Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Reklamy

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
gint
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 24 čer 2014 14:55

Reklamy

#1 Příspěvek od gint »

cus.. potreboval bych pomoct , zacaly mi vyskakovat reklamy a pravy horni roh prohlizece se s reklamou jako by ohyba... aa celkem to i spomaluje prohlizec. todlle mi vyhodil rsit : Logfile of random's system information tool 1.10 (written by random/random)
Run by Gint at 2014-06-24 15:53:29
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 126 GB (42%) free of 300 GB
Total RAM: 3767 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:53:31, on 24.6.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Gint\AppData\Local\Popajar\UpdateChecker\UpdateCheckerApp.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Gint\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
C:\Users\Gint\Downloads\RSIT.exe
C:\Program Files (x86)\trend micro\Gint.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=16194
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (file missing)
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Search-NewTab - {0D04B184-724F-D281-6999-7994EDD3202D} - C:\ProgramData\Search-NewTab\510a7477e17b1.dll
O2 - BHO: CrossriderApp0034362 - {11111111-1111-1111-1111-110311431162} - C:\Program Files (x86)\HDvid Codec V1\HDvid Codec V1-bho.dll
O2 - BHO: Search-NewTab - {2CBA3175-D78E-F67F-4E66-E719C95ADFAB} - C:\ProgramData\Search-NewTab\51111c242a66a.dll
O2 - BHO: MediaViewV1alpha762 - {71457232-de12-461f-be94-10ef830bc634} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ie\MediaViewV1alpha762.dll
O2 - BHO: MediaWatchV1home3348 - {7cfae66c-796e-4095-a458-f6fa6e73feb5} - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ie\MediaWatchV1home3348.dll
O2 - BHO: MediaViewV1alpha3624 - {88eb4867-77d3-431e-b109-8de5d205accd} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ie\MediaViewV1alpha3624.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.1.7.644\AVG Secure Search_toolbar.dll
O2 - BHO: GreyGray - {ae60e6ed-49dd-4099-8b5e-386a4908d5d5} - C:\Program Files (x86)\GreyGray\GreyGrayBHO.dll (file missing)
O2 - BHO: MediaBuzzV1mode908 - {ba15f64e-2e1b-45ea-8a6a-312584a20e68} - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ie\MediaBuzzV1mode908.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (file missing)
O2 - BHO: MediaWatchV1home894 - {dc7aa6c5-72d3-4379-98cd-6301144686e6} - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ie\MediaWatchV1home894.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.1.7.644\AVG Secure Search_toolbar.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (file missing)
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Gint\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Gint\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [UpdateChecker] C:\Users\Gint\AppData\Local\Popajar\UpdateChecker\UpdateCheckerApp.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Battle.net] "C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe" --autostarted
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Xfire.lnk = C:\Program Files (x86)\Xfire2\Xfire.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.7\ViProtocol.dll
O20 - AppInit_DLLs: ,C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Datamngr Coordinator (DatamngrCoordinator) - Unknown owner - C:\Program Files (x86)\Music Toolbar\Datamngr\DatamngrCoordinator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Network HTTP Support Service (NetHttpService) - Unknown owner - C:\Windows\SysWOW64\nethtsrv.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater18.1.7 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.7\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12085 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AmiUpdXp.job - C:\Users\Gint\AppData\Local\SwvUpdater\Updater.exe
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job - C:\Windows\TEMP\{4CCB59E1-FFC0-47BF-B639-59BDFF6091C7}.exe --uninstall=1
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job - C:\Windows\TEMP\{FEFB953A-F196-4CB4-A44F-31E64B2BA49C}.exe --uninstall=1
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-31431094-2971078360-1932619591-1000Core.job - C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-31431094-2971078360-1932619591-1000UA.job - C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\HDvid Codec V1-codedownloader.job - C:\Program Files (x86)\HDvid Codec V1\HDvid Codec V1-codedownloader.exe /reinstallapp /agentregpath='HDvid Codec V1' /appid=34362 /srcid='000197' /subid='0' /zdata='0' /bic=996263B61C694FA9A06AE70932CF4436IE /verifier=c9e330eb0d9a5f80b0619a8cdb3f2f02 /installerversion=1_27_153 /installerfullversion=1.27.153.8 /installationtime=1379164281 /statsdomain=http://stats.datasrvstats.com /errorsdomain=http://errors.datasrvstats.com /codedownloaddomain=http://cr.install-daddy.com /allusers /externallog=''
C:\Windows\tasks\HDvid Codec V1-enabler.job - C:\Program Files (x86)\HDvid Codec V1\HDvid Codec V1-enabler.exe /enablebho /agentregpath='HDvid Codec V1' /appid=34362 /srcid='000197' /subid='0' /zdata='0' /bic=996263B61C694FA9A06AE70932CF4436IE /verifier=c9e330eb0d9a5f80b0619a8cdb3f2f02 /installerversion=1_27_153 /installationtime=1379164281 /statsdomain=http://stats.datasrvstats.com /errorsdomain=http://errors.datasrvstats.com /bhoguid=11111111-1111-1111-1111-110311431162 /allusers /externallog=''
C:\Windows\tasks\HDvid Codec V1-updater.job - C:\Program Files (x86)\HDvid Codec V1\HDvid Codec V1-updater.exe /runupdater /agentregpath='HDvid Codec V1' /appid=34362 /srcid='000197' /subid='0' /zdata='0' /bic=996263B61C694FA9A06AE70932CF4436IE /verifier=c9e330eb0d9a5f80b0619a8cdb3f2f02 /installerversion=1_27_153 /installationtime=1379164281 /statsdomain=http://stats.datasrvstats.com /errorsdomain=http://errors.datasrvstats.com /geoserviceurl=http://ipgeoapi.com/ /updatejsondomain=http://update.datasrvstats.com /updaterversion=1 /externallog=''

=========Mozilla firefox=========

ProfilePath - C:\Users\Gint\AppData\Roaming\Mozilla\Firefox\Profiles\ou5qpeil.default

"avg@toolbar"=C:\ProgramData\AVG Secure Search\FireFoxExt\18.0.5.292
"ext@VideoPlayerV3beta1056.net"=C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta1056\ff
"ext@MediaViewV1alpha762.net"=C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ff
"ext@MediaViewV1alpha3624.net"=C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ff
"ext@MediaWatchV1home894.net"=C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ff
"ext@MediaWatchV1home3348.net"=C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ff
"ext@MediaBuzzV1mode908.net"=C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ff


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.7\\npsitesafety.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0D04B184-724F-D281-6999-7994EDD3202D}]
Search-NewTab - C:\ProgramData\Search-NewTab\510a7477e17b1.dll [2013-01-31 120832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311431162}]
HDvid Codec V1 - C:\Program Files (x86)\HDvid Codec V1\HDvid Codec V1-bho.dll [2013-09-14 748032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2CBA3175-D78E-F67F-4E66-E719C95ADFAB}]
Search-NewTab - C:\ProgramData\Search-NewTab\51111c242a66a.dll [2013-02-05 120832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{71457232-de12-461f-be94-10ef830bc634}]
Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ie\MediaViewV1alpha762.dll [2014-02-26 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7cfae66c-796e-4095-a458-f6fa6e73feb5}]
Media Watch - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ie\MediaWatchV1home3348.dll [2014-03-20 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88eb4867-77d3-431e-b109-8de5d205accd}]
Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ie\MediaViewV1alpha3624.dll [2014-02-27 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\18.1.7.644\AVG Secure Search_toolbar.dll [2014-06-22 3584024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ae60e6ed-49dd-4099-8b5e-386a4908d5d5}]
GreyGray - C:\Program Files (x86)\GreyGray\GreyGrayBHO.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ba15f64e-2e1b-45ea-8a6a-312584a20e68}]
Media Buzz - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ie\MediaBuzzV1mode908.dll [2014-04-23 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dc7aa6c5-72d3-4379-98cd-6301144686e6}]
Media Watch - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ie\MediaWatchV1home894.dll [2014-03-20 87040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\18.1.7.644\AVG Secure Search_toolbar.dll [2014-06-22 3584024]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-04-13 284696]
"vProt"=C:\Program Files (x86)\AVG Secure Search\vprot.exe [2014-06-22 2571288]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-03-09 2769336]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate []
"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe []
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-04-17 3671872]
"Facebook Update"=C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-24 138096]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe /MINIMIZED []
"cz.seznam.software.autoupdate"=C:\Users\Gint\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Gint\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
"UpdateChecker"=C:\Users\Gint\AppData\Local\Popajar\UpdateChecker\UpdateCheckerApp.exe [2014-01-16 7168]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-05-08 21446272]
"Battle.net"=C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe [2014-06-11 2907184]

C:\Users\Gint\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Xfire.lnk - C:\Program Files (x86)\Xfire2\Xfire.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" ,C:\Windows\SysWOW64\nvinit.dll"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe]
"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"msacm.l3codecp"=l3codecp.acm
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-06-24 15:39:41 ----A---- C:\UsbFix [Clean 1] GINT-PC.txt
2014-06-24 15:38:20 ----D---- C:\UsbFix
2014-06-24 15:29:49 ----D---- C:\rsit
2014-06-24 15:29:49 ----D---- C:\Program Files (x86)\trend micro
2014-06-23 19:23:45 ----A---- C:\awh1D30.tmp
2014-06-23 19:08:06 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-22 22:41:18 ----A---- C:\awh367B.tmp
2014-06-20 17:18:59 ----A---- C:\awhBA0B.tmp
2014-06-19 22:12:11 ----A---- C:\awhB029.tmp
2014-06-19 22:07:09 ----D---- C:\Program Files (x86)\Common Files\Config
2014-06-17 11:53:40 ----A---- C:\Windows\SysWOW64\netupdsrv.exe
2014-06-17 11:53:30 ----A---- C:\Windows\SysWOW64\installd.exe
2014-06-17 11:53:18 ----A---- C:\Windows\SysWOW64\nethtsrv.exe
2014-06-17 11:53:08 ----A---- C:\Windows\SysWOW64\hfnapi.dll
2014-06-17 11:52:58 ----A---- C:\Windows\SysWOW64\hfpapi.dll
2014-06-15 12:23:22 ----D---- C:\Program Files (x86)\Common Files\Skype
2014-05-30 15:30:00 ----D---- C:\Users\Gint\AppData\Roaming\WizardWars
2014-05-30 15:29:55 ----D---- C:\Program Files (x86)\AGEIA Technologies

======List of files/folders modified in the last 1 month======

2014-06-24 15:53:30 ----D---- C:\Windows\Temp
2014-06-24 15:48:40 ----D---- C:\Users\Gint\AppData\Roaming\Seznam.cz
2014-06-24 15:44:33 ----D---- C:\Users\Gint\AppData\Roaming\Skype
2014-06-24 15:43:26 ----A---- C:\Windows\SysWOW64\log.txt
2014-06-24 15:36:11 ----D---- C:\Windows\Prefetch
2014-06-24 15:35:45 ----RD---- C:\Program Files
2014-06-24 15:35:45 ----HD---- C:\ProgramData
2014-06-24 15:35:04 ----SHD---- C:\Windows\Installer
2014-06-24 15:34:36 ----SHD---- C:\System Volume Information
2014-06-24 15:33:02 ----RD---- C:\Program Files (x86)
2014-06-23 19:25:38 ----D---- C:\Program Files (x86)\RichMediaViewV1
2014-06-23 19:13:57 ----RD---- C:\Users
2014-06-23 19:11:20 ----D---- C:\Program Files (x86)\Google
2014-06-23 19:11:14 ----D---- C:\Windows\Tasks
2014-06-23 19:09:02 ----D---- C:\Users\Gint\AppData\Roaming\Mozilla
2014-06-23 19:08:12 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-06-23 18:50:07 ----D---- C:\Program Files (x86)\Steam
2014-06-22 22:03:18 ----D---- C:\ProgramData\AVG Secure Search
2014-06-22 22:03:15 ----D---- C:\Program Files (x86)\AVG Secure Search
2014-06-22 14:46:47 ----D---- C:\ProgramData\Browse2save
2014-06-22 14:46:07 ----D---- C:\Windows\SysWOW64
2014-06-19 22:07:09 ----D---- C:\Program Files (x86)\Common Files
2014-06-15 12:23:26 ----D---- C:\ProgramData\Skype
2014-06-15 12:23:22 ----RD---- C:\Program Files (x86)\Skype
2014-06-14 13:04:11 ----D---- C:\Program Files (x86)\Diablo III
2014-06-14 13:02:45 ----D---- C:\Program Files (x86)\Battle.net
2014-06-02 21:21:34 ----D---- C:\Users\Gint\AppData\Roaming\vlc
2014-05-30 15:29:01 ----RSD---- C:\Windows\assembly
2014-05-30 15:27:33 ----D---- C:\Windows\System32
2014-05-30 15:19:16 ----D---- C:\Program Files (x86)\Common Files\Steam
2014-05-29 00:26:55 ----D---- C:\Program Files (x86)\Hearthstone
2014-05-28 11:46:19 ----D---- C:\Windows\inf
2014-05-26 11:11:33 ----D---- C:\Users\Gint\AppData\Roaming\DAEMON Tools Lite
2014-05-26 10:35:02 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R1 aswRdr;aswRdr; C:\Windows\SysWOW64\drivers\aswRdr.sys []
R1 aswSP;aswSP; C:\Windows\SysWOW64\drivers\aswSP.sys []
R1 aswTdi;avast! Network Shield Support; C:\Windows\SysWOW64\drivers\aswTdi.sys []
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys []
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys []
R1 nethfdrv;nethfdrv; \??\C:\Windows\system32\drivers\nethfdrv.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 aswFsBlk;aswFsBlk; C:\Windows\SysWOW64\drivers\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys []
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys []
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys []
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys []
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys []
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys []
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys []
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys []
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys []
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys []
S3 XFDriver64;XFDriver64; \??\C:\Program Files (x86)\Xfire2\XFDriver64.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-03-09 40384]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-18 268824]
R2 NetHttpService;Network HTTP Support Service; C:\Windows\SysWOW64\nethtsrv.exe [2014-06-17 180224]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-02-05 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-02-05 16941856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
R2 vToolbarUpdater18.1.7;vToolbarUpdater18.1.7; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.7\ToolbarUpdater.exe [2014-06-22 1813528]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 DatamngrCoordinator;Datamngr Coordinator; C:\Program Files (x86)\Music Toolbar\Datamngr\DatamngrCoordinator.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14 257712]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-03-09 40384]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-03-09 40384]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-05-29 543424]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 ServiceUpdater;Network Support Service Updater; C:\Windows\SysWOW64\netupdsrv.exe [2014-06-17 162304]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Reklamy

