Zdravím,
můžete prosím pomoci s tímto ntb.Zobrazují se všude reklamy,při startu systému a nebo při přepnutí uživatele trvá vše šíleně dlouho.
Nainstaloval jsem do něho alespoň Avast a ten při kontrole objevil dost neřádů.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:9-08-2014 01
Ran by Kubajs (administrator) on KUBAJS-PC on 10-08-2014 11:45:23
Running from C:\Users\Kubajs\Downloads
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 9
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe
(Fuyu LIMITED) C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\AdminService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Windows\Temp\nsqFCF5.tmp\nsFD72.tmp
(Microsoft Corporation) C:\Windows\System32\cmd.exe
() C:\Program Files\LinkiDoo\updateLinkiDoo.exe
() C:\Program Files\LinkiDoo\bin\utilLinkiDoo.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Atheros) C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files\LinkiDoo\bin\LinkiDoo.PurBrowse.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
() C:\Program Files\LinkiDoo\bin\LinkiDoo.BrowserAdapter.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Atheros Communications) C:\Program Files\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\AthBtTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Vimicro) C:\Program Files\USB Camera2\VM332_STI.EXE
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files\SupTab\HpUI.exe
() C:\Program Files\SupTab\Loader32.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Somoto) C:\Users\Kubajs\AppData\Local\FilesFrog Update Checker\update_checker.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
() C:\Windows\SoftwareProtection\systemvital.exe
() C:\Users\Kubajs\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(U3 LLC) C:\Users\Kubajs\AppData\Roaming\U3\453082163811618C\Launchpad.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_14_0_0_145_ActiveX.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\RunOnce: [removeMoviesToolbardatamngr] => cmd.exe /c RD /S /Q "C:\Program Files\Movies Toolbar"
HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-11-08] (Microsoft Corporation)
HKU\S-1-5-21-190384682-2563944311-3434733752-1000\...\Run: [ShowBatteryBar] => C:\Program Files\BatteryBar\ShowBatteryBar.exe [90624 2013-04-11] ()
HKU\S-1-5-21-190384682-2563944311-3434733752-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-190384682-2563944311-3434733752-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-190384682-2563944311-3434733752-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Kubajs\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-190384682-2563944311-3434733752-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Kubajs\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-190384682-2563944311-3434733752-1000\...\Run: [system34] => C:\Windows\SoftwareProtection\systemvital.exe [624608 2014-05-20] ()
HKU\S-1-5-21-190384682-2563944311-3434733752-1000\...\MountPoints2: F - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-190384682-2563944311-3434733752-1000\...\MountPoints2: {935475dc-48a0-11e3-9379-8aa4daaaf701} - F:\LaunchU3.exe -a
HKU\S-1-5-21-190384682-2563944311-3434733752-1001\...\Run: [RocketDock] => C:\Program Files\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-190384682-2563944311-3434733752-1001\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\JiYí\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKU\S-1-5-21-190384682-2563944311-3434733752-1001\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\JiYí\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-190384682-2563944311-3434733752-1001\...\MountPoints2: {4d48dc33-4926-11e3-92ed-20689d74df50} - E:\AUTORUN.EXE
HKU\S-1-5-21-190384682-2563944311-3434733752-1001\...\MountPoints2: {935475dc-48a0-11e3-9379-8aa4daaaf701} - F:\LaunchU3.exe -a
HKU\S-1-5-21-190384682-2563944311-3434733752-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Mamina\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-190384682-2563944311-3434733752-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Mamina\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
AppInit_DLLs: C:\Windows\system32\nvinit.dll => C:\Windows\system32\nvinit.dll [141336 2013-10-23] (NVIDIA Corporation)
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
Startup: C:\Users\Jiří\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
HKLM\...\AppCertDlls: [x64] -> c:\program files\movies toolbar\safetynut\x64\safetycrt.dll
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp ... J9CC915754
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp ... J9CC915754
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com/web/?typ ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp ... J9CC915754
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp ... J9CC915754
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?typ ... earchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?type=sc ... J9CC915754
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?typ ... earchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?typ ... earchTerms}
SearchScopes: HKLM - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTe ... 2&tsp=5219
