Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

to Rudy: prosba o kontrolu laptopu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Fanfa
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 34
Registrován: 18 led 2014 13:35

to Rudy: prosba o kontrolu laptopu

#1 Příspěvek od Fanfa »

Zdravim, Rudy, :)

rada by som vas chcela poprosit o kontrolu laptopu mojej matky, ma dake problemy, je pomalsi a aj nastartovanie trva dlhsie. Taktiez mam obavy, ze ma urcite niektore sajrajty v laptope, kedze navstevuje rozne stranky a tiez otvara nezname a spamove emaily.

Velmi pekne dakujem :wub:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-05-2014 01
Ran by Backstuberova (administrator) on BACKSTUB-NB3 on 09-05-2014 16:08:15
Running from C:\Users\Backstuberova\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
() C:\ProgramData\DatacardService\DCService.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
(UPEK Inc.) C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe
(IBM Corp) C:\Program Files (x86)\lotus\notes\ntmulti.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Ericsson AB) C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcDeskBandHlpr.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
(Lenovo.) C:\Windows\System32\TpShocks.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Client Security Solution\cssauth.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
(TODO: <Company name>) C:\Program Files (x86)\ODD Eject\ODDEject.exe
() C:\Program Files (x86)\Integrated Camera\Monitor.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Lenovo Group Limited) C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe
() C:\Program Files (x86)\Lenovo\Message Center Plus\MCPLaunch.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
(forum.viry.cz) C:\Users\Backstuberova\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [TpShocks] => C:\Windows\system32\TpShocks.exe [380776 2011-01-14] (Lenovo.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [316032 2011-01-07] (Conexant systems, Inc.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [41320 2011-01-27] (Lenovo Group Limited)
HKLM\...\Run: [ALCKRESI.EXE] => C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE [281448 2010-12-17] (Lenovo Group Limited)
HKLM\...\Run: [AcWin7Hlpr] => C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [31592 2011-02-19] (Lenovo)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [2918656 2011-01-12] (ESET)
HKLM\...\Run: [cssauth] => C:\Program Files\Lenovo\Client Security Solution\cssauth.exe [5989688 2011-01-05] (Lenovo Group Limited)
HKLM-x32\...\Run: [ODDEject] => C:\Program Files (x86)\ODD Eject\ODDEject.exe [267632 2010-11-02] (TODO: <Company name>)
HKLM-x32\...\Run: [Integrated Camera_Monitor] => C:\Program Files (x86)\Integrated Camera\monitor.exe [275320 2011-02-08] ()
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-01-27] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PWMTRV] => rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\psfus: C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll (UPEK Inc.)
HKU\S-1-5-21-3320787471-1618427739-3359530729-1002\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2014-01-17] (Google Inc.)
HKU\S-1-5-21-3320787471-1618427739-3359530729-1002\...\MountPoints2: {f7fb9954-1bad-11e3-90ff-028037ec0200} - E:\LaunchU3.exe -a
Lsa: [Notification Packages] scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll ACGina
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\Backstuberova\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Backstuberova\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com/welcome/thinkpad
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {0AFF4876-44A7-4646-9B58-C49629E329AA} URL =
SearchScopes: HKCU - {AF8DF256-41C9-4B35-979A-AA503A23D51F} URL = http://websearch.ask.com/redirect?clien ... BC9761B63C
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: IePasswordManagerHelper Class - {BF468356-BB7E-42D7-9F15-4F3B9BCFCED2} - C:\Program Files (x86)\Lenovo\Client Security Solution\tvtpwm_ie_com.dll (Lenovo Group Limited)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll (pdfforge GmbH)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logmein.com//activex/ractrl.cab?lmi=1058
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Backstuberova\AppData\Roaming\Mozilla\Firefox\Profiles\1ndvk4s2.default
FF SearchEngineOrder.1: Ask.com
FF Homepage: https://www.google.sk/
FF Keyword.URL: hxxp://static.flipora.com/enhancedsearch_v.html?serp_type=addbar&ref_type=ab&src_type=ab&gl=sk&u=17930643&bcb=&t=64.0&gl=sk&tv=v64&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Backstuberova\AppData\Roaming\Mozilla\Firefox\Profiles\1ndvk4s2.default\searchplugins\infoaxe.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: LogMeIn, Inc. Remote Access Plugin - C:\Users\Backstuberova\AppData\Roaming\Mozilla\Firefox\Profiles\1ndvk4s2.default\Extensions\LogMeInClient@logmein.com [2014-04-23]
FF Extension: English (GB) Language Pack - C:\Users\Backstuberova\AppData\Roaming\Mozilla\Firefox\Profiles\1ndvk4s2.default\Extensions\langpack-en-GB@firefox.mozilla.org.xpi [2014-04-04]
FF Extension: YouTube High Definition - C:\Users\Backstuberova\AppData\Roaming\Mozilla\Firefox\Profiles\1ndvk4s2.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-04-27]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011-10-11]
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2014-04-14]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011-10-11]

