Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
paja4
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 13 bře 2010 11:44

Kontrola

#1 Příspěvek od paja4 »

Dobrý den,
omylem sem do svého pc nainstaloval program ve kterém byl nějaký ten "nepořádek" nainstalovalo se mi nějaké zrychlení počítače, nějaké lištičky do prohlížeče a ještě nějaký program a avast zadržel nějaký bordel(viz. příloha).
Vše se mi snad povedlo odinstalovat, ale stejně bych poprosil o kontrolu zda mi pc nezůstal nějaký nepořádek, děkuji:)

Logfile of random's system information tool 1.10 (written by random/random)
Run by uzivatel at 2014-09-18 20:34:17
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 53 GB (46%) free of 114 GB
Total RAM: 8070 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:34:32, on 18.9.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17280)
Boot mode: Normal

Running processes:
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
C:\Users\uzivatel\AppData\Roaming\ICQM\icq.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\uzivatel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1 ... 0490404904
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1 ... 0490404904
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1 ... 0490404904
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds& ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds& ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1 ... 0490404904
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: 166090e0f32601317e4e5118752c52d60061752 - {11111111-1111-1111-1111-110611171152} - (no file)
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [Sound Blaster Cinema] "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: ISCTSystray.lnk = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
O4 - Global Startup: Killer Network Manager.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\Microsoft Office\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\uzivatel\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\uzivatel\AppData\Roaming\ICQM\icq.exe (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PDF Architect Helper Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Qualcomm Atheros Killer Service V2 - Qualcomm Atheros - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - D:\Programy\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Intel(R) Extreme Tuning Utility Service (XTU3SERVICE) - Intel(R) Corporation - C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe

--
End of file - 12235 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Windows\System32\rundll32.exe" C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE"
"C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe" -minimize
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
taskeng.exe {DE014A57-26FA-422E-B835-BDF9E066C8B1}
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\PnkBstrA.exe
"C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe"
"C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
"D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"D:\Programy\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"taskhost.exe"
"C:\Program Files (x86)\PC Fresh\PC Fresh.exe"
"C:\Users\uzivatel\AppData\Roaming\ICQM\icq.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\msiexec.exe /V
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\windows defender\MSASCui.exe" -quickscan
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /ua /installsource scheduler
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Users\uzivatel\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\18bc23ec-0d6d-4df9-b851-2b70dc410b68-1.job - C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-codedownloader.exe /rawdata=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
C:\Windows\tasks\18bc23ec-0d6d-4df9-b851-2b70dc410b68-11.job - C:\Program Files (x86)\Internet Speed Checker\18bc23ec-0d6d-4df9-b851-2b70dc410b68-11.exe /rawdata=ont1yOYfonaJRj5RfBZxfd71Rq6RrGsDtHV4pZjQOAV3vzf/K7/Ct8NJyNuZD7ANP0slRv4N1XkEfm3dM3zL/wg5JWYxr8N5BVGfVQC0cr/i9AOwhSAucUqjVYYRmtNJR+CPmXcoSQjrlGQAEeT3vgLsnKEBDL5WlSzH4s2COtxgIIqw2xzjQsRjZPZOegLSvzMKsFxFdXJ6oqsFaZeStfhBj0LU0B0gfo06LShe37gecMrznL+FLBGZt1fDcHIRd2RM1JUXpjyWNidAYH+VyqjhuVkA/vpYiCG2jwYAHFTiq2UtY5lnaFel6RZCs+Urk99ZoXmmecVJ2iwK7T6BoTtOjZmshyswSwuSrh29gaz6LOcmSccwSm30EQP3FZltTYqL5bF+5ou16sNOh+JEuQup/o2hGtabR6dqVaBIh6u50wrsl16eLbm36n5B7oLfuFm+/66r3T46+OHo4dZJhsBM00iNi8eiPtbYgFe8KfxoKXlgB2Huxwmi9jMJ5NNSRXWGsfCt0f9Kzk7cRsT6gXIJaomyrnTBqDReSJmLxvFn9Drh+m7SOUL589UKqKs8bQP61xZU1oVvkiSMgjTUYMU+rxdV+n8BEfDrxfk8FcFVNM6EyE82zjwhI0D9MYAg4g13FtUYJYBbFiha1q0Vh9mUstzj18ni+Gn5TxVlipUjzN5/yZME9ygFmQE8YQGUk60BhFoIqKVWO3ywQpo8P4A2b8TVM2+eWRXhW8A7pujVZK2wfMDe7mpO7ATV/w+xYZNh9rRwS4w2YY425sgSlENPldm4ComuJHmfJ3lBPnS2Jp4y+R2cSW/bNQScBk9bOR2t1VbJnhpbfBO7KZH5giIA1H9LMeK1/cvPjqGmv+X6mP4OREUxqo3baehWSW9zTfrqWsIi6KjsU4PAMkQktKP0IolgTgbKTBX9ywl0/MleqwbPxA3M+KLkUS7tgFCaC7Pcuf4D9zTniDA9LOnDjPpZXjeh8SWS4Gf8hPNTp88cAA2r850lk+znIxdmj4oWJXDD9BAAppBzI/SpemlOVk6nbZ3VoI8wI+dZBLtmy097py/J+RGUAVRGD/mCWbZCVv1Psmom7+yRJ13rAi1re/3ZNS8YmoVYfsVbYHDtMih9VrU0plRXqcrJANu5nmxWcWX2QyoMaYM6O5j1IQZU/SW9dihSpEaOMIZ9RytFZ5VfIQ4LW7xzKJcCSSGHyLOFZG3jvnBrX0ev8asPFCVwzFJvxW5J/IFUcNk38tw+PgXVNpbaz0ZhvDXz9meWkGCF18JOUwMNSFFsjHvwZuQ6EEXOlNkctepze/WBOQl0+UJA8lCjznRV9Xp7wXk0M1Y8sc6n1IBbaAyQNdjYvjO2RxT2j+JmsuHv/2KsjgFUsnhyn72q8/ThAmC7QLHqWcwlG/6LF14OutdQJdD6ESxfZqo7CKxXmG/oD/3rw0SI0JtmSd7xC33QfrG1SIAoPy+pnwGpQuan+5rvFEtjH28QC6cspxHZUhV+4tXljbq3hZuhOoeyWKjRapqRzjNFUywGCrq26rF69Y/c+ViVlTFwqT16ICIrtYYo5qj7y0x55XjFLw8/KwlDgAb9klDZceWb9wfHKLaI7AhCFVMIAVBjELKqrI9qyMyWmrNzpyhmzBMMbFOAd1ehPntUhW+qr2u+hSmbskgR7qfqDMXcOUK7+a2/cNOc2toSlEqixhaQoagestqv/7OogJlSxMmXXSLR6wxHTdOOpyoW3E4tFtEULS+oEAQB3TEjbq+Hw6++/tUbt+2ARrQVb93j1hA9lGdsxP9qppcj34CbndaBg5w11X8bUt/Pu8OuPs9ThenfxWFTd5NlGS3pjF+2TRx/mEem5CqtaNPXxnnmOolUoahZoGReyYKtyx4WN0efmA07vLepxPUA/X5nxXmKtW9oO01h8p+5ImKYcrsgxQ5kp0dUpvpb9CfSJGtede7UtSQxZ/XIyGYfIzLQSHdmlyfJW2cD8rq65OpEXBizukW/+AyZSfx0dmHXIlrfILFy5rO5OD2UAi3GwfuotofG4GJLo3Pr
C:\Windows\tasks\18bc23ec-0d6d-4df9-b851-2b70dc410b68-2.job - C:\Program Files (x86)\Internet Speed Checker\18bc23ec-0d6d-4df9-b851-2b70dc410b68-2.exe /rawdata=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
C:\Windows\tasks\18bc23ec-0d6d-4df9-b851-2b70dc410b68-4.job - C:\Program Files (x86)\Internet Speed Checker\18bc23ec-0d6d-4df9-b851-2b70dc410b68-4.exe /rawdata=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
C:\Windows\tasks\18bc23ec-0d6d-4df9-b851-2b70dc410b68-5.job - C:\Program Files (x86)\Internet Speed Checker\18bc23ec-0d6d-4df9-b851-2b70dc410b68-5.exe /rawdata=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
C:\Windows\tasks\18bc23ec-0d6d-4df9-b851-2b70dc410b68-5_user.job - C:\Program Files (x86)\Internet Speed Checker\18bc23ec-0d6d-4df9-b851-2b70dc410b68-5.exe /rawdata=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
C:\Windows\tasks\18bc23ec-0d6d-4df9-b851-2b70dc410b68-6.job - C:\Program Files (x86)\Internet Speed Checker\18bc23ec-0d6d-4df9-b851-2b70dc410b68-6.exe /rawdata=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
C:\Windows\tasks\18bc23ec-0d6d-4df9-b851-2b70dc410b68-7.job - C:\Program Files (x86)\Internet Speed Checker\18bc23ec-0d6d-4df9-b851-2b70dc410b68-7.exe /rawdata=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
C:\Windows\tasks\253317a0-caa3-4c6b-b4de-7ad8a0d4243c.job - C:\Program Files (x86)\Internet Speed Checker\253317a0-caa3-4c6b-b4de-7ad8a0d4243c.exe 001726 748C61A937524EE0BDBCE1D4D7D85C59IE 61752 1411061993 93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 Internet Speed Checker
C:\Windows\tasks\311e964a-2b99-401e-9fee-fee7c61ab030.job - C:\Program Files (x86)\Internet Speed Checker\311e964a-2b99-401e-9fee-fee7c61ab030.exe /agentregpath='Internet Speed Checker' /appid=61752 /srcid='001726' /subid='0' /zdata='0' /bic=748C61A937524EE0BDBCE1D4D7D85C59IE /verifier=6ecd472a24741a3b26ba9940c9c3ea97 /installerversion=1_35_09_16 /installationtime=1411061993 /statsdomain=http://stats.newclientonlinestorage.com /errorsdomain=http://errors.newclientonlinestorage.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 /monetizationdomain=http://logs.newclientonlinestorage.com /runfrom='task' /externallog=''
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\w25ehif3.default

prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.4.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.5.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~2\COMMON~1\Nero\BrowserPlugin\npBrowserPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.5.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-01 612248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08 92208]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-01 457712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-09-05 7199448]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-08-24 391152]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-08-24 771056]
"MBCfg64"=C:\Windows\system32\MBCfg64.dll [2013-08-29 40576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CodecPackUpdateChecker.lnk]
C:\Windows\SysWOW64\C2MP\UpdateChecker.exe [2013-08-29 48200]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-01 4085896]
"UpdReg"=C:\Windows\UpdReg.EXE [2000-05-11 90112]
"Sound Blaster Cinema"=C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [2013-08-16 711680]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-17 767200]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ISCTSystray.lnk - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
Killer Network Manager.lnk - C:\Windows\Installer\{4E08CC97-912D-458B-8705-9A14C325532F}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-08-20 622080]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=1
"NoResolveTrack"=1
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoResolveTrack"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"D:\Programy\Spybot - Search & Destroy 2\SDTray.exe"="D:\Programy\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe"="D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"D:\Programy\Spybot - Search & Destroy 2\SDUpdate.exe"="D:\Programy\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe"="D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-09-18 20:34:17 ----D---- C:\rsit
2014-09-18 20:34:17 ----D---- C:\Program Files\trend micro
2014-09-18 19:39:58 ----D---- C:\Program Files (x86)\globalUpdate
2014-09-18 19:39:42 ----D---- C:\ProgramData\IePluginServices
2014-09-18 19:39:38 ----D---- C:\ProgramData\WindowsMangerProtect
2014-09-18 19:34:41 ----SHD---- C:\Config.Msi
2014-09-18 19:33:48 ----A---- C:\Windows\system32\drivers\{408fcd28-f599-4b29-ada2-d72e26c39377}Gw64.sys
2014-09-18 19:30:18 ----D---- C:\Users\uzivatel\AppData\Roaming\Seznam.cz
2014-09-18 19:30:18 ----D---- C:\Users\uzivatel\AppData\Roaming\CLATRONIC MWG 729 user guide
2014-09-13 17:03:10 ----D---- C:\Program Files (x86)\directx
2014-09-13 12:01:25 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-09-10 21:35:35 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-09-10 21:35:35 ----A---- C:\Windows\system32\ieui.dll
2014-09-10 21:35:34 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-09-10 21:35:34 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-09-10 21:35:34 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-09-10 21:35:34 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-09-10 21:35:34 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-09-10 21:35:34 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-09-10 21:35:34 ----A---- C:\Windows\system32\vbscript.dll
2014-09-10 21:35:34 ----A---- C:\Windows\system32\msrating.dll
2014-09-10 21:35:34 ----A---- C:\Windows\system32\mshtmled.dll
2014-09-10 21:35:34 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-09-10 21:35:34 ----A---- C:\Windows\system32\jscript9diag.dll
2014-09-10 21:35:34 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-10 21:35:34 ----A---- C:\Windows\system32\ieUnatt.exe
2014-09-10 21:35:34 ----A---- C:\Windows\system32\iernonce.dll
2014-09-10 21:35:34 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-09-10 21:35:34 ----A---- C:\Windows\system32\dxtrans.dll
2014-09-10 21:35:34 ----A---- C:\Windows\system32\dxtmsft.dll
2014-09-10 21:35:33 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-09-10 21:35:33 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-09-10 21:35:33 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-09-10 21:35:33 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-09-10 21:35:33 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-09-10 21:35:33 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-09-10 21:35:33 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-09-10 21:35:33 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-09-10 21:35:33 ----A---- C:\Windows\system32\mshtml.dll
2014-09-10 21:35:33 ----A---- C:\Windows\system32\msfeeds.dll
2014-09-10 21:35:33 ----A---- C:\Windows\system32\jsproxy.dll
2014-09-10 21:35:33 ----A---- C:\Windows\system32\iesetup.dll
2014-09-10 21:35:33 ----A---- C:\Windows\system32\iedkcs32.dll
2014-09-10 21:35:33 ----A---- C:\Windows\system32\ie4uinit.exe
2014-09-10 21:35:32 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-09-10 21:35:32 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-09-10 21:35:32 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-09-10 21:35:32 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-10 21:35:32 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-09-10 21:35:32 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-09-10 21:35:32 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-09-10 21:35:32 ----A---- C:\Windows\system32\ieapfltr.dll
2014-09-10 21:35:31 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-09-10 21:35:31 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-09-10 21:35:31 ----A---- C:\Windows\system32\wininet.dll
2014-09-10 21:35:31 ----A---- C:\Windows\system32\jscript9.dll
2014-09-10 21:35:31 ----A---- C:\Windows\system32\iertutil.dll
2014-09-10 21:35:30 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-09-10 21:35:30 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-09-10 21:35:30 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-09-10 21:35:30 ----A---- C:\Windows\system32\urlmon.dll
2014-09-10 21:35:29 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-09-10 21:35:29 ----A---- C:\Windows\system32\ieframe.dll
2014-09-10 21:33:53 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-09-10 21:33:53 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-09-10 16:14:53 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-09-10 16:14:53 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-09-10 16:14:47 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-09-10 16:14:47 ----A---- C:\Windows\system32\d3d10warp.dll
2014-09-10 16:14:44 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-09-10 16:14:44 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-09-10 16:14:44 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-09-10 16:14:44 ----A---- C:\Windows\system32\lsasrv.dll
2014-09-10 16:14:44 ----A---- C:\Windows\system32\kerberos.dll
2014-09-10 16:14:43 ----A---- C:\Windows\system32\aepdu.dll
2014-09-10 16:14:43 ----A---- C:\Windows\system32\aeinv.dll
2014-09-05 18:33:24 ----D---- C:\ProgramData\Sony
2014-09-05 18:33:24 ----D---- C:\Program Files (x86)\Sony
2014-08-31 14:44:31 ----AD---- C:\ProgramData\TEMP
2014-08-29 16:04:01 ----SHD---- C:\ProgramData\SecuROM
2014-08-29 15:59:35 ----RHD---- C:\Users\uzivatel\AppData\Roaming\SecuROM
2014-08-29 15:59:35 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2014-08-29 15:59:25 ----D---- C:\Windows\SYSWOW64\xlive
2014-08-29 15:59:25 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2014-08-28 15:18:07 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-08-28 15:18:07 ----A---- C:\Windows\system32\win32k.sys
2014-08-28 15:18:07 ----A---- C:\Windows\system32\gdi32.dll
2014-08-22 15:27:58 ----A---- C:\Windows\system32\wups2.dll
2014-08-22 15:27:58 ----A---- C:\Windows\system32\wucltux.dll
2014-08-22 15:27:58 ----A---- C:\Windows\system32\wuaueng.dll
2014-08-22 15:27:58 ----A---- C:\Windows\system32\wuauclt.exe
2014-08-22 15:27:56 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-08-22 15:27:56 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-08-22 15:27:56 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-08-22 15:27:56 ----A---- C:\Windows\system32\wups.dll
2014-08-22 15:27:56 ----A---- C:\Windows\system32\wudriver.dll
2014-08-22 15:27:56 ----A---- C:\Windows\system32\wuapi.dll
2014-08-22 15:27:55 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-08-22 15:27:55 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-08-22 15:27:55 ----A---- C:\Windows\system32\wuwebv.dll
2014-08-22 15:27:55 ----A---- C:\Windows\system32\wuapp.exe