SearchScopes: HKCU - {1DA3C358-8B96-4873-AB8E-8B5B9123729F} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKCU - {2680C35C-819A-4D85-9AFA-6593E10A4390} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.webssearches.com/web/?typ ... earchTerms}
SearchScopes: HKCU - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKCU - {59FE88B4-55DF-4697-A1BD-3B25943406BF} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {8023E2A7-C9FA-4D62-B6EA-49752DB1BBF4} URL = http://search.seznam.cz/?q={searchTerms ... arch_16194
SearchScopes: HKCU - {8A292006-07B0-4EBA-9642-73A0D6DDAA9A} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKCU - {C2718C96-03FF-4B57-824A-0B1491F63E28} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKCU - {DE90A9C3-1C22-41B7-964B-26E3B8ACD2CD} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
SearchScopes: HKCU - {E8A85BA3-C9CF-436F-9CDC-E5A2038DBB78} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
SearchScopes: HKCU - {F7549E3F-D784-46DB-BABF-5408C4E5302D} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
BHO: AcroIEHlprObj Class -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Internet Speed Checker -> {11111111-1111-1111-1111-110611171152} -> C:\Program Files\Internet Speed Checker\Internet Speed Checker-bho.dll (Speedchecker)
BHO: HD-V1.9 -> {11111111-1111-1111-1111-110611171188} -> C:\Program Files\HD-V1.9\HD-V1.9-bho.dll (InfoHD-V1.8)
BHO: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> C:\Program Files\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://active.macromedia.com/flash4/cabs/swflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Kubajs\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\Ask.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF HKLM\...\Firefox\Extensions: [ext@RichMediaViewV1release6731.net] - C:\Program Files\RichMediaViewV1\RichMediaViewV1release6731\ff
FF Extension: Rich Media View - C:\Program Files\RichMediaViewV1\RichMediaViewV1release6731\ff [2014-05-14]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-08-09]
Chrome:
=======
CHR StartupUrls: "hxxp://www.seznam.cz/"
CHR Extension: (Dokumenty Google) - C:\Users\Kubajs\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-12]
CHR Extension: (Disk Google) - C:\Users\Kubajs\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-12]
CHR Extension: (YouTube) - C:\Users\Kubajs\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-12]
CHR Extension: (Vyhledávání Google) - C:\Users\Kubajs\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-12]
CHR Extension: (avast! Online Security) - C:\Users\Kubajs\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-10]
CHR Extension: (Peněženka Google) - C:\Users\Kubajs\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-12]
CHR Extension: (Gmail) - C:\Users\Kubajs\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-12]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-09]
CHR HKLM\...\Chrome\Extension: [jkjcolcgkndacklkipmlicccigkflgcc] - C:\Program Files\RichMediaViewV1\RichMediaViewV1release6731\ch\RichMediaViewV1release6731.crx [2014-05-14]
CHR StartMenuInternet: Google Chrome - C:\Program Files\Google\Chrome\Application\chrome.exe http://istart.webssearches.com/?type=sc ... J9CC915754
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-09] (AVAST Software)
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [277616 2012-12-14] (Intel Corporation)
R2 CxAudMsg; C:\Windows\system32\CxAudMsg32.exe [190592 2010-12-17] (Conexant Systems Inc.)
S2 globalUpdate; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608 2014-07-30] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608 2014-07-30] (globalUpdate) [File not signed]
R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [702344 2014-07-27] (Cherished Technololgy LIMITED)
S4 NetHttpService; C:\Windows\system32\nethtsrv.exe [180224 2014-07-29] () [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19701080 2014-04-30] (NVIDIA Corporation)
S2 ProtectMonitor; C:\Program Files\PCDApp\StartHelp.exe [97007 2014-04-10] () [File not signed]
R2 Update LinkiDoo; C:\Program Files\LinkiDoo\updateLinkiDoo.exe [323360 2014-08-09] ()
R2 Util LinkiDoo; C:\Program Files\LinkiDoo\bin\utilLinkiDoo.exe [323360 2014-08-09] ()
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [535936 2014-07-27] (Fuyu LIMITED)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe [163456 2012-04-28] (Atheros)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 ACPIVPC; C:\Windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-08-09] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-08-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-08-09] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-08-09] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-08-09] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-08-09] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [71944 2014-08-09] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-08-09] ()
S3 AthBTPort; C:\Windows\System32\DRIVERS\btath_flt.sys [35968 2012-04-28] (Atheros)
R3 athr; C:\Windows\System32\DRIVERS\athr.sys [2240512 2012-05-31] (Qualcomm Atheros Communications, Inc.)