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR StartupUrls: "hxxp://www.google.com"
CHR Extension: (Dokumenty Google) - C:\Users\Backstuberova\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-07-01]
CHR Extension: (Disk Google) - C:\Users\Backstuberova\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-07-01]
CHR Extension: (YouTube) - C:\Users\Backstuberova\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-01]
CHR Extension: (Hľadať v Google) - C:\Users\Backstuberova\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-01]
CHR Extension: (Peňaženka Google) - C:\Users\Backstuberova\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-12]
CHR Extension: (Gmail) - C:\Users\Backstuberova\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-01]

==================== Services (Whitelisted) =================

R2 DCService.exe; C:\ProgramData\DatacardService\DCService.exe [229376 2010-05-08] ()
S3 EhttpSrv; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [42360 2011-01-12] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [810144 2011-01-12] (ESET)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [93032 2010-04-07] (Lenovo Group Limited)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
R2 Multi-user Cleanup Service; C:\Program Files (x86)\lotus\notes\ntmulti.exe [53248 2006-01-17] (IBM Corp)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
R2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [584232 2010-12-09] (Ericsson AB)

==================== Drivers (Whitelisted) ====================

R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [170640 2010-12-21] (ESET)
R3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2010-03-03] (Ericsson AB)
R3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [30248 2010-03-03] (Ericsson AB)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [141264 2010-12-21] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [170640 2010-12-21] (ESET)
R3 Epfwndis; C:\Windows\System32\DRIVERS\Epfwndis.sys [34144 2010-12-21] (ESET)
R2 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [50624 2010-12-21] (ESET)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [252928 2010-04-30] (Huawei Technologies Co., Ltd.)
R3 l36wgps; C:\Windows\System32\DRIVERS\l36wgps64.sys [101416 2010-12-02] (Ericsson AB)
R3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [411208 2010-11-01] (MCCI Corporation)
R3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [419912 2010-11-01] (MCCI Corporation)
R3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [19528 2010-11-01] (MCCI Corporation)
R3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [472648 2010-11-01] (MCCI Corporation)
R2 smihlp; C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [13840 2009-03-13] (UPEK Inc.)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [2949496 2011-02-15] (Sunplus Technology)
R3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [276008 2010-12-29] (Ericsson AB)
S3 PCDSRVC{127174DC-C366ED8B-06020200}_0; \??\c:\program files\pc-doctor\pcdsrvc_x64.pkms [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-09 16:08 - 2014-05-09 16:08 - 00022426 _____ () C:\Users\Backstuberova\Desktop\FRST.txt
2014-05-09 16:07 - 2014-05-09 16:08 - 00000000 ____D () C:\FRST
2014-05-09 16:07 - 2014-05-09 16:07 - 00029696 _____ () C:\Users\Backstuberova\AppData\Local\MSGBOX.EXE
2014-05-09 16:07 - 2014-05-09 16:07 - 00015327 _____ () C:\Users\Backstuberova\Desktop\LM.bat
2014-05-09 16:06 - 2014-05-09 16:06 - 02064384 _____ (Farbar) C:\Users\Backstuberova\Desktop\FRST64.exe
2014-05-09 16:06 - 2014-05-09 16:06 - 00112640 _____ (forum.viry.cz) C:\Users\Backstuberova\Desktop\FRSTLauncher.exe
2014-05-09 16:05 - 2014-05-09 16:05 - 00112107 _____ (forum.viry.cz) C:\Users\Backstuberova\Downloads\VerzeOS.exe
2014-05-06 22:44 - 2014-05-06 22:44 - 00000076 _____ () C:\Users\Backstuberova\Downloads\link na matros zo skusky.txt
2014-05-04 19:17 - 2014-05-04 19:17 - 00027648 _____ () C:\Users\Backstuberova\Downloads\55.xls
2014-05-03 09:04 - 2014-04-29 16:01 - 23547904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-03 09:04 - 2014-04-29 15:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-03 09:04 - 2014-04-29 14:48 - 17384448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-03 09:04 - 2014-04-29 14:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-02 18:41 - 2014-05-02 18:41 - 05995116 _____ () C:\Users\Backstuberova\Downloads\00840502.1ex
2014-05-02 18:40 - 2014-05-02 18:41 - 05165957 _____ () C:\Users\Backstuberova\Downloads\00740502.1ex
2014-05-02 18:40 - 2014-05-02 18:40 - 06210661 _____ () C:\Users\Backstuberova\Downloads\00640502.1ex
