Dobrej den,
mam velky problem se serverem trovi.... a s pridavkem "bing". Nejde me to vymazat.
Prosim tez o vycisteni PC. Prikladam RSIT.
Log:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Bobi at 2014-08-07 12:16:48
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 27 GB (26%) free of 102 GB
Total RAM: 2037 MB (35% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:17:39, on 2014-08-07
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16561)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\WLTRAY.EXE
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ALLMediaServer\mediaserver.exe
C:\Windows\system32\igfxsrvc.exe
C:\Users\Bobi\AppData\Local\Apps\2.0\2C7YBP9B.ZM8\X7RWMQ0Z.XWA\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\DellSystemDetect.exe
C:\Program Files\Dell\Dell WUSB\WQ_Tray2.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Windows\system32\conime.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Bobi\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Bobi\Desktop\RSIT.exe
C:\Program Files\trend micro\Bobi.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://uk.yahoo.com?fr=hp-avast&type=avastbcl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://uk.search.yahoo.com/yhs/search? ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://uk.yahoo.com?fr=hp-avast&type=avastbcl
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:49164;https=127.0.0.1:49164
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>;*.local;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: ArcadeGiant Games - {4FD3B33A-372C-439E-BB87-017365EC693C} - C:\Users\Bobi\AppData\Local\ArcadeGiant\agiantie.dll
O2 - BHO: (no name) - {8b617b00-279e-42ff-beac-1f7a8f41ca13} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: findopolis - {ccfd8427-0c44-4b91-abbb-d6aa65f7d2a1} - C:\Program Files\findopolis\findopolisbho.dll
O3 - Toolbar: (no name) - {8b617b00-279e-42ff-beac-1f7a8f41ca13} - (no file)
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\Windows\system32\WLTRAY.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [BrowserSafeguard Update Task] "C:\Program Files\Browsersafeguard\uninstall.BrowserSafeguard.exe" /CheckUpdate=true
O4 - HKLM\..\Run: [OneMoreGame] C:\Users\Bobi\AppData\Roaming\OneMoreGame\OMG.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKCU\..\Run: [ALLMediaServer] C:\Program Files\ALLMediaServer\MediaServer.exe MINIMIZED START
O4 - HKCU\..\Run: [DellSystemDetect] C:\Users\Bobi\AppData\Local\Apps\2.0\2C7YBP9B.ZM8\X7RWMQ0Z.XWA\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\DellSystemDetect.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Startup: Dropbox.lnk = Bobi\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Ultrawideband Control Center.lnk = C:\Program Files\Dell\Dell WUSB\WQ_Tray2.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c09c50a2\aestsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Usługa Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Usługa iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c09c50a2\STacSV.exe
O23 - Service: Update findopolis - Unknown owner - C:\Program Files\findopolis\updatefindopolis.exe
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - Unknown owner - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe (file missing)
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\Windows\System32\WLTRYSVC.EXE
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 6767 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\ArcadeGiant Updater.job - C:\Users\Bobi\AppData\Local\ArcadeGiant\updater.exe
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore1cfa38668fe86d0.job - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /c
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA1cfa3a08f6df980.job - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4FD3B33A-372C-439E-BB87-017365EC693C}]
ArcadeGiant Games - C:\Users\Bobi\AppData\Local\ArcadeGiant\agiantie.dll [2014-07-23 363456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8b617b00-279e-42ff-beac-1f7a8f41ca13}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-07-23 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ccfd8427-0c44-4b91-abbb-d6aa65f7d2a1}]
findopolis - C:\Program Files\findopolis\findopolisbho.dll [2014-07-19 249632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8b617b00-279e-42ff-beac-1f7a8f41ca13}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"=C:\Windows\system32\WLTRAY.exe [2007-12-08 3444736]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2010-04-05 288040]