S3 BTATH_A2DP; C:\Windows\System32\drivers\btath_a2dp.sys [299648 2012-04-28] (Atheros)
S3 btath_avdt; C:\Windows\System32\drivers\btath_avdt.sys [98432 2012-04-28] (Atheros)
R3 BTATH_BUS; C:\Windows\System32\DRIVERS\btath_bus.sys [25728 2012-04-28] (Atheros)
S3 BTATH_HCRP; C:\Windows\System32\DRIVERS\btath_hcrp.sys [148096 2012-04-28] (Atheros)
S3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [60544 2012-04-28] (Atheros)
S3 BTATH_RCP; C:\Windows\System32\DRIVERS\btath_rcp.sys [264448 2012-04-28] (Atheros)
S3 BtFilter; C:\Windows\System32\DRIVERS\btfilter.sys [468096 2012-04-28] (Atheros)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2013-11-10] (Disc Soft Ltd)
R3 ETD; C:\Windows\System32\DRIVERS\ETD.sys [271248 2012-08-08] (ELAN Microelectronics Corp.)
R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [15680 2012-05-21] (Intel Corporation)
R3 iusb3hub; C:\Windows\System32\DRIVERS\iusb3hub.sys [350016 2012-05-21] (Intel Corporation)
R3 iusb3xhc; C:\Windows\System32\DRIVERS\iusb3xhc.sys [793920 2012-05-21] (Intel Corporation)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [55104 2012-07-17] (Intel Corporation)
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [95304 2011-11-10] (MotioninJoy)
R1 nethfdrv; C:\Windows\system32\drivers\nethfdrv.sys [40528 2014-07-29] (nethfdrv)
R0 nvpciflt; C:\Windows\System32\DRIVERS\nvpciflt.sys [27936 2013-10-23] (NVIDIA Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19400 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2014-03-31] (NVIDIA Corporation)
S0 sfdrv01; C:\Windows\System32\drivers\sfdrv01.sys [50688 2005-08-10] (Protection Technology) [File not signed]
R0 sfhlp02; C:\Windows\System32\drivers\sfhlp02.sys [6656 2005-05-16] (Protection Technology) [File not signed]
S0 sfvfs02; C:\Windows\System32\drivers\sfvfs02.sys [63488 2005-11-03] (Protection Technology) [File not signed]
R3 vm332avs; C:\Windows\System32\Drivers\vm332avs.sys [930000 2012-02-06] (Vimicro Corporation)
R1 {75edaf6c-4dcf-4f61-a079-f7488c24b3d9}w; C:\Windows\System32\drivers\{75edaf6c-4dcf-4f61-a079-f7488c24b3d9}w.sys [52920 2014-04-24] (StdLib)
R4 F06DEFF2-5B9C-490D-910F-35D3A91196222; \??\C:\Program Files\Movies Toolbar\SafetyNut\configmgrc2.cfg [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 vtany; \??\C:\Windows\vtany.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-10 11:45 - 2014-08-10 11:46 - 00025233 _____ () C:\Users\Kubajs\Downloads\FRST.txt
2014-08-10 11:43 - 2014-08-10 11:45 - 00000000 ____D () C:\FRST
2014-08-10 11:43 - 2014-08-10 11:43 - 01084928 _____ (Farbar) C:\Users\Kubajs\Downloads\FRST.exe
2014-08-10 11:39 - 2014-08-10 11:39 - 00112640 _____ (forum.viry.cz) C:\Users\Kubajs\Desktop\FRSTLauncher.exe
2014-08-10 11:32 - 2014-08-10 11:33 - 01083476 _____ () C:\Users\Kubajs\Desktop\FRST.exe
2014-08-09 22:13 - 2014-08-09 22:13 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00276432 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-08-09 22:13 - 2014-08-09 22:13 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00071944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-09 22:13 - 2014-08-09 22:13 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00002119 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-09 22:13 - 2014-08-09 22:13 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\AVAST Software
2014-08-09 22:13 - 2014-08-09 22:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-09 22:12 - 2014-08-09 22:12 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-09 22:12 - 2014-08-09 22:12 - 00000000 ____D () C:\Program Files\AVAST Software