2014-05-02 18:36 - 2014-05-02 18:37 - 06695837 _____ () C:\Users\Backstuberova\Downloads\00440502.1ex
2014-05-02 18:36 - 2014-05-02 18:36 - 05801130 _____ () C:\Users\Backstuberova\Downloads\00340430.1ex
2014-05-02 18:33 - 2014-05-02 18:33 - 05536411 _____ () C:\Users\Backstuberova\Downloads\00240502.1ex
2014-05-02 18:32 - 2014-05-02 18:33 - 07121656 _____ () C:\Users\Backstuberova\Downloads\00140430.1ex
2014-04-30 03:00 - 2014-04-30 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-30 02:10 - 2014-04-14 04:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-30 02:10 - 2014-04-14 04:19 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-28 14:07 - 2014-04-28 14:07 - 00114249 _____ () C:\Users\Backstuberova\Downloads\diplomacia.zip
2014-04-28 14:05 - 2014-04-28 14:06 - 00000000 ____D () C:\Users\Backstuberova\Desktop\New Folder
2014-04-27 14:38 - 2014-04-27 14:38 - 02143744 _____ () C:\Users\Backstuberova\Downloads\cviko_6.ppt
2014-04-27 05:15 - 2014-04-27 05:16 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\PDF Architect
2014-04-27 05:02 - 2014-04-27 05:02 - 00000000 ____D () C:\Users\Backstuberova\AppData\Local\PDFCreator
2014-04-26 17:56 - 2014-04-26 17:56 - 01988608 _____ () C:\Users\Backstuberova\Downloads\RonMueck-Sculpteurhyperre_aliste.pps
2014-04-25 17:41 - 2014-04-27 05:36 - 00000000 ____D () C:\Users\Backstuberova\Desktop\DP
2014-04-24 20:51 - 2014-04-24 20:51 - 00000832 _____ () C:\Users\Backstuberova\Desktop\µTorrent.lnk
2014-04-24 20:51 - 2014-04-24 20:51 - 00000000 ____D () C:\Users\Backstuberova\Downloads\Ain't No Trip To Cleveland (Live)
2014-04-24 20:50 - 2014-04-25 12:21 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\uTorrent
2014-04-24 15:27 - 2014-04-24 15:28 - 00000000 ____D () C:\Users\Backstuberova\Desktop\DP-priebeh
2014-04-20 02:02 - 2014-05-06 22:56 - 00000000 ____D () C:\Users\Backstuberova\Desktop\Na štátnice
2014-04-20 01:54 - 2014-04-30 03:45 - 00188928 ____H () C:\Users\Backstuberova\Desktop\~WRL0001.tmp
2014-04-17 01:56 - 2014-04-17 01:56 - 01568167 _____ () C:\Users\Backstuberova\Downloads\PREZ_2012_PDS_II_1.pptx
2014-04-15 21:09 - 2014-04-16 10:56 - 00000000 ____D () C:\Users\Backstuberova\Desktop\Markiza2014
2014-04-14 01:00 - 2014-04-14 01:00 - 00001008 _____ () C:\Users\Backstuberova\Desktop\PDF Architect.lnk
2014-04-14 00:59 - 2014-04-14 00:59 - 00000847 _____ () C:\Users\Public\Desktop\PDFCreator.lnk
2014-04-14 00:59 - 2014-04-14 00:59 - 00000000 ____D () C:\Users\Backstuberova\Documents\PDF Architect Files
2014-04-14 00:59 - 2014-04-14 00:59 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\pdfforge
2014-04-14 00:59 - 2014-04-14 00:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2014-04-14 00:59 - 2014-04-14 00:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect
2014-04-14 00:59 - 2014-04-14 00:59 - 00000000 ____D () C:\Program Files\PDFCreator
2014-04-14 00:59 - 2014-04-14 00:59 - 00000000 ____D () C:\Program Files (x86)\PDF Architect
2014-04-14 00:59 - 2014-01-31 12:22 - 00110776 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2014-04-13 00:51 - 2014-04-13 00:57 - 00000000 ____D () C:\ACADR14
2014-04-13 00:51 - 2014-04-13 00:51 - 00000879 _____ () C:\Users\Backstuberova\Desktop\acad - odkaz.lnk
2014-04-13 00:51 - 2014-04-13 00:51 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\WinRAR
2014-04-13 00:51 - 2014-04-13 00:51 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-04-13 00:51 - 2014-04-13 00:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-04-13 00:50 - 2014-04-13 00:51 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-04-13 00:50 - 2014-04-13 00:50 - 01769680 _____ () C:\Users\Backstuberova\Downloads\wrar501.exe
2014-04-13 00:47 - 2014-04-13 00:47 - 00001385 _____ () C:\Users\Backstuberova\Desktop\atm pictures - odkaz.lnk
2014-04-13 00:20 - 2014-05-08 20:14 - 00000000 ___RD () C:\Users\Backstuberova\Dropbox
2014-04-13 00:20 - 2014-04-30 11:02 - 00001014 _____ () C:\Users\Backstuberova\Desktop\Dropbox.lnk
2014-04-13 00:18 - 2014-04-13 00:18 - 00000000 __SHD () C:\Users\Backstuberova\AppData\Local\EmieUserList
2014-04-13 00:18 - 2014-04-13 00:18 - 00000000 __SHD () C:\Users\Backstuberova\AppData\Local\EmieSiteList
2014-04-13 00:17 - 2014-04-13 00:20 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\DropboxMaster
2014-04-13 00:16 - 2014-04-30 11:02 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-04-13 00:15 - 2014-05-08 20:13 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\Dropbox
2014-04-10 07:58 - 2014-04-10 07:58 - 00205312 _____ () C:\Users\Backstuberova\Downloads\stacks_image_1300_9.ppt
