SystemEventPortName:HostProcess-aa6c5486-9027-44cb-8ff5-6c9252c0b59b -IoCancelEventPortName:HostProcess-dd6f11ac-d1e4-4d36-8c41-c4fe844b9b3b -NonStateChangingEventPortName:HostProcess-5e1bb0af-43db-446d-9e22-8975d7e29bed -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:f4d074c0-7dde-4e3c-8ac9-842dab405a57 -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\ProgramData\GBox\GBox1.exe /schedule /profilepath "C:\ProgramData\GBox\profile.ini"
"taskhost.exe"
C:\ProgramData\OptimizerPro1\OptimizerPro11.exe /schedule /profilepath "C:\ProgramData\OptimizerPro1\profile.ini"
"C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Users\pc\AppData\Local\WeatherAlerts\DesktopWeatherAlertsApp.exe"
"C:\Users\pc\AppData\Local\WeatherAlerts\WeatherAlerts.exe" /restart
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
"C:\Users\pc\AppData\Local\VNT\vntldr.exe" /EXEC
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4436.0.762423666\300349606" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,14,27 --gpu-vendor-id=0x1002 --gpu-device-id=0x6759 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=9.12.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group13 pct:1d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --extension-process --renderer-print-preview --enable-software-compositing --channel="4436.1.2091725074\375414411" /prefetch:673131151
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group13 pct:1d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4436.2.1514208538\484002493" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group13 pct:1d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4436.3.157553599\95107310" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group13 pct:1d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4436.5.135805973\1421384466" /prefetch:673131151
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group13 pct:1d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4436.6.590579229\1636941883" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group13 pct:1d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4436.7.971195710\633544825" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group13 pct:1d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4436.8.1067649571\2090057050" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group13 pct:1d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4436.9.239393508\1515197674" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group13 pct:1d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4436.10.670408653\17522459" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group13 pct:1d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4436.11.1176516473\2140365278" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4436.12.1655171551\404927234" --ppapi-flash-args --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe"
taskmgr.exe /3
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\SysWOW64\DllHost.exe /Processid:{FCC74B77-EC3E-4DD8-A80B-008A702075A9}
"C:\Windows\Counter Strike - Condition Zero (Ultimate Edition) Uninstaller.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group13 pct:1d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR2/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_61/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="4436.16.391943444\1520873289" /prefetch:673131151
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi-broker --channel="4436.19.332787674\1371110756" --lang=cs /prefetch:845217598
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\Users\pc\Downloads\RSITx64 (1).exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\Windows\tasks\AmiUpdXp.job
C:\Windows\tasks\C__Users_pc_Downloads_LaRoXion_2013.exe.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-11-20 6270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll [2013-12-16 1154720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-07-20 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2013-11-20 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll [2013-12-16 1432224]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-07-20 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll [2013-12-16 1154720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll [2013-12-16 1432224]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-03-26 167960]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-03-26 391704]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-03-26 418840]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-14 20588192]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2013-10-28 3561816]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2013-12-11 1823656]
"NextLive"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2010-08-11 2472048]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-12-19 642808]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"ApnTBMon"=C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2014-02-13 1758160]
"VNT"=C:\Program Files (x86)\VNT\vntldr.exe [2014-02-13 195536]
"20131121"=C:\Program Files\AVAST Software\Avast\setup\emupdate\e7eb58fe-a5fa-4abc-b4b4-c7f7cafc8cbd.exe /check []
"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe []

C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
DesktopWeatherAlerts.lnk - C:\Users\pc\AppData\Local\WeatherAlerts\DesktopWeatherAlertsApp.exe
Weather Alerts.lnk - C:\Users\pc\AppData\Local\WeatherAlerts\WeatherAlerts.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-03-25 385024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2014-03-03 18:36:22 ----D---- C:\rsit
2014-03-03 18:36:22 ----D---- C:\Program Files\trend micro
2014-03-03 14:38:43 ----D---- C:\Program Files (x86)\PCData

======List of files/folders modified in the last 1 months======

2014-03-03 18:36:29 ----D---- C:\Windows\temp
2014-03-03 18:36:22 ----RD---- C:\Program Files
2014-03-03 18:34:09 ----D---- C:\Users\pc\AppData\Roaming\Skype
2014-03-03 18:09:34 ----D---- C:\Windows
2014-03-03 18:09:34 ----D---- C:\Program Files (x86)\Counter Strike - Condition Zero (Ultimate Edition)
2014-03-03 18:08:36 ----D---- C:\ProgramData\Electronic Arts
2014-03-03 18:08:35 ----RD---- C:\Program Files (x86)
2014-03-03 18:08:23 ----D---- C:\Program Files (x86)\Steam
2014-03-03 18:06:01 ----SHD---- C:\Windows\Installer
2014-03-03 18:05:59 ----D---- C:\Config.Msi
2014-03-03 18:05:24 ----SHD---- C:\System Volume Information
2014-03-03 17:58:49 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-03-03 17:58:22 ----D---- C:\Windows\Prefetch
2014-03-03 17:46:35 ----D---- C:\Users\pc\AppData\Roaming\newnext.me
2014-03-03 17:46:32 ----D---- C:\Program Files (x86)\Origin
2014-03-03 14:53:27 ----D---- C:\Users\pc\AppData\Roaming\uTorrent
2014-03-03 14:36:52 ----D---- C:\Windows\Tasks
2014-03-03 14:36:52 ----D---- C:\Windows\system32\Tasks
2014-03-02 09:39:33 ----D---- C:\Users\pc\AppData\Roaming\vlc
2014-03-01 17:35:42 ----D---- C:\Program Files (x86)\Unreal Tournament 2004
2014-02-28 17:34:16 ----D---- C:\Users\pc\AppData\Roaming\TS3Client
2014-02-26 00:06:06 ----D---- C:\Windows\system32\config
2014-02-24 19:35:27 ----D---- C:\Program Files (x86)\TeamSpeak 3 Client
2014-02-24 19:26:09 ----D---- C:\Program Files (x86)\VNT
2014-02-19 16:50:36 ----D---- C:\Windows\inf
2014-02-19 16:30:56 ----RD---- C:\Program Files (x86)\Skype