2014-08-09 22:12 - 2014-07-25 12:49 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-09 22:11 - 2014-08-09 22:12 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-08-09 22:11 - 2014-07-25 12:49 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-09 22:11 - 2014-07-25 12:49 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-09 22:10 - 2014-08-09 22:11 - 00004448 _____ () C:\Windows\system32\jupdate-1.7.0_67-b01.log
2014-08-09 22:09 - 2014-08-09 22:10 - 04862664 _____ (AVAST Software) C:\Users\Kubajs\Downloads\avast_free_antivirus_setup_online.exe
2014-08-09 22:02 - 2014-08-09 22:02 - 00000687 _____ () C:\awh379.tmp
2014-08-05 07:11 - 2014-08-05 07:11 - 00000000 ____D () C:\Users\Jiří\AppData\Roaming\Nico Mak Computing
2014-08-03 19:26 - 2014-08-03 19:26 - 00000359 _____ () C:\Users\Jiří\Desktop\Počítač – zástupce.lnk
2014-08-03 19:10 - 2014-08-03 19:10 - 00000687 _____ () C:\awh7DC.tmp
2014-08-03 19:06 - 2014-08-05 07:26 - 00000000 ____D () C:\Users\Jiří\AppData\Roaming\Seznam.cz
2014-08-03 16:49 - 2014-08-03 16:49 - 00000687 _____ () C:\awhE88A.tmp
2014-08-03 03:27 - 2014-08-03 03:27 - 00000687 _____ () C:\awhDE35.tmp
2014-07-30 16:20 - 2014-08-10 11:21 - 00001898 _____ () C:\Windows\Tasks\ccbd0143-600a-4778-8419-9488124cf828-6.job
2014-07-30 16:20 - 2014-08-10 11:11 - 00000000 ____D () C:\Program Files\Internet Speed Checker
2014-07-30 16:06 - 2014-07-30 16:06 - 00000687 _____ () C:\awhFBDB.tmp
2014-07-30 13:05 - 2014-08-06 21:40 - 00000000 ____D () C:\Users\Kubajs\AppData\Local\NFS Underground 2
2014-07-30 13:01 - 2014-07-30 13:01 - 00002150 _____ () C:\Users\Public\Desktop\Need for Speed Underground 2.lnk
2014-07-30 13:01 - 2014-07-30 13:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2014-07-30 12:56 - 2014-07-30 12:56 - 00000000 ____D () C:\Program Files\EA GAMES
2014-07-30 12:33 - 2014-07-30 12:33 - 00017042 _____ () C:\Users\Kubajs\Downloads\[CzT]Need_for_speed_Underground_2_HD_CZ_.torrent
2014-07-30 11:27 - 2014-07-30 11:27 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-07-30 06:25 - 2014-07-30 06:25 - 00000687 _____ () C:\awhCF67.tmp
2014-07-29 08:41 - 2014-07-29 08:41 - 00110592 _____ () C:\Windows\system32\installd.exe
2014-07-29 08:41 - 2014-07-29 08:41 - 00040528 _____ (nethfdrv) C:\Windows\system32\Drivers\nethfdrv.sys
2014-07-29 08:40 - 2014-07-29 08:40 - 00246784 _____ () C:\Windows\system32\hfpapi.dll
2014-07-29 08:40 - 2014-07-29 08:40 - 00180224 _____ () C:\Windows\system32\nethtsrv.exe
2014-07-29 08:40 - 2014-07-29 08:40 - 00108544 _____ () C:\Windows\system32\hfnapi.dll
2014-07-28 01:43 - 2014-07-28 01:43 - 00000687 _____ () C:\awhD22F.tmp
2014-07-27 21:53 - 2014-07-27 21:53 - 00357600 _____ () C:\Users\Kubajs\Downloads\GotClipDownloader__6629_i1095844715_il335.exe
2014-07-27 21:13 - 2014-07-27 21:13 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\QuickScan
2014-07-27 21:12 - 2014-07-27 21:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-27 21:11 - 2014-07-27 21:11 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-27 21:10 - 2014-08-10 11:16 - 00000930 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-07-27 21:10 - 2014-08-10 11:16 - 00000588 _____ () C:\Windows\Tasks\1c89fa2e-4480-433e-a61a-929c000cf02f-11.job
2014-07-27 21:10 - 2014-08-10 11:11 - 00000000 ____D () C:\Program Files\HD-V1.9
2014-07-27 21:10 - 2014-08-10 10:25 - 00000934 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-07-27 21:10 - 2014-07-27 21:10 - 00000000 ____D () C:\Users\Kubajs\AppData\Local\globalUpdate
2014-07-27 21:10 - 2014-07-27 21:10 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2014-07-27 21:10 - 2014-07-27 21:10 - 00000000 ____D () C:\ProgramData\IePluginServices
2014-07-27 21:10 - 2014-07-27 21:10 - 00000000 ____D () C:\Program Files\SupTab
2014-07-27 21:10 - 2014-07-27 21:10 - 00000000 ____D () C:\Program Files\globalUpdate