2014-04-10 07:39 - 2014-04-10 07:39 - 07476224 _____ () C:\Users\Backstuberova\Downloads\AschCenter-Scotland.ppt
2014-04-10 07:23 - 2014-04-10 07:23 - 00157696 _____ () C:\Users\Backstuberova\Downloads\guki 5 revised.ppt
2014-04-10 07:12 - 2014-04-10 07:12 - 00294400 _____ () C:\Users\Backstuberova\Downloads\Scottish-Parliament-1.ppt
2014-04-10 01:34 - 2014-03-06 11:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-10 01:34 - 2014-03-06 10:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-10 01:34 - 2014-03-06 10:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-10 01:34 - 2014-03-06 10:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-10 01:34 - 2014-03-06 10:53 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-10 01:34 - 2014-03-06 10:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-10 01:34 - 2014-03-06 10:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-10 01:34 - 2014-03-06 10:32 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-10 01:34 - 2014-03-06 10:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-10 01:34 - 2014-03-06 10:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-10 01:34 - 2014-03-06 10:28 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-10 01:34 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-10 01:34 - 2014-03-06 10:11 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-10 01:34 - 2014-03-06 10:09 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-10 01:34 - 2014-03-06 10:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-10 01:34 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-10 01:34 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-10 01:34 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-10 01:34 - 2014-03-06 09:56 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-10 01:34 - 2014-03-06 09:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-10 01:34 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-10 01:34 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-10 01:34 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-10 01:34 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-10 01:34 - 2014-03-06 09:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-10 01:34 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-10 01:34 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-10 01:34 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-10 01:34 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-10 01:34 - 2014-03-06 09:21 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-10 01:34 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-10 01:34 - 2014-03-06 09:11 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-10 01:34 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-10 01:34 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-10 01:34 - 2014-03-06 08:53 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-10 01:34 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-10 01:34 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-10 01:34 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-10 01:34 - 2014-03-06 08:22 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-10 01:34 - 2014-03-06 07:58 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-10 01:34 - 2014-03-06 07:50 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-10 01:34 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-10 01:34 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-10 01:34 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-09 01:55 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-09 01:55 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-09 01:55 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-04-09 01:55 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-04-09 01:55 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-04-09 01:55 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-04-09 01:55 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-09 01:55 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-04-09 01:55 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-04-09 01:55 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-04-09 01:55 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-04-09 01:55 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-09 01:55 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-09 01:55 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-09 01:55 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-09 01:55 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-04-09 01:55 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys

==================== One Month Modified Files and Folders =======

2014-05-09 16:08 - 2014-05-09 16:08 - 00022426 _____ () C:\Users\Backstuberova\Desktop\FRST.txt
2014-05-09 16:08 - 2014-05-09 16:07 - 00000000 ____D () C:\FRST
2014-05-09 16:07 - 2014-05-09 16:07 - 00029696 _____ () C:\Users\Backstuberova\AppData\Local\MSGBOX.EXE
2014-05-09 16:07 - 2014-05-09 16:07 - 00015327 _____ () C:\Users\Backstuberova\Desktop\LM.bat
2014-05-09 16:06 - 2014-05-09 16:06 - 02064384 _____ (Farbar) C:\Users\Backstuberova\Desktop\FRST64.exe
2014-05-09 16:06 - 2014-05-09 16:06 - 00112640 _____ (forum.viry.cz) C:\Users\Backstuberova\Desktop\FRSTLauncher.exe
2014-05-09 16:06 - 2014-01-17 17:59 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-09 16:05 - 2014-05-09 16:05 - 00112107 _____ (forum.viry.cz) C:\Users\Backstuberova\Downloads\VerzeOS.exe
2014-05-09 16:00 - 2011-10-17 13:40 - 00000466 _____ () C:\Windows\Tasks\SystemToolsDailyTest.job
2014-05-09 15:59 - 2011-10-17 13:40 - 00000528 _____ () C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
2014-05-09 15:54 - 2012-03-31 17:09 - 00000954 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425UA.job
2014-05-09 15:51 - 2012-03-31 17:09 - 00000902 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425Core.job
2014-05-09 15:51 - 2012-02-26 18:58 - 00000950 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-09 08:00 - 2012-11-29 14:19 - 00083382 _____ () C:\Windows\system32\perfh01B.dat
2014-05-09 08:00 - 2012-11-29 14:19 - 00029754 _____ () C:\Windows\system32\perfc01B.dat
2014-05-09 08:00 - 2009-07-14 07:13 - 00916944 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-09 07:57 - 2012-02-26 18:58 - 00000946 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-08 20:20 - 2009-07-14 06:45 - 00020704 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-08 20:20 - 2009-07-14 06:45 - 00020704 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-08 20:17 - 2011-05-28 04:12 - 01313256 _____ () C:\Windows\WindowsUpdate.log
2014-05-08 20:14 - 2014-04-13 00:20 - 00000000 ___RD () C:\Users\Backstuberova\Dropbox
2014-05-08 20:13 - 2014-04-13 00:15 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\Dropbox
2014-05-08 20:12 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-08 20:12 - 2009-07-14 06:51 - 00144236 _____ () C:\Windows\setupact.log
2014-05-07 03:06 - 2012-02-26 18:58 - 00003946 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-07 03:05 - 2012-02-26 18:58 - 00003694 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-06 22:56 - 2014-04-20 02:02 - 00000000 ____D () C:\Users\Backstuberova\Desktop\Na štátnice
2014-05-06 22:44 - 2014-05-06 22:44 - 00000076 _____ () C:\Users\Backstuberova\Downloads\link na matros zo skusky.txt
2014-05-05 23:06 - 2014-01-17 17:59 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-05 23:06 - 2012-05-17 13:04 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-05 23:06 - 2012-02-22 07:21 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-04 19:17 - 2014-05-04 19:17 - 00027648 _____ () C:\Users\Backstuberova\Downloads\55.xls
2014-05-02 18:41 - 2014-05-02 18:41 - 05995116 _____ () C:\Users\Backstuberova\Downloads\00840502.1ex
2014-05-02 18:41 - 2014-05-02 18:40 - 05165957 _____ () C:\Users\Backstuberova\Downloads\00740502.1ex
2014-05-02 18:40 - 2014-05-02 18:40 - 06210661 _____ () C:\Users\Backstuberova\Downloads\00640502.1ex
2014-05-02 18:37 - 2014-05-02 18:36 - 06695837 _____ () C:\Users\Backstuberova\Downloads\00440502.1ex
2014-05-02 18:36 - 2014-05-02 18:36 - 05801130 _____ () C:\Users\Backstuberova\Downloads\00340430.1ex
2014-05-02 18:33 - 2014-05-02 18:33 - 05536411 _____ () C:\Users\Backstuberova\Downloads\00240502.1ex
2014-05-02 18:33 - 2014-05-02 18:32 - 07121656 _____ () C:\Users\Backstuberova\Downloads\00140430.1ex
2014-04-30 11:02 - 2014-04-13 00:20 - 00001014 _____ () C:\Users\Backstuberova\Desktop\Dropbox.lnk
2014-04-30 11:02 - 2014-04-13 00:16 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-04-30 11:02 - 2013-06-27 09:04 - 00000000 ___RD () C:\Users\Backstuberova\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-30 03:45 - 2014-04-20 01:54 - 00188928 ____H () C:\Users\Backstuberova\Desktop\~WRL0001.tmp
2014-04-30 03:00 - 2014-04-30 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-29 16:01 - 2014-05-03 09:04 - 23547904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-29 15:40 - 2014-05-03 09:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-29 14:48 - 2014-05-03 09:04 - 17384448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-29 14:34 - 2014-05-03 09:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-28 19:37 - 2014-02-04 15:39 - 00002206 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-28 14:07 - 2014-04-28 14:07 - 00114249 _____ () C:\Users\Backstuberova\Downloads\diplomacia.zip
2014-04-28 14:06 - 2014-04-28 14:05 - 00000000 ____D () C:\Users\Backstuberova\Desktop\New Folder
2014-04-28 08:44 - 2014-01-17 18:00 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\Google
2014-04-27 14:38 - 2014-04-27 14:38 - 02143744 _____ () C:\Users\Backstuberova\Downloads\cviko_6.ppt
2014-04-27 05:36 - 2014-04-25 17:41 - 00000000 ____D () C:\Users\Backstuberova\Desktop\DP