======List of files/folders modified in the last 1 month======

2014-09-18 20:34:18 ----D---- C:\Windows\Temp
2014-09-18 20:34:17 ----D---- C:\Program Files
2014-09-18 20:30:49 ----D---- C:\Windows\winsxs
2014-09-18 20:30:49 ----D---- C:\Windows\system32\catroot
2014-09-18 20:30:48 ----D---- C:\Windows\system32\catroot2
2014-09-18 20:29:10 ----SHD---- C:\Windows\Installer
2014-09-18 20:29:08 ----SHD---- C:\System Volume Information
2014-09-18 20:28:54 ----D---- C:\Windows\system32\config
2014-09-18 20:27:38 ----D---- C:\Windows\inf
2014-09-18 20:27:38 ----D---- C:\Program Files (x86)\Steam
2014-09-18 20:27:37 ----D---- C:\Windows\Logs
2014-09-18 20:27:37 ----D---- C:\Windows\debug
2014-09-18 20:27:37 ----D---- C:\Windows
2014-09-18 20:22:07 ----RD---- C:\Program Files (x86)
2014-09-18 20:22:07 ----D---- C:\Program Files (x86)\Common Files
2014-09-18 20:22:05 ----D---- C:\ProgramData\Adobe
2014-09-18 20:22:05 ----D---- C:\Program Files (x86)\Internet Explorer
2014-09-18 20:22:02 ----D---- C:\Windows\SysWOW64
2014-09-18 19:53:14 ----D---- C:\Windows\System32
2014-09-18 19:53:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-09-18 19:45:51 ----D---- C:\Windows\Tasks
2014-09-18 19:45:51 ----D---- C:\Windows\system32\Tasks
2014-09-18 19:39:42 ----HD---- C:\ProgramData
2014-09-18 19:33:48 ----D---- C:\Windows\system32\drivers
2014-09-18 19:33:47 ----A---- C:\Windows\win.ini
2014-09-14 11:26:34 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-13 17:03:03 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-09-12 15:19:41 ----D---- C:\Windows\Microsoft.NET
2014-09-11 21:21:35 ----RSD---- C:\Windows\assembly
2014-09-11 14:58:12 ----D---- C:\Windows\SYSWOW64\en-US
2014-09-11 14:58:12 ----D---- C:\Windows\system32\en-US
2014-09-11 14:58:12 ----D---- C:\Program Files\Internet Explorer
2014-09-10 21:36:57 ----D---- C:\ProgramData\Microsoft Help
2014-09-10 21:35:09 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-09-10 21:34:47 ----D---- C:\Windows\system32\MRT
2014-09-10 21:34:07 ----A---- C:\Windows\system32\MRT.exe
2014-09-10 21:33:53 ----SD---- C:\Windows\system32\CompatTel
2014-09-10 18:51:07 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-09-09 14:58:46 ----D---- C:\Program Files (x86)\WinRAR
2014-09-09 14:58:46 ----D---- C:\Program Files (x86)\PDFCreator
2014-09-09 14:58:46 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-09-05 18:35:08 ----D---- C:\Windows\system32\DriverStore
2014-09-04 21:25:15 ----D---- C:\ProgramData\Origin
2014-09-04 20:07:10 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-08-25 06:53:42 ----N---- C:\Windows\system32\MpSigStub.exe
2014-08-24 13:50:09 ----D---- C:\Windows\rescache
2014-08-23 09:46:04 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-08-23 09:46:04 ----D---- C:\Windows\system32\cs-CZ