#2 Příspěvek od vyosek »

Zdravim :)

:arrow: Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
  • Ulozte nejlepe na plochu
  • Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
  • Probehne vytvoreni zalohy a nasledne prohledavani
  • Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte
:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
gint
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 24 čer 2014 14:55

Re: Reklamy

#3 Příspěvek od gint »

tu jsou vypisy :

# AdwCleaner v3.213 - Report created 24/06/2014 at 16:42:24
# Updated 23/06/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Gint - GINT-PC
# Running from : C:\Users\Gint\Downloads\adwcleaner_3.213.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : DatamngrCoordinator
Service Deleted : vToolbarUpdater18.1.7

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG Secure Search
[#] Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\Browse2Save
[#] Folder Deleted : C:\ProgramData\Browser Manager
[#] Folder Deleted : C:\ProgramData\BrowserProtect
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search-NewTab
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\BrowseToSave
Folder Deleted : C:\Program Files (x86)\HDvidCodec.com
Folder Deleted : C:\Program Files (x86)\MediaViewV1
Folder Deleted : C:\Program Files (x86)\MediaWatchV1
Folder Deleted : C:\Program Files (x86)\RichMediaViewV1
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Users\Gint\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Gint\AppData\Local\genienext
Folder Deleted : C:\Users\Gint\AppData\Local\iLivid
Folder Deleted : C:\Users\Gint\AppData\Local\jZip
Folder Deleted : C:\Users\Gint\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Gint\AppData\Local\Popajar
Folder Deleted : C:\Users\Gint\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Gint\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Gint\AppData\Local\Temp\jZip
Folder Deleted : C:\Users\Gint\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\Gint\AppData\LocalLow\Browse2Save
Folder Deleted : C:\Users\Gint\AppData\Roaming\NCdownloader
Folder Deleted : C:\Users\Gint\Documents\Mobogenie
Folder Deleted : C:\Users\Guest\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Guest\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Guest\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjbbjfdilbioabojmcplalojlmdngbjl
Folder Deleted : C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
File Deleted : C:\Users\Gint\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dnllcmllkjofnojidnaknldfehfhehoo
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\fjbbjfdilbioabojmcplalojlmdngbjl
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\nhogbcndagiknbfomjgdeghehkljalhi
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [UpdateChecker]
Key Deleted : HKLM\SOFTWARE\Classes\AmiBs.Installer
Key Deleted : HKLM\SOFTWARE\Classes\AmiBs.Installer.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_156f8a5f
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_4e24eecb
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SP_f2a323db
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{14F35FFC-522A-4DD1-A07E-6B8B65C6891E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A6FEED89-3BCD-4D19-9DC2-3E613A80A2A4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0D04B184-724F-D281-6999-7994EDD3202D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2CBA3175-D78E-F67F-4E66-E719C95ADFAB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1C1356DA-1E98-4810-A9F6-18D89BD1C0C0}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{AC329328-7EC4-4C34-B672-0A2B90CB9B00}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0D04B184-724F-D281-6999-7994EDD3202D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2CBA3175-D78E-F67F-4E66-E719C95ADFAB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0D04B184-724F-D281-6999-7994EDD3202D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2CBA3175-D78E-F67F-4E66-E719C95ADFAB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0D04B184-724F-D281-6999-7994EDD3202D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2CBA3175-D78E-F67F-4E66-E719C95ADFAB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3614D305-2DBB-4991-9297-750DD60FFC73}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2102}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\jZip
Key Deleted : HKCU\Software\Popajar
Key Deleted : HKCU\Software\SmileysWeLove
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\HDvid Codec V1
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\MediaBuzzV1
Key Deleted : HKLM\Software\MediaViewV1
Key Deleted : HKLM\Software\MediaWatchV1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16576

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v30.0 (cs)

[ File : C:\Users\Gint\AppData\Roaming\Mozilla\Firefox\Profiles\ou5qpeil.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Extension] : bopakagnckmlgajfccecajhnimjiiedh
Deleted [Extension] : fjbbjfdilbioabojmcplalojlmdngbjl
Deleted [Extension] : ndibdjnfmopecpmkdieinmbadjfpblof

*************************

AdwCleaner[R0].txt - [14498 octets] - [24/06/2014 16:41:47]
AdwCleaner[S0].txt - [12262 octets] - [24/06/2014 16:42:24]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [12323 octets] ##########


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Gint on Łt 24.06.2014 at 16:25:38,93
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00000000-6E41-4FD3-8538-502F5495E5FC}
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440}



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\genericasktoolbar.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\scripthelper.exe
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\viprotocol.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\hdvid codec v1
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\sprotector
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\genericasktoolbar.toolbarwnd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\genericasktoolbar.toolbarwnd.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\protocols\handler\viprotocol
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\s
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\scripthelper.scripthelperapi
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\scripthelper.scripthelperapi.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\viprotocol.viprotocolole
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\viprotocol.viprotocolole.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21D59046-8568-4E51-BD32-79BD751DCCE6}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{499B15AC-881F-4224-9373-E2AF2D95108B}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C2A9ED0-361D-4678-BBB6-FA668315952D}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{82FE22F6-6581-4ED3-B962-D0114CFC8F04}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A178FE10-2662-4286-93AB-0477A425A351}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\optimizerpro_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\optimizerpro_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\1clickdownload
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\hdvid codec v1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{99c91fc5-db5b-4aa0-bb70-5d89c5a4df96}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{c670dcae-e392-aa32-6f42-143c7fc4bdfd}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\sp global
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\sprotector
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0034362.BHO
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0034362.BHO.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0034362.Sandbox
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0034362.Sandbox.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{11111111-1111-1111-1111-110311431162}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220322432262}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550355435562}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660366436662}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440344434462}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{11111111-1111-1111-1111-110311431162}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{22222222-2222-2222-2222-220322432262}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{55555555-5555-5555-5555-550355435562}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660366436662}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440344434462}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0034362.BHO
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0034362.BHO.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0034362.Sandbox
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0034362.Sandbox.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550355435562}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660366436662}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440344434462}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110311431162}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311431162}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_hamachi (2)_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SoftonicDownloader_for_hamachi (2)_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311431162}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{55555555-5555-5555-5555-550355435562}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660366436662}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440344434462}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\TaskScheduler_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_hamachi (2)_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SoftonicDownloader_for_hamachi (2)_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311431162}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{503FC3A6-7116-4D27-8690-FF8139AD162F}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{5F5DB594-A797-4275-8AD0-E8DD03E1C898}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2102}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2102}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\appid\{9b0cb95c-933a-4b8c-b6d4-edcd19a43874}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\typelib\{2996f0e7-292b-4cae-893f-47b8b1c05b56}"



~~~ Files

Successfully deleted: [File] "C:\Windows\Tasks\hdvid codec v1-codedownloader.job"
Successfully deleted: [File] "C:\Windows\Tasks\hdvid codec v1-enabler.job"
Successfully deleted: [File] "C:\Windows\Tasks\hdvid codec v1-updater.job"
Successfully deleted: [File] C:\Windows\Tasks\amiupdxp.job



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\ProgramData\rightclick"
Successfully deleted: [Folder] "C:\ProgramData\search-newtab"
Successfully deleted: [Folder] "C:\Users\Gint\AppData\Roaming\newnext.me"
Successfully deleted: [Folder] "C:\Users\Gint\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Users\Gint\appdata\locallow\datamngr"
Successfully deleted: [Folder] "C:\Users\Gint\appdata\locallow\saveas"
Successfully deleted: [Folder] "C:\Users\Gint\appdata\locallow\search-newtab"
Successfully deleted: [Folder] "C:\Users\Gint\appdata\locallow\searchresultstb"
Successfully deleted: [Folder] "C:\Program Files (x86)\hdvid codec v1"
Successfully deleted: [Folder] "C:\Program Files (x86)\videoplayerv3"
Successfully deleted: [Folder] "C:\Program Files (x86)\websearch"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\saveas"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Folder] "C:\ProgramData\ask"



~~~ FireFox

Emptied folder: C:\Users\Gint\AppData\Roaming\mozilla\firefox\profiles\ou5qpeil.default\minidumps [2 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 24.06.2014 at 16:40:05,90
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Reklamy

#4 Příspěvek od vyosek »

:arrow: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do okna vlozte skript nize

  • Kód: Vybrat vše

    autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;
  • Nasledne kliknete na Run Script
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
gint
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 24 čer 2014 14:55

Re: Reklamy

#5 Příspěvek od gint »

todle mi to hazi kdyz chci program spustit.
Přílohy
chyba.png
chyba.png (37.76 KiB) Zobrazeno 669 x
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Reklamy

#6 Příspěvek od vyosek »

Dejte tedy log z FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
gint
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 24 čer 2014 14:55

Re: Reklamy

#7 Příspěvek od gint »

log z frst :
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-06-2014
Ran by Gint (administrator) on GINT-PC on 24-06-2014 17:13:31
Running from C:\Users\Gint\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ALWIL Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Windows\SysWOW64\nethtsrv.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Users\Gint\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(ALWIL Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
() C:\Users\Gint\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(forum.viry.cz) C:\Users\Gint\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1179576 2014-02-05] (NVIDIA Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-04-13] (Intel Corporation)
HKLM-x32\...\Run: [avast5] => C:\Program Files\Alwil Software\Avast5\avastUI.exe [2769336 2010-03-09] (ALWIL Software)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2013-05-24] (Microsoft Corporation)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [Facebook Update] => C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-10-24] (Facebook Inc.)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [uTorrent] => "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Gint\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Gint\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe [2907184 2014-06-11] (Blizzard Entertainment)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\MountPoints2: {989b844d-da24-11e1-b254-c2fc34f26ef5} - F:\Setup.exe
AppInit_DLLs: ,C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174296 2014-02-08] (NVIDIA Corporation)
AppInit_DLLs-x32: ,C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [148528 2014-02-08] (NVIDIA Corporation)
Startup: C:\Users\Gint\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk
ShortcutTarget: Xfire.lnk -> C:\Program Files (x86)\Xfire2\Xfire.exe (No File)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=16194
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {363DC608-1CB8-46CC-857B-3DEDE912DC3E} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKCU - {556E8C42-4985-4158-864F-5C5B81E7F389} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {6A158892-8272-4E76-92A4-400EE9CC1009} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
SearchScopes: HKCU - {71F46F1D-3CAA-47E7-99F3-3D2EB787E94D} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKCU - {976B8A6D-07EE-4640-A21C-C2337F95F84A} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKCU - {A1A03280-1D74-48C9-98D1-ABFF674D48CA} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
SearchScopes: HKCU - {C0AD9274-C6EA-4377-A08C-8D9C8EF07A86} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {E4078067-EC64-4349-B9EB-C13662840E85} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Media View - {71457232-de12-461f-be94-10ef830bc634} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ie\MediaViewV1alpha762.dll No File
BHO-x32: Media Watch - {7cfae66c-796e-4095-a458-f6fa6e73feb5} - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ie\MediaWatchV1home3348.dll No File
BHO-x32: Media View - {88eb4867-77d3-431e-b109-8de5d205accd} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ie\MediaViewV1alpha3624.dll No File
BHO-x32: Media Buzz - {ba15f64e-2e1b-45ea-8a6a-312584a20e68} - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ie\MediaBuzzV1mode908.dll ()
BHO-x32: Media Watch - {dc7aa6c5-72d3-4379-98cd-6301144686e6} - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ie\MediaWatchV1home894.dll No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Gint\AppData\Roaming\Mozilla\Firefox\Profiles\ou5qpeil.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Gint\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Gint\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Adblock Plus - C:\Users\Gint\AppData\Roaming\Mozilla\Firefox\Profiles\ou5qpeil.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-23]
FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta1056.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta1056\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha762.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha3624.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaWatchV1home894.net] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaWatchV1home3348.net] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaBuzzV1mode908.net] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ff
FF Extension: Media Buzz - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ff [2014-04-25]