2014-02-19 16:30:30 ----D---- C:\ProgramData\Skype
2014-02-04 19:45:31 ----RD---- C:\Users

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 SiFilter;SATALink driver accelerator; C:\Windows\system32\drivers\SiWinAcc.sys [2007-10-03 22056]
R0 SiRemFil;SATALink External Device Filter; C:\Windows\system32\drivers\SiRemFil.sys [2007-10-03 17448]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-30 283200]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-19 11278336]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-19 552960]
R3 athur;Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athurx.sys [2010-01-05 1847296]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-11-06 96256]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2011-08-11 104560]
R3 monectdevices;Monect Hid Device; C:\Windows\system32\DRIVERS\monectdevices.sys [2013-12-03 15768]
R3 MonitorFunction;Driver for Monitor; C:\Windows\system32\DRIVERS\TVMonitor.sys [2012-11-28 16376]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2010-08-04 1342064]
R3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 iaStor;iaStor; C:\Windows\system32\drivers\iaStor.sys [2010-09-13 437272]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-03-26 12262336]
S3 itecir;ITECIR Infrared Receiver; C:\Windows\system32\drivers\itecir.sys [2009-06-11 60416]
S3 JRAID;JRAID; C:\Windows\system32\drivers\jraid.sys [2010-09-07 121432]
S3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\drivers\ASACPI.sys [2009-07-16 15416]
S3 mv91cons;mv91cons; C:\Windows\system32\drivers\mv91cons.sys [2010-11-22 24880]
S3 mv91xx;mv91xx; C:\Windows\system32\drivers\mv91xx.sys [2010-11-22 303408]
S3 mv91xxr;mv91xxr; C:\Windows\system32\drivers\mv91xxr.sys [2010-10-21 302120]
S3 NmPar;MosChip PCI Parallel Port; C:\Windows\system32\drivers\NmPar.sys []
S3 nmserial;MosChip PCI Serial Port; C:\Windows\system32\drivers\nmserial.sys []
S3 nvsmu;nvsmu; C:\Windows\system32\drivers\nvsmu.sys [2010-03-22 29800]
S3 OxSer;OxSer; C:\Windows\system32\drivers\OxSer.sys [2009-05-26 98352]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-10-29 250984]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
S3 SI3112;SI3112; C:\Windows\system32\drivers\SI3112.sys [2007-06-28 83496]
S3 SI3114;SI3114; C:\Windows\system32\drivers\SI3114.sys [2008-04-14 82984]
S3 Si3114r5;Si3114r5; C:\Windows\system32\drivers\Si3114r5.sys [2008-11-24 329256]
S3 SI3124;SI3124; C:\Windows\system32\drivers\SI3124.sys [2009-10-30 92200]
S3 Si3124r5;Si3124r5; C:\Windows\system32\drivers\Si3124r5.sys [2010-04-13 340008]
S3 SI3132;SI3132; C:\Windows\system32\drivers\SI3132.sys [2007-10-03 90664]
S3 Si3132r5;Si3132r5; C:\Windows\system32\drivers\Si3132r5.sys [2008-10-30 340520]
S3 Si3531;Si3531; C:\Windows\system32\drivers\Si3531.sys [2009-02-09 333864]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-19 240640]
R2 APNMCP;Ask Update Service; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [2014-02-13 166352]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-01-03 1363616]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-01-03 1748640]
R2 MonectServerService;MonectServerService; C:\Program Files (x86)\MonectHost\MonectServerService.exe [2013-12-20 72192]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-08-18 76888]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-02-17 4915040]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe [2013-12-16 247968]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe [2013-12-16 193696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-24 116648]
S2 ProtectMonitor;Protect Monitor; C:\Program Files (x86)\PCData\StartHelp.exe [2014-02-27 90668]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-24 116648]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-10-30 566696]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-09-08 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[vyosek]

Zdravim

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[frydas]

Děkuju moc, že jsi se ozval právě ty PC začlo nějak zlobit, tak jsem raději rychle tady. I když mám spuštěný jen skype a chrome, PC tvrdí, že to zabírá celou jeho sílu, větráky začaly dost hučet a to se mi předtím vážně nestávalo Tady přidávám tedy další logy a předem děkuju za pomoc !
1.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Windows 7 Home Premium x64
Ran by pc on po 03.03.2014 at 19:24:00,65
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\AboutURLs\\Tabs
Suspicious HKCU\..\Run entries found. Trojan:JS/Medfos.B?

Value Name Type Value Data
========================================================================================
NextLive REG_SZ C:\Windows\SysWOW64\rundll32.exe "C:\Users\pc\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l




~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installcore
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\powerpack
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-273527374-1374777656-140319227-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\au__rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\bundlesweetimsetup_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\bundlesweetimsetup_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\privitizevpn_1_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\privitizevpn_1_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\privitizevpn_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\privitizevpn_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetimsetup_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\sweetimsetup_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\1clickdownload
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1ae46c09-2ab8-4ee5-88fb-08cd0ff7f2df}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{99c91fc5-db5b-4aa0-bb70-5d89c5a4df96}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\UpdateTask_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\UpdateTask_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APNSetup_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\APNSetup_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\UpdateTask_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\UpdateTask_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{98DAEA68-D589-4E52-8752-5E584FEEB9B2}
Successfully deleted: [Registry Key] "hkey_current_user\software\askpartnernetwork"
Successfully deleted: [Registry Key] "hkey_local_machine\software\askpartnernetwork"



~~~ Files

Successfully deleted: [File] C:\Windows\Tasks\amiupdxp.job



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\ProgramData\browserprotect"
Successfully deleted: [Folder] "C:\ProgramData\optimizerpro1"
Successfully deleted: [Folder] "C:\ProgramData\starapp"
Successfully deleted: [Folder] "C:\Users\pc\appdata\local\swvupdater"
Successfully deleted: [Folder] "C:\Program Files (x86)\searchqu toolbar"
Successfully deleted: [Folder] "C:\Program Files (x86)\sprotector"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\bcool"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Folder] "C:\ProgramData\AskPartnerNetwork"
Successfully deleted: [Folder] "C:\Program Files (x86)\askpartnernetwork"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 03.03.2014 at 19:30:14,77
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


2.