"SigmatelSysTrayApp"=C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [2008-02-15 405504]
"BrowserSafeguard Update Task"=C:\Program Files\Browsersafeguard\uninstall.BrowserSafeguard.exe /CheckUpdate=true []
"OneMoreGame"=C:\Users\Bobi\AppData\Roaming\OneMoreGame\OMG.exe []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-23 4086432]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2014-07-08 152392]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2008-02-11 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2008-02-11 166424]
"Persistence"=C:\Windows\system32\igfxpers.exe [2008-02-11 133656]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-10 1233920]
"DellSupportCenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe /P DellSupportCenter []
"ALLMediaServer"=C:\Program Files\ALLMediaServer\MediaServer.exe [2013-07-17 4985856]
"DellSystemDetect"=C:\Users\Bobi\AppData\Local\Apps\2.0\2C7YBP9B.ZM8\X7RWMQ0Z.XWA\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\DellSystemDetect.exe [2014-07-05 262720]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-18 202240]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Ultrawideband Control Center.lnk - C:\Program Files\Dell\Dell WUSB\WQ_Tray2.exe
C:\Users\Bobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Bobi\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2008-02-11 204800]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-08-07 12:16:49 ----D---- C:\Program Files\trend micro
2014-08-07 12:16:48 ----D---- C:\rsit
2014-08-07 11:55:53 ----ASH---- C:\hiberfil.sys
2014-08-07 10:39:32 ----D---- C:\Program Files\SearchProtect
2014-08-07 10:39:24 ----D---- C:\Program Files\Wajam
2014-08-07 09:53:00 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-07-26 05:22:42 ----A---- C:\Windows\bthservsdp.dat
2014-07-24 18:29:50 ----D---- C:\Users\Bobi\AppData\Roaming\dvdcss
2014-07-23 19:30:34 ----D---- C:\Program Files\VideoLAN
2014-07-23 18:10:54 ----D---- C:\Windows\system32\x64
2014-07-23 17:58:02 ----D---- C:\Program Files\iPod
2014-07-23 17:57:53 ----D---- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-07-23 17:57:53 ----D---- C:\Program Files\iTunes
2014-07-23 17:54:43 ----D---- C:\Program Files\Apple Software Update
2014-07-23 17:51:02 ----D---- C:\Program Files\Bonjour
2014-07-23 17:30:59 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2014-07-23 17:30:58 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2014-07-23 17:30:57 ----A---- C:\Windows\system32\drivers\aswNdis2.sys
2014-07-23 17:30:31 ----A---- C:\Windows\avastSS.scr
2014-07-23 17:29:46 ----A---- C:\Windows\system32\drivers\aswNdis.sys
2014-07-22 19:46:19 ----D---- C:\ProgramData\Auslogics
2014-07-22 17:51:05 ----D---- C:\Users\Bobi\AppData\Roaming\AVAST Software
2014-07-22 17:50:01 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2014-07-22 17:50:00 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2014-07-22 17:49:59 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2014-07-22 17:49:58 ----A---- C:\Windows\system32\drivers\aswSP.sys
2014-07-22 17:49:57 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2014-07-22 17:49:57 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2014-07-22 17:49:56 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2014-07-22 17:49:53 ----A---- C:\Windows\system32\aswBoot.exe
2014-07-22 17:48:43 ----D---- C:\Program Files\AVAST Software
2014-07-22 17:43:25 ----A---- C:\Windows\system32\drivers\hyltaxvb.sys
2014-07-22 17:42:54 ----A---- C:\Windows\system32\drivers\txxcngxy.sys
2014-07-22 17:41:41 ----A---- C:\Windows\system32\drivers\tacmhofv.sys
2014-07-22 17:41:40 ----D---- C:\ProgramData\AVAST Software
2014-07-22 17:09:26 ----A---- C:\Windows\ntbtlog.txt
2014-07-19 23:15:23 ----A---- C:\Windows\system32\drivers\SPPD.sys
2014-07-19 23:02:19 ----D---- C:\Program Files\findopolis
2014-07-19 20:20:35 ----D---- C:\Users\Bobi\AppData\Roaming\istart123
2014-07-19 20:19:20 ----D---- C:\Program Files\Browseri_Appe 1.2
2014-07-19 16:39:58 ----D---- C:\ProgramData\WindowsSearch
2014-07-17 21:18:51 ----D---- C:\Program Files\1 Media Player
2014-07-10 14:20:31 ----A---- C:\Windows\system32\qedit.dll
2014-07-09 08:58:37 ----A---- C:\Windows\system32\win32k.sys
2014-07-09 08:58:35 ----A---- C:\Windows\system32\drivers\afd.sys
2014-07-09 08:58:32 ----A---- C:\Windows\system32\vbscript.dll
2014-07-09 08:58:31 ----A---- C:\Windows\system32\wininet.dll
2014-07-09 08:58:31 ----A---- C:\Windows\system32\mshtmled.dll