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-08-01 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-08-01 224896]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-08-01 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-08-01 1041168]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-08-01 427360]
R1 BfLwf;Qualcomm Atheros Bandwidth Control; C:\Windows\system32\DRIVERS\bflwfx64.sys [2013-02-13 67888]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-03-11 129944]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-08-01 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-08-01 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-08-01 92008]
R2 iocbios2;iocbios2; \??\C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [2013-01-07 25448]
R3 AcpiCtlDrv;AcpiCtlDrv; C:\Windows\system32\DRIVERS\AcpiCtlDrv.sys [2012-07-17 25880]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-18 15376384]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-04-18 638976]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-12-19 94720]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\Windows\system32\DRIVERS\ICCWDT.sys [2013-01-23 27608]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-08-20 4165120]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2013-08-01 21408]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2013-08-01 21920]
R3 INETMON;INETMON; \??\C:\Windows\System32\Drivers\INETMON.sys [2013-08-01 29088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-09-10 3640024]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-08-20 449528]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\DRIVERS\ISCTD64.sys [2013-08-01 46568]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 786416]
R3 KbFilter_Kb_FlexDef3x;HID Keyboard(FlexDef3x) Driver Service; C:\Windows\system32\DRIVERS\KbFilter_FlexDef3x.sys [2012-10-16 22016]
R3 Ke2200;NDIS Miniport Driver for the Killer e2200 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\e22w7x64.sys [2013-03-20 154320]
R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 SaiKA50A;SaiKA50A; C:\Windows\system32\DRIVERS\SaiKA50A.sys [2009-09-14 147976]
R3 SaiUA50A;SaiUA50A; C:\Windows\system32\DRIVERS\SaiUA50A.sys [2009-09-14 41224]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2007-09-14 22040]
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys [2007-09-14 60184]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 netr28ux;RT2870 USB Wireless LAN Card Driver pro systém Windows Vista; C:\Windows\system32\DRIVERS\netr28ux.sys [2009-06-10 867328]
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2007-09-14 34456]
S3 WmHidLo;Logitech Gaming USB Filter Driver; C:\Windows\system32\drivers\WmHidLo.sys [2007-09-14 34328]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys [2007-09-14 15768]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-04-18 239616]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-08-01 50344]
R2 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE [2007-12-17 163840]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2013-08-01 198120]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-04-08 1320496]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-04-08 799280]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2014-08-01 76152]
R2 Qualcomm Atheros Killer Service V2;Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [2013-08-08 343040]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; D:\Programy\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2013-01-02 171632]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE [2007-01-11 126464]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-09-18 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-11 116648]
S2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-13 769432]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-08-24 279024]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-09-18 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-11 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-08-19 111616]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-13 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2009-06-30 316664]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-10 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------
Přílohy
Výstřižek.PNG
Výstřižek.PNG (29.22 KiB) Zobrazeno 1318 x
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Kontrola

#2 Příspěvek od vyosek »

Zdravim :)

:arrow: Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
  • Ulozte nejlepe na plochu
  • Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
  • Probehne vytvoreni zalohy a nasledne prohledavani
  • Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte
:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
paja4
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 13 bře 2010 11:44

Re: Kontrola

#3 Příspěvek od paja4 »