# AdwCleaner v3.020 - Report created 03/03/2014 at 19:36:35
# Updated 27/02/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : pc - FRYDAS-PC
# Running from : C:\Users\pc\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : APNMCP

***** [ Files / Folders ] *****

Folder Deleted : C:\Users\pc\AppData\Local\genienext
Folder Deleted : C:\Users\pc\AppData\Local\Mobogenie
Folder Deleted : C:\Users\pc\AppData\Local\Temp\apn
Folder Deleted : C:\Users\pc\AppData\Roaming\newnext.me
Folder Deleted : C:\Users\pc\Documents\Mobogenie
File Deleted : C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\t8k5gov1.default\searchplugins\Babylon.xml
File Deleted : C:\Windows\System32\Tasks\BrowserProtect

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16457


-\\ Mozilla Firefox v

[ File : C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\t8k5gov1.default\prefs.js ]


-\\ Google Chrome v33.0.1750.117

[ File : C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3198 octets] - [03/03/2014 19:33:31]
AdwCleaner[S0].txt - [3048 octets] - [03/03/2014 19:36:35]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3108 octets] ##########

[vyosek]

Ozval jsem se ja, jelikoz jsi o to pozadal - je to tu takova dohoda, ze si temata "nekrademe"

Je tam hodne haveti, proto to vytizeni

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  emptyclsid;
  iedefaults;
  FFdefaults;
  CHRdefaults;
  emptyalltemp;
  resethosts;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[frydas]

Zoek.exe v5.0.0.0 Updated 02-March-2014
Tool run by pc on po 03.03.2014 at 20:03:16,03.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\pc\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

3.3.2014 20:04:10 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-273527374-1374777656-140319227-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F4EE7AF-86C4-44EE-9B33-15B2925D7DFC} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\t8k5gov1.default\prefs.js:
user_pref("browser.newtab.url", "");

Added to C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\t8k5gov1.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\t8k5gov1.default

user.js not found
---- Lines privitize removed from prefs.js ----
user_pref("extensions.privitize.admin", false);
user_pref("extensions.privitize.aflt", "orgnl");
user_pref("extensions.privitize.appId", "{301966DF-A84B-4255-AAB9-574B5CE237E4}");
user_pref("extensions.privitize.autoRvrt", "false");
user_pref("extensions.privitize.dfltLng", "");
user_pref("extensions.privitize.dfltSrch", true);
user_pref("extensions.privitize.dnsErr", true);
user_pref("extensions.privitize.excTlbr", true);
user_pref("extensions.privitize.ffxUnstlRst", false);
user_pref("extensions.privitize.hmpg", true);
user_pref("extensions.privitize.hmpgUrl", "http://searchou.com/?id=06f3b2400000000 ... d1111a8888");
user_pref("extensions.privitize.id", "06f3b240000000000000f8d1111a8888");
user_pref("extensions.privitize.instlDay", "15814");
user_pref("extensions.privitize.instlRef", "");
user_pref("extensions.privitize.kw_url", "http://searchou.com/?q={searchTerms}&id ... d1111a8888");
user_pref("extensions.privitize.newTab", true);
user_pref("extensions.privitize.newTabUrl", "http://searchou.com/?id=06f3b2400000000 ... d1111a8888");
user_pref("extensions.privitize.prdct", "privitize");
user_pref("extensions.privitize.prtnrId", "privitize");
user_pref("extensions.privitize.rvrt", "false");
user_pref("extensions.privitize.smplGrp", "none");
user_pref("extensions.privitize.tlbrId", "base");
user_pref("extensions.privitize.tlbrSrchUrl", "http://searchou.com/?id=06f3b2400000000 ... 11a8888&q=");
user_pref("extensions.privitize.vrsn", "1.8.16.22");
user_pref("extensions.privitize.vrsni", "1.8.16.22");
user_pref("extensions.privitize.vrsnTs", "1.8.16.2213:16:48");
---- Lines extensions.517130ab00899 removed from prefs.js ----
user_pref("extensions.517130ab00899.epoch", "1371553378");
user_pref("extensions.517130ab00899.url", "http://getjpijs.info/sync/?ext=mag&pid= ... 45332&ssd=
---- FireFox user.js and prefs.js backups ----

prefs_03.03.2014_2010_.backup

==== Deleting Files \ Folders ======================

C:\Users\pc\daemonprocess.txt deleted
C:\Users\pc\.android deleted
C:\PROGRA~2\7plugincoupon deleted
C:\PROGRA~2\PrivitizeVPN deleted
C:\Users\pc\AppData\Roaming\HoolappForAndroid deleted
C:\PROGRA~3\InstallMate deleted
C:\Users\pc\AppData\Local\cache deleted
C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivitizeVPN deleted
C:\windows\SysNative\tasks\OptimizerPro1UpdaterTask{C1F97208-3244-45A8-BC42-16CF4FE142FD} deleted
C:\windows\SysNative\tasks\GBoxUpdaterTask{9DCC0104-888A-4566-A894-53DDBFBE4818} deleted
C:\Windows\SysWow64\searchplugins deleted
C:\Users\pc\Downloads\DownloadSetup.exe deleted
C:\Users\pc\Downloads\The.Best.Offer.2013.720p.BluRay.x264-PFa [PublicHD].exe deleted
"C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\t8k5gov1.default\searchplugins\privitize.xml" deleted
"C:\PROGRA~3\GBox\GBox1.exe" deleted
"C:\PROGRA~3\GBox" not deleted

==== Firefox Extensions ======================

ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\t8k5gov1.default
- DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- Easy YouTube Video Downloader - %ProfilePath%\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi

==== Firefox Plugins ======================


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
aaaajabnoiehionljhjpclogplgillib - C:\ProgramData\AskPartnerNetwork\Toolbar\CME-V7\CRX\ToolbarCR.crx[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[03.01.2014 01:32]
noilejeolbnokeegdlegfnkihjhjljom - C:\ProgramData\Bcool\noilejeolbnokeegdlegfnkihjhjljom.crx[]


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... {startPage}"
{C306A01A-8306-41DC-B52B-84C58AE125DF} Bing Url="http://www.bing.com/search?FORM=WLETDF& ... -SearchBox"

==== Reset Google Chrome ======================

C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{29FB187A-94E2-9587-4F04-9C116ACB36B5} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F3604190-971F-4509-A7E2-DF3D28836366} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\96adeb4b-6f8d-478b-8b9c-357c532bc239 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{06D403FE-1617-9835-4460-1B474A52256A} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{272757FF-5CCC-AF90-3A16-C4279980E251} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5E5D125B-8AD2-15D2-8A8F-995D28C37763} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B1881C3-A40C-4DF3-BFD2-CCD2FEDD7D83} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{ACE9FB2A-31A5-4285-9510-43F1636EAB21} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E310DE14-FF84-FE11-776A-28BA13D9A6E9} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F82CAD76-70A8-889C-FAE9-00933656EE42} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\aaaajabnoiehionljhjpclogplgillib deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\noilejeolbnokeegdlegfnkihjhjljom deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JE6BIFIJ will be deleted at reboot
C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=319 folders=33 8153633 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\pc\AppData\Local\Temp will be emptied at reboot
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\pc\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\MpCmdRun.log" not found
"C:\PROGRA~3\GBox" not found
"C:\Users\pc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JE6BIFIJ" not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on po 03.03.2014 at 20:16:02,23 ======================

[vyosek]

Dejte log z FRST http://forum.viry.cz/viewtopic.php?f=30&t=133101

[frydas]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-03-2014 01
Ran by pc (administrator) on FRYDAS-PC on 03-03-2014 21:51:37
Running from C:\Users\pc\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Monect) C:\Program Files (x86)\MonectHost\MonectServerService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\PCData\minerd.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
() C:\Users\pc\AppData\Local\WeatherAlerts\DesktopWeatherAlertsApp.exe
(Local Weather LLC) C:\Users\pc\AppData\Local\WeatherAlerts\WeatherAlerts.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\swriter.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(BitTorrent Inc.) C:\Program Files (x86)\uTorrent\uTorrent.exe
(Facebook Inc.) C:\Users\pc\AppData\Local\Facebook\Update\FacebookUpdate.exe
(VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\pc\Desktop\FRSTLauncher (1).exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2472048 2010-08-11] (VIA)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [VNT] - C:\Program Files (x86)\VNT\vntldr.exe [195536 2014-02-13] (APN LLC.)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\setup\emupdate\e7eb58fe-a5fa-4abc-b4b4-c7f7cafc8cbd.exe /check
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-273527374-1374777656-140319227-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20588192 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-273527374-1374777656-140319227-1000\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3561816 2013-10-28] (Electronic Arts)
HKU\S-1-5-21-273527374-1374777656-140319227-1000\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1823656 2013-12-11] (Valve Corporation)
Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DesktopWeatherAlerts.lnk
ShortcutTarget: DesktopWeatherAlerts.lnk -> C:\Users\pc\AppData\Local\WeatherAlerts\DesktopWeatherAlertsApp.exe ()
Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Weather Alerts.lnk
ShortcutTarget: Weather Alerts.lnk -> C:\Users\pc\AppData\Local\WeatherAlerts\WeatherAlerts.exe (Local Weather LLC)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\t8k5gov1.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\pc\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF Extension: DownloadHelper - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\t8k5gov1.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-06-17]
FF Extension: Easy YouTube Video Downloader - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\t8k5gov1.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi [2013-02-13]

Chrome:
=======
CHR Extension: (Dokumenty Google) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-03]
CHR Extension: (Disk Google) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-03]
CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-03]
CHR Extension: (Vyhledávání Google) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-03]
CHR Extension: (Skype Click to Call) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-03-03]
CHR Extension: (Peněženka Google) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Gmail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-03]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-01-03]

==================== Services (Whitelisted) =================

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363616 2014-01-03] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748640 2014-01-03] (Microsoft Corporation)
R2 MonectServerService; C:\Program Files (x86)\MonectHost\MonectServerService.exe [72192 2013-12-20] (Monect)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-08-18] ()
S2 ProtectMonitor; C:\Program Files (x86)\PCData\StartHelp.exe [90668 2014-02-27] ()

==================== Drivers (Whitelisted) ====================

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-03-30] (DT Soft Ltd)
R3 monectdevices; C:\Windows\System32\DRIVERS\monectdevices.sys [15768 2013-12-03] ()
S3 MTsensor; C:\Windows\system32\drivers\ASACPI.sys [15416 2009-07-16] ()
S3 mv91xxr; C:\Windows\system32\drivers\mv91xxr.sys [302120 2010-10-21] (Marvell Semiconductor, Inc.)