2014-07-09 08:58:31 ----A---- C:\Windows\system32\jscript.dll
2014-07-09 08:58:31 ----A---- C:\Windows\system32\ieui.dll
2014-07-09 08:58:31 ----A---- C:\Windows\system32\dxtrans.dll
2014-07-09 08:58:31 ----A---- C:\Windows\system32\dxtmsft.dll
2014-07-09 08:58:30 ----A---- C:\Windows\system32\jscript9.dll
2014-07-09 08:58:27 ----A---- C:\Windows\system32\mshtml.dll
2014-07-09 08:58:25 ----A---- C:\Windows\system32\msfeedssync.exe
2014-07-09 08:58:25 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-07-09 08:58:24 ----A---- C:\Windows\system32\url.dll
2014-07-09 08:58:24 ----A---- C:\Windows\system32\msfeeds.dll
2014-07-09 08:58:24 ----A---- C:\Windows\system32\jsproxy.dll
2014-07-09 08:58:20 ----A---- C:\Windows\system32\ieUnatt.exe
2014-07-09 08:58:20 ----A---- C:\Windows\system32\iertutil.dll
2014-07-09 08:58:19 ----A---- C:\Windows\system32\ieframe.dll
2014-07-09 08:58:18 ----A---- C:\Windows\system32\urlmon.dll
2014-07-09 08:58:18 ----A---- C:\Windows\system32\mshta.exe
======List of files/folders modified in the last 1 month======
2014-08-07 12:16:49 ----D---- C:\Program Files
2014-08-07 12:16:46 ----D---- C:\Windows\temp
2014-08-07 12:15:47 ----SHD---- C:\System Volume Information
2014-08-07 12:04:08 ----D---- C:\Users\Bobi\AppData\Roaming\Dropbox
2014-08-07 12:03:08 ----D---- C:\Windows\System32
2014-08-07 12:03:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-07 12:03:07 ----D---- C:\Windows\inf
2014-08-07 11:55:51 ----D---- C:\Windows\system32\wbem
2014-08-07 11:55:51 ----D---- C:\Windows
2014-08-07 11:55:16 ----D---- C:\Windows\system32\config
2014-08-07 11:54:57 ----D---- C:\Windows\Tasks
2014-08-07 11:54:57 ----D---- C:\Windows\system32\Tasks
2014-08-07 11:54:57 ----D---- C:\Windows\system32\spool
2014-08-07 11:54:57 ----D---- C:\Windows\system32\Msdtc
2014-08-07 11:54:57 ----D---- C:\Windows\system32\drivers\etc
2014-08-07 11:54:57 ----D---- C:\Windows\system32\drivers
2014-08-07 11:54:57 ----D---- C:\Windows\system32\catroot2
2014-08-07 11:54:51 ----D---- C:\Program Files\Mozilla Firefox
2014-08-07 11:54:43 ----D---- C:\Windows\registration
2014-08-07 11:43:04 ----D---- C:\Windows\Minidump
2014-08-07 11:29:06 ----SD---- C:\ProgramData\Microsoft
2014-08-07 11:20:00 ----D---- C:\Windows\Prefetch
2014-08-07 09:53:00 ----D---- C:\ProgramData
2014-07-30 07:41:35 ----D---- C:\Users\Bobi\AppData\Roaming\vlc
2014-07-28 08:54:27 ----D---- C:\Windows\system32\WDI
2014-07-23 18:57:16 ----D---- C:\Windows\rescache
2014-07-23 18:16:17 ----D---- C:\Windows\system32\catroot
2014-07-23 18:08:11 ----D---- C:\Windows\winsxs
2014-07-23 18:04:29 ----D---- C:\Windows\system32\MRT
2014-07-23 18:00:57 ----SHD---- C:\Windows\Installer
2014-07-23 17:57:56 ----D---- C:\Program Files\Common Files\Apple
2014-07-23 17:57:53 ----D---- C:\ProgramData\Apple Computer
2014-07-23 17:55:52 ----D---- C:\Windows\Debug
2014-07-23 17:55:44 ----A---- C:\Windows\system32\mrt.exe
2014-07-23 17:49:34 ----D---- C:\ProgramData\Apple
2014-07-19 23:10:53 ----AD---- C:\ProgramData\TEMP
2014-07-17 15:51:01 ----D---- C:\Users\Bobi\AppData\Roaming\PCDr
2014-07-10 14:34:53 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-07-09 16:14:19 ----D---- C:\Windows\Logs
2014-07-09 13:46:17 ----D---- C:\Program Files\Windows Journal
2014-07-09 13:46:15 ----D---- C:\Windows\system32\migration
2014-07-09 13:46:14 ----D---- C:\Program Files\Internet Explorer
2014-07-09 11:37:11 ----D---- C:\Windows\SoftwareDistribution
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswNdis;avast! Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\aswNdis.sys [2014-07-23 12112]
R0 aswNdis2;avast! Firewall NDIS Driver; C:\Windows\system32\drivers\aswNdis2.sys [2014-07-23 252872]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-07-23 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-07-23 192352]
R0 BsStor;InCD Storage Helper Driver; C:\Windows\System32\DRIVERS\bsstor.sys [2002-06-06 9344]
R1 {57f143ae-1ecd-493d-9ddb-32c45a3cecd5}t;{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}t; C:\Windows\system32\drivers\{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}t.sys [2014-06-28 55224]
R1 {ba099a85-e825-4802-83e7-d386a5b4a734}t;{ba099a85-e825-4802-83e7-d386a5b4a734}t; C:\Windows\system32\drivers\{ba099a85-e825-4802-83e7-d386a5b4a734}t.sys [2014-04-24 55232]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2014-07-23 26136]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2014-07-23 55112]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-07-23 779536]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-07-23 414392]