2014-04-27 05:20 - 2013-06-27 09:03 - 00000000 ____D () C:\Users\Backstuberova\AppData\Local\VirtualStore
2014-04-27 05:16 - 2014-04-27 05:15 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\PDF Architect
2014-04-27 05:02 - 2014-04-27 05:02 - 00000000 ____D () C:\Users\Backstuberova\AppData\Local\PDFCreator
2014-04-26 17:56 - 2014-04-26 17:56 - 01988608 _____ () C:\Users\Backstuberova\Downloads\RonMueck-Sculpteurhyperre_aliste.pps
2014-04-25 12:21 - 2014-04-24 20:50 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\uTorrent
2014-04-24 20:51 - 2014-04-24 20:51 - 00000832 _____ () C:\Users\Backstuberova\Desktop\µTorrent.lnk
2014-04-24 20:51 - 2014-04-24 20:51 - 00000000 ____D () C:\Users\Backstuberova\Downloads\Ain't No Trip To Cleveland (Live)
2014-04-24 15:28 - 2014-04-24 15:27 - 00000000 ____D () C:\Users\Backstuberova\Desktop\DP-priebeh
2014-04-17 09:50 - 2013-06-27 10:03 - 00000000 ____D () C:\Users\Backstuberova\AppData\Local\Adobe
2014-04-17 09:23 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-17 01:56 - 2014-04-17 01:56 - 01568167 _____ () C:\Users\Backstuberova\Downloads\PREZ_2012_PDS_II_1.pptx
2014-04-16 11:00 - 2014-01-28 14:03 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\TeamViewer
2014-04-16 11:00 - 2014-01-28 13:59 - 00001113 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-04-16 11:00 - 2014-01-28 13:59 - 00001101 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-04-16 10:56 - 2014-04-15 21:09 - 00000000 ____D () C:\Users\Backstuberova\Desktop\Markiza2014
2014-04-14 15:29 - 2011-10-11 03:55 - 00222480 _____ () C:\Windows\PFRO.log
2014-04-14 04:24 - 2014-04-30 02:10 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-14 04:19 - 2014-04-30 02:10 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-14 01:00 - 2014-04-14 01:00 - 00001008 _____ () C:\Users\Backstuberova\Desktop\PDF Architect.lnk
2014-04-14 00:59 - 2014-04-14 00:59 - 00000847 _____ () C:\Users\Public\Desktop\PDFCreator.lnk
2014-04-14 00:59 - 2014-04-14 00:59 - 00000000 ____D () C:\Users\Backstuberova\Documents\PDF Architect Files
2014-04-14 00:59 - 2014-04-14 00:59 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\pdfforge
2014-04-14 00:59 - 2014-04-14 00:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2014-04-14 00:59 - 2014-04-14 00:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect
2014-04-14 00:59 - 2014-04-14 00:59 - 00000000 ____D () C:\Program Files\PDFCreator
2014-04-14 00:59 - 2014-04-14 00:59 - 00000000 ____D () C:\Program Files (x86)\PDF Architect
2014-04-13 00:57 - 2014-04-13 00:51 - 00000000 ____D () C:\ACADR14
2014-04-13 00:51 - 2014-04-13 00:51 - 00000879 _____ () C:\Users\Backstuberova\Desktop\acad - odkaz.lnk
2014-04-13 00:51 - 2014-04-13 00:51 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\WinRAR
2014-04-13 00:51 - 2014-04-13 00:51 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-04-13 00:51 - 2014-04-13 00:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-04-13 00:51 - 2014-04-13 00:50 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-04-13 00:50 - 2014-04-13 00:50 - 01769680 _____ () C:\Users\Backstuberova\Downloads\wrar501.exe
2014-04-13 00:47 - 2014-04-13 00:47 - 00001385 _____ () C:\Users\Backstuberova\Desktop\atm pictures - odkaz.lnk
2014-04-13 00:20 - 2014-04-13 00:17 - 00000000 ____D () C:\Users\Backstuberova\AppData\Roaming\DropboxMaster
2014-04-13 00:20 - 2013-06-27 09:03 - 00000000 ____D () C:\Users\Backstuberova
2014-04-13 00:18 - 2014-04-13 00:18 - 00000000 __SHD () C:\Users\Backstuberova\AppData\Local\EmieUserList
2014-04-13 00:18 - 2014-04-13 00:18 - 00000000 __SHD () C:\Users\Backstuberova\AppData\Local\EmieSiteList
2014-04-10 07:58 - 2014-04-10 07:58 - 00205312 _____ () C:\Users\Backstuberova\Downloads\stacks_image_1300_9.ppt
2014-04-10 07:39 - 2014-04-10 07:39 - 07476224 _____ () C:\Users\Backstuberova\Downloads\AschCenter-Scotland.ppt
2014-04-10 07:23 - 2014-04-10 07:23 - 00157696 _____ () C:\Users\Backstuberova\Downloads\guki 5 revised.ppt
2014-04-10 07:12 - 2014-04-10 07:12 - 00294400 _____ () C:\Users\Backstuberova\Downloads\Scottish-Parliament-1.ppt
2014-04-10 01:45 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2014-04-10 01:45 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-04-10 01:45 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-09 03:04 - 2011-10-11 10:33 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-09 03:03 - 2013-07-19 23:31 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-09 03:01 - 2011-10-10 13:41 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Some content of TEMP:
====================
C:\Users\Administrator\AppData\Local\Temp\GoogleToolbarInstaller_en32_signed.exe
C:\Users\Administrator\AppData\Local\Temp\SIMEEIInstaller.exe
C:\Users\Administrator\AppData\Local\Temp\{FD37F9B9-9AD9-4F4B-9232-B8E8A3E30D72}-27.0.1453.116_chrome_installer.exe
C:\Users\Backstuberova\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmppnzumq.dll
C:\Users\Backstuberova\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Backstuberova\AppData\Local\Temp\ose00001.exe
C:\Users\spravca\AppData\Local\Temp\ose00000.exe
C:\Users\ZadoriT\AppData\Local\Temp\FlashPlayerUpdate.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-29 14:49