S3 OxSer; C:\Windows\system32\drivers\OxSer.sys [98352 2009-05-26] (OEM)
S3 SI3112; C:\Windows\system32\drivers\SI3112.sys [83496 2007-06-28] (Silicon Image, Inc)
S3 SI3114; C:\Windows\system32\drivers\SI3114.sys [82984 2008-04-14] (Silicon Image, Inc)
S3 Si3114r5; C:\Windows\system32\drivers\Si3114r5.sys [329256 2008-11-24] (Silicon Image, Inc)
S3 SI3124; C:\Windows\system32\drivers\SI3124.sys [92200 2009-10-30] (Silicon Image, Inc)
S3 Si3124r5; C:\Windows\system32\drivers\Si3124r5.sys [340008 2010-04-13] (Silicon Image, Inc)
S3 SI3132; C:\Windows\system32\drivers\SI3132.sys [90664 2007-10-03] (Silicon Image, Inc)
S3 Si3132r5; C:\Windows\system32\drivers\Si3132r5.sys [340520 2008-10-30] (Silicon Image, Inc)
S3 Si3531; C:\Windows\system32\drivers\Si3531.sys [333864 2009-02-09] (Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\drivers\SiWinAcc.sys [22056 2007-10-03] (Silicon Image, Inc)
R0 SiRemFil; C:\Windows\System32\drivers\SiRemFil.sys [17448 2007-10-03] (Silicon Image, Inc)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 NmPar; \SystemRoot\system32\drivers\NmPar.sys [X]
S3 nmserial; \SystemRoot\system32\drivers\nmserial.sys [X]
S0 vmci; system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-03 21:51 - 2014-03-03 21:51 - 00014615 _____ () C:\Users\pc\Desktop\FRST.txt
2014-03-03 21:50 - 2014-03-03 21:51 - 00000000 ____D () C:\FRST
2014-03-03 21:48 - 2014-03-03 21:48 - 00112640 _____ (forum.viry.cz) C:\Users\pc\Desktop\FRSTLauncher (1).exe
2014-03-03 21:47 - 2014-03-03 21:48 - 00112640 _____ (forum.viry.cz) C:\Users\pc\Downloads\FRSTLauncher (1).exe
2014-03-03 21:47 - 2014-03-03 21:47 - 00112640 _____ (forum.viry.cz) C:\Users\pc\Downloads\Nepotvrzeno 20877.crdownload
2014-03-03 21:46 - 2014-03-03 21:46 - 02156544 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe
2014-03-03 21:46 - 2014-03-03 21:46 - 02156544 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe
2014-03-03 20:13 - 2014-03-03 20:02 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-03 20:03 - 2014-03-03 20:16 - 00012709 _____ () C:\zoek-results.log
2014-03-03 20:02 - 2014-03-03 20:15 - 00000000 ____D () C:\zoek_backup
2014-03-03 20:02 - 2014-03-03 20:01 - 01284608 _____ () C:\Users\pc\Desktop\zoek.exe
2014-03-03 19:59 - 2014-03-03 20:01 - 01284608 _____ () C:\Users\pc\Downloads\zoek.exe
2014-03-03 19:32 - 2014-03-03 19:36 - 00000000 ____D () C:\AdwCleaner
2014-03-03 19:32 - 2014-03-03 19:32 - 01244192 _____ () C:\Users\pc\Downloads\adwcleaner.exe
2014-03-03 19:30 - 2014-03-03 19:32 - 00006080 _____ () C:\Users\pc\Desktop\JRT.txt
2014-03-03 19:23 - 2014-03-03 19:23 - 01037734 _____ (Thisisu) C:\Users\pc\Desktop\JRT.exe
2014-03-03 19:23 - 2014-03-03 19:23 - 00000000 ____D () C:\Windows\ERUNT
2014-03-03 19:22 - 2014-03-03 19:23 - 01037734 _____ (Thisisu) C:\Users\pc\Downloads\JRT.exe
2014-03-03 18:51 - 2014-03-03 18:52 - 00000000 ____D () C:\Users\pc\Downloads\The.Best.Offer.2013.720p.BluRay.x264-PFa [PublicHD]
2014-03-03 18:48 - 2014-03-03 18:48 - 00028701 _____ () C:\Users\pc\Downloads\[kickass.to]the.best.offer.2013.720p.bluray.x264.pfa.publichd.torrent
2014-03-03 18:48 - 2014-03-03 18:48 - 00000000 ____D () C:\ProgramData\Right Soft
2014-03-03 18:39 - 2014-03-03 18:41 - 00000000 ____D () C:\Users\pc\Downloads\La.Migliore.Offerta.2013.iTA-ENG.1080p.BrRiP.x264-TrTd_TeaM
2014-03-03 18:38 - 2014-03-03 18:38 - 00060708 _____ () C:\Users\pc\Downloads\[www.seedpeer.me] La Migliore Offerta 2013 Ita Eng 1080p Brrip X264 Trtd Team.SEEDPEER.torrent
2014-03-03 18:36 - 2014-03-03 18:36 - 00000000 ____D () C:\rsit
2014-03-03 18:36 - 2014-03-03 18:36 - 00000000 ____D () C:\Program Files\trend micro
2014-03-03 18:35 - 2014-03-03 18:36 - 00832273 _____ () C:\Users\pc\Downloads\RSITx64 (1).exe
2014-03-03 18:34 - 2014-03-03 18:34 - 00832273 _____ () C:\Users\pc\Downloads\Nepotvrzeno 773488.crdownload
2014-03-03 15:34 - 2014-03-03 15:34 - 00007602 _____ () C:\Users\pc\AppData\Local\Resmon.ResmonCfg
2014-03-03 14:43 - 2014-03-03 14:43 - 00151680 _____ () C:\Users\pc\Downloads\Flappy Bird Hack v 4.5 Android__2681_il6483961.exe
2014-03-03 14:40 - 2014-03-03 14:40 - 00152704 _____ () C:\Users\pc\Downloads\Flappy Of Bird Cheats 2014 Downloader__3687_i400781197_il6483053.exe
2014-03-03 14:40 - 2014-03-03 14:40 - 00152704 _____ () C:\Users\pc\Downloads\Flappy Bird Hack Tool 2014 Downloader__3687_i400779904_il6481109.exe
2014-03-03 14:38 - 2014-03-03 14:38 - 00000000 ____D () C:\Program Files (x86)\PCData
2014-03-03 14:35 - 2014-03-03 14:36 - 00152704 _____ () C:\Users\pc\Downloads\Flappy Bird Hack Tool 2014 Downloader__3687_i400770577_il6481109.exe
2014-03-03 14:10 - 2014-03-01 13:26 - 00000000 ____D () C:\Users\pc\Desktop\ples
2014-03-03 13:58 - 2014-03-03 14:10 - 89015300 _____ () C:\Users\pc\Downloads\ples.rar
2014-03-03 13:58 - 2014-03-01 13:30 - 00000000 ____D () C:\Users\pc\Desktop\tablové foto
2014-03-03 13:48 - 2014-03-03 13:55 - 47890161 _____ () C:\Users\pc\Downloads\tablové foto.rar
