Prosím o kontrolku

Zpráva

michalt91 · #1 Příspěvek od **michalt91** » 30 říj 2014 13:31

Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2014-10-30 13:29:32
Microsoft Windows 8
System drive C: has 177 GB (58%) free of 305 GB
Total RAM: 8048 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:29:35, on 30.10.2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17116)
Boot mode: Normal

Running processes:
C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Lenovo\Intelligent Touchpad\IntelligentTouchpad.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe
C:\Program Files (x86)\Opera\25.0.1614.63\opera_crashreporter.exe
C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe
C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe
C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe
C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe
C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe
C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe
C:\windows\syswow64\wwahost.exe
C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe
C:\Program Files\trend micro\Michal.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://de.search.yahoo.com/yhs/search? ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: safe saave - {15126465-2056-7EBA-DF48-2839F1865607} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [IntellingentTouchpad] C:\Program Files (x86)\Lenovo\Intelligent Touchpad\IntelligentTouchpad.exe
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - Global Startup: DRSpawner.lnk = C:\ProgramData\ASGvis\DRSpawner\DRSpawner.exe
O4 - Global Startup: Virtual Router Manager.lnk = ?
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://fpdownload2.macromedia.com/get/s ... tor/sw.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll,C:\windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Cron Service for Prey (CronService) - Fork Ltd. - C:\Program Files\Prey\platform\windows\cronsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files (x86)\Common Files\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: mental ray 3.9 Satellite for Autodesk 3ds Max 2012 64-bit - English 64-bit (mi-raysat_3dsmax2012_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: VirtualRouterService (Virtual Router) - Chris Pietschmann (http://pietschsoft.com) - C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: Wise Boot Assistant (WiseBootAssistant) - WiseCleaner.com - C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 10775 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-cfdfaf49-bf75-4024-a1ab-dfbdba44e5e7 -SystemEventPortName:HostProcess-6a30d889-596a-4a5d-b677-04650c714a92 -IoCancelEventPortName:HostProcess-3cf82455-e652-45ac-953a-e850826832b2 -NonStateChangingEventPortName:HostProcess-e2c46a22-db7a-4435-890f-5cd2cf3f7555 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bdfe691c-2a75-4301-920c-c9aa0d63be3d -DeviceGroupId:WudfDefaultDevicePool
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Prey\platform\windows\cronsvc.exe"
dashost.exe {f44ed6ed-be3c-4084-bf8462e2ca35b52a}
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 98dd13aa-181a-4132-9a13-d5dc2b7114d7 1
C:\windows\system32\svchost.exe -k imgsvc
\??\C:\windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\windows\system32\nvvsvc.exe -session
taskhostex.exe
taskeng.exe {C21AE6AF-A91C-4A9E-B580-F0BBB66475CA}
C:\windows\Explorer.EXE
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe" -StartTray
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe" /m
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\Lenovo\Intelligent Touchpad\IntelligentTouchpad.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe" --ran-launcher /crash-reporter-parent-id=4380
"C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe" --type=gpu-process --channel="4380.0.922844784\1381522364" --enable-proprietary-media-types-playback --crash-reporter-pid=4916 --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,16 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2817 --enable-proprietary-media-types-playback --crash-reporter-pid=4916 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --lang=sk --enable-proprietary-media-types-playback --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=4916 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="4380.2.2082061540\905685333" /prefetch:673131151
"C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --lang=sk --enable-proprietary-media-types-playback --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=4916 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="4380.4.607454156\1446201782" /prefetch:673131151
"C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --lang=sk --enable-proprietary-media-types-playback --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=4916 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="4380.5.381820676\84320976" /prefetch:673131151
"C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --lang=sk --enable-proprietary-media-types-playback --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=4916 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="4380.6.616669551\1964555823" /prefetch:673131151
"C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --lang=sk --enable-proprietary-media-types-playback --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=4916 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="4380.8.399435535\651842578" /prefetch:673131151
"C:\windows\syswow64\wwahost.exe" -ServerName:App.wwa
"C:\Program Files (x86)\Virtual Router\VirtualRouterClient.exe"
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe" -START
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe71_ Global\UsGthrCtrlFltPipeMssGthrPipe71 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\wwahost.exe" -ServerName:Microsoft.WindowsLive.Mail.wwa
"C:\Program Files (x86)\Opera\25.0.1614.63\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --lang=sk --enable-proprietary-media-types-playback --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=4916 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="4380.20.1291873800\1567359192" /prefetch:673131151