R1 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2014-07-23 57800]
R1 netfilter;netfilter; C:\Windows\system32\drivers\netfilter.sys [2014-06-02 47488]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-07-23 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-07-23 67824]
R2 BsUDF;InCD UDF Driver; C:\Windows\system32\drivers\BsUDF.sys [2002-09-13 448640]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-21 37376]
R2 RMCAST;RMCAST (Pgm) Protocol Driver; C:\Windows\system32\DRIVERS\RMCAST.sys [2009-04-10 113664]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-04 8192]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x86; C:\Windows\system32\DRIVERS\Apfiltr.sys [2010-04-15 252536]
R3 BCM43XX;Dell Wireless WLAN Card Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2007-12-06 1044984]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSF_DPV.sys [2007-08-02 989952]
R3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\HSFHWAZL.sys [2007-08-02 211200]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-02-11 2302976]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service; C:\Windows\system32\drivers\IntcHdmi.sys [2007-06-06 111616]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-10 89088]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\Windows\system32\drivers\stwrt.sys [2008-02-15 330752]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSF_CNXT.sys [2007-08-02 731136]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2007-12-06 298496]
S0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
S1 netfilter2;netfilter2; C:\Windows\system32\drivers\netfilter2.sys []
S3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys []
S3 BelkinH43XX;Belkin 802.11 USB Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwlhigh6.sys [2012-08-01 1740904]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-10 22528]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-18 92160]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2009-04-10 236544]
S3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-11-02 206848]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igxpmp32.sys [2007-08-24 5776928]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016]
S3 NWADI;NWADI Bus Enumerator; C:\Windows\system32\DRIVERS\NWADIenum.sys [2007-06-01 178176]
S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\Windows\System32\Drivers\PCASp50.sys [2007-05-30 27072]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-10 148992]
S3 usb_rndisx;USB RNDIS Adapter; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2014-06-10 45056]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c09c50a2\aestsrv.exe [2007-09-20 73728]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-06-12 43336]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-07-23 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-07-23 106488]
R2 Bonjour Service;Usługa Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-18 21504]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-07-25 647168]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-18 21504]
R2 iprip;@%Systemroot%\system32\iprip.dll,-200; C:\Windows\System32\svchost.exe [2008-01-18 21504]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-07-25 327680]
R2 STacSV;SigmaTel Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c09c50a2\STacSV.exe [2008-02-15 102400]
R2 wltrysvc;Dell Wireless WLAN Tray Service; C:\Windows\System32\WLTRYSVC.EXE [2007-12-08 24064]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-04 386560]
R3 iPod Service;Usługa iPod; C:\Program Files\iPod\bin\iPodService.exe [2014-07-08 553288]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-05 116648]
S2 Update findopolis;Update findopolis; C:\Program Files\findopolis\updatefindopolis.exe [2014-07-19 321824]
S2 WindowsMangerProtect;WindowsMangerProtect Service; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -service []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-10 262320]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-05 116648]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]
S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
trovi-server, bing-server, ocista PC+RSIT
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119544
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: trovi-server, bing-server, ocista PC+RSIT
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: trovi-server, bing-server, ocista PC+RSIT
Predtim jsem pouzil ccleaner.