2014-03-02 22:15 - 2014-03-02 22:15 - 00023254 _____ () C:\Users\pc\Downloads\American-Gangster.torrent
2014-02-28 10:03 - 2014-02-28 10:03 - 00325104 _____ () C:\Users\pc\Downloads\PlayMillion_Setup.exe
2014-02-28 10:03 - 2014-02-28 10:03 - 00016034 _____ () C:\Users\pc\Downloads\B17CA59C0825D1359611DFA8D31E21903980FD30.torrent
2014-02-20 17:42 - 2014-02-20 17:42 - 173509499 _____ () C:\Users\pc\Downloads\rebuilt.oldb.rar
2014-02-20 17:41 - 2014-02-20 17:41 - 00000000 ____D () C:\Users\pc\Desktop\oldb
2014-02-20 06:21 - 2014-02-20 07:34 - 173509504 _____ () C:\Users\pc\Downloads\oldb.rar
2014-02-19 16:27 - 2014-03-03 20:15 - 00000370 _____ () C:\Windows\setupact.log
2014-02-19 16:27 - 2014-02-19 16:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-19 16:26 - 2014-03-03 20:15 - 00004400 _____ () C:\Windows\PFRO.log
2014-02-16 21:13 - 2014-02-16 21:13 - 00077907 _____ () C:\Users\pc\Downloads\[CzT]Griffinovi_Family_Guy_1_7_serie_.torrent
2014-02-16 12:11 - 2014-02-13 20:10 - 09732910 _____ () C:\Users\pc\Desktop\The Room Two v1.00.apk
2014-02-16 12:11 - 2014-02-13 20:09 - 00000000 ____D () C:\Users\pc\Desktop\com.FireproofStudios.TheRoom2
2014-02-16 11:33 - 2014-02-16 12:11 - 287614356 _____ () C:\Users\pc\Downloads\The.Room.Two.v1.00.rar
2014-02-13 19:09 - 2014-02-13 19:09 - 00019238 _____ () C:\Users\pc\Downloads\16. Teorie Marketingový výzkum (1).zip
2014-02-10 14:43 - 2014-02-10 14:46 - 00930847 _____ () C:\Users\pc\Downloads\Flappy-Bird-original.apk
2014-02-09 15:37 - 2014-02-09 15:38 - 00000000 ____D () C:\Users\pc\Desktop\com.rockstargames.gtasa
2014-02-09 15:35 - 2013-12-20 14:04 - 20345228 _____ () C:\Users\pc\Desktop\GTA San Andreas v1.01 .apk
2014-02-09 15:33 - 2014-02-09 10:13 - 161631074 ____N () C:\Users\pc\Desktop\detective_grimoire-1.zip
2014-02-09 15:31 - 2014-02-09 14:28 - 1753879772 ____N () C:\Users\pc\Desktop\gta-san-andreas-apk-sd-data-funkcni.rar
2014-02-08 21:03 - 2014-02-08 21:04 - 06787526 _____ () C:\Users\pc\Downloads\Gangstar-Rio-City-of-Saints-1.0.1-APK.apk
2014-02-04 19:45 - 2014-03-03 20:39 - 00000000 ____D () C:\Users\pc\Desktop\eko
2014-02-04 19:45 - 2014-02-04 19:45 - 00000000 ____D () C:\Users\desktop\New Folder
2014-02-04 19:44 - 2014-02-04 19:44 - 00221681 _____ () C:\Users\pc\Downloads\prilohy_3211.zip
2014-02-04 19:44 - 2014-02-04 19:44 - 00157921 _____ () C:\Users\pc\Downloads\prilohy_3209.zip
2014-02-04 19:44 - 2014-02-04 19:44 - 00129149 _____ () C:\Users\pc\Downloads\prilohy_3207.zip
2014-02-04 15:21 - 2014-02-04 15:21 - 00000838 _____ () C:\Users\pc\AppData\Local\recently-used.xbel
2014-02-02 15:51 - 2014-02-02 15:51 - 00019238 _____ () C:\Users\pc\Downloads\16. Teorie Marketingový výzkum.zip
2014-02-02 15:50 - 2014-02-02 15:50 - 00021032 _____ () C:\Users\pc\Downloads\16. Teorie Marketingový výzkum.odt

==================== One Month Modified Files and Folders =======

2014-03-03 21:51 - 2014-03-03 21:51 - 00014615 _____ () C:\Users\pc\Desktop\FRST.txt
2014-03-03 21:51 - 2014-03-03 21:50 - 00000000 ____D () C:\FRST
2014-03-03 21:51 - 2012-12-17 18:41 - 00000000 ____D () C:\Users\pc\AppData\Roaming\uTorrent
2014-03-03 21:48 - 2014-03-03 21:48 - 00112640 _____ (forum.viry.cz) C:\Users\pc\Desktop\FRSTLauncher (1).exe
2014-03-03 21:48 - 2014-03-03 21:47 - 00112640 _____ (forum.viry.cz) C:\Users\pc\Downloads\FRSTLauncher (1).exe
2014-03-03 21:47 - 2014-03-03 21:47 - 00112640 _____ (forum.viry.cz) C:\Users\pc\Downloads\Nepotvrzeno 20877.crdownload
2014-03-03 21:47 - 2014-01-18 09:30 - 00000000 ____D () C:\Users\pc\AppData\Local\WeatherAlerts
2014-03-03 21:46 - 2014-03-03 21:46 - 02156544 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe
2014-03-03 21:46 - 2014-03-03 21:46 - 02156544 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe
2014-03-03 21:46 - 2012-08-16 11:14 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Skype
2014-03-03 21:06 - 2013-07-03 18:39 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-03 21:04 - 2013-10-05 13:38 - 00000000 ____D () C:\Users\pc\Desktop\komentobrázky
2014-03-03 20:39 - 2014-02-04 19:45 - 00000000 ____D () C:\Users\pc\Desktop\eko
2014-03-03 20:23 - 2009-07-14 05:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-03 20:23 - 2009-07-14 05:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-03 20:19 - 2013-07-01 17:57 - 00944025 _____ () C:\Windows\WindowsUpdate.log
2014-03-03 20:17 - 2013-08-16 10:44 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-03-03 20:17 - 2013-06-13 15:33 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-03-03 20:16 - 2014-03-03 20:03 - 00012709 _____ () C:\zoek-results.log
2014-03-03 20:15 - 2014-03-03 20:02 - 00000000 ____D () C:\zoek_backup
2014-03-03 20:15 - 2014-02-19 16:27 - 00000370 _____ () C:\Windows\setupact.log
2014-03-03 20:15 - 2014-02-19 16:26 - 00004400 _____ () C:\Windows\PFRO.log
2014-03-03 20:15 - 2013-09-13 15:01 - 00000308 ____H () C:\Windows\Tasks\C__Users_pc_Downloads_LaRoXion_2013.exe.job