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.7 (09.18.2014:2)
OS: Windows 7 Home Premium x64
Ran by uzivatel on p  19.09.2014 at 16:56:58,35
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550655175552}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660666176652}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440644174452}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{55555555-5555-5555-5555-550655175552}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660666176652}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440644174452}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550655175552}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660666176652}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440644174452}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611171152}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Ttessab_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Ttessab_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\updateTtessab_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\updateTtessab_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\utilTtessab_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\utilTtessab_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{55555555-5555-5555-5555-550655175552}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660666176652}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440644174452}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Ttessab_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Ttessab_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\updateTtessab_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\updateTtessab_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\utilTtessab_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\utilTtessab_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\uzivatel\AppData\Roaming\drivercure"



~~~ FireFox

Successfully deleted: [File] C:\Users\uzivatel\AppData\Roaming\mozilla\firefox\profiles\w25ehif3.default\user.js
Successfully deleted the following from C:\Users\uzivatel\AppData\Roaming\mozilla\firefox\profiles\w25ehif3.default\prefs.js

user_pref("extensions.crossrider.bic", "14889dad189e5a840160c7653bf01ec8");
Emptied folder: C:\Users\uzivatel\AppData\Roaming\mozilla\firefox\profiles\w25ehif3.default\minidumps [16 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p  19.09.2014 at 17:00:34,23
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~






# AdwCleaner v3.310 - Report created 19/09/2014 at 17:07:03
# Updated 12/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : uzivatel - UZIVATEL-PC
# Running from : C:\Users\uzivatel\Desktop\adwcleaner_3.310.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : {408fcd28-f599-4b29-ada2-d72e26c39377}Gw64

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\IePluginServices
Folder Deleted : C:\ProgramData\ParetoLogic
Folder Deleted : C:\ProgramData\WindowsMangerProtect
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Users\uzivatel\AppData\Local\globalUpdate
Folder Deleted : C:\Users\uzivatel\AppData\Roaming\ParetoLogic
File Deleted : C:\Windows\System32\drivers\{408fcd28-f599-4b29-ada2-d72e26c39377}Gw64.sys
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\istartsurf.xml

***** [ Scheduled Tasks ] *****

Task Deleted : 18bc23ec-0d6d-4df9-b851-2b70dc410b68-1
Task Deleted : 18bc23ec-0d6d-4df9-b851-2b70dc410b68-11
Task Deleted : 18bc23ec-0d6d-4df9-b851-2b70dc410b68-2
Task Deleted : 18bc23ec-0d6d-4df9-b851-2b70dc410b68-4
Task Deleted : 18bc23ec-0d6d-4df9-b851-2b70dc410b68-5
Task Deleted : 18bc23ec-0d6d-4df9-b851-2b70dc410b68-5_user
Task Deleted : 18bc23ec-0d6d-4df9-b851-2b70dc410b68-6
Task Deleted : 18bc23ec-0d6d-4df9-b851-2b70dc410b68-7
Task Deleted : 253317a0-caa3-4c6b-b4de-7ad8a0d4243c
Task Deleted : 311e964a-2b99-401e-9fee-fee7c61ab030

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKCU\Software\SupHpUISoft
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\istartsurfSoftware
Key Deleted : HKLM\SOFTWARE\ParetoLogic
Key Deleted : HKLM\SOFTWARE\SupTab
Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Trymedia Systems
Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17280

Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v32.0.1 (x86 cs)

[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\w25ehif3.default\prefs.js ]

Line Deleted : user_pref("browser.newtab.url", "chrome://quick_start/content/index.html");
Line Deleted : user_pref("extensions.quick_start.enable_search1", false);
Line Deleted : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);

-\\ Google Chrome v37.0.2062.120

[ File : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3321459&octid=EB_ORIGINAL_CTID&ISID=M5CC04EFF-95C2-4CD5-8B5F-72C44EA0C8FC&SearchSource=58&CUI=&UM=5&UP=SP4F77243A-DF1B-4522-902A-8357DBEDFB5F&q={searchTerms}&SSPV=
Deleted [Search Provider] : hxxp://www.istartsurf.com/web/?type=ds&ts=1411 ... earchTerms}
Deleted [Startup_urls] : hxxp://www.istartsurf.com/?type=hp&ts=14110619 ... 0490404904
Deleted [Homepage] : hxxp://www.istartsurf.com/?type=hp&ts=14110619 ... 0490404904

*************************

AdwCleaner[R1].txt - [10560 octets] - [19/09/2014 17:05:26]
AdwCleaner[S1].txt - [9898 octets] - [19/09/2014 17:07:03]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [9958 octets] ##########
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Kontrola

#4 Příspěvek od vyosek »

:arrow: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do okna vlozte skript nize

  • Kód: Vybrat vše

    autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;
  • Nasledne kliknete na Run Script
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
paja4
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 13 bře 2010 11:44

Re: Kontrola

#5 Příspěvek od paja4 »

hotovo :)

Zoek.exe v5.0.0.0 Updated 20-September-2014
Tool run by uzivatel on so 20.09.2014 at 10:38:28,00.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\uzivatel\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

20.9.2014 10:39:06 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\w25ehif3.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.seznam.cz/");
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\w25ehif3.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\w25ehif3.default

user.js not found
---- Lines FFPDFArchitectConverter@pdfarchitect.com modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"FFPDFArchitectConverter@pdfarchitect.com\":{\"descriptor\":\"C:\\
---- FireFox user.js and prefs.js backups ----

prefs_20.09.2014_1044_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Mozilla Firefox\defaults\preferences\pref.js deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
"C:\Users\uzivatel\AppData\Roaming\rmi\dx11.exe" deleted
"C:\Users\uzivatel\AppData\Roaming\rmi" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [01.08.2014 09:51]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\w25ehif3.default
DFC9460CC37E5C414DC4680B10C19E7A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll - Shockwave Flash


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[01.08.2014 09:51]

Seznam Lištička - Email - uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig
Seznam Lištička - Slovník - uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd
Seznam Lištička - Rychlá volba - uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak

==== Chromium Startpages ======================

C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.google.com/"


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/?pc=AV01"
"Search Page"="http://www.bing.com/search?q={searchTer ... DF&PC=AV01"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.bing.com/search?q={searchTer ... DF&PC=AV01"
"Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.bing.com/search?q={searchTer ... DF&PC=AV01"
"Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.msn.com/?pc=AV01"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} Microsoft (Bing) Url="http://www.bing.com/search?q={searchTer ... DF&PC=AV01"
{8DB2DCF0-EAE7-4DC7-B951-2245FC79893F} Google Url="https://www.google.com/search?q={searchTerms}"

==== Reset Google Chrome ======================

C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\FFPDFArchitectConverter@pdfarchitect.com deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=37 folders=29 59781623 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\uzivatel\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\uzivatel\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\MpCmdRun.log" not found

==== EOF on so 20.09.2014 at 10:46:32,81 ======================
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Kontrola

#6 Příspěvek od vyosek »

Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
paja4
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 13 bře 2010 11:44

Re: Kontrola

#7 Příspěvek od paja4 »

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-09-2014
Ran by uzivatel (administrator) on UZIVATEL-PC on 20-09-2014 14:50:08
Running from C:\Users\uzivatel\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
() C:\Windows\System32\PnkBstrA.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Safer-Networking Ltd.) D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Safer-Networking Ltd.) D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) D:\Programy\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(ICQ) C:\Users\uzivatel\AppData\Roaming\ICQM\icq.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
(forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7199448 2013-09-05] (Realtek Semiconductor)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-01] (AVAST Software)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Sound Blaster Cinema] => C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2013-08-16] (Creative Technology Ltd)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-3812667763-118103452-1324699678-1000\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-3812667763-118103452-1324699678-1000\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-3812667763-118103452-1324699678-1000\...\MountPoints2: {621e0580-cc88-11e3-bc6a-448a5b294db4} - F:\Startme.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk
ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{4E08CC97-912D-458B-8705-9A14C325532F}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKCU - DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKCU - {8DB2DCF0-EAE7-4DC7-B951-2245FC79893F} URL = https://www.google.com/search?q={searchTerms}
BHO: No Name -> {11111111-1111-1111-1111-110611171152} -> No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\w25ehif3.default
FF NewTab: hxxp://www.google.com/
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.seznam.cz/
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BrowserPlugin\npBrowserPlugin.dll (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-03-11]

Chrome:
=======
CHR Profile: C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Docs) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-11]
CHR Extension: (Google Drive) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-11]
CHR Extension: (Seznam Lištička - Email) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-09-18]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-09-18]
CHR Extension: (YouTube) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-11]
CHR Extension: (Google Search) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-11]
CHR Extension: (Google Sheets) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-20]
CHR Extension: (avast! Online Security) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-20]
CHR Extension: (Google Wallet) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-11]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-09-18]
CHR Extension: (Gmail) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-11]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-01]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-01] (AVAST Software)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [198120 2013-08-01] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-08-01] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-03-14] ()
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [343040 2013-08-08] (Qualcomm Atheros) [File not signed]
R2 SDScannerService; D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; D:\Programy\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [15888 2013-04-01] (Intel(R) Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcpiCtlDrv; C:\Windows\System32\DRIVERS\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-01] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-01] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-01] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-01] ()
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [67888 2013-02-13] (Qualcomm Atheros, Inc.)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [21408 2013-08-01] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [21920 2013-08-01] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-01] ()
R2 iocbios2; C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [25448 2013-01-07] (Intel Corporation)
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46568 2013-08-01] ()
R3 KbFilter_Kb_FlexDef3x; C:\Windows\System32\DRIVERS\KbFilter_FlexDef3x.sys [22016 2012-10-16] (Siliten)
R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [154320 2013-03-20] (Qualcomm Atheros, Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 SaiKA50A; C:\Windows\System32\DRIVERS\SaiKA50A.sys [147976 2009-09-14] (Saitek)
R3 SaiUA50A; C:\Windows\System32\DRIVERS\SaiUA50A.sys [41224 2009-09-14] (Saitek)
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-20 14:50 - 2014-09-20 14:50 - 00017051 _____ () C:\Users\uzivatel\Desktop\FRST.txt
2014-09-20 14:49 - 2014-09-20 14:50 - 00000000 ____D () C:\FRST
2014-09-20 14:48 - 2014-09-20 14:48 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe
2014-09-20 14:45 - 2014-09-20 14:47 - 02105856 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2014-09-20 10:45 - 2014-09-20 10:38 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-20 10:39 - 2014-09-20 10:46 - 00010217 _____ () C:\zoek-results.log
2014-09-20 10:38 - 2014-09-20 10:44 - 00000000 ____D () C:\zoek_backup
2014-09-20 10:38 - 2014-09-20 10:38 - 01290752 _____ () C:\Users\uzivatel\Desktop\zoek.exe
2014-09-19 20:15 - 2014-09-19 20:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-19 17:05 - 2014-09-19 17:07 - 00000000 ____D () C:\AdwCleaner
2014-09-19 17:05 - 2014-09-19 17:05 - 01373475 _____ () C:\Users\uzivatel\Desktop\adwcleaner_3.310.exe
2014-09-19 17:05 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-09-19 17:00 - 2014-09-19 17:00 - 00004738 _____ () C:\Users\uzivatel\Desktop\JRT.txt
2014-09-19 16:56 - 2014-09-19 16:56 - 01019328 _____ (Thisisu) C:\Users\uzivatel\Desktop\JRT.exe
2014-09-19 16:56 - 2014-09-19 16:56 - 00000000 ____D () C:\Windows\ERUNT
2014-09-19 16:54 - 2014-09-20 10:46 - 00007844 _____ () C:\Windows\PFRO.log
2014-09-18 21:17 - 2014-09-20 10:46 - 00003080 _____ () C:\Windows\setupact.log
2014-09-18 21:17 - 2014-09-18 21:17 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-18 20:34 - 2014-09-18 20:34 - 00000000 ____D () C:\rsit
2014-09-18 20:34 - 2014-09-18 20:34 - 00000000 ____D () C:\Program Files\trend micro
2014-09-18 19:30 - 2014-09-18 19:51 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Seznam.cz
2014-09-18 19:30 - 2014-09-18 19:38 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\CLATRONIC MWG 729 user guide
2014-09-18 19:30 - 2014-09-18 19:30 - 00000000 ____D () C:\Users\uzivatel\AppData\Local\Adobe
2014-09-13 17:03 - 2014-09-13 17:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-09-13 17:03 - 2014-09-13 17:03 - 00000000 ____D () C:\Program Files (x86)\directx
2014-09-10 21:35 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-10 21:35 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-10 21:35 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-10 21:35 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-10 21:35 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-10 21:35 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-10 21:35 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-10 21:35 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-10 21:35 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-10 21:35 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-10 21:35 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-10 21:35 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-10 21:35 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-10 21:35 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-10 21:35 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-10 21:35 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-10 21:35 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-10 21:35 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-10 21:35 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-10 21:35 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-10 21:35 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-10 21:35 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-10 21:35 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-10 21:35 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-10 21:35 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-10 21:35 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-10 21:35 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-10 21:35 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-10 21:35 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-10 21:35 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-10 21:35 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-10 21:35 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-10 21:35 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-10 21:35 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-10 21:35 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-10 21:35 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-10 21:35 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-10 21:35 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-10 21:35 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-10 21:35 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-10 21:35 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-10 21:35 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-10 21:35 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-10 21:35 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-10 21:35 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-10 21:35 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-10 21:35 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-10 21:35 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-10 21:35 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-10 21:35 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-10 21:35 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-10 21:35 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-10 21:35 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-10 21:35 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-10 21:35 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-10 21:35 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-10 21:33 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-10 21:33 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-09-10 16:14 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-10 16:14 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-10 16:14 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-09-10 16:14 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-09-10 16:14 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-10 16:14 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-10 16:14 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-10 16:14 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-10 16:14 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-10 16:14 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-10 16:14 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-09-05 18:33 - 2014-09-05 18:33 - 00000000 ____D () C:\ProgramData\Sony