Chrome:
=======
CHR HomePage:
CHR Extension: (Ask Toolbar) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajabnoiehionljhjpclogplgillib [2014-06-21]
CHR Extension: (Dokumenty Google) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-21]
CHR Extension: (Disk Google) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-21]
CHR Extension: (YouTube) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-21]
CHR Extension: (Vyhledávání Google) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-21]
CHR Extension: (Rich Media View) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\epiiemakpkpkajhemjjoofhijcgemdfc [2014-06-21]
CHR Extension: (Media View) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdimfgbenfglpebfpjpfgogeajedpfbk [2014-06-21]
CHR Extension: (No Name) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjbbjfdilbioabojmcplalojlmdngbjl [2014-06-21]
CHR Extension: (Media View) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhpghmlcnigklkaefpbgphjiiinlmmhc [2014-06-21]
CHR Extension: (Media Watch) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnjihabommffbbkkpheoembpagdgache [2014-06-21]
CHR Extension: (Video Player) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\kplbekagfgogpinmldfnonaidcobdkhi [2014-06-21]
CHR Extension: (No Name) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-06-21]
CHR Extension: (Media Buzz) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\nllmekiobgfoiahggfdepnopkdkgigie [2014-06-21]
CHR Extension: (Peněženka Google) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-21]
CHR Extension: (Media Watch) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\oekcipgjbookeegfhmopnkejdagchijh [2014-06-21]
CHR Extension: (Ask Shopping Toolbar) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgghoahdhkjiojjjpacpaojbfbdbfoc [2014-06-21]
CHR Extension: (Gmail) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [fdimfgbenfglpebfpjpfgogeajedpfbk] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ch\MediaViewV1alpha762.crx [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [hhpghmlcnigklkaefpbgphjiiinlmmhc] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ch\MediaViewV1alpha3624.crx [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [hnjihabommffbbkkpheoembpagdgache] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ch\MediaWatchV1home3348.crx [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [kplbekagfgogpinmldfnonaidcobdkhi] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta1056\ch\VideoPlayerV3beta1056.crx [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [nllmekiobgfoiahggfdepnopkdkgigie] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ch\MediaBuzzV1mode908.crx [2014-04-23]
CHR HKLM-x32\...\Chrome\Extension: [oekcipgjbookeegfhmopnkejdagchijh] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ch\MediaWatchV1home894.crx [2014-04-23]

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-03-09] (ALWIL Software)
S3 avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-03-09] (ALWIL Software)
S3 avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-03-09] (ALWIL Software)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 NetHttpService; C:\Windows\SysWOW64\nethtsrv.exe [180224 2014-06-17] () [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation)
S4 ServiceUpdater; C:\Windows\SysWOW64\netupdsrv.exe [162304 2014-06-17] () [File not signed]

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [22096 2010-03-09] (ALWIL Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [63568 2010-03-09] (ALWIL Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [28752 2010-03-09] (ALWIL Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [121936 2010-03-09] (ALWIL Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [51280 2010-03-09] (ALWIL Software)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50464 2014-06-22] (AVG Technologies)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-07-30] (DT Soft Ltd)
R1 nethfdrv; C:\Windows\system32\drivers\nethfdrv.sys [46160 2014-06-17] (nethfdrv)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X]
S3 XFDriver64; \??\C:\Program Files (x86)\Xfire2\XFDriver64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-24 17:13 - 2014-06-24 17:14 - 00017253 _____ () C:\Users\Gint\Desktop\FRST.txt
2014-06-24 17:12 - 2014-06-24 17:12 - 00112640 _____ (forum.viry.cz) C:\Users\Gint\Desktop\FRSTLauncher.exe
2014-06-24 17:11 - 2014-06-24 17:13 - 00000000 ____D () C:\FRST
2014-06-24 17:11 - 2014-06-24 17:11 - 02082816 _____ (Farbar) C:\Users\Gint\Desktop\FRST64.exe
2014-06-24 17:06 - 2014-06-24 17:06 - 04235784 _____ () C:\Users\Gint\Downloads\zoek.rar
2014-06-24 17:06 - 2014-06-24 17:06 - 00003120 _____ () C:\Windows\System32\Tasks\{CDB5C5F4-028F-4AD6-B9AF-5D2BF5165A65}
2014-06-24 17:06 - 2014-05-21 08:31 - 01414867 _____ () C:\Users\Gint\Downloads\zoek.scr
2014-06-24 17:06 - 2014-05-21 08:31 - 01414867 _____ () C:\Users\Gint\Downloads\zoek.pif
2014-06-24 17:06 - 2014-05-21 08:31 - 01414867 _____ () C:\Users\Gint\Downloads\zoek.com
2014-06-24 16:53 - 2014-06-24 16:58 - 00000002 _____ () C:\runcheck.txt
2014-06-24 16:53 - 2014-06-24 16:53 - 00000000 ____D () C:\zoek_backup
2014-06-24 16:42 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-24 16:41 - 2014-06-24 16:42 - 00000000 ____D () C:\AdwCleaner
2014-06-24 16:41 - 2014-06-24 16:41 - 01342659 _____ () C:\Users\Gint\Downloads\adwcleaner_3.213.exe
2014-06-24 16:40 - 2014-06-24 16:40 - 00015886 _____ () C:\Users\Gint\Desktop\vypis jrt.txt
2014-06-24 16:40 - 2014-06-24 16:40 - 00015886 _____ () C:\Users\Gint\Desktop\JRT.txt
2014-06-24 16:25 - 2014-06-24 16:25 - 01016261 _____ (Thisisu) C:\Users\Gint\Downloads\JRT.exe
2014-06-24 16:25 - 2014-06-24 16:25 - 00000000 ____D () C:\Windows\ERUNT
2014-06-24 15:39 - 2014-06-24 15:39 - 00007650 _____ () C:\UsbFix [Clean 1] GINT-PC.txt
2014-06-24 15:38 - 2014-06-24 15:41 - 00000000 ____D () C:\UsbFix
2014-06-24 15:38 - 2014-06-24 15:38 - 01144875 _____ (El Desaparecido - SosVirus.net) C:\Users\Gint\Downloads\UsbFix.exe
2014-06-24 15:35 - 2014-06-24 15:35 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-06-24 15:29 - 2014-06-24 16:09 - 00000000 ____D () C:\Program Files (x86)\trend micro
2014-06-24 15:29 - 2014-06-24 15:29 - 01107968 _____ () C:\Users\Gint\Desktop\RSIT.exe
2014-06-24 15:29 - 2014-06-24 15:29 - 00000000 ____D () C:\rsit
2014-06-23 19:23 - 2014-06-23 19:23 - 00000687 _____ () C:\awh1D30.tmp
2014-06-23 19:11 - 2014-06-23 19:34 - 1552943104 _____ () C:\Users\Gint\Downloads\Pravidla mlčení (2012) CZ dabing.avi
2014-06-23 19:08 - 2014-06-23 19:08 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-23 19:08 - 2014-06-23 19:08 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-23 19:08 - 2014-06-23 19:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-23 18:57 - 2014-06-23 18:58 - 00284264 _____ (Mozilla) C:\Users\Gint\Downloads\Firefox Setup Stub 30.0.exe
2014-06-22 22:41 - 2014-06-22 22:41 - 00000687 _____ () C:\awh367B.tmp
2014-06-22 19:42 - 2014-06-22 19:51 - 1049284910 _____ () C:\Users\Gint\Downloads\Pevné-Pouto-CZ(2009).avi
2014-06-21 21:07 - 2014-06-21 21:15 - 733102080 _____ () C:\Users\Gint\Downloads\U Konce světa - The World's End (2013) CZdabing.avi
2014-06-21 18:26 - 2014-06-21 18:26 - 00895120 _____ (Google Inc.) C:\Users\Gint\Downloads\ChromeSetup (1).exe
2014-06-20 22:24 - 2014-06-20 22:31 - 732891136 _____ () C:\Users\Gint\Downloads\Riddick - Černočerná tma - Sci-fi 2000 cz.avi
2014-06-20 22:14 - 2014-06-20 23:11 - 1022759782 _____ () C:\Users\Gint\Downloads\Emma-Leigh-–-Book-Us-A-Room-Pronto.mp4
2014-06-20 21:25 - 2014-06-20 21:32 - 779134976 _____ () C:\Users\Gint\Downloads\Havran (2012) - CZ dabing.avi
2014-06-20 17:18 - 2014-06-20 17:18 - 00000687 _____ () C:\awhBA0B.tmp
2014-06-20 16:05 - 2014-06-20 16:12 - 907802273 _____ () C:\Users\Gint\Downloads\Brazzers Exxtra - Teaching the Temp (Tia Layne, Emma Leigh, Bruce Williams).wmv
2014-06-20 15:49 - 2014-06-20 15:55 - 634586363 _____ () C:\Users\Gint\Downloads\(-porno-archiv-)-2014-BangBros.Com-ff5135_1500.mp4
2014-06-20 15:16 - 2014-06-20 15:40 - 432249065 _____ () C:\Users\Gint\Downloads\[-PORN-720p-]-Shyla-Stylez-On-A-Mission.mp4
2014-06-19 22:12 - 2014-06-19 22:12 - 00000687 _____ () C:\awhB029.tmp
2014-06-19 19:32 - 2014-06-19 19:42 - 1010214912 _____ () C:\Users\Gint\Downloads\Budoucnost nejista 2013 CZ dabing.avi
2014-06-19 17:13 - 2014-06-19 17:21 - 734195712 _____ () C:\Users\Gint\Downloads\Deep Anal Drilling (2010 - Amy Reid,Rebeca Linares,Shyla Stylez,Tori Black) - cd2 (1).avi
2014-06-19 17:12 - 2014-06-19 17:29 - 294727958 _____ () C:\Users\Gint\Downloads\RealWifeStories.com---Shyla-Stylez-(C'mon-Baby-Light-my-Fire!).wmv
2014-06-18 20:41 - 2014-06-18 20:48 - 731143886 _____ () C:\Users\Gint\Downloads\22 Výstřelů CZdab.2010.avi
2014-06-17 21:38 - 2014-06-17 21:41 - 383694203 _____ () C:\Users\Gint\Downloads\My Friends Hot Mom - Raylene.wmv
2014-06-17 21:10 - 2014-06-17 21:17 - 725004288 _____ () C:\Users\Gint\Downloads\Tohle-je-válka!-D.avi
2014-06-17 19:34 - 2014-06-17 19:42 - 734195712 _____ () C:\Users\Gint\Downloads\Deep Anal Drilling (2010 - Amy Reid,Rebeca Linares,Shyla Stylez,Tori Black) - cd2.avi
2014-06-17 11:53 - 2014-06-17 11:53 - 00180224 _____ () C:\Windows\SysWOW64\nethtsrv.exe
2014-06-17 11:53 - 2014-06-17 11:53 - 00162304 _____ () C:\Windows\SysWOW64\netupdsrv.exe
2014-06-17 11:53 - 2014-06-17 11:53 - 00108544 _____ () C:\Windows\SysWOW64\installd.exe
2014-06-17 11:53 - 2014-06-17 11:53 - 00108544 _____ () C:\Windows\SysWOW64\hfnapi.dll
2014-06-17 11:53 - 2014-06-17 11:53 - 00046160 _____ (nethfdrv) C:\Windows\system32\Drivers\nethfdrv.sys
2014-06-17 11:52 - 2014-06-17 11:52 - 00246784 _____ () C:\Windows\SysWOW64\hfpapi.dll
2014-06-16 22:16 - 2014-06-16 22:29 - 1514300366 _____ () C:\Users\Gint\Downloads\FemaleAgent Steve e138 1080p CZ xxx.mov
2014-06-16 21:06 - 2014-06-16 21:06 - 00045994 _____ () C:\Users\Gint\Downloads\Game.of.Thrones.S04E10.HDTV.x264-KILLERS.srt
2014-06-16 19:56 - 2014-06-16 20:11 - 1566779148 _____ () C:\Users\Gint\Downloads\FemaleAgent - E210 Vera.mov
2014-06-16 19:43 - 2014-06-16 19:51 - 805668073 _____ () C:\Users\Gint\Downloads\FemaleAgent - Kettie (E208).mp4
2014-06-16 19:25 - 2014-06-16 19:41 - 1682835917 _____ () C:\Users\Gint\Downloads\game.of.thrones.s04e10.720p.hdtv.x264-killers.mkv
2014-06-16 15:20 - 2014-06-16 15:33 - 1406510051 _____ () C:\Users\Gint\Downloads\FemaleAgent - Slovak.wmv
2014-06-15 21:47 - 2014-06-15 22:09 - 1446443238 _____ () C:\Users\Gint\Downloads\erotika xxx FemaleAgent 13.09.27 Frenky e151 1080p CZ.mov
2014-06-15 21:47 - 2014-06-15 22:07 - 1246245014 _____ () C:\Users\Gint\Downloads\erotika xxx FemaleAgent 13.09.06 Richy e145 1080p CZ.mov
2014-06-15 21:36 - 2014-06-15 21:44 - 879102062 _____ () C:\Users\Gint\Downloads\erotika xxx FemaleAgent 13.08.21 Can & Sharon Star 720p CZ.mov
2014-06-15 17:16 - 2014-06-15 17:47 - 570028664 _____ () C:\Users\Gint\Downloads\FemaleAgent.com---E19-Max.wmv
2014-06-15 16:39 - 2014-06-15 17:12 - 600765017 _____ () C:\Users\Gint\Downloads\[FemaleAgent]-Marek,-Sharon-Star-(E181)-(10.01.2014).mp4
2014-06-15 16:24 - 2014-06-15 16:24 - 00009560 _____ () C:\Users\Gint\Downloads\Žádost.odt
2014-06-15 00:05 - 2014-06-15 01:24 - 752950508 _____ () C:\Users\Gint\Downloads\FemaleAgent---Pepa-26.11.13-(CZ-české-porno,-sex,-erotika,-xxx)720p.mov
2014-06-14 23:08 - 2014-06-14 23:41 - 320874215 _____ () C:\Users\Gint\Downloads\Nikola-Houdova-šuká-s-každým-české-porno-.wmv
2014-06-14 23:03 - 2014-06-14 23:23 - 2238777344 _____ () C:\Users\Gint\Downloads\Na zivot a na smrt 2013 CZ dabing.avi
2014-06-13 18:59 - 2014-06-13 18:59 - 00000219 _____ () C:\Users\Gint\Desktop\Dota 2.url
2014-06-10 21:24 - 2014-06-10 21:27 - 388531145 _____ () C:\Users\Gint\Downloads\game.of.thrones.s04e09.hdtv.x264-killers.mkv
2014-06-05 22:44 - 2014-06-05 22:56 - 1245546496 _____ () C:\Users\Gint\Downloads\collete.avi
2014-06-03 21:03 - 2014-06-03 21:17 - 1634655066 _____ () C:\Users\Gint\Downloads\Zachrante vojina Ryana.avi
2014-06-02 20:30 - 2014-06-02 20:30 - 00051021 _____ () C:\Users\Gint\Downloads\Game.of.Thrones.S04E08.720p.HDTV.x264-KILLERS.srt
2014-06-02 20:29 - 2014-06-02 20:29 - 00048357 _____ () C:\Users\Gint\Downloads\Game.of.Thrones.S04E05.720p.HDTV.x264-KILLERS.srt
2014-06-02 20:18 - 2014-06-02 20:25 - 786028056 _____ () C:\Users\Gint\Downloads\zkurvenej-patek-CZ-Dabing.avi
2014-06-02 18:51 - 2014-06-02 20:17 - 1545805438 _____ () C:\Users\Gint\Downloads\Ceska-studentska-party-v-Praze.avi
2014-06-02 17:55 - 2014-06-02 18:45 - 889954304 _____ () C:\Users\Gint\Downloads\18-ti-leta-krasna-Ceska-v-sex-castingu.-Porno..mpeg
2014-06-02 17:37 - 2014-06-02 17:50 - 1315208360 _____ () C:\Users\Gint\Downloads\Game.of.Thrones.S04E08.720p.HDTV.x264-KILLERS.mkv
2014-06-02 17:35 - 2014-06-02 17:55 - 265153934 _____ () C:\Users\Gint\Downloads\hustler-bossy-milfs-5-tory-lane.wmv
2014-06-01 22:46 - 2014-06-01 23:05 - 340322142 _____ () C:\Users\Gint\Downloads\porno-Big-Wet-Tits-Haley-Cummings.avi
2014-06-01 22:22 - 2014-06-01 22:22 - 00358400 _____ () C:\Users\Gint\Downloads\Video Player.com
2014-06-01 22:13 - 2014-06-01 22:37 - 423277169 _____ () C:\Users\Gint\Downloads\pf_tory-lane_kelly-madison.mp4
2014-06-01 21:00 - 2014-06-01 21:07 - 734955520 _____ () C:\Users\Gint\Downloads\Království The Kingdom (2007).avi
2014-06-01 13:21 - 2014-06-01 13:35 - 249022570 _____ () C:\Users\Gint\Downloads\Brazzers---Nikky-Benz.avi
2014-05-31 23:59 - 2014-06-01 00:06 - 734232576 _____ () C:\Users\Gint\Downloads\Cela 211 2009 CZ dub.avi
2014-05-30 15:30 - 2014-05-30 15:30 - 00000000 ____D () C:\Users\Gint\AppData\Roaming\WizardWars
2014-05-30 15:29 - 2014-05-30 15:29 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-05-30 15:20 - 2014-06-22 14:46 - 00000000 ____D () C:\Users\Gint\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-29 23:15 - 2014-05-29 23:20 - 731821226 _____ () C:\Users\Gint\Downloads\Zametac stop 2007 CZ dab DVDRip.avi
2014-05-27 21:40 - 2014-05-27 21:59 - 1581271040 _____ () C:\Users\Gint\Downloads\Orheimovci drama 2013 cz STEN.ok.avi
2014-05-27 00:28 - 2014-05-27 00:47 - 1762879488 _____ () C:\Users\Gint\Downloads\Ukrutnost nade vše (1).avi
2014-05-27 00:16 - 2014-05-27 00:28 - 974656258 _____ () C:\Users\Gint\Downloads\Ukrutnost nade vše.avi
2014-05-25 22:34 - 2014-05-25 22:49 - 1165357056 _____ () C:\Users\Gint\Downloads\Klub posledni nadeje CZ dabing.avi
2014-05-25 21:28 - 2014-05-25 21:38 - 1046960128 _____ () C:\Users\Gint\Downloads\Okrsek-13---cz-dabing.avi
2014-05-25 01:12 - 2014-05-25 01:21 - 923144192 _____ () C:\Users\Gint\Downloads\I Frankenstein 2014 CZ dabing.avi