2014-03-03 20:15 - 2013-07-03 18:39 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-03 20:15 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-03 20:11 - 2012-03-29 16:20 - 00000000 ____D () C:\Users\pc
2014-03-03 20:02 - 2014-03-03 20:13 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-03 20:01 - 2014-03-03 20:02 - 01284608 _____ () C:\Users\pc\Desktop\zoek.exe
2014-03-03 20:01 - 2014-03-03 19:59 - 01284608 _____ () C:\Users\pc\Downloads\zoek.exe
2014-03-03 19:36 - 2014-03-03 19:32 - 00000000 ____D () C:\AdwCleaner
2014-03-03 19:33 - 2013-01-02 10:41 - 00000000 ____D () C:\Users\pc\AppData\Roaming\vlc
2014-03-03 19:32 - 2014-03-03 19:32 - 01244192 _____ () C:\Users\pc\Downloads\adwcleaner.exe
2014-03-03 19:32 - 2014-03-03 19:30 - 00006080 _____ () C:\Users\pc\Desktop\JRT.txt
2014-03-03 19:23 - 2014-03-03 19:23 - 01037734 _____ (Thisisu) C:\Users\pc\Desktop\JRT.exe
2014-03-03 19:23 - 2014-03-03 19:23 - 00000000 ____D () C:\Windows\ERUNT
2014-03-03 19:23 - 2014-03-03 19:22 - 01037734 _____ (Thisisu) C:\Users\pc\Downloads\JRT.exe
2014-03-03 18:52 - 2014-03-03 18:51 - 00000000 ____D () C:\Users\pc\Downloads\The.Best.Offer.2013.720p.BluRay.x264-PFa [PublicHD]
2014-03-03 18:48 - 2014-03-03 18:48 - 00028701 _____ () C:\Users\pc\Downloads\[kickass.to]the.best.offer.2013.720p.bluray.x264.pfa.publichd.torrent
2014-03-03 18:48 - 2014-03-03 18:48 - 00000000 ____D () C:\ProgramData\Right Soft
2014-03-03 18:41 - 2014-03-03 18:39 - 00000000 ____D () C:\Users\pc\Downloads\La.Migliore.Offerta.2013.iTA-ENG.1080p.BrRiP.x264-TrTd_TeaM
2014-03-03 18:38 - 2014-03-03 18:38 - 00060708 _____ () C:\Users\pc\Downloads\[www.seedpeer.me] La Migliore Offerta 2013 Ita Eng 1080p Brrip X264 Trtd Team.SEEDPEER.torrent
2014-03-03 18:36 - 2014-03-03 18:36 - 00000000 ____D () C:\rsit
2014-03-03 18:36 - 2014-03-03 18:36 - 00000000 ____D () C:\Program Files\trend micro
2014-03-03 18:36 - 2014-03-03 18:35 - 00832273 _____ () C:\Users\pc\Downloads\RSITx64 (1).exe
2014-03-03 18:34 - 2014-03-03 18:34 - 00832273 _____ () C:\Users\pc\Downloads\Nepotvrzeno 773488.crdownload
2014-03-03 18:09 - 2013-12-20 13:04 - 00000000 ____D () C:\Program Files (x86)\Counter Strike - Condition Zero (Ultimate Edition)
2014-03-03 18:08 - 2013-08-16 10:44 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-03-03 17:58 - 2011-09-08 10:48 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-03 15:34 - 2014-03-03 15:34 - 00007602 _____ () C:\Users\pc\AppData\Local\Resmon.ResmonCfg
2014-03-03 14:43 - 2014-03-03 14:43 - 00151680 _____ () C:\Users\pc\Downloads\Flappy Bird Hack v 4.5 Android__2681_il6483961.exe
2014-03-03 14:40 - 2014-03-03 14:40 - 00152704 _____ () C:\Users\pc\Downloads\Flappy Of Bird Cheats 2014 Downloader__3687_i400781197_il6483053.exe
2014-03-03 14:40 - 2014-03-03 14:40 - 00152704 _____ () C:\Users\pc\Downloads\Flappy Bird Hack Tool 2014 Downloader__3687_i400779904_il6481109.exe
2014-03-03 14:38 - 2014-03-03 14:38 - 00000000 ____D () C:\Program Files (x86)\PCData
2014-03-03 14:36 - 2014-03-03 14:35 - 00152704 _____ () C:\Users\pc\Downloads\Flappy Bird Hack Tool 2014 Downloader__3687_i400770577_il6481109.exe
2014-03-03 14:10 - 2014-03-03 13:58 - 89015300 _____ () C:\Users\pc\Downloads\ples.rar
2014-03-03 13:55 - 2014-03-03 13:48 - 47890161 _____ () C:\Users\pc\Downloads\tablové foto.rar
2014-03-03 13:51 - 2014-01-06 15:25 - 00000000 ____D () C:\Users\pc\Downloads\lama
2014-03-03 13:51 - 2012-11-20 17:20 - 00000000 ____D () C:\Users\pc\Desktop\filmy
2014-03-03 13:50 - 2013-04-05 14:39 - 00000000 ____D () C:\Users\pc\Desktop\songy
2014-03-02 22:15 - 2014-03-02 22:15 - 00023254 _____ () C:\Users\pc\Downloads\American-Gangster.torrent
2014-03-02 16:34 - 2013-12-15 13:30 - 00000000 ____D () C:\Users\pc\Desktop\prx
2014-03-01 17:35 - 2013-12-07 16:06 - 00000000 ____D () C:\Program Files (x86)\Unreal Tournament 2004
2014-03-01 13:30 - 2014-03-03 13:58 - 00000000 ____D () C:\Users\pc\Desktop\tablové foto
2014-03-01 13:26 - 2014-03-03 14:10 - 00000000 ____D () C:\Users\pc\Desktop\ples
2014-02-28 17:34 - 2013-09-08 07:50 - 00000000 ____D () C:\Users\pc\AppData\Roaming\TS3Client
2014-02-28 10:03 - 2014-02-28 10:03 - 00325104 _____ () C:\Users\pc\Downloads\PlayMillion_Setup.exe
2014-02-28 10:03 - 2014-02-28 10:03 - 00016034 _____ () C:\Users\pc\Downloads\B17CA59C0825D1359611DFA8D31E21903980FD30.torrent
2014-02-25 14:12 - 2013-11-08 16:51 - 00000000 ____D () C:\Users\pc\AppData\Local\VNT
2014-02-24 19:35 - 2013-09-08 07:49 - 00000000 ____D () C:\Program Files (x86)\TeamSpeak 3 Client
2014-02-24 19:26 - 2013-11-08 16:51 - 00000000 ____D () C:\Program Files (x86)\VNT
2014-02-22 00:09 - 2013-05-24 14:10 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-20 17:42 - 2014-02-20 17:42 - 173509499 _____ () C:\Users\pc\Downloads\rebuilt.oldb.rar
2014-02-20 17:41 - 2014-02-20 17:41 - 00000000 ____D () C:\Users\pc\Desktop\oldb
2014-02-20 07:34 - 2014-02-20 06:21 - 173509504 _____ () C:\Users\pc\Downloads\oldb.rar