ted jsem pouzil adwcleaner, ale log me nevyskocil. Co mam udelat? PC se me jen zresetovalo.
p
ted jsem pouzil adwcleaner, ale log me nevyskocil. Co mam udelat? PC se me jen zresetovalo.
p
Re: trovi-server, bing-server, ocista PC+RSIT
Nasel jsem log, tak posilam.
Log:
# AdwCleaner v3.303 - Report created 07/08/2014 at 17:01:07
# Updated 06/08/2014 by Xplode
# Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Username : Bobi - BOBI-PC
# Running from : C:\Users\Bobi\Desktop\adwcleaner_3.303.exe
# Option : Scan
***** [ Services ] *****
Service Found : {57f143ae-1ecd-493d-9ddb-32c45a3cecd5}t
Service Found : {ba099a85-e825-4802-83e7-d386a5b4a734}t
Service Found : wltrysvc
***** [ Files / Folders ] *****
File Found : C:\Users\Bobi\AppData\Roaming\Mozilla\Firefox\Profiles\lbiupxjx.default\user.js
File Found : C:\Windows\system32\drivers\{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}t.sys
File Found : C:\Windows\system32\drivers\{ba099a85-e825-4802-83e7-d386a5b4a734}t.sys
File Found : C:\Windows\system32\WLTRYSVC.EXE
Folder Found : C:\Program Files\SearchProtect
Folder Found : C:\Program Files\Wajam
Folder Found : C:\Users\Bobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Folder Found : C:\Users\Bobi\AppData\Local\Local_Weather_LLC
Folder Found : C:\Users\Bobi\AppData\Local\SearchProtect
Folder Found : C:\Users\Bobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Weather Alerts
***** [ Scheduled Tasks ] *****
Task Found : Advanced System Protector_startup
Task Found : APSnotifierPP1
Task Found : APSnotifierPP2
Task Found : APSnotifierPP3
Task Found : BrowserSafeguard Update Task
Task Found : Driver Support-RTMRules
Task Found : Driver Support-RTMScan
Task Found : Driver Support-RTMScanRunOnce
Task Found : Driver Support-RTMUpdater
Task Found : EPUpdater
Task Found : FinishInstall igdhbblpcellaljokkpfhcjlagemhgjl
Task Found : FoxTab
Task Found : globalUpdateUpdateTaskMachineCore
Task Found : globalUpdateUpdateTaskMachineUA
Task Found : LaunchApp
Task Found : Optimizer Pro Schedule
Task Found : pricemeterdownloader
Task Found : pricemetertask
Task Found : pricemeterwatcher
Task Found : RegClean Pro
Task Found : RegClean Pro_DEFAULT
Task Found : RegClean Pro_UPDATES
Task Found : Re-Markable Update
Task Found : SpeedUpMyPC Maintenance
Task Found : SpeedUpMyPC Startup
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{ac225167-00fc-452d-94c5-bb93600e7d9a}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DesktopWeatherAlerts
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\DesktopWeatherAlerts
Key Found : HKCU\Software\SupHpUISoft
Key Found : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{03771AEF-400D-4A13-B712-25878EC4A3F5}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16561
-\\ Mozilla Firefox v31.0 (x86 cs)
[ File : C:\Users\Bobi\AppData\Roaming\Mozilla\Firefox\Profiles\lbiupxjx.default\prefs.js ]
-\\ Google Chrome v36.0.1985.125
[ File : C:\Users\Bobi\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found [Startup_urls] : hxxp://www.trovi.com/?gd=&ctid=CT3325885&octid ... 78B0&SSPV=
Found [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
Found [Extension] : eofcbnmajmjmplflapaojjnihcjkigck
Found [Extension] : flpcjncodpafbgdpnkljologafpionhb
*************************
AdwCleaner[R2].txt - [7081 octets] - [07/08/2014 17:01:07]
########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [7141 octets] ##########