==================== End Of Log ============================
Přílohy
Addition.rar
(9.8 KiB) Staženo 51 x
Spytat sa na nieco, co nevies, znamena byt hlupakom na 5 minut, ale nespytat sa, znamena byt hlupakom po cely zivot.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119429
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: to Rudy: prosba o kontrolu laptopu

#2 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
C:\Program Files\McAfee Security Scan
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {0AFF4876-44A7-4646-9B58-C49629E329AA} URL =
SearchScopes: HKCU - {AF8DF256-41C9-4B35-979A-AA503A23D51F} URL = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=en_EU&apn_ptnrs=S3&apn_dtid=YYYYYYYYSK&apn_uid=f4df3563-40e4-41bc-8de6-9b544a511d47&apn_sauid=227D0305-A97E-4B8F-A7F1-ADBC9761B63C
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
FF Keyword.URL: hxxp://static.flipora.com/enhancedsearc ... &tv=v64&q=
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
C:\Users\Backstuberova\AppData\Roaming\pdfforge
C:\Windows\Tasks\Adobe Flash Player Updater.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425UA.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425Core.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Administrator\AppData\Local\Temp
C:\Users\spravca\AppData\Local\Temp
C:\Users\ZadoriT\AppData\Local\Temp
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425Core.job => C:\Users\ZadoriT\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425UA.job => C:\Users\ZadoriT\AppData\Local\Google\Update\GoogleUpdate.exe
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Fanfa
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 34
Registrován: 18 led 2014 13:35

Re: to Rudy: prosba o kontrolu laptopu

#3 Příspěvek od Fanfa »

Nech sa paci, tu je log...