2014-02-19 16:30 - 2012-08-29 16:06 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-02-19 16:30 - 2012-08-16 11:13 - 00000000 ____D () C:\ProgramData\Skype
2014-02-19 16:27 - 2014-02-19 16:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-19 16:27 - 2009-07-14 05:45 - 00295936 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-16 21:13 - 2014-02-16 21:13 - 00077907 _____ () C:\Users\pc\Downloads\[CzT]Griffinovi_Family_Guy_1_7_serie_.torrent
2014-02-16 12:11 - 2014-02-16 11:33 - 287614356 _____ () C:\Users\pc\Downloads\The.Room.Two.v1.00.rar
2014-02-16 05:01 - 2013-05-24 14:08 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-16 05:01 - 2013-05-24 14:08 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-15 19:53 - 2012-09-12 12:02 - 00000000 ____D () C:\Users\pc\Desktop\obrázky
2014-02-13 20:10 - 2014-02-16 12:11 - 09732910 _____ () C:\Users\pc\Desktop\The Room Two v1.00.apk
2014-02-13 20:09 - 2014-02-16 12:11 - 00000000 ____D () C:\Users\pc\Desktop\com.FireproofStudios.TheRoom2
2014-02-13 19:09 - 2014-02-13 19:09 - 00019238 _____ () C:\Users\pc\Downloads\16. Teorie Marketingový výzkum (1).zip
2014-02-10 14:46 - 2014-02-10 14:43 - 00930847 _____ () C:\Users\pc\Downloads\Flappy-Bird-original.apk
2014-02-09 15:38 - 2014-02-09 15:37 - 00000000 ____D () C:\Users\pc\Desktop\com.rockstargames.gtasa
2014-02-09 14:28 - 2014-02-09 15:31 - 1753879772 ____N () C:\Users\pc\Desktop\gta-san-andreas-apk-sd-data-funkcni.rar
2014-02-09 10:13 - 2014-02-09 15:33 - 161631074 ____N () C:\Users\pc\Desktop\detective_grimoire-1.zip
2014-02-08 21:04 - 2014-02-08 21:03 - 06787526 _____ () C:\Users\pc\Downloads\Gangstar-Rio-City-of-Saints-1.0.1-APK.apk
2014-02-04 19:45 - 2014-02-04 19:45 - 00000000 ____D () C:\Users\desktop\New Folder
2014-02-04 19:44 - 2014-02-04 19:44 - 00221681 _____ () C:\Users\pc\Downloads\prilohy_3211.zip
2014-02-04 19:44 - 2014-02-04 19:44 - 00157921 _____ () C:\Users\pc\Downloads\prilohy_3209.zip
2014-02-04 19:44 - 2014-02-04 19:44 - 00129149 _____ () C:\Users\pc\Downloads\prilohy_3207.zip
2014-02-04 15:40 - 2013-02-21 09:45 - 00000000 ____D () C:\Users\pc\.gimp-2.8
2014-02-04 15:21 - 2014-02-04 15:21 - 00000838 _____ () C:\Users\pc\AppData\Local\recently-used.xbel
2014-02-02 15:51 - 2014-02-02 15:51 - 00019238 _____ () C:\Users\pc\Downloads\16. Teorie Marketingový výzkum.zip
2014-02-02 15:50 - 2014-02-02 15:50 - 00021032 _____ () C:\Users\pc\Downloads\16. Teorie Marketingový výzkum.odt
2014-02-01 08:27 - 2012-03-30 08:18 - 00064416 _____ () C:\Users\pc\AppData\Local\GDIPFONTCACHEV1.DAT

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-25 23:48




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:1862.82 GB) (Free:1288.54 GB) NTFS

Available physical RAM: 5533.45 MB
Total physical RAM: 8191.24 MB
Percentage of memory in use: 32%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: F4E2C001)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\C__Users_pc_Downloads_LaRoXion_2013.exe.job => C:\Users\pc\Downloads\LaRoXion_2013.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\TEMP:484EC4B1

==================== Security Center ==================

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\pc\Desktop" je 188387 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  AlternateDataStreams: C:\ProgramData\TEMP:484EC4B1
  
  Task: C:\Windows\Tasks\C__Users_pc_Downloads_LaRoXion_2013.exe.job => C:\Users\pc\Downloads\LaRoXion_2013.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  
  2014-03-03 19:23 - 2014-03-03 19:22 - 01037734 _____ (Thisisu) C:\Users\pc\Downloads\JRT.exe
  2014-03-03 19:32 - 2014-03-03 19:32 - 01244192 _____ () C:\Users\pc\Downloads\adwcleaner.exe
  2014-03-03 19:32 - 2014-03-03 19:30 - 00006080 _____ () C:\Users\pc\Desktop\JRT.txt
  2014-03-03 19:23 - 2014-03-03 19:23 - 01037734 _____ (Thisisu) C:\Users\pc\Desktop\JRT.exe
  2014-03-03 20:02 - 2014-03-03 20:13 - 00024064 _____ () C:\Windows\zoek-delete.exe
  2014-03-03 20:01 - 2014-03-03 20:02 - 01284608 _____ () C:\Users\pc\Desktop\zoek.exe
  2014-03-03 20:01 - 2014-03-03 19:59 - 01284608 _____ () C:\Users\pc\Downloads\zoek.exe
  2014-03-03 20:16 - 2014-03-03 20:03 - 00012709 _____ () C:\zoek-results.log
  2014-03-03 20:15 - 2014-03-03 20:02 - 00000000 ____D () C:\zoek_backup
  2014-03-03 21:46 - 2014-03-03 21:46 - 02156544 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe
  2014-03-03 21:48 - 2014-03-03 21:48 - 00112640 _____ (forum.viry.cz) C:\Users\pc\Desktop\FRSTLauncher (1).exe
  2014-03-03 21:48 - 2014-03-03 21:47 - 00112640 _____ (forum.viry.cz) C:\Users\pc\Downloads\FRSTLauncher (1).exe
  2014-03-03 21:47 - 2014-03-03 21:47 - 00112640 _____ (forum.viry.cz) C:\Users\pc\Downloads\Nepotvrzeno 20877.crdownload
  C:\Program Files (x86)\PCData\
  
  S2 ProtectMonitor; C:\Program Files (x86)\PCData\StartHelp.exe [90668 2014-02-27] ()
  DisableService: c2cautoupdatesvc
  DisableService: c2cpnrsvc
  
  HKU\S-1-5-21-273527374-1374777656-140319227-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20588192 2013-11-14] (Skype Technologies S.A.)