2014-09-05 18:33 - 2014-09-05 18:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-09-05 18:33 - 2014-09-05 18:33 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-08-31 14:46 - 2014-08-31 14:46 - 00000000 ____D () C:\Users\uzivatel\Documents\Forward Development
2014-08-31 14:44 - 2014-09-06 23:17 - 00000000 ____D () C:\ProgramData\TEMP
2014-08-31 14:43 - 2014-08-31 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Forward Development
2014-08-29 21:04 - 2014-08-29 21:04 - 00000000 ____D () C:\Users\uzivatel\Documents\Rockstar Games
2014-08-29 17:31 - 2014-08-29 17:31 - 05653390 _____ () C:\Users\uzivatel\Desktop\EFLC Cesitna-CSP-Gta-cz.rar
2014-08-29 16:04 - 2014-08-29 16:04 - 00000000 __SHD () C:\ProgramData\SecuROM
2014-08-29 15:59 - 2014-08-29 15:59 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2014-08-29 15:59 - 2014-08-29 15:59 - 00000000 __RHD () C:\Users\uzivatel\AppData\Roaming\SecuROM
2014-08-29 15:59 - 2014-08-29 15:59 - 00000000 ____D () C:\Windows\SysWOW64\xlive
2014-08-29 15:59 - 2014-08-29 15:59 - 00000000 ____D () C:\Users\uzivatel\AppData\Local\Rockstar Games
2014-08-29 15:59 - 2014-08-29 15:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE
2014-08-29 15:59 - 2014-08-29 15:59 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2014-08-28 15:18 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 15:18 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-28 15:18 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 15:27 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-22 15:27 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-22 15:27 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-22 15:27 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-22 15:27 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-22 15:27 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-22 15:27 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-22 15:27 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-22 15:27 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-22 15:27 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-22 15:27 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-22 15:27 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-22 15:27 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-22 15:27 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-20 14:50 - 2014-09-20 14:50 - 00017051 _____ () C:\Users\uzivatel\Desktop\FRST.txt
2014-09-20 14:50 - 2014-09-20 14:49 - 00000000 ____D () C:\FRST
2014-09-20 14:48 - 2014-09-20 14:48 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe
2014-09-20 14:47 - 2014-09-20 14:45 - 02105856 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2014-09-20 14:34 - 2014-03-11 23:05 - 00000956 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-20 13:51 - 2014-03-10 14:03 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-20 11:21 - 2014-03-10 10:59 - 01665407 _____ () C:\Windows\WindowsUpdate.log
2014-09-20 10:53 - 2009-07-14 06:45 - 00028528 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-20 10:53 - 2009-07-14 06:45 - 00028528 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-20 10:52 - 2011-04-12 10:34 - 00668866 _____ () C:\Windows\system32\perfh005.dat
2014-09-20 10:52 - 2011-04-12 10:34 - 00141526 _____ () C:\Windows\system32\perfc005.dat
2014-09-20 10:52 - 2009-07-14 07:13 - 01584554 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-20 10:46 - 2014-09-20 10:39 - 00010217 _____ () C:\zoek-results.log
2014-09-20 10:46 - 2014-09-19 16:54 - 00007844 _____ () C:\Windows\PFRO.log
2014-09-20 10:46 - 2014-09-18 21:17 - 00003080 _____ () C:\Windows\setupact.log
2014-09-20 10:46 - 2014-03-11 23:05 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-20 10:46 - 2014-03-11 18:13 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-09-20 10:46 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-20 10:44 - 2014-09-20 10:38 - 00000000 ____D () C:\zoek_backup
2014-09-20 10:38 - 2014-09-20 10:45 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-20 10:38 - 2014-09-20 10:38 - 01290752 _____ () C:\Users\uzivatel\Desktop\zoek.exe
2014-09-20 10:35 - 2014-03-10 12:08 - 00003994 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{0737CE9B-3925-4527-804E-1402614DC253}
2014-09-20 10:32 - 2014-03-10 14:07 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-19 20:15 - 2014-09-19 20:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-19 17:07 - 2014-09-19 17:05 - 00000000 ____D () C:\AdwCleaner
2014-09-19 17:05 - 2014-09-19 17:05 - 01373475 _____ () C:\Users\uzivatel\Desktop\adwcleaner_3.310.exe
2014-09-19 17:00 - 2014-09-19 17:00 - 00004738 _____ () C:\Users\uzivatel\Desktop\JRT.txt
2014-09-19 16:56 - 2014-09-19 16:56 - 01019328 _____ (Thisisu) C:\Users\uzivatel\Desktop\JRT.exe
2014-09-19 16:56 - 2014-09-19 16:56 - 00000000 ____D () C:\Windows\ERUNT
2014-09-18 21:17 - 2014-09-18 21:17 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-18 20:34 - 2014-09-18 20:34 - 00000000 ____D () C:\rsit
2014-09-18 20:34 - 2014-09-18 20:34 - 00000000 ____D () C:\Program Files\trend micro
2014-09-18 20:27 - 2014-05-17 15:55 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-09-18 20:27 - 2014-03-12 15:04 - 00000000 ____D () C:\Users\uzivatel\AppData\Local\CrashDumps
2014-09-18 20:22 - 2014-03-10 14:04 - 00000000 ____D () C:\ProgramData\Adobe
2014-09-18 19:51 - 2014-09-18 19:30 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Seznam.cz
2014-09-18 19:49 - 2014-03-10 14:07 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-09-18 19:49 - 2014-03-10 10:59 - 00001393 _____ () C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-18 19:38 - 2014-09-18 19:30 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\CLATRONIC MWG 729 user guide
2014-09-18 19:33 - 2009-07-14 04:34 - 00000580 _____ () C:\Windows\win.ini
2014-09-18 19:30 - 2014-09-18 19:30 - 00000000 ____D () C:\Users\uzivatel\AppData\Local\Adobe
2014-09-13 17:03 - 2014-09-13 17:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-09-13 17:03 - 2014-09-13 17:03 - 00000000 ____D () C:\Program Files (x86)\directx
2014-09-13 17:03 - 2014-03-10 11:05 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-09-10 21:36 - 2014-03-11 22:26 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-10 21:35 - 2014-03-10 11:04 - 01559268 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-10 21:34 - 2014-03-10 12:22 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-10 21:34 - 2014-03-10 12:22 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-10 21:33 - 2014-05-03 13:28 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-10 18:51 - 2014-03-10 14:03 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-10 18:51 - 2014-03-10 14:03 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-10 18:51 - 2014-03-10 14:03 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-09 14:58 - 2014-03-14 20:36 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-09-09 14:58 - 2014-03-11 22:23 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-09-09 14:58 - 2014-03-10 14:09 - 00000000 ____D () C:\Program Files (x86)\PDFCreator
2014-09-06 23:17 - 2014-08-31 14:44 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-05 18:33 - 2014-09-05 18:33 - 00000000 ____D () C:\ProgramData\Sony
2014-09-05 18:33 - 2014-09-05 18:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-09-05 18:33 - 2014-09-05 18:33 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-09-05 04:10 - 2014-09-10 16:14 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-05 04:05 - 2014-09-10 16:14 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-04 21:25 - 2014-03-14 18:32 - 00000000 ____D () C:\ProgramData\Origin
2014-09-04 20:07 - 2014-03-12 15:25 - 00215416 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-08-31 14:46 - 2014-08-31 14:46 - 00000000 ____D () C:\Users\uzivatel\Documents\Forward Development
2014-08-31 14:43 - 2014-08-31 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Forward Development
2014-08-29 21:04 - 2014-08-29 21:04 - 00000000 ____D () C:\Users\uzivatel\Documents\Rockstar Games
2014-08-29 17:31 - 2014-08-29 17:31 - 05653390 _____ () C:\Users\uzivatel\Desktop\EFLC Cesitna-CSP-Gta-cz.rar
2014-08-29 16:04 - 2014-08-29 16:04 - 00000000 __SHD () C:\ProgramData\SecuROM
2014-08-29 15:59 - 2014-08-29 15:59 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2014-08-29 15:59 - 2014-08-29 15:59 - 00000000 __RHD () C:\Users\uzivatel\AppData\Roaming\SecuROM
2014-08-29 15:59 - 2014-08-29 15:59 - 00000000 ____D () C:\Windows\SysWOW64\xlive
2014-08-29 15:59 - 2014-08-29 15:59 - 00000000 ____D () C:\Users\uzivatel\AppData\Local\Rockstar Games
2014-08-29 15:59 - 2014-08-29 15:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE
2014-08-29 15:59 - 2014-08-29 15:59 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2014-08-29 15:59 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-08-29 15:05 - 2009-07-14 06:45 - 00435568 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-26 19:55 - 2014-03-12 15:25 - 00215416 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-08-25 06:53 - 2010-11-21 05:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-08-24 13:50 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-08-23 04:07 - 2014-08-28 15:18 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 03:45 - 2014-08-28 15:18 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-23 02:59 - 2014-08-28 15:18 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-07 11:31




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:111.69 GB) (Free:50.04 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:931.51 GB) (Free:664.24 GB) NTFS

Available physical RAM: 5422.18 MB
Total physical RAM: 8070.01 MB
Percentage of memory in use: 32%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 149D6D80)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 9D4E4BA8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\uzivatel\Desktop" je 12 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CodecPackUpdateChecker.lnk
C:\Windows\SysWOW64\C2MP\UpdateChecker.exe


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"D:\\Programy\\Spybot - Search & Destroy 2\\SDTray.exe"="D:\\Programy\\Spybot - Search & Destroy 2\\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"D:\\Programy\\Spybot - Search & Destroy 2\\SDFSSvc.exe"="D:\\Programy\\Spybot - Search & Destroy 2\\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"D:\\Programy\\Spybot - Search & Destroy 2\\SDUpdate.exe"="D:\\Programy\\Spybot - Search & Destroy 2\\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"D:\\Programy\\Spybot - Search & Destroy 2\\SDUpdSvc.exe"="D:\\Programy\\Spybot - Search & Destroy 2\\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================
Přílohy
Addition.rar
(5.23 KiB) Staženo 52 x
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Kontrola

#8 Příspěvek od vyosek »

:arrow: Odinstalujte Spybot - Search & Destroy - program ma uz nejlepsi leta davno za sebou a posledni cca 3 roky neni schopen celit aktualnim hrozbam

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
CloseProcesses:

Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-3812667763-118103452-1324699678-1000\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-3812667763-118103452-1324699678-1000\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-3812667763-118103452-1324699678-1000\...\MountPoints2: {621e0580-cc88-11e3-bc6a-448a5b294db4} - F:\Startme.exe

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
BHO: No Name -> {11111111-1111-1111-1111-110611171152} -> No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File

R2 SDScannerService; D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; D:\Programy\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)

D:\Programy\Spybot - Search & Destroy 2
2014-09-20 14:50 - 2014-09-20 14:50 - 00017051 _____ () C:\Users\uzivatel\Desktop\FRST.txt
2014-09-20 14:48 - 2014-09-20 14:48 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe
2014-09-20 10:45 - 2014-09-20 10:38 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-20 10:39 - 2014-09-20 10:46 - 00010217 _____ () C:\zoek-results.log
2014-09-20 10:38 - 2014-09-20 10:44 - 00000000 ____D () C:\zoek_backup
2014-09-20 10:38 - 2014-09-20 10:38 - 01290752 _____ () C:\Users\uzivatel\Desktop\zoek.exe
2014-09-19 17:05 - 2014-09-19 17:07 - 00000000 ____D () C:\AdwCleaner
2014-09-19 17:05 - 2014-09-19 17:05 - 01373475 _____ () C:\Users\uzivatel\Desktop\adwcleaner_3.310.exe
2014-09-19 17:05 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-09-19 17:00 - 2014-09-19 17:00 - 00004738 _____ () C:\Users\uzivatel\Desktop\JRT.txt
2014-09-19 16:56 - 2014-09-19 16:56 - 01019328 _____ (Thisisu) C:\Users\uzivatel\Desktop\JRT.exe
2014-09-19 16:56 - 2014-09-19 16:56 - 00000000 ____D () C:\Windows\ERUNT
2014-09-19 16:54 - 2014-09-20 10:46 - 00007844 _____ () C:\Windows\PFRO.log
2014-09-18 21:17 - 2014-09-20 10:46 - 00003080 _____ () C:\Windows\setupact.log
2014-09-18 21:17 - 2014-09-18 21:17 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-18 20:34 - 2014-09-18 20:34 - 00000000 ____D () C:\rsit
2014-09-18 20:34 - 2014-09-18 20:34 - 00000000 ____D () C:\Program Files\trend micro

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CodecPackUpdateChecker.lnk" /f

Hosts:
EmptyTemp:
Reboot:
End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
paja4
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 13 bře 2010 11:44

Re: Kontrola

#9 Příspěvek od paja4 »

odinstalováno :)

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-09-2014
Ran by uzivatel at 2014-09-21 17:30:55 Run:1
Running from C:\Users\uzivatel\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:

Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-3812667763-118103452-1324699678-1000\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-3812667763-118103452-1324699678-1000\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-3812667763-118103452-1324699678-1000\...\MountPoints2: {621e0580-cc88-11e3-bc6a-448a5b294db4} - F:\Startme.exe

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
BHO: No Name -> {11111111-1111-1111-1111-110611171152} -> No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File

R2 SDScannerService; D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; D:\Programy\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)

D:\Programy\Spybot - Search & Destroy 2
2014-09-20 14:50 - 2014-09-20 14:50 - 00017051 _____ () C:\Users\uzivatel\Desktop\FRST.txt
2014-09-20 14:48 - 2014-09-20 14:48 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe
2014-09-20 10:45 - 2014-09-20 10:38 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-20 10:39 - 2014-09-20 10:46 - 00010217 _____ () C:\zoek-results.log
2014-09-20 10:38 - 2014-09-20 10:44 - 00000000 ____D () C:\zoek_backup
2014-09-20 10:38 - 2014-09-20 10:38 - 01290752 _____ () C:\Users\uzivatel\Desktop\zoek.exe
2014-09-19 17:05 - 2014-09-19 17:07 - 00000000 ____D () C:\AdwCleaner
2014-09-19 17:05 - 2014-09-19 17:05 - 01373475 _____ () C:\Users\uzivatel\Desktop\adwcleaner_3.310.exe
2014-09-19 17:05 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-09-19 17:00 - 2014-09-19 17:00 - 00004738 _____ () C:\Users\uzivatel\Desktop\JRT.txt
2014-09-19 16:56 - 2014-09-19 16:56 - 01019328 _____ (Thisisu) C:\Users\uzivatel\Desktop\JRT.exe
2014-09-19 16:56 - 2014-09-19 16:56 - 00000000 ____D () C:\Windows\ERUNT
2014-09-19 16:54 - 2014-09-20 10:46 - 00007844 _____ () C:\Windows\PFRO.log
2014-09-18 21:17 - 2014-09-20 10:46 - 00003080 _____ () C:\Windows\setupact.log
2014-09-18 21:17 - 2014-09-18 21:17 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-18 20:34 - 2014-09-18 20:34 - 00000000 ____D () C:\rsit
2014-09-18 20:34 - 2014-09-18 20:34 - 00000000 ____D () C:\Program Files\trend micro

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CodecPackUpdateChecker.lnk" /f

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SDWinLogon" => Key not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\LinkResolveIgnoreLinkInfo => value deleted successfully.
HKU\S-1-5-21-3812667763-118103452-1324699678-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\LinkResolveIgnoreLinkInfo => value deleted successfully.
HKU\S-1-5-21-3812667763-118103452-1324699678-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoResolveSearch => value deleted successfully.
"HKU\S-1-5-21-3812667763-118103452-1324699678-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{621e0580-cc88-11e3-bc6a-448a5b294db4}" => Key deleted successfully.
"HKCR\CLSID\{621e0580-cc88-11e3-bc6a-448a5b294db4}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Bar => value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Bar => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}" => Key deleted successfully.
"HKCR\CLSID\{11111111-1111-1111-1111-110611171152}" => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value deleted successfully.
"HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}" => Key not found.
SDScannerService => Service not found.
SDUpdateService => Service not found.
SDWSCService => Service not found.
"D:\Programy\Spybot - Search & Destroy 2" => File/Directory not found.
"C:\Users\uzivatel\Desktop\FRST.txt" => File/Directory not found.
C:\Users\uzivatel\Desktop\FRSTLauncher.exe => Moved successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\uzivatel\Desktop\zoek.exe => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\uzivatel\Desktop\adwcleaner_3.310.exe => Moved successfully.
C:\Windows\SysWOW64\sqlite3.dll => Moved successfully.
C:\Users\uzivatel\Desktop\JRT.txt => Moved successfully.
C:\Users\uzivatel\Desktop\JRT.exe => Moved successfully.
C:\Windows\ERUNT => Moved successfully.
C:\Windows\PFRO.log => Moved successfully.
C:\Windows\setupact.log => Moved successfully.
C:\Windows\setuperr.log => Moved successfully.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\ProgramData\TEMP => ":FB6A21E3" ADS removed successfully.

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CodecPackUpdateChecker.lnk" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 439.2 MB temporary data.


The system needed a reboot.

==== End of Fixlog ====
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Kontrola

#10 Příspěvek od vyosek »

Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
paja4
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 13 bře 2010 11:44

Re: Kontrola

#11 Příspěvek od paja4 »

ok vše provedeno, děkuji mnohokrát :-) :thumbsup:
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Kontrola

#12 Příspěvek od vyosek »

Nemate zac, rad jsem pomohl :worship: Zase nekdy Obrázek

A na zaklade Pravidla o zamykani temat :lock:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“