2014-07-27 21:08 - 2014-07-27 21:09 - 00357600 _____ () C:\Users\Kubajs\Downloads\GotClipDownloader__6629_i1095687724_il335.exe
2014-07-27 15:22 - 2014-07-27 15:22 - 00000213 _____ () C:\Users\Kubajs\Desktop\Counter-Strike Global Offensive.url
2014-07-27 15:22 - 2014-07-27 15:22 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-07-27 15:12 - 2014-08-03 16:37 - 00000000 ____D () C:\Program Files\Steam
2014-07-27 15:12 - 2014-07-29 09:25 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-07-27 15:12 - 2014-07-27 15:12 - 00000921 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-07-27 15:11 - 2014-07-27 15:12 - 01141680 _____ () C:\Users\Kubajs\Downloads\SteamSetup.exe
2014-07-26 14:03 - 2014-07-26 14:04 - 00970832 _____ (Microsoft Corporation) C:\Users\Kubajs\Downloads\msvcr120.dll
2014-07-25 18:54 - 2014-07-25 18:54 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\Unity
2014-07-24 16:43 - 2014-07-24 16:43 - 00002001 _____ () C:\Users\Public\Desktop\MX vs ATV Reflex.lnk
2014-07-24 16:43 - 2014-07-24 16:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\THQ
2014-07-23 22:36 - 2014-07-23 22:36 - 00000000 ____D () C:\Users\Kubajs\AppData\Local\Electronic Arts
2014-07-23 22:33 - 2014-07-23 22:33 - 00002027 _____ () C:\Users\Public\Desktop\Dead Space™.lnk
2014-07-23 22:23 - 2014-07-23 22:23 - 00000000 ____D () C:\Users\Kubajs\Documents\Electronic Arts
2014-07-23 22:23 - 2014-07-23 22:23 - 00000000 ____D () C:\Program Files\Electronic Arts
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-10 11:46 - 2014-08-10 11:45 - 00025233 _____ () C:\Users\Kubajs\Downloads\FRST.txt
2014-08-10 11:46 - 2014-06-12 13:05 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-10 11:45 - 2014-08-10 11:43 - 00000000 ____D () C:\FRST
2014-08-10 11:43 - 2014-08-10 11:43 - 01084928 _____ (Farbar) C:\Users\Kubajs\Downloads\FRST.exe
2014-08-10 11:39 - 2014-08-10 11:39 - 00112640 _____ (forum.viry.cz) C:\Users\Kubajs\Desktop\FRSTLauncher.exe
2014-08-10 11:37 - 2009-07-14 06:34 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-10 11:37 - 2009-07-14 06:34 - 00014016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-10 11:33 - 2014-08-10 11:32 - 01083476 _____ () C:\Users\Kubajs\Desktop\FRST.exe
2014-08-10 11:33 - 2014-05-20 13:50 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-10 11:28 - 2013-11-08 20:09 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\U3
2014-08-10 11:26 - 2013-11-08 19:53 - 02072807 _____ () C:\Windows\WindowsUpdate.log
2014-08-10 11:21 - 2014-07-30 16:20 - 00001898 _____ () C:\Windows\Tasks\ccbd0143-600a-4778-8419-9488124cf828-6.job
2014-08-10 11:21 - 2014-04-16 16:16 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\Seznam.cz
2014-08-10 11:18 - 2013-12-03 17:01 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\Skype
2014-08-10 11:16 - 2014-07-27 21:10 - 00000930 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-08-10 11:16 - 2014-07-27 21:10 - 00000588 _____ () C:\Windows\Tasks\1c89fa2e-4480-433e-a61a-929c000cf02f-11.job
2014-08-10 11:16 - 2014-06-12 13:05 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-10 11:16 - 2009-07-14 04:04 - 00000702 _____ () C:\Windows\win.ini
2014-08-10 11:15 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-10 11:15 - 2009-07-14 06:39 - 00042236 _____ () C:\Windows\setupact.log
2014-08-10 11:11 - 2014-07-30 16:20 - 00000000 ____D () C:\Program Files\Internet Speed Checker
2014-08-10 11:11 - 2014-07-27 21:10 - 00000000 ____D () C:\Program Files\HD-V1.9
2014-08-10 10:25 - 2014-07-27 21:10 - 00000934 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-08-10 07:26 - 2014-04-16 16:15 - 00000000 ____D () C:\Users\Kubajs\AppData\Local\41