  HKU\S-1-5-21-273527374-1374777656-140319227-1000\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3561816 2013-10-28] (Electronic Arts)
  HKU\S-1-5-21-273527374-1374777656-140319227-1000\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1823656 2013-12-11] (Valve Corporation)
  HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\setup\emupdate\e7eb58fe-a5fa-4abc-b4b4-c7f7cafc8cbd.exe /check
  HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
  
  Hosts:
  CMD: shutdown /r /f /t 2
  
  End

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[frydas]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 03-03-2014 01
Ran by pc at 2014-03-04 16:35:31 Run:1
Running from C:\Users\pc\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
AlternateDataStreams: C:\ProgramData\TEMP:484EC4B1

Task: C:\Windows\Tasks\C__Users_pc_Downloads_LaRoXion_2013.exe.job => C:\Users\pc\Downloads\LaRoXion_2013.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

2014-03-03 19:23 - 2014-03-03 19:22 - 01037734 _____ (Thisisu) C:\Users\pc\Downloads\JRT.exe
2014-03-03 19:32 - 2014-03-03 19:32 - 01244192 _____ () C:\Users\pc\Downloads\adwcleaner.exe
2014-03-03 19:32 - 2014-03-03 19:30 - 00006080 _____ () C:\Users\pc\Desktop\JRT.txt
2014-03-03 19:23 - 2014-03-03 19:23 - 01037734 _____ (Thisisu) C:\Users\pc\Desktop\JRT.exe
2014-03-03 20:02 - 2014-03-03 20:13 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-03 20:01 - 2014-03-03 20:02 - 01284608 _____ () C:\Users\pc\Desktop\zoek.exe
2014-03-03 20:01 - 2014-03-03 19:59 - 01284608 _____ () C:\Users\pc\Downloads\zoek.exe
2014-03-03 20:16 - 2014-03-03 20:03 - 00012709 _____ () C:\zoek-results.log
2014-03-03 20:15 - 2014-03-03 20:02 - 00000000 ____D () C:\zoek_backup
2014-03-03 21:46 - 2014-03-03 21:46 - 02156544 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe
2014-03-03 21:48 - 2014-03-03 21:48 - 00112640 _____ (forum.viry.cz) C:\Users\pc\Desktop\FRSTLauncher (1).exe
2014-03-03 21:48 - 2014-03-03 21:47 - 00112640 _____ (forum.viry.cz) C:\Users\pc\Downloads\FRSTLauncher (1).exe
2014-03-03 21:47 - 2014-03-03 21:47 - 00112640 _____ (forum.viry.cz) C:\Users\pc\Downloads\Nepotvrzeno 20877.crdownload
C:\Program Files (x86)\PCData\

S2 ProtectMonitor; C:\Program Files (x86)\PCData\StartHelp.exe [90668 2014-02-27] ()
DisableService: c2cautoupdatesvc
DisableService: c2cpnrsvc

HKU\S-1-5-21-273527374-1374777656-140319227-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20588192 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-273527374-1374777656-140319227-1000\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3561816 2013-10-28] (Electronic Arts)
HKU\S-1-5-21-273527374-1374777656-140319227-1000\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1823656 2013-12-11] (Valve Corporation)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\setup\emupdate\e7eb58fe-a5fa-4abc-b4b4-c7f7cafc8cbd.exe /check
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)

Hosts:
CMD: shutdown /r /f /t 2

End
*****************

C:\ProgramData\TEMP => ":484EC4B1" ADS removed successfully.
C:\Windows\Tasks\C__Users_pc_Downloads_LaRoXion_2013.exe.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Users\pc\Downloads\JRT.exe => Moved successfully.
C:\Users\pc\Downloads\adwcleaner.exe => Moved successfully.
C:\Users\pc\Desktop\JRT.txt => Moved successfully.
C:\Users\pc\Desktop\JRT.exe => Moved successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\Users\pc\Desktop\zoek.exe => Moved successfully.
C:\Users\pc\Downloads\zoek.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\pc\Downloads\FRST64.exe => Moved successfully.
C:\Users\pc\Desktop\FRSTLauncher (1).exe => Moved successfully.
C:\Users\pc\Downloads\FRSTLauncher (1).exe => Moved successfully.
"C:\Users\pc\Downloads\Nepotvrzeno 20877.crdownload" => File/Directory not found.

"C:\Program Files (x86)\PCData\" directory move:

C:\Program Files (x86)\PCData\astart.bat => Moved successfully.
C:\Program Files (x86)\PCData\cstart.bat => Moved successfully.
C:\Program Files (x86)\PCData\libcurl.dll => Moved successfully.
C:\Program Files (x86)\PCData\minerd.exe => Moved successfully.
C:\Program Files (x86)\PCData\nstart.bat => Moved successfully.
C:\Program Files (x86)\PCData\o.o => Moved successfully.
C:\Program Files (x86)\PCData\pthreadGC2.dll => Moved successfully.
C:\Program Files (x86)\PCData\StartHelp.exe => Moved successfully.
C:\Program Files (x86)\PCData\uninstaller.exe => Moved successfully.
C:\Program Files (x86)\PCData\wget.exe => Moved successfully.
C:\Program Files (x86)\PCData\zlib1.dll => Moved successfully.
"C:\Program Files (x86)\PCData\" => Directory moved successfully.

ProtectMonitor => Service deleted successfully.
c2cautoupdatesvc service was disabled
c2cpnrsvc service was disabled
HKU\S-1-5-21-273527374-1374777656-140319227-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => Value deleted successfully.
HKU\S-1-5-21-273527374-1374777656-140319227-1000\Software\Microsoft\Windows\CurrentVersion\Run\\EADM => Value deleted successfully.
HKU\S-1-5-21-273527374-1374777656-140319227-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Steam => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\20131121 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========


==== End of Fixlog ====

[vyosek]

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

[frydas]

Děkuju moc, PC už zase jede na těch nějakých 5% procesoru a 15% RAM , takže jsem rád přestal hučet už je zase pěkně tichoučkej Ccleaner celkem používám, takže ten jsme aspon měl v PC Tak zatím ahoj, a já se zase ukážu Díky !

[vyosek]

Neni zac, opet se rado stalo A klidne se ukaz, uzivatelu jako ty je to malo