Log:
# AdwCleaner v3.303 - Report created 07/08/2014 at 17:01:07
# Updated 06/08/2014 by Xplode
# Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Username : Bobi - BOBI-PC
# Running from : C:\Users\Bobi\Desktop\adwcleaner_3.303.exe
# Option : Scan
***** [ Services ] *****
Service Found : {57f143ae-1ecd-493d-9ddb-32c45a3cecd5}t
Service Found : {ba099a85-e825-4802-83e7-d386a5b4a734}t
Service Found : wltrysvc
***** [ Files / Folders ] *****
File Found : C:\Users\Bobi\AppData\Roaming\Mozilla\Firefox\Profiles\lbiupxjx.default\user.js
File Found : C:\Windows\system32\drivers\{57f143ae-1ecd-493d-9ddb-32c45a3cecd5}t.sys
File Found : C:\Windows\system32\drivers\{ba099a85-e825-4802-83e7-d386a5b4a734}t.sys
File Found : C:\Windows\system32\WLTRYSVC.EXE
Folder Found : C:\Program Files\SearchProtect
Folder Found : C:\Program Files\Wajam
Folder Found : C:\Users\Bobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Folder Found : C:\Users\Bobi\AppData\Local\Local_Weather_LLC
Folder Found : C:\Users\Bobi\AppData\Local\SearchProtect
Folder Found : C:\Users\Bobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Weather Alerts
***** [ Scheduled Tasks ] *****
Task Found : Advanced System Protector_startup
Task Found : APSnotifierPP1
Task Found : APSnotifierPP2
Task Found : APSnotifierPP3
Task Found : BrowserSafeguard Update Task
Task Found : Driver Support-RTMRules
Task Found : Driver Support-RTMScan
Task Found : Driver Support-RTMScanRunOnce
Task Found : Driver Support-RTMUpdater
Task Found : EPUpdater
Task Found : FinishInstall igdhbblpcellaljokkpfhcjlagemhgjl
Task Found : FoxTab
Task Found : globalUpdateUpdateTaskMachineCore
Task Found : globalUpdateUpdateTaskMachineUA
Task Found : LaunchApp
Task Found : Optimizer Pro Schedule
Task Found : pricemeterdownloader
Task Found : pricemetertask
Task Found : pricemeterwatcher
Task Found : RegClean Pro
Task Found : RegClean Pro_DEFAULT
Task Found : RegClean Pro_UPDATES
Task Found : Re-Markable Update
Task Found : SpeedUpMyPC Maintenance
Task Found : SpeedUpMyPC Startup
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{ac225167-00fc-452d-94c5-bb93600e7d9a}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DesktopWeatherAlerts
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\DesktopWeatherAlerts
Key Found : HKCU\Software\SupHpUISoft
Key Found : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{03771AEF-400D-4A13-B712-25878EC4A3F5}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16561
-\\ Mozilla Firefox v31.0 (x86 cs)
[ File : C:\Users\Bobi\AppData\Roaming\Mozilla\Firefox\Profiles\lbiupxjx.default\prefs.js ]
-\\ Google Chrome v36.0.1985.125
[ File : C:\Users\Bobi\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found [Startup_urls] : hxxp://www.trovi.com/?gd=&ctid=CT3325885&octid ... 78B0&SSPV=
Found [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
Found [Extension] : eofcbnmajmjmplflapaojjnihcjkigck
Found [Extension] : flpcjncodpafbgdpnkljologafpionhb
*************************
AdwCleaner[R2].txt - [7081 octets] - [07/08/2014 17:01:07]
########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [7141 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119544
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: trovi-server, bing-server, ocista PC+RSIT
Znovu spusťte ADW a klikněte na >clean<. Restartujte a dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?