2014-08-09 22:28 - 2013-11-10 14:44 - 00000000 ____D () C:\Users\Kubajs\AppData\Local\CrashDumps
2014-08-09 22:17 - 2014-04-16 16:16 - 00000000 ____D () C:\Program Files\PCDApp
2014-08-09 22:13 - 2014-08-09 22:13 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00276432 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-08-09 22:13 - 2014-08-09 22:13 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00071944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-09 22:13 - 2014-08-09 22:13 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-08-09 22:13 - 2014-08-09 22:13 - 00002119 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-09 22:13 - 2014-08-09 22:13 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\AVAST Software
2014-08-09 22:13 - 2014-08-09 22:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-09 22:12 - 2014-08-09 22:12 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-09 22:12 - 2014-08-09 22:12 - 00000000 ____D () C:\Program Files\AVAST Software
2014-08-09 22:12 - 2014-08-09 22:11 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-08-09 22:12 - 2013-11-08 23:08 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-09 22:11 - 2014-08-09 22:10 - 00004448 _____ () C:\Windows\system32\jupdate-1.7.0_67-b01.log
2014-08-09 22:11 - 2013-11-08 23:07 - 00000000 ____D () C:\Program Files\Java
2014-08-09 22:10 - 2014-08-09 22:09 - 04862664 _____ (AVAST Software) C:\Users\Kubajs\Downloads\avast_free_antivirus_setup_online.exe
2014-08-09 22:02 - 2014-08-09 22:02 - 00000687 _____ () C:\awh379.tmp
2014-08-06 21:40 - 2014-07-30 13:05 - 00000000 ____D () C:\Users\Kubajs\AppData\Local\NFS Underground 2
2014-08-06 21:40 - 2014-05-06 21:40 - 00000294 _____ () C:\Windows\Tasks\Registry Optimizer_UPDATES.job
2014-08-06 17:25 - 2014-05-06 21:40 - 00000286 _____ () C:\Windows\Tasks\Registry Optimizer_DEFAULT.job
2014-08-05 07:26 - 2014-08-03 19:06 - 00000000 ____D () C:\Users\Jiří\AppData\Roaming\Seznam.cz
2014-08-05 07:11 - 2014-08-05 07:11 - 00000000 ____D () C:\Users\Jiří\AppData\Roaming\Nico Mak Computing
2014-08-03 23:05 - 2014-01-25 16:01 - 00000000 ____D () C:\Users\Jiří\AppData\Local\NVIDIA Corporation
2014-08-03 19:26 - 2014-08-03 19:26 - 00000359 _____ () C:\Users\Jiří\Desktop\Počítač – zástupce.lnk
2014-08-03 19:25 - 2013-11-08 20:01 - 01576554 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-03 19:21 - 2014-01-27 12:22 - 00000000 ____D () C:\Users\Jiří\AppData\Roaming\U3
2014-08-03 19:19 - 2014-01-25 16:01 - 00000000 ____D () C:\Users\Jiří\AppData\Local\CrashDumps
2014-08-03 19:10 - 2014-08-03 19:10 - 00000687 _____ () C:\awh7DC.tmp
2014-08-03 19:06 - 2014-01-26 19:53 - 00002201 _____ () C:\Users\Jiří\Desktop\Google Chrome.lnk
2014-08-03 19:05 - 2013-11-09 00:18 - 00032468 _____ () C:\Windows\PFRO.log
2014-08-03 16:49 - 2014-08-03 16:49 - 00000687 _____ () C:\awhE88A.tmp
2014-08-03 16:47 - 2013-11-08 22:46 - 00000000 ____D () C:\Program Files\Opera
2014-08-03 16:47 - 2013-11-08 19:57 - 00001393 _____ () C:\Users\Kubajs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-03 16:37 - 2014-07-27 15:12 - 00000000 ____D () C:\Program Files\Steam
2014-08-03 03:27 - 2014-08-03 03:27 - 00000687 _____ () C:\awhDE35.tmp
2014-08-02 20:31 - 2014-01-09 17:16 - 00000000 ____D () C:\Users\Kubajs\Documents\Euro Truck Simulator 2
2014-08-01 13:09 - 2014-04-30 19:57 - 00000000 ____D () C:\Users\Mamina\AppData\Roaming\Seznam.cz
2014-07-30 16:06 - 2014-07-30 16:06 - 00000687 _____ () C:\awhFBDB.tmp
2014-07-30 15:59 - 2013-11-10 11:12 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\uTorrent
2014-07-30 15:58 - 2013-12-27 00:09 - 00000000 ____D () C:\Users\Kubajs\Desktop\kanál youtube
2014-07-30 15:58 - 2013-11-27 19:44 - 00000000 ____D () C:\Users\Kubajs\Desktop\ISO