==================== One Month Modified Files and Folders =======

2014-06-24 17:14 - 2014-06-24 17:13 - 00017253 _____ () C:\Users\Gint\Desktop\FRST.txt
2014-06-24 17:13 - 2014-06-24 17:11 - 00000000 ____D () C:\FRST
2014-06-24 17:12 - 2014-06-24 17:12 - 00112640 _____ (forum.viry.cz) C:\Users\Gint\Desktop\FRSTLauncher.exe
2014-06-24 17:11 - 2014-06-24 17:11 - 02082816 _____ (Farbar) C:\Users\Gint\Desktop\FRST64.exe
2014-06-24 17:06 - 2014-06-24 17:06 - 04235784 _____ () C:\Users\Gint\Downloads\zoek.rar
2014-06-24 17:06 - 2014-06-24 17:06 - 00003120 _____ () C:\Windows\System32\Tasks\{CDB5C5F4-028F-4AD6-B9AF-5D2BF5165A65}
2014-06-24 17:05 - 2012-07-12 20:02 - 01493293 _____ () C:\Windows\WindowsUpdate.log
2014-06-24 17:02 - 2014-01-05 01:13 - 00000000 ____D () C:\Users\Gint\AppData\Roaming\Seznam.cz
2014-06-24 17:01 - 2012-07-12 20:30 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-24 16:58 - 2014-06-24 16:53 - 00000002 _____ () C:\runcheck.txt
2014-06-24 16:57 - 2014-01-31 20:48 - 00000000 ____D () C:\Users\Gint\AppData\Local\Battle.net
2014-06-24 16:57 - 2012-08-01 23:21 - 00000000 ____D () C:\Users\Gint\AppData\Roaming\Skype
2014-06-24 16:56 - 2014-02-27 18:08 - 00000270 __RSH () C:\ProgramData\ntuser.pol
2014-06-24 16:56 - 2013-06-08 20:03 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job
2014-06-24 16:56 - 2013-06-03 13:47 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
2014-06-24 16:56 - 2012-07-31 13:17 - 00056714 _____ () C:\Windows\PFRO.log
2014-06-24 16:56 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-24 16:56 - 2009-07-14 06:51 - 00132175 _____ () C:\Windows\setupact.log
2014-06-24 16:55 - 2009-07-14 06:45 - 00010128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-24 16:55 - 2009-07-14 06:45 - 00010128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-24 16:53 - 2014-06-24 16:53 - 00000000 ____D () C:\zoek_backup
2014-06-24 16:42 - 2014-06-24 16:41 - 00000000 ____D () C:\AdwCleaner
2014-06-24 16:42 - 2012-09-17 15:57 - 00000000 ____D () C:\ProgramData\ICQ
2014-06-24 16:41 - 2014-06-24 16:41 - 01342659 _____ () C:\Users\Gint\Downloads\adwcleaner_3.213.exe
2014-06-24 16:40 - 2014-06-24 16:40 - 00015886 _____ () C:\Users\Gint\Desktop\vypis jrt.txt
2014-06-24 16:40 - 2014-06-24 16:40 - 00015886 _____ () C:\Users\Gint\Desktop\JRT.txt
2014-06-24 16:25 - 2014-06-24 16:25 - 01016261 _____ (Thisisu) C:\Users\Gint\Downloads\JRT.exe
2014-06-24 16:25 - 2014-06-24 16:25 - 00000000 ____D () C:\Windows\ERUNT
2014-06-24 16:09 - 2014-06-24 15:29 - 00000000 ____D () C:\Program Files (x86)\trend micro
2014-06-24 16:02 - 2012-10-24 21:57 - 00000924 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-31431094-2971078360-1932619591-1000UA.job
2014-06-24 15:41 - 2014-06-24 15:38 - 00000000 ____D () C:\UsbFix
2014-06-24 15:39 - 2014-06-24 15:39 - 00007650 _____ () C:\UsbFix [Clean 1] GINT-PC.txt
2014-06-24 15:38 - 2014-06-24 15:38 - 01144875 _____ (El Desaparecido - SosVirus.net) C:\Users\Gint\Downloads\UsbFix.exe
2014-06-24 15:35 - 2014-06-24 15:35 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-06-24 15:29 - 2014-06-24 15:29 - 01107968 _____ () C:\Users\Gint\Desktop\RSIT.exe
2014-06-24 15:29 - 2014-06-24 15:29 - 00000000 ____D () C:\rsit
2014-06-23 22:02 - 2012-10-24 21:57 - 00000902 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-31431094-2971078360-1932619591-1000Core.job
2014-06-23 19:34 - 2014-06-23 19:11 - 1552943104 _____ () C:\Users\Gint\Downloads\Pravidla mlčení (2012) CZ dabing.avi
2014-06-23 19:23 - 2014-06-23 19:23 - 00000687 _____ () C:\awh1D30.tmp
2014-06-23 19:11 - 2014-02-10 20:01 - 00000000 ____D () C:\Program Files (x86)\Google
2014-06-23 19:09 - 2012-09-17 15:57 - 00000000 ____D () C:\Users\Gint\AppData\Roaming\Mozilla
2014-06-23 19:08 - 2014-06-23 19:08 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-23 19:08 - 2014-06-23 19:08 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-23 19:08 - 2014-06-23 19:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-23 19:08 - 2014-03-29 15:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-23 18:58 - 2014-06-23 18:57 - 00284264 _____ (Mozilla) C:\Users\Gint\Downloads\Firefox Setup Stub 30.0.exe
2014-06-23 18:50 - 2013-05-03 13:50 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-06-22 22:41 - 2014-06-22 22:41 - 00000687 _____ () C:\awh367B.tmp
2014-06-22 22:03 - 2012-08-05 00:09 - 00050464 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2014-06-22 19:51 - 2014-06-22 19:42 - 1049284910 _____ () C:\Users\Gint\Downloads\Pevné-Pouto-CZ(2009).avi
2014-06-22 14:46 - 2014-05-30 15:20 - 00000000 ____D () C:\Users\Gint\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-06-21 21:15 - 2014-06-21 21:07 - 733102080 _____ () C:\Users\Gint\Downloads\U Konce světa - The World's End (2013) CZdabing.avi
2014-06-21 18:26 - 2014-06-21 18:26 - 00895120 _____ (Google Inc.) C:\Users\Gint\Downloads\ChromeSetup (1).exe
2014-06-20 23:11 - 2014-06-20 22:14 - 1022759782 _____ () C:\Users\Gint\Downloads\Emma-Leigh-–-Book-Us-A-Room-Pronto.mp4
2014-06-20 22:31 - 2014-06-20 22:24 - 732891136 _____ () C:\Users\Gint\Downloads\Riddick - Černočerná tma - Sci-fi 2000 cz.avi
2014-06-20 21:32 - 2014-06-20 21:25 - 779134976 _____ () C:\Users\Gint\Downloads\Havran (2012) - CZ dabing.avi
2014-06-20 17:18 - 2014-06-20 17:18 - 00000687 _____ () C:\awhBA0B.tmp
2014-06-20 16:12 - 2014-06-20 16:05 - 907802273 _____ () C:\Users\Gint\Downloads\Brazzers Exxtra - Teaching the Temp (Tia Layne, Emma Leigh, Bruce Williams).wmv
2014-06-20 15:55 - 2014-06-20 15:49 - 634586363 _____ () C:\Users\Gint\Downloads\(-porno-archiv-)-2014-BangBros.Com-ff5135_1500.mp4
2014-06-20 15:40 - 2014-06-20 15:16 - 432249065 _____ () C:\Users\Gint\Downloads\[-PORN-720p-]-Shyla-Stylez-On-A-Mission.mp4
2014-06-19 22:12 - 2014-06-19 22:12 - 00000687 _____ () C:\awhB029.tmp
2014-06-19 19:42 - 2014-06-19 19:32 - 1010214912 _____ () C:\Users\Gint\Downloads\Budoucnost nejista 2013 CZ dabing.avi
2014-06-19 17:29 - 2014-06-19 17:12 - 294727958 _____ () C:\Users\Gint\Downloads\RealWifeStories.com---Shyla-Stylez-(C'mon-Baby-Light-my-Fire!).wmv
2014-06-19 17:21 - 2014-06-19 17:13 - 734195712 _____ () C:\Users\Gint\Downloads\Deep Anal Drilling (2010 - Amy Reid,Rebeca Linares,Shyla Stylez,Tori Black) - cd2 (1).avi
2014-06-18 20:48 - 2014-06-18 20:41 - 731143886 _____ () C:\Users\Gint\Downloads\22 Výstřelů CZdab.2010.avi
2014-06-17 21:41 - 2014-06-17 21:38 - 383694203 _____ () C:\Users\Gint\Downloads\My Friends Hot Mom - Raylene.wmv
2014-06-17 21:17 - 2014-06-17 21:10 - 725004288 _____ () C:\Users\Gint\Downloads\Tohle-je-válka!-D.avi
2014-06-17 19:42 - 2014-06-17 19:34 - 734195712 _____ () C:\Users\Gint\Downloads\Deep Anal Drilling (2010 - Amy Reid,Rebeca Linares,Shyla Stylez,Tori Black) - cd2.avi
2014-06-17 11:53 - 2014-06-17 11:53 - 00180224 _____ () C:\Windows\SysWOW64\nethtsrv.exe
2014-06-17 11:53 - 2014-06-17 11:53 - 00162304 _____ () C:\Windows\SysWOW64\netupdsrv.exe
2014-06-17 11:53 - 2014-06-17 11:53 - 00108544 _____ () C:\Windows\SysWOW64\installd.exe
2014-06-17 11:53 - 2014-06-17 11:53 - 00108544 _____ () C:\Windows\SysWOW64\hfnapi.dll
2014-06-17 11:53 - 2014-06-17 11:53 - 00046160 _____ (nethfdrv) C:\Windows\system32\Drivers\nethfdrv.sys
2014-06-17 11:52 - 2014-06-17 11:52 - 00246784 _____ () C:\Windows\SysWOW64\hfpapi.dll
2014-06-16 22:29 - 2014-06-16 22:16 - 1514300366 _____ () C:\Users\Gint\Downloads\FemaleAgent Steve e138 1080p CZ xxx.mov
2014-06-16 21:06 - 2014-06-16 21:06 - 00045994 _____ () C:\Users\Gint\Downloads\Game.of.Thrones.S04E10.HDTV.x264-KILLERS.srt
2014-06-16 20:11 - 2014-06-16 19:56 - 1566779148 _____ () C:\Users\Gint\Downloads\FemaleAgent - E210 Vera.mov
2014-06-16 19:51 - 2014-06-16 19:43 - 805668073 _____ () C:\Users\Gint\Downloads\FemaleAgent - Kettie (E208).mp4
2014-06-16 19:41 - 2014-06-16 19:25 - 1682835917 _____ () C:\Users\Gint\Downloads\game.of.thrones.s04e10.720p.hdtv.x264-killers.mkv
2014-06-16 15:33 - 2014-06-16 15:20 - 1406510051 _____ () C:\Users\Gint\Downloads\FemaleAgent - Slovak.wmv
2014-06-15 22:09 - 2014-06-15 21:47 - 1446443238 _____ () C:\Users\Gint\Downloads\erotika xxx FemaleAgent 13.09.27 Frenky e151 1080p CZ.mov
2014-06-15 22:07 - 2014-06-15 21:47 - 1246245014 _____ () C:\Users\Gint\Downloads\erotika xxx FemaleAgent 13.09.06 Richy e145 1080p CZ.mov
2014-06-15 21:44 - 2014-06-15 21:36 - 879102062 _____ () C:\Users\Gint\Downloads\erotika xxx FemaleAgent 13.08.21 Can & Sharon Star 720p CZ.mov