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 09-05-2014 01
Ran by Backstuberova at 2014-05-09 21:28:51 Run:1
Running from C:\Users\Backstuberova\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
C:\Program Files\McAfee Security Scan
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {0AFF4876-44A7-4646-9B58-C49629E329AA} URL =
SearchScopes: HKCU - {AF8DF256-41C9-4B35-979A-AA503A23D51F} URL = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=en_EU&apn_ptnrs=S3&apn_dtid=YYYYYYYYSK&apn_uid=f4df3563-40e4-41bc-8de6-9b544a511d47&apn_sauid=227D0305-A97E-4B8F-A7F1-ADBC9761B63C
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
FF Keyword.URL: hxxp://static.flipora.com/enhancedsearc ... &tv=v64&q=
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
C:\Users\Backstuberova\AppData\Roaming\pdfforge
C:\Windows\Tasks\Adobe Flash Player Updater.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425UA.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425Core.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Administrator\AppData\Local\Temp
C:\Users\spravca\AppData\Local\Temp
C:\Users\ZadoriT\AppData\Local\Temp
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425Core.job => C:\Users\ZadoriT\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425UA.job => C:\Users\ZadoriT\AppData\Local\Google\Update\GoogleUpdate.exe
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk => Moved successfully.
C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe => Moved successfully.
C:\Program Files\McAfee Security Scan => Moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0AFF4876-44A7-4646-9B58-C49629E329AA} => Key deleted successfully.
HKCR\CLSID\{0AFF4876-44A7-4646-9B58-C49629E329AA} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AF8DF256-41C9-4B35-979A-AA503A23D51F} => Key deleted successfully.
HKCR\CLSID\{AF8DF256-41C9-4B35-979A-AA503A23D51F} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => Key deleted successfully.
HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => Key deleted successfully.
C:\Program Files (x86)\Google\Google Toolbar => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => Value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => Key deleted successfully.
Firefox Keyword.URL deleted successfully.
HKLM\Software\MozillaPlugins\FF Plugin: @microsoft.com/GENUINE - disabled No File => Key not found.
"FF Plugin: @microsoft.com/GENUINE - disabled No File" => not found.
HKLM\Software\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin => Key deleted successfully.
C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll not found.
HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File => Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
C:\Users\Backstuberova\AppData\Roaming\pdfforge => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425UA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
C:\Users\Administrator\AppData\Local\Temp => Moved successfully.
C:\Users\spravca\AppData\Local\Temp => Moved successfully.
C:\Users\ZadoriT\AppData\Local\Temp => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job not found.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425Core.job not found.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1454471165-682003330-1425UA.job not found.

==== End of Fixlog ====
Spytat sa na nieco, co nevies, znamena byt hlupakom na 5 minut, ale nespytat sa, znamena byt hlupakom po cely zivot.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119429
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: to Rudy: prosba o kontrolu laptopu

#4 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Fanfa
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 34
Registrován: 18 led 2014 13:35

Re: to Rudy: prosba o kontrolu laptopu

#5 Příspěvek od Fanfa »

Myslim, ze ano, uz len internet sa zrychlil :happy: Ja len dufam, ze v tomto laptope nebolo nic takeho, co by zbieralo info o prihlasovacich udajov do internet banking :o

Rudy, ste jednicka, velmi pekne dakujem :worship:
Spytat sa na nieco, co nevies, znamena byt hlupakom na 5 minut, ale nespytat sa, znamena byt hlupakom po cely zivot.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119429
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: to Rudy: prosba o kontrolu laptopu

#6 Příspěvek od Rudy »

Byly tam AdWary a zbytečnosti (hlavně toolbary), které zbytečně ubírají systémové prostředky a tím zpomalují chod. Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Fanfa
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 34
Registrován: 18 led 2014 13:35

Re: to Rudy: prosba o kontrolu laptopu

#7 Příspěvek od Fanfa »

Ulavilo sa mi! Este raz, velmi pekne dakujem :wub:
Spytat sa na nieco, co nevies, znamena byt hlupakom na 5 minut, ale nespytat sa, znamena byt hlupakom po cely zivot.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119429
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: to Rudy: prosba o kontrolu laptopu

#8 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“