2014-07-30 13:04 - 2013-12-08 19:52 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-07-30 13:01 - 2014-07-30 13:01 - 00002150 _____ () C:\Users\Public\Desktop\Need for Speed Underground 2.lnk
2014-07-30 13:01 - 2014-07-30 13:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
2014-07-30 12:56 - 2014-07-30 12:56 - 00000000 ____D () C:\Program Files\EA GAMES
2014-07-30 12:33 - 2014-07-30 12:33 - 00017042 _____ () C:\Users\Kubajs\Downloads\[CzT]Need_for_speed_Underground_2_HD_CZ_.torrent
2014-07-30 11:27 - 2014-07-30 11:27 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-07-30 06:25 - 2014-07-30 06:25 - 00000687 _____ () C:\awhCF67.tmp
2014-07-29 09:25 - 2014-07-27 15:12 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-07-29 09:20 - 2014-03-03 00:29 - 00000000 ____D () C:\Program Files\LinkiDoo
2014-07-29 08:41 - 2014-07-29 08:41 - 00110592 _____ () C:\Windows\system32\installd.exe
2014-07-29 08:41 - 2014-07-29 08:41 - 00040528 _____ (nethfdrv) C:\Windows\system32\Drivers\nethfdrv.sys
2014-07-29 08:40 - 2014-07-29 08:40 - 00246784 _____ () C:\Windows\system32\hfpapi.dll
2014-07-29 08:40 - 2014-07-29 08:40 - 00180224 _____ () C:\Windows\system32\nethtsrv.exe
2014-07-29 08:40 - 2014-07-29 08:40 - 00108544 _____ () C:\Windows\system32\hfnapi.dll
2014-07-28 01:43 - 2014-07-28 01:43 - 00000687 _____ () C:\awhD22F.tmp
2014-07-27 21:53 - 2014-07-27 21:53 - 00357600 _____ () C:\Users\Kubajs\Downloads\GotClipDownloader__6629_i1095844715_il335.exe
2014-07-27 21:13 - 2014-07-27 21:13 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\QuickScan
2014-07-27 21:12 - 2014-07-27 21:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-27 21:11 - 2014-07-27 21:11 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-27 21:10 - 2014-07-27 21:10 - 00000000 ____D () C:\Users\Kubajs\AppData\Local\globalUpdate
2014-07-27 21:10 - 2014-07-27 21:10 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2014-07-27 21:10 - 2014-07-27 21:10 - 00000000 ____D () C:\ProgramData\IePluginServices
2014-07-27 21:10 - 2014-07-27 21:10 - 00000000 ____D () C:\Program Files\SupTab
2014-07-27 21:10 - 2014-07-27 21:10 - 00000000 ____D () C:\Program Files\globalUpdate
2014-07-27 21:10 - 2014-06-12 13:06 - 00002339 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-27 21:10 - 2013-11-08 19:57 - 00001649 _____ () C:\Users\Kubajs\Desktop\Internet Explorer (No Add-ons).lnk
2014-07-27 21:09 - 2014-07-27 21:08 - 00357600 _____ () C:\Users\Kubajs\Downloads\GotClipDownloader__6629_i1095687724_il335.exe
2014-07-27 15:22 - 2014-07-27 15:22 - 00000213 _____ () C:\Users\Kubajs\Desktop\Counter-Strike Global Offensive.url
2014-07-27 15:22 - 2014-07-27 15:22 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-07-27 15:12 - 2014-07-27 15:12 - 00000921 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-07-27 15:12 - 2014-07-27 15:11 - 01141680 _____ () C:\Users\Kubajs\Downloads\SteamSetup.exe
2014-07-26 14:04 - 2014-07-26 14:03 - 00970832 _____ (Microsoft Corporation) C:\Users\Kubajs\Downloads\msvcr120.dll
2014-07-25 18:54 - 2014-07-25 18:54 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\Unity
2014-07-25 17:01 - 2014-03-02 10:58 - 00000000 ____D () C:\Games
2014-07-25 12:55 - 2014-05-28 14:27 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-07-25 12:49 - 2014-08-09 22:12 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-07-25 12:49 - 2014-08-09 22:11 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-07-25 12:49 - 2014-08-09 22:11 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-07-24 16:51 - 2013-12-21 14:49 - 00000000 ____D () C:\Users\Kubajs\AppData\Local\SKIDROW
2014-07-24 16:43 - 2014-07-24 16:43 - 00002001 _____ () C:\Users\Public\Desktop\MX vs ATV Reflex.lnk