2014-06-15 17:47 - 2014-06-15 17:16 - 570028664 _____ () C:\Users\Gint\Downloads\FemaleAgent.com---E19-Max.wmv
2014-06-15 17:12 - 2014-06-15 16:39 - 600765017 _____ () C:\Users\Gint\Downloads\[FemaleAgent]-Marek,-Sharon-Star-(E181)-(10.01.2014).mp4
2014-06-15 16:24 - 2014-06-15 16:24 - 00009560 _____ () C:\Users\Gint\Downloads\Žádost.odt
2014-06-15 12:23 - 2014-03-15 22:52 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-15 12:23 - 2012-08-01 23:21 - 00000000 ____D () C:\ProgramData\Skype
2014-06-15 01:24 - 2014-06-15 00:05 - 752950508 _____ () C:\Users\Gint\Downloads\FemaleAgent---Pepa-26.11.13-(CZ-české-porno,-sex,-erotika,-xxx)720p.mov
2014-06-14 23:41 - 2014-06-14 23:08 - 320874215 _____ () C:\Users\Gint\Downloads\Nikola-Houdova-šuká-s-každým-české-porno-.wmv
2014-06-14 23:23 - 2014-06-14 23:03 - 2238777344 _____ () C:\Users\Gint\Downloads\Na zivot a na smrt 2013 CZ dabing.avi
2014-06-14 13:04 - 2014-02-23 16:38 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2014-06-14 13:02 - 2014-03-07 19:37 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-06-13 18:59 - 2014-06-13 18:59 - 00000219 _____ () C:\Users\Gint\Desktop\Dota 2.url
2014-06-10 21:27 - 2014-06-10 21:24 - 388531145 _____ () C:\Users\Gint\Downloads\game.of.thrones.s04e09.hdtv.x264-killers.mkv
2014-06-05 22:56 - 2014-06-05 22:44 - 1245546496 _____ () C:\Users\Gint\Downloads\collete.avi
2014-06-03 21:17 - 2014-06-03 21:03 - 1634655066 _____ () C:\Users\Gint\Downloads\Zachrante vojina Ryana.avi
2014-06-02 21:21 - 2014-03-10 19:52 - 00000000 ____D () C:\Users\Gint\AppData\Roaming\vlc
2014-06-02 20:30 - 2014-06-02 20:30 - 00051021 _____ () C:\Users\Gint\Downloads\Game.of.Thrones.S04E08.720p.HDTV.x264-KILLERS.srt
2014-06-02 20:29 - 2014-06-02 20:29 - 00048357 _____ () C:\Users\Gint\Downloads\Game.of.Thrones.S04E05.720p.HDTV.x264-KILLERS.srt
2014-06-02 20:25 - 2014-06-02 20:18 - 786028056 _____ () C:\Users\Gint\Downloads\zkurvenej-patek-CZ-Dabing.avi
2014-06-02 20:17 - 2014-06-02 18:51 - 1545805438 _____ () C:\Users\Gint\Downloads\Ceska-studentska-party-v-Praze.avi
2014-06-02 18:45 - 2014-06-02 17:55 - 889954304 _____ () C:\Users\Gint\Downloads\18-ti-leta-krasna-Ceska-v-sex-castingu.-Porno..mpeg
2014-06-02 17:55 - 2014-06-02 17:35 - 265153934 _____ () C:\Users\Gint\Downloads\hustler-bossy-milfs-5-tory-lane.wmv
2014-06-02 17:50 - 2014-06-02 17:37 - 1315208360 _____ () C:\Users\Gint\Downloads\Game.of.Thrones.S04E08.720p.HDTV.x264-KILLERS.mkv
2014-06-01 23:05 - 2014-06-01 22:46 - 340322142 _____ () C:\Users\Gint\Downloads\porno-Big-Wet-Tits-Haley-Cummings.avi
2014-06-01 22:37 - 2014-06-01 22:13 - 423277169 _____ () C:\Users\Gint\Downloads\pf_tory-lane_kelly-madison.mp4
2014-06-01 22:22 - 2014-06-01 22:22 - 00358400 _____ () C:\Users\Gint\Downloads\Video Player.com
2014-06-01 21:07 - 2014-06-01 21:00 - 734955520 _____ () C:\Users\Gint\Downloads\Království The Kingdom (2007).avi
2014-06-01 13:35 - 2014-06-01 13:21 - 249022570 _____ () C:\Users\Gint\Downloads\Brazzers---Nikky-Benz.avi
2014-06-01 00:06 - 2014-05-31 23:59 - 734232576 _____ () C:\Users\Gint\Downloads\Cela 211 2009 CZ dub.avi
2014-05-31 00:53 - 2014-04-13 23:13 - 00000208 _____ () C:\Users\Gint\Desktop\fgfghfghfgh.txt
2014-05-30 15:30 - 2014-05-30 15:30 - 00000000 ____D () C:\Users\Gint\AppData\Roaming\WizardWars
2014-05-30 15:29 - 2014-05-30 15:29 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-05-30 15:29 - 2012-08-17 00:08 - 00380487 _____ () C:\Windows\DirectX.log
2014-05-29 23:20 - 2014-05-29 23:15 - 731821226 _____ () C:\Users\Gint\Downloads\Zametac stop 2007 CZ dab DVDRip.avi
2014-05-29 00:26 - 2014-05-13 16:46 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-05-28 11:46 - 2009-07-14 17:18 - 00666444 _____ () C:\Windows\system32\perfh005.dat
2014-05-28 11:46 - 2009-07-14 17:18 - 00140108 _____ () C:\Windows\system32\perfc005.dat
2014-05-28 11:46 - 2009-07-14 07:13 - 01576554 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-27 21:59 - 2014-05-27 21:40 - 1581271040 _____ () C:\Users\Gint\Downloads\Orheimovci drama 2013 cz STEN.ok.avi
2014-05-27 00:47 - 2014-05-27 00:28 - 1762879488 _____ () C:\Users\Gint\Downloads\Ukrutnost nade vše (1).avi
2014-05-27 00:28 - 2014-05-27 00:16 - 974656258 _____ () C:\Users\Gint\Downloads\Ukrutnost nade vše.avi
2014-05-26 11:51 - 2014-05-22 21:16 - 00000000 ____D () C:\Users\Gint\Downloads\bw
2014-05-26 11:11 - 2012-07-30 23:02 - 00000000 ____D () C:\Users\Gint\AppData\Roaming\DAEMON Tools Lite
2014-05-26 10:35 - 2012-07-12 20:23 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-25 22:49 - 2014-05-25 22:34 - 1165357056 _____ () C:\Users\Gint\Downloads\Klub posledni nadeje CZ dabing.avi
2014-05-25 21:38 - 2014-05-25 21:28 - 1046960128 _____ () C:\Users\Gint\Downloads\Okrsek-13---cz-dabing.avi
2014-05-25 01:21 - 2014-05-25 01:12 - 923144192 _____ () C:\Users\Gint\Downloads\I Frankenstein 2014 CZ dabing.avi

Some content of TEMP:
====================
C:\Users\Gint\AppData\Local\Temp\7za.exe
C:\Users\Gint\AppData\Local\Temp\APNStub.exe
C:\Users\Gint\AppData\Local\Temp\appinstal1.exe
C:\Users\Gint\AppData\Local\Temp\appinstall.exe
C:\Users\Gint\AppData\Local\Temp\applinstall.exe
C:\Users\Gint\AppData\Local\Temp\AutoRun.exe
C:\Users\Gint\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Gint\AppData\Local\Temp\avguidx.dll
C:\Users\Gint\AppData\Local\Temp\BRSVC_12439738_hlp.exe
C:\Users\Gint\AppData\Local\Temp\BundleSweetIMSetup.exe
C:\Users\Gint\AppData\Local\Temp\CommonInstaller.exe
C:\Users\Gint\AppData\Local\Temp\Delta.exe
C:\Users\Gint\AppData\Local\Temp\DeltaTB.exe
C:\Users\Gint\AppData\Local\Temp\detectionapi_rd.dll
C:\Users\Gint\AppData\Local\Temp\detectionui_r.exe
C:\Users\Gint\AppData\Local\Temp\directx10tests_rd.dll
C:\Users\Gint\AppData\Local\Temp\directx11tests_rd.dll
C:\Users\Gint\AppData\Local\Temp\directx9tests_rd.dll
C:\Users\Gint\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Gint\AppData\Local\Temp\drm_dyndata_7290008.dll
C:\Users\Gint\AppData\Local\Temp\drm_dyndata_7380009.dll
C:\Users\Gint\AppData\Local\Temp\drvinstal.exe
C:\Users\Gint\AppData\Local\Temp\DSETUP.dll
C:\Users\Gint\AppData\Local\Temp\dsetup32.dll
C:\Users\Gint\AppData\Local\Temp\DXSETUP.exe
C:\Users\Gint\AppData\Local\Temp\eauninstall.exe
C:\Users\Gint\AppData\Local\Temp\GomEncDnInstaller.exe
C:\Users\Gint\AppData\Local\Temp\Gw2.exe
C:\Users\Gint\AppData\Local\Temp\hijackthis.exe
C:\Users\Gint\AppData\Local\Temp\i4jdel0.exe
C:\Users\Gint\AppData\Local\Temp\i4jdel1.exe
C:\Users\Gint\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Gint\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Gint\AppData\Local\Temp\jre-7u7-windows-i586-iftw.exe
C:\Users\Gint\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
C:\Users\Gint\AppData\Local\Temp\local.dll
C:\Users\Gint\AppData\Local\Temp\MachineIdCreator.exe
C:\Users\Gint\AppData\Local\Temp\mgsqlite3.dll
C:\Users\Gint\AppData\Local\Temp\MybabylonTB.exe
C:\Users\Gint\AppData\Local\Temp\NirCmd.exe
C:\Users\Gint\AppData\Local\Temp\NVI2_29.DLL
C:\Users\Gint\AppData\Local\Temp\offercast.exe
C:\Users\Gint\AppData\Local\Temp\oi_{7F166E42-6C83-403F-94AE-16511003DA20}.exe
C:\Users\Gint\AppData\Local\Temp\PEVZ.EXE
C:\Users\Gint\AppData\Local\Temp\propsys.dll
C:\Users\Gint\AppData\Local\Temp\Quarantine.exe
C:\Users\Gint\AppData\Local\Temp\remove.exe
C:\Users\Gint\AppData\Local\Temp\sed.exe
C:\Users\Gint\AppData\Local\Temp\set-app.exe
C:\Users\Gint\AppData\Local\Temp\setapp.exe
C:\Users\Gint\AppData\Local\Temp\Setup1.exe
C:\Users\Gint\AppData\Local\Temp\shortcut.exe
C:\Users\Gint\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Gint\AppData\Local\Temp\sqlite-unknown-sqlitejdbc.dll
C:\Users\Gint\AppData\Local\Temp\swreg.exe
C:\Users\Gint\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Gint\AppData\Local\Temp\swxcacls.exe
C:\Users\Gint\AppData\Local\Temp\The Battle for Middle-earth II_uninst.exe
C:\Users\Gint\AppData\Local\Temp\ToolbarInstaller.exe
C:\Users\Gint\AppData\Local\Temp\ubi1B9C.tmp.exe
C:\Users\Gint\AppData\Local\Temp\ubiF984.tmp.exe
C:\Users\Gint\AppData\Local\Temp\wget.exe
C:\Users\Gint\AppData\Local\Temp\WSSetup.exe
C:\Users\Gint\AppData\Local\Temp\zoek-delete.exe
C:\Users\Gint\AppData\Local\Temp\_isA079.exe
C:\Users\Gint\AppData\Local\Temp\_isAC0.exe
C:\Users\Gint\AppData\Local\Temp\_isD9F6.exe
C:\Users\Gint\AppData\Local\Temp\~ACDA.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-22 17:39