2014-07-24 16:43 - 2014-07-24 16:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\THQ
2014-07-24 16:36 - 2014-01-13 17:35 - 00000000 ____D () C:\Program Files\THQ
2014-07-23 22:36 - 2014-07-23 22:36 - 00000000 ____D () C:\Users\Kubajs\AppData\Local\Electronic Arts
2014-07-23 22:33 - 2014-07-23 22:33 - 00002027 _____ () C:\Users\Public\Desktop\Dead Space™.lnk
2014-07-23 22:33 - 2009-07-14 06:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-07-23 22:23 - 2014-07-23 22:23 - 00000000 ____D () C:\Users\Kubajs\Documents\Electronic Arts
2014-07-23 22:23 - 2014-07-23 22:23 - 00000000 ____D () C:\Program Files\Electronic Arts
2014-07-23 22:21 - 2013-11-10 17:30 - 00000000 ____D () C:\Users\Kubajs\AppData\Roaming\DAEMON Tools Lite
2014-07-23 10:52 - 2013-11-08 20:59 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-07-19 12:45 - 2013-11-08 22:35 - 00000000 ____D () C:\Windows\system32\NV
2014-07-19 12:45 - 2013-11-08 22:16 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-19 10:33 - 2013-11-08 23:02 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-07-19 10:33 - 2013-11-08 23:02 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
Some content of TEMP:
====================
C:\Users\Jiří\AppData\Local\Temp\AVGTBInstall.exe
C:\Users\Jiří\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Jiří\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\Jiří\AppData\Local\Temp\oi_{36CF3F6A-2E1B-4778-A2A8-AE623D4F68F0}.exe
C:\Users\Kubajs\AppData\Local\Temp\545b4af5c9e4ed95e77ce798768e55c6.dll
C:\Users\Kubajs\AppData\Local\Temp\AutoRun.exe
C:\Users\Kubajs\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Kubajs\AppData\Local\Temp\BatteryBarSetup-3.6.2.exe
C:\Users\Kubajs\AppData\Local\Temp\BbB6B6.exe
C:\Users\Kubajs\AppData\Local\Temp\bitool.dll
C:\Users\Kubajs\AppData\Local\Temp\BuenoSearchTB.exe
C:\Users\Kubajs\AppData\Local\Temp\drm_dyndata_7380007.dll
C:\Users\Kubajs\AppData\Local\Temp\drvinst01.exe
C:\Users\Kubajs\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Kubajs\AppData\Local\Temp\FLVPlayerSetup.exe
C:\Users\Kubajs\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
C:\Users\Kubajs\AppData\Local\Temp\i4jdel0.exe
C:\Users\Kubajs\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Kubajs\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\Kubajs\AppData\Local\Temp\MoviesToolbarSetup_Somoto.exe
C:\Users\Kubajs\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Kubajs\AppData\Local\Temp\sonarinst.exe
C:\Users\Kubajs\AppData\Local\Temp\Uninstall.exe
C:\Users\Kubajs\AppData\Local\Temp\Uninstaller-496.exe
C:\Users\Kubajs\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\Kubajs\AppData\Local\Temp\utt41FE.tmp.exe
C:\Users\Kubajs\AppData\Local\Temp\y7fbzatf.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-08-10 09:47
==================== End Of Log ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu,totálně zasekaný ntb
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119544
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu,totálně zasekaný ntb
Zdravím!
Jak je na tom váš oper. systém s legalitou?
Jak je na tom váš oper. systém s legalitou?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
SuD ml
- Návštěvník
- Příspěvky: 14
- Registrován: 11 črc 2006 07:44
- Bydliště: Dobřany
- Kontaktovat uživatele:
Re: Prosím o kontrolu,totálně zasekaný ntb
To bohužel nevím,ntb není můj.Mám ho právě jen aby jsem s ním zkusil něco udělat.
Mohu se samozřejmě zeptat.
Mohu se samozřejmě zeptat.
-
Rudy
- Site Admin
- Příspěvky: 119544
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu,totálně zasekaný ntb
Dejte log OTL:
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kliknete na Prohledat.CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?