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:292.97 GB) (Free:123.03 GB) NTFS
Drive d: () (Fixed) (Total:390.57 GB) (Free:383.22 GB) NTFS
Drive f: (DIR) (CDROM) (Total:2.67 GB) (Free:0 GB) CDFS

Available physical RAM: 1660.64 MB
Total physical RAM: 3766.71 MB
Percentage of memory in use: 55%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: CAF4AC1D)
Partition 1: (Not Active) - (Size=15 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=293 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=391 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job => C:\Windows\TEMP\{4CCB59E1-FFC0-47BF-B639-59BDFF6091C7}.exe
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\Windows\TEMP\{FEFB953A-F196-4CB4-A44F-31E64B2BA49C}.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-31431094-2971078360-1932619591-1000Core.job => C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-31431094-2971078360-1932619591-1000UA.job => C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\TEMP:373E1720

==================== Security Center ==================

AV: avast! Antivirus (Enabled - Up to date) {C37D8F93-0602-E43C-40AA-47DAD597F308}
AS: avast! Antivirus (Enabled - Up to date) {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Gint\Desktop" je 1632 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarenaPlus
"C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe" -autolaunch [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VNT
"C:\Program Files (x86)\VNT\vntldr.exe" [x]


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Reklamy

#8 Příspěvek od vyosek »

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKLM-x32\...\Run: [seznam-listicka-distribuce] => "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2013-05-24] (Microsoft Corporation)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [Facebook Update] => C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-10-24] (Facebook Inc.)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [uTorrent] => "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Gint\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Gint\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe [2907184 2014-06-11] (Blizzard Entertainment)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\MountPoints2: {989b844d-da24-11e1-b254-c2fc34f26ef5} - F:\Setup.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO-x32: Media View - {71457232-de12-461f-be94-10ef830bc634} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ie\MediaViewV1alpha762.dll No File
BHO-x32: Media Watch - {7cfae66c-796e-4095-a458-f6fa6e73feb5} - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ie\MediaWatchV1home3348.dll No File
BHO-x32: Media View - {88eb4867-77d3-431e-b109-8de5d205accd} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ie\MediaViewV1alpha3624.dll No File
BHO-x32: Media Buzz - {ba15f64e-2e1b-45ea-8a6a-312584a20e68} - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ie\MediaBuzzV1mode908.dll ()
BHO-x32: Media Watch - {dc7aa6c5-72d3-4379-98cd-6301144686e6} - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ie\MediaWatchV1home894.dll No File

FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta1056.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta1056\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha762.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha3624.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaWatchV1home894.net] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaWatchV1home3348.net] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaBuzzV1mode908.net] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ff
FF Extension: Media Buzz - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ff [2014-04-25]

CHR Extension: (Ask Toolbar) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajabnoiehionljhjpclogplgillib [2014-06-21]
CHR Extension: (Rich Media View) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\epiiemakpkpkajhemjjoofhijcgemdfc [2014-06-21]
CHR Extension: (Media View) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdimfgbenfglpebfpjpfgogeajedpfbk [2014-06-21]
CHR Extension: (No Name) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjbbjfdilbioabojmcplalojlmdngbjl [2014-06-21]
CHR Extension: (Media View) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhpghmlcnigklkaefpbgphjiiinlmmhc [2014-06-21]
CHR Extension: (Media Watch) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnjihabommffbbkkpheoembpagdgache [2014-06-21]
CHR Extension: (Video Player) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\kplbekagfgogpinmldfnonaidcobdkhi [2014-06-21]
CHR Extension: (No Name) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-06-21]
CHR Extension: (Media Buzz) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\nllmekiobgfoiahggfdepnopkdkgigie [2014-06-21]
CHR Extension: (Media Watch) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\oekcipgjbookeegfhmopnkejdagchijh [2014-06-21]
CHR Extension: (Ask Shopping Toolbar) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgghoahdhkjiojjjpacpaojbfbdbfoc [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [fdimfgbenfglpebfpjpfgogeajedpfbk] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ch\MediaViewV1alpha762.crx [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [hhpghmlcnigklkaefpbgphjiiinlmmhc] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ch\MediaViewV1alpha3624.crx [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [hnjihabommffbbkkpheoembpagdgache] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ch\MediaWatchV1home3348.crx [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [kplbekagfgogpinmldfnonaidcobdkhi] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta1056\ch\VideoPlayerV3beta1056.crx [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [nllmekiobgfoiahggfdepnopkdkgigie] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ch\MediaBuzzV1mode908.crx [2014-04-23]
CHR HKLM-x32\...\Chrome\Extension: [oekcipgjbookeegfhmopnkejdagchijh] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ch\MediaWatchV1home894.crx [2014-04-23]

R2 NetHttpService; C:\Windows\SysWOW64\nethtsrv.exe [180224 2014-06-17] () [File not signed]
S4 ServiceUpdater; C:\Windows\SysWOW64\netupdsrv.exe [162304 2014-06-17] () [File not signed]
R1 nethfdrv; C:\Windows\system32\drivers\nethfdrv.sys [46160 2014-06-17] (nethfdrv)

C:\Program Files (x86)\VideoPlayerV3
C:\Program Files (x86)\MediaWatchV1
C:\Program Files (x86)\MediaBuzzV1
C:\Program Files (x86)\MediaViewV1
C:\Program Files (x86)\AskPartnerNetwork
2014-06-24 17:12 - 2014-06-24 17:12 - 00112640 _____ (forum.viry.cz) C:\Users\Gint\Desktop\FRSTLauncher.exe
2014-06-24 17:06 - 2014-06-24 17:06 - 04235784 _____ () C:\Users\Gint\Downloads\zoek.rar
2014-06-24 17:06 - 2014-06-24 17:06 - 00003120 _____ () C:\Windows\System32\Tasks\{CDB5C5F4-028F-4AD6-B9AF-5D2BF5165A65}
2014-06-24 17:06 - 2014-05-21 08:31 - 01414867 _____ () C:\Users\Gint\Downloads\zoek.scr
2014-06-24 17:06 - 2014-05-21 08:31 - 01414867 _____ () C:\Users\Gint\Downloads\zoek.pif
2014-06-24 17:06 - 2014-05-21 08:31 - 01414867 _____ () C:\Users\Gint\Downloads\zoek.com
2014-06-24 16:53 - 2014-06-24 16:58 - 00000002 _____ () C:\runcheck.txt
2014-06-24 16:53 - 2014-06-24 16:53 - 00000000 ____D () C:\zoek_backup
2014-06-24 16:42 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-24 16:41 - 2014-06-24 16:42 - 00000000 ____D () C:\AdwCleaner
2014-06-24 16:41 - 2014-06-24 16:41 - 01342659 _____ () C:\Users\Gint\Downloads\adwcleaner_3.213.exe
2014-06-24 16:40 - 2014-06-24 16:40 - 00015886 _____ () C:\Users\Gint\Desktop\vypis jrt.txt
2014-06-24 16:40 - 2014-06-24 16:40 - 00015886 _____ () C:\Users\Gint\Desktop\JRT.txt
2014-06-24 16:25 - 2014-06-24 16:25 - 01016261 _____ (Thisisu) C:\Users\Gint\Downloads\JRT.exe
2014-06-24 16:25 - 2014-06-24 16:25 - 00000000 ____D () C:\Windows\ERUNT
2014-06-24 15:39 - 2014-06-24 15:39 - 00007650 _____ () C:\UsbFix [Clean 1] GINT-PC.txt
2014-06-24 15:38 - 2014-06-24 15:41 - 00000000 ____D () C:\UsbFix
2014-06-24 15:38 - 2014-06-24 15:38 - 01144875 _____ (El Desaparecido - SosVirus.net) C:\Users\Gint\Downloads\UsbFix.exe
2014-06-24 15:29 - 2014-06-24 16:09 - 00000000 ____D () C:\Program Files (x86)\trend micro
2014-06-24 15:29 - 2014-06-24 15:29 - 01107968 _____ () C:\Users\Gint\Desktop\RSIT.exe
2014-06-24 15:29 - 2014-06-24 15:29 - 00000000 ____D () C:\rsit
2014-06-23 19:23 - 2014-06-23 19:23 - 00000687 _____ () C:\awh1D30.tmp
2014-06-22 22:41 - 2014-06-22 22:41 - 00000687 _____ () C:\awh367B.tmp
2014-06-17 11:53 - 2014-06-17 11:53 - 00180224 _____ () C:\Windows\SysWOW64\nethtsrv.exe
2014-06-17 11:53 - 2014-06-17 11:53 - 00162304 _____ () C:\Windows\SysWOW64\netupdsrv.exe
2014-06-17 11:53 - 2014-06-17 11:53 - 00108544 _____ () C:\Windows\SysWOW64\installd.exe
2014-06-17 11:53 - 2014-06-17 11:53 - 00108544 _____ () C:\Windows\SysWOW64\hfnapi.dll
2014-06-17 11:53 - 2014-06-17 11:53 - 00046160 _____ (nethfdrv) C:\Windows\system32\Drivers\nethfdrv.sys
2014-06-17 11:52 - 2014-06-17 11:52 - 00246784 _____ () C:\Windows\SysWOW64\hfpapi.dll
2014-06-24 16:56 - 2013-06-08 20:03 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job
2014-06-24 16:56 - 2013-06-03 13:47 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
C:\Users\Gint\AppData\Local\Temp\7za.exe
C:\Users\Gint\AppData\Local\Temp\APNStub.exe
C:\Users\Gint\AppData\Local\Temp\appinstal1.exe
C:\Users\Gint\AppData\Local\Temp\appinstall.exe
C:\Users\Gint\AppData\Local\Temp\applinstall.exe
C:\Users\Gint\AppData\Local\Temp\AutoRun.exe
C:\Users\Gint\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Gint\AppData\Local\Temp\avguidx.dll
C:\Users\Gint\AppData\Local\Temp\BRSVC_12439738_hlp.exe
C:\Users\Gint\AppData\Local\Temp\BundleSweetIMSetup.exe
C:\Users\Gint\AppData\Local\Temp\CommonInstaller.exe
C:\Users\Gint\AppData\Local\Temp\Delta.exe
C:\Users\Gint\AppData\Local\Temp\DeltaTB.exe
C:\Users\Gint\AppData\Local\Temp\detectionapi_rd.dll
C:\Users\Gint\AppData\Local\Temp\detectionui_r.exe
C:\Users\Gint\AppData\Local\Temp\directx10tests_rd.dll
C:\Users\Gint\AppData\Local\Temp\directx11tests_rd.dll
C:\Users\Gint\AppData\Local\Temp\directx9tests_rd.dll
C:\Users\Gint\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Gint\AppData\Local\Temp\drm_dyndata_7290008.dll
C:\Users\Gint\AppData\Local\Temp\drm_dyndata_7380009.dll
C:\Users\Gint\AppData\Local\Temp\drvinstal.exe
C:\Users\Gint\AppData\Local\Temp\DSETUP.dll
C:\Users\Gint\AppData\Local\Temp\dsetup32.dll
C:\Users\Gint\AppData\Local\Temp\DXSETUP.exe
C:\Users\Gint\AppData\Local\Temp\eauninstall.exe
C:\Users\Gint\AppData\Local\Temp\GomEncDnInstaller.exe
C:\Users\Gint\AppData\Local\Temp\Gw2.exe
C:\Users\Gint\AppData\Local\Temp\hijackthis.exe
C:\Users\Gint\AppData\Local\Temp\i4jdel0.exe
C:\Users\Gint\AppData\Local\Temp\i4jdel1.exe
C:\Users\Gint\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Gint\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Gint\AppData\Local\Temp\jre-7u7-windows-i586-iftw.exe
C:\Users\Gint\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
C:\Users\Gint\AppData\Local\Temp\local.dll
C:\Users\Gint\AppData\Local\Temp\MachineIdCreator.exe
C:\Users\Gint\AppData\Local\Temp\mgsqlite3.dll
C:\Users\Gint\AppData\Local\Temp\MybabylonTB.exe
C:\Users\Gint\AppData\Local\Temp\NirCmd.exe
C:\Users\Gint\AppData\Local\Temp\NVI2_29.DLL
C:\Users\Gint\AppData\Local\Temp\offercast.exe
C:\Users\Gint\AppData\Local\Temp\oi_{7F166E42-6C83-403F-94AE-16511003DA20}.exe
C:\Users\Gint\AppData\Local\Temp\PEVZ.EXE
C:\Users\Gint\AppData\Local\Temp\propsys.dll
C:\Users\Gint\AppData\Local\Temp\Quarantine.exe
C:\Users\Gint\AppData\Local\Temp\remove.exe
C:\Users\Gint\AppData\Local\Temp\sed.exe
C:\Users\Gint\AppData\Local\Temp\set-app.exe
C:\Users\Gint\AppData\Local\Temp\setapp.exe
C:\Users\Gint\AppData\Local\Temp\Setup1.exe
C:\Users\Gint\AppData\Local\Temp\shortcut.exe
C:\Users\Gint\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Gint\AppData\Local\Temp\sqlite-unknown-sqlitejdbc.dll
C:\Users\Gint\AppData\Local\Temp\swreg.exe
C:\Users\Gint\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Gint\AppData\Local\Temp\swxcacls.exe
C:\Users\Gint\AppData\Local\Temp\The Battle for Middle-earth II_uninst.exe
C:\Users\Gint\AppData\Local\Temp\ToolbarInstaller.exe
C:\Users\Gint\AppData\Local\Temp\ubi1B9C.tmp.exe
C:\Users\Gint\AppData\Local\Temp\ubiF984.tmp.exe
C:\Users\Gint\AppData\Local\Temp\wget.exe
C:\Users\Gint\AppData\Local\Temp\WSSetup.exe
C:\Users\Gint\AppData\Local\Temp\zoek-delete.exe
C:\Users\Gint\AppData\Local\Temp\_isA079.exe
C:\Users\Gint\AppData\Local\Temp\_isAC0.exe
C:\Users\Gint\AppData\Local\Temp\_isD9F6.exe
C:\Users\Gint\AppData\Local\Temp\~ACDA.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job => C:\Windows\TEMP\{4CCB59E1-FFC0-47BF-B639-59BDFF6091C7}.exe
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\Windows\TEMP\{FEFB953A-F196-4CB4-A44F-31E64B2BA49C}.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-31431094-2971078360-1932619591-1000Core.job => C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-31431094-2971078360-1932619591-1000UA.job => C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe

AlternateDataStreams: C:\ProgramData\TEMP:373E1720

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon" /f

Hosts:
End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
gint
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 24 čer 2014 14:55

Re: Reklamy

#9 Příspěvek od gint »

Mimochodem moc děkuji za pomoc :)
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 22-06-2014
Ran by Gint at 2014-06-24 17:42:45 Run:1
Running from C:\Users\Gint\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [seznam-listicka-distribuce] => "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2013-05-24] (Microsoft Corporation)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [Facebook Update] => C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-10-24] (Facebook Inc.)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [uTorrent] => "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Gint\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Gint\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe [2907184 2014-06-11] (Blizzard Entertainment)
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\...\MountPoints2: {989b844d-da24-11e1-b254-c2fc34f26ef5} - F:\Setup.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO-x32: Media View - {71457232-de12-461f-be94-10ef830bc634} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ie\MediaViewV1alpha762.dll No File
BHO-x32: Media Watch - {7cfae66c-796e-4095-a458-f6fa6e73feb5} - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ie\MediaWatchV1home3348.dll No File
BHO-x32: Media View - {88eb4867-77d3-431e-b109-8de5d205accd} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ie\MediaViewV1alpha3624.dll No File
BHO-x32: Media Buzz - {ba15f64e-2e1b-45ea-8a6a-312584a20e68} - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ie\MediaBuzzV1mode908.dll ()
BHO-x32: Media Watch - {dc7aa6c5-72d3-4379-98cd-6301144686e6} - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ie\MediaWatchV1home894.dll No File

FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta1056.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta1056\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha762.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha3624.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaWatchV1home894.net] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaWatchV1home3348.net] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaBuzzV1mode908.net] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ff
FF Extension: Media Buzz - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ff [2014-04-25]

CHR Extension: (Ask Toolbar) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajabnoiehionljhjpclogplgillib [2014-06-21]
CHR Extension: (Rich Media View) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\epiiemakpkpkajhemjjoofhijcgemdfc [2014-06-21]
CHR Extension: (Media View) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdimfgbenfglpebfpjpfgogeajedpfbk [2014-06-21]
CHR Extension: (No Name) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjbbjfdilbioabojmcplalojlmdngbjl [2014-06-21]
CHR Extension: (Media View) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhpghmlcnigklkaefpbgphjiiinlmmhc [2014-06-21]
CHR Extension: (Media Watch) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnjihabommffbbkkpheoembpagdgache [2014-06-21]
CHR Extension: (Video Player) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\kplbekagfgogpinmldfnonaidcobdkhi [2014-06-21]
CHR Extension: (No Name) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-06-21]
CHR Extension: (Media Buzz) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\nllmekiobgfoiahggfdepnopkdkgigie [2014-06-21]
CHR Extension: (Media Watch) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\oekcipgjbookeegfhmopnkejdagchijh [2014-06-21]
CHR Extension: (Ask Shopping Toolbar) - C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgghoahdhkjiojjjpacpaojbfbdbfoc [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [fdimfgbenfglpebfpjpfgogeajedpfbk] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ch\MediaViewV1alpha762.crx [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [hhpghmlcnigklkaefpbgphjiiinlmmhc] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ch\MediaViewV1alpha3624.crx [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [hnjihabommffbbkkpheoembpagdgache] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ch\MediaWatchV1home3348.crx [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [kplbekagfgogpinmldfnonaidcobdkhi] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta1056\ch\VideoPlayerV3beta1056.crx [2014-06-21]
CHR HKLM-x32\...\Chrome\Extension: [nllmekiobgfoiahggfdepnopkdkgigie] - C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ch\MediaBuzzV1mode908.crx [2014-04-23]
CHR HKLM-x32\...\Chrome\Extension: [oekcipgjbookeegfhmopnkejdagchijh] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ch\MediaWatchV1home894.crx [2014-04-23]

R2 NetHttpService; C:\Windows\SysWOW64\nethtsrv.exe [180224 2014-06-17] () [File not signed]
S4 ServiceUpdater; C:\Windows\SysWOW64\netupdsrv.exe [162304 2014-06-17] () [File not signed]
R1 nethfdrv; C:\Windows\system32\drivers\nethfdrv.sys [46160 2014-06-17] (nethfdrv)

C:\Program Files (x86)\VideoPlayerV3
C:\Program Files (x86)\MediaWatchV1
C:\Program Files (x86)\MediaBuzzV1
C:\Program Files (x86)\MediaViewV1
C:\Program Files (x86)\AskPartnerNetwork
2014-06-24 17:12 - 2014-06-24 17:12 - 00112640 _____ (forum.viry.cz) C:\Users\Gint\Desktop\FRSTLauncher.exe
2014-06-24 17:06 - 2014-06-24 17:06 - 04235784 _____ () C:\Users\Gint\Downloads\zoek.rar
2014-06-24 17:06 - 2014-06-24 17:06 - 00003120 _____ () C:\Windows\System32\Tasks\{CDB5C5F4-028F-4AD6-B9AF-5D2BF5165A65}
2014-06-24 17:06 - 2014-05-21 08:31 - 01414867 _____ () C:\Users\Gint\Downloads\zoek.scr
2014-06-24 17:06 - 2014-05-21 08:31 - 01414867 _____ () C:\Users\Gint\Downloads\zoek.pif
2014-06-24 17:06 - 2014-05-21 08:31 - 01414867 _____ () C:\Users\Gint\Downloads\zoek.com
2014-06-24 16:53 - 2014-06-24 16:58 - 00000002 _____ () C:\runcheck.txt
2014-06-24 16:53 - 2014-06-24 16:53 - 00000000 ____D () C:\zoek_backup
2014-06-24 16:42 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-24 16:41 - 2014-06-24 16:42 - 00000000 ____D () C:\AdwCleaner
2014-06-24 16:41 - 2014-06-24 16:41 - 01342659 _____ () C:\Users\Gint\Downloads\adwcleaner_3.213.exe
2014-06-24 16:40 - 2014-06-24 16:40 - 00015886 _____ () C:\Users\Gint\Desktop\vypis jrt.txt
2014-06-24 16:40 - 2014-06-24 16:40 - 00015886 _____ () C:\Users\Gint\Desktop\JRT.txt
2014-06-24 16:25 - 2014-06-24 16:25 - 01016261 _____ (Thisisu) C:\Users\Gint\Downloads\JRT.exe
2014-06-24 16:25 - 2014-06-24 16:25 - 00000000 ____D () C:\Windows\ERUNT
2014-06-24 15:39 - 2014-06-24 15:39 - 00007650 _____ () C:\UsbFix [Clean 1] GINT-PC.txt
2014-06-24 15:38 - 2014-06-24 15:41 - 00000000 ____D () C:\UsbFix
2014-06-24 15:38 - 2014-06-24 15:38 - 01144875 _____ (El Desaparecido - SosVirus.net) C:\Users\Gint\Downloads\UsbFix.exe
2014-06-24 15:29 - 2014-06-24 16:09 - 00000000 ____D () C:\Program Files (x86)\trend micro
2014-06-24 15:29 - 2014-06-24 15:29 - 01107968 _____ () C:\Users\Gint\Desktop\RSIT.exe
2014-06-24 15:29 - 2014-06-24 15:29 - 00000000 ____D () C:\rsit
2014-06-23 19:23 - 2014-06-23 19:23 - 00000687 _____ () C:\awh1D30.tmp
2014-06-22 22:41 - 2014-06-22 22:41 - 00000687 _____ () C:\awh367B.tmp
2014-06-17 11:53 - 2014-06-17 11:53 - 00180224 _____ () C:\Windows\SysWOW64\nethtsrv.exe
2014-06-17 11:53 - 2014-06-17 11:53 - 00162304 _____ () C:\Windows\SysWOW64\netupdsrv.exe
2014-06-17 11:53 - 2014-06-17 11:53 - 00108544 _____ () C:\Windows\SysWOW64\installd.exe
2014-06-17 11:53 - 2014-06-17 11:53 - 00108544 _____ () C:\Windows\SysWOW64\hfnapi.dll
2014-06-17 11:53 - 2014-06-17 11:53 - 00046160 _____ (nethfdrv) C:\Windows\system32\Drivers\nethfdrv.sys
2014-06-17 11:52 - 2014-06-17 11:52 - 00246784 _____ () C:\Windows\SysWOW64\hfpapi.dll
2014-06-24 16:56 - 2013-06-08 20:03 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job
2014-06-24 16:56 - 2013-06-03 13:47 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
C:\Users\Gint\AppData\Local\Temp\7za.exe
C:\Users\Gint\AppData\Local\Temp\APNStub.exe
C:\Users\Gint\AppData\Local\Temp\appinstal1.exe
C:\Users\Gint\AppData\Local\Temp\appinstall.exe
C:\Users\Gint\AppData\Local\Temp\applinstall.exe
C:\Users\Gint\AppData\Local\Temp\AutoRun.exe
C:\Users\Gint\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Gint\AppData\Local\Temp\avguidx.dll
C:\Users\Gint\AppData\Local\Temp\BRSVC_12439738_hlp.exe
C:\Users\Gint\AppData\Local\Temp\BundleSweetIMSetup.exe
C:\Users\Gint\AppData\Local\Temp\CommonInstaller.exe
C:\Users\Gint\AppData\Local\Temp\Delta.exe
C:\Users\Gint\AppData\Local\Temp\DeltaTB.exe
C:\Users\Gint\AppData\Local\Temp\detectionapi_rd.dll
C:\Users\Gint\AppData\Local\Temp\detectionui_r.exe
C:\Users\Gint\AppData\Local\Temp\directx10tests_rd.dll
C:\Users\Gint\AppData\Local\Temp\directx11tests_rd.dll
C:\Users\Gint\AppData\Local\Temp\directx9tests_rd.dll
C:\Users\Gint\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Gint\AppData\Local\Temp\drm_dyndata_7290008.dll
C:\Users\Gint\AppData\Local\Temp\drm_dyndata_7380009.dll
C:\Users\Gint\AppData\Local\Temp\drvinstal.exe
C:\Users\Gint\AppData\Local\Temp\DSETUP.dll
C:\Users\Gint\AppData\Local\Temp\dsetup32.dll
C:\Users\Gint\AppData\Local\Temp\DXSETUP.exe
C:\Users\Gint\AppData\Local\Temp\eauninstall.exe
C:\Users\Gint\AppData\Local\Temp\GomEncDnInstaller.exe
C:\Users\Gint\AppData\Local\Temp\Gw2.exe
C:\Users\Gint\AppData\Local\Temp\hijackthis.exe
C:\Users\Gint\AppData\Local\Temp\i4jdel0.exe
C:\Users\Gint\AppData\Local\Temp\i4jdel1.exe
C:\Users\Gint\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Gint\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Gint\AppData\Local\Temp\jre-7u7-windows-i586-iftw.exe
C:\Users\Gint\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
C:\Users\Gint\AppData\Local\Temp\local.dll
C:\Users\Gint\AppData\Local\Temp\MachineIdCreator.exe
C:\Users\Gint\AppData\Local\Temp\mgsqlite3.dll
C:\Users\Gint\AppData\Local\Temp\MybabylonTB.exe
C:\Users\Gint\AppData\Local\Temp\NirCmd.exe
C:\Users\Gint\AppData\Local\Temp\NVI2_29.DLL
C:\Users\Gint\AppData\Local\Temp\offercast.exe
C:\Users\Gint\AppData\Local\Temp\oi_{7F166E42-6C83-403F-94AE-16511003DA20}.exe
C:\Users\Gint\AppData\Local\Temp\PEVZ.EXE
C:\Users\Gint\AppData\Local\Temp\propsys.dll
C:\Users\Gint\AppData\Local\Temp\Quarantine.exe
C:\Users\Gint\AppData\Local\Temp\remove.exe
C:\Users\Gint\AppData\Local\Temp\sed.exe
C:\Users\Gint\AppData\Local\Temp\set-app.exe
C:\Users\Gint\AppData\Local\Temp\setapp.exe
C:\Users\Gint\AppData\Local\Temp\Setup1.exe
C:\Users\Gint\AppData\Local\Temp\shortcut.exe
C:\Users\Gint\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Gint\AppData\Local\Temp\sqlite-unknown-sqlitejdbc.dll
C:\Users\Gint\AppData\Local\Temp\swreg.exe
C:\Users\Gint\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Gint\AppData\Local\Temp\swxcacls.exe
C:\Users\Gint\AppData\Local\Temp\The Battle for Middle-earth II_uninst.exe
C:\Users\Gint\AppData\Local\Temp\ToolbarInstaller.exe
C:\Users\Gint\AppData\Local\Temp\ubi1B9C.tmp.exe
C:\Users\Gint\AppData\Local\Temp\ubiF984.tmp.exe
C:\Users\Gint\AppData\Local\Temp\wget.exe
C:\Users\Gint\AppData\Local\Temp\WSSetup.exe
C:\Users\Gint\AppData\Local\Temp\zoek-delete.exe
C:\Users\Gint\AppData\Local\Temp\_isA079.exe
C:\Users\Gint\AppData\Local\Temp\_isAC0.exe
C:\Users\Gint\AppData\Local\Temp\_isD9F6.exe
C:\Users\Gint\AppData\Local\Temp\~ACDA.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job => C:\Windows\TEMP\{4CCB59E1-FFC0-47BF-B639-59BDFF6091C7}.exe
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\Windows\TEMP\{FEFB953A-F196-4CB4-A44F-31E64B2BA49C}.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-31431094-2971078360-1932619591-1000Core.job => C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-31431094-2971078360-1932619591-1000UA.job => C:\Users\Gint\AppData\Local\Facebook\Update\FacebookUpdate.exe

AlternateDataStreams: C:\ProgramData\TEMP:373E1720

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon" /f

Hosts:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => value deleted successfully.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce\\SPReview => value deleted successfully.
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update => value deleted successfully.
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent => value deleted successfully.
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => value deleted successfully.
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => value deleted successfully.
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => value deleted successfully.
HKU\S-1-5-21-31431094-2971078360-1932619591-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Battle.net => value deleted successfully.
'HKU\S-1-5-21-31431094-2971078360-1932619591-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{989b844d-da24-11e1-b254-c2fc34f26ef5}' => Key deleted successfully.
'HKCR\CLSID\{989b844d-da24-11e1-b254-c2fc34f26ef5}'=> Key not found.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{71457232-de12-461f-be94-10ef830bc634}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{71457232-de12-461f-be94-10ef830bc634}' => Key deleted successfully.
'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7cfae66c-796e-4095-a458-f6fa6e73feb5}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{7cfae66c-796e-4095-a458-f6fa6e73feb5}' => Key deleted successfully.
'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88eb4867-77d3-431e-b109-8de5d205accd}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{88eb4867-77d3-431e-b109-8de5d205accd}' => Key deleted successfully.
'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ba15f64e-2e1b-45ea-8a6a-312584a20e68}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{ba15f64e-2e1b-45ea-8a6a-312584a20e68}' => Key deleted successfully.
'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dc7aa6c5-72d3-4379-98cd-6301144686e6}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{dc7aa6c5-72d3-4379-98cd-6301144686e6}' => Key deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@VideoPlayerV3beta1056.net => value deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@MediaViewV1alpha762.net => value deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@MediaViewV1alpha3624.net => value deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@MediaWatchV1home894.net => value deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@MediaWatchV1home3348.net => value deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@MediaBuzzV1mode908.net => value deleted successfully.
C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ff => Moved successfully.
C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajabnoiehionljhjpclogplgillib => Moved successfully.
C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\epiiemakpkpkajhemjjoofhijcgemdfc => Moved successfully.
C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdimfgbenfglpebfpjpfgogeajedpfbk => Moved successfully.
C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjbbjfdilbioabojmcplalojlmdngbjl => Moved successfully.
C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhpghmlcnigklkaefpbgphjiiinlmmhc => Moved successfully.
C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnjihabommffbbkkpheoembpagdgache => Moved successfully.
C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\kplbekagfgogpinmldfnonaidcobdkhi => Moved successfully.
C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof => Moved successfully.
C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\nllmekiobgfoiahggfdepnopkdkgigie => Moved successfully.
C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\oekcipgjbookeegfhmopnkejdagchijh => Moved successfully.
C:\Users\Gint\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgghoahdhkjiojjjpacpaojbfbdbfoc => Moved successfully.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fdimfgbenfglpebfpjpfgogeajedpfbk' => Key deleted successfully.
"C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha762\ch\MediaViewV1alpha762.crx" => File/Directory not found.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\hhpghmlcnigklkaefpbgphjiiinlmmhc' => Key deleted successfully.
"C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha3624\ch\MediaViewV1alpha3624.crx" => File/Directory not found.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\hnjihabommffbbkkpheoembpagdgache' => Key deleted successfully.
"C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3348\ch\MediaWatchV1home3348.crx" => File/Directory not found.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kplbekagfgogpinmldfnonaidcobdkhi' => Key deleted successfully.
"C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta1056\ch\VideoPlayerV3beta1056.crx" => File/Directory not found.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\nllmekiobgfoiahggfdepnopkdkgigie' => Key deleted successfully.
C:\Program Files (x86)\MediaBuzzV1\MediaBuzzV1mode908\ch\MediaBuzzV1mode908.crx => Moved successfully.
'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\oekcipgjbookeegfhmopnkejdagchijh' => Key deleted successfully.
"C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home894\ch\MediaWatchV1home894.crx" => File/Directory not found.
NetHttpService => Service stopped successfully.
NetHttpService => Service deleted successfully.
ServiceUpdater => Service deleted successfully.
nethfdrv => Service stopped successfully.
nethfdrv => Service deleted successfully.
"C:\Program Files (x86)\VideoPlayerV3" => File/Directory not found.
"C:\Program Files (x86)\MediaWatchV1" => File/Directory not found.
C:\Program Files (x86)\MediaBuzzV1 => Moved successfully.
"C:\Program Files (x86)\MediaViewV1" => File/Directory not found.
"C:\Program Files (x86)\AskPartnerNetwork" => File/Directory not found.
C:\Users\Gint\Desktop\FRSTLauncher.exe => Moved successfully.
C:\Users\Gint\Downloads\zoek.rar => Moved successfully.
C:\Windows\System32\Tasks\{CDB5C5F4-028F-4AD6-B9AF-5D2BF5165A65} => Moved successfully.
C:\Users\Gint\Downloads\zoek.scr => Moved successfully.
C:\Users\Gint\Downloads\zoek.pif => Moved successfully.
C:\Users\Gint\Downloads\zoek.com => Moved successfully.
"C:\runcheck.txt" => File/Directory not found.
C:\zoek_backup => Moved successfully.
C:\Windows\SysWOW64\sqlite3.dll => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Gint\Downloads\adwcleaner_3.213.exe => Moved successfully.
C:\Users\Gint\Desktop\vypis jrt.txt => Moved successfully.
C:\Users\Gint\Desktop\JRT.txt => Moved successfully.
C:\Users\Gint\Downloads\JRT.exe => Moved successfully.
C:\Windows\ERUNT => Moved successfully.
C:\UsbFix [Clean 1] GINT-PC.txt => Moved successfully.
C:\UsbFix => Moved successfully.
C:\Users\Gint\Downloads\UsbFix.exe => Moved successfully.
C:\Program Files (x86)\trend micro => Moved successfully.
C:\Users\Gint\Desktop\RSIT.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\awh1D30.tmp => Moved successfully.
C:\awh367B.tmp => Moved successfully.
C:\Windows\SysWOW64\nethtsrv.exe => Moved successfully.
C:\Windows\SysWOW64\netupdsrv.exe => Moved successfully.
C:\Windows\SysWOW64\installd.exe => Moved successfully.
C:\Windows\SysWOW64\hfnapi.dll => Moved successfully.
C:\Windows\system32\Drivers\nethfdrv.sys => Moved successfully.
C:\Windows\SysWOW64\hfpapi.dll => Moved successfully.
C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job => Moved successfully.
C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => Moved successfully.
"C:\Users\Gint\AppData\Local\Temp\7za.exe" => File/Directory not found.
C:\Users\Gint\AppData\Local\Temp\APNStub.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\appinstal1.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\appinstall.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\applinstall.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\AutoRun.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\AutoRunGUI.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\avguidx.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\BRSVC_12439738_hlp.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\BundleSweetIMSetup.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\CommonInstaller.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\Delta.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\DeltaTB.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\detectionapi_rd.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\detectionui_r.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\directx10tests_rd.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\directx11tests_rd.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\directx9tests_rd.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\drm_dialogs.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\drm_dyndata_7290008.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\drm_dyndata_7380009.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\drvinstal.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\DSETUP.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\dsetup32.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\DXSETUP.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\eauninstall.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\GomEncDnInstaller.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\Gw2.exe => Moved successfully.
"C:\Users\Gint\AppData\Local\Temp\hijackthis.exe" => File/Directory not found.
C:\Users\Gint\AppData\Local\Temp\i4jdel0.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\i4jdel1.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\jre-7u7-windows-i586-iftw.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\local.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\MachineIdCreator.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\mgsqlite3.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\MybabylonTB.exe => Moved successfully.
"C:\Users\Gint\AppData\Local\Temp\NirCmd.exe" => File/Directory not found.
C:\Users\Gint\AppData\Local\Temp\NVI2_29.DLL => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\offercast.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\oi_{7F166E42-6C83-403F-94AE-16511003DA20}.exe => Moved successfully.
"C:\Users\Gint\AppData\Local\Temp\PEVZ.EXE" => File/Directory not found.
C:\Users\Gint\AppData\Local\Temp\propsys.dll => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\Quarantine.exe => Moved successfully.
"C:\Users\Gint\AppData\Local\Temp\remove.exe" => File/Directory not found.
"C:\Users\Gint\AppData\Local\Temp\sed.exe" => File/Directory not found.
C:\Users\Gint\AppData\Local\Temp\set-app.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\setapp.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\Setup1.exe => Moved successfully.
"C:\Users\Gint\AppData\Local\Temp\shortcut.exe" => File/Directory not found.
C:\Users\Gint\AppData\Local\Temp\SkypeSetup.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\sqlite-unknown-sqlitejdbc.dll => Moved successfully.
"C:\Users\Gint\AppData\Local\Temp\swreg.exe" => File/Directory not found.
C:\Users\Gint\AppData\Local\Temp\swt-win32-3349.dll => Moved successfully.
"C:\Users\Gint\AppData\Local\Temp\swxcacls.exe" => File/Directory not found.
C:\Users\Gint\AppData\Local\Temp\The Battle for Middle-earth II_uninst.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\ToolbarInstaller.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\ubi1B9C.tmp.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\ubiF984.tmp.exe => Moved successfully.
"C:\Users\Gint\AppData\Local\Temp\wget.exe" => File/Directory not found.
C:\Users\Gint\AppData\Local\Temp\WSSetup.exe => Moved successfully.
"C:\Users\Gint\AppData\Local\Temp\zoek-delete.exe" => File/Directory not found.
C:\Users\Gint\AppData\Local\Temp\_isA079.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\_isAC0.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\_isD9F6.exe => Moved successfully.
C:\Users\Gint\AppData\Local\Temp\~ACDA.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job not found.
C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job not found.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-31431094-2971078360-1932619591-1000Core.job => Moved successfully.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-31431094-2971078360-1932619591-1000UA.job => Moved successfully.
C:\ProgramData\TEMP => ":373E1720" ADS removed successfully.

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.


The system needed a reboot.

==== End of Fixlog ====
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Reklamy

#10 Příspěvek od vyosek »

Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
gint
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 24 čer 2014 14:55

Re: Reklamy

#11 Příspěvek od gint »

u toho cleaneru dam A a enter a nic se nedeje ..aspon to nejevi znamky aktivity .
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Reklamy

#12 Příspěvek od vyosek »

Ukoncete jej a pokracujte tedy dalsimi :)
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
gint
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 24 čer 2014 14:55

Re: Reklamy

#13 Příspěvek od gint »

Vše sem udelal :) cleanerem vse vycistil aaa vypada to ze problem zmizel :) snad se neobjevi pozdej a rad bych poděkoval za pomoc a za čas stravený pomocí :) :|
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Reklamy

#14 Příspěvek od vyosek »

Nemate zac, rad jsem pomohl :worship: Zase nekdy Obrázek

A na zaklade Pravidla o zamykani temat :lock:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“