"C:\Users\Michal\Desktop\RSITx64.exe"
"C:\windows\system32\SearchFilterHost.exe" 0 572 576 584 65536 580

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\Wise Care 365.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe -StartTray
C:\windows\tasks\Wise Turbo Checker.job - C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-10-11 553896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-08-11 64640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-17 612248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-10-11 211880]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{15126465-2056-7EBA-DF48-2839F1865607}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-08-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-17 457712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-08-25 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2012-08-03 398656]
"RtsFT"=C:\windows\RTFTrack.exe [2012-08-27 6334096]
"SynLenovoGestureMgr"=C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [2012-08-16 665400]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-08-10 13191824]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-08-06 1215632]
"BtTray"=C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [2012-08-11 764032]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2012-08-11 127616]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-08-10 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-11-04 17080376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-11-04 191544]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-10-04 2463552]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]
"ShadowPlay"=C:\windows\system32\nvspcap64.dll [2014-10-04 2800296]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe [2014-02-07 905296]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"IntellingentTouchpad"=C:\Program Files (x86)\Lenovo\Intelligent Touchpad\IntelligentTouchpad.exe [2012-07-23 673336]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"AdobeCS5.5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2013-09-03 2237328]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-17 4085896]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
DRSpawner.lnk - C:\ProgramData\ASGvis\DRSpawner\DRSpawner.exe
Virtual Router Manager.lnk - C:\windows\Installer\{BE905C46-2B34-4D73-AEE1-769ED138E0FF}\_118D1A4EFFA6998C3492EB.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\Windows\System32\nvinitx.dll c:\Windows\System32\nvinitx.dll,C:\windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2012-07-20 439296]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"DisableCAD"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-10-23 22:10:55 ----A---- C:\windows\system32\FNTCACHE.DAT
2014-10-23 00:00:04 ----D---- C:\windows\SYSWOW64\NV
2014-10-23 00:00:04 ----D---- C:\windows\system32\NV
2014-10-22 20:15:32 ----A---- C:\windows\SYSWOW64\nvspbridge.dll
2014-10-22 20:15:32 ----A---- C:\windows\system32\nvspbridge64.dll
2014-10-22 20:15:16 ----A---- C:\windows\SYSWOW64\nvaudcap32v.dll
2014-10-22 20:15:16 ----A---- C:\windows\system32\drivers\nvvad64v.sys
2014-10-22 20:13:04 ----A---- C:\windows\SYSWOW64\nvStreaming.exe
2014-10-22 20:08:52 ----A---- C:\windows\SYSWOW64\nvwgf2um.dll
2014-10-22 20:08:52 ----A---- C:\windows\SYSWOW64\nvopencl.dll
2014-10-22 20:08:52 ----A---- C:\windows\SYSWOW64\nvoglv32.dll
2014-10-22 20:08:52 ----A---- C:\windows\SYSWOW64\nvoglshim32.dll
2014-10-22 20:08:52 ----A---- C:\windows\SYSWOW64\NvIFROpenGL.dll
2014-10-22 20:08:52 ----A---- C:\windows\SYSWOW64\NvIFR.dll
2014-10-22 20:08:52 ----A---- C:\windows\SYSWOW64\NvFBC.dll
2014-10-22 20:08:52 ----A---- C:\windows\SYSWOW64\nvEncodeAPI.dll
2014-10-22 20:08:52 ----A---- C:\windows\SYSWOW64\nvcuvid.dll
2014-10-22 20:08:52 ----A---- C:\windows\SYSWOW64\nvcuda.dll
2014-10-22 20:08:52 ----A---- C:\windows\SYSWOW64\nvcompiler.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\nvwgf2umx.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\nvopencl.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\nvoglv64.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\nvoglshim64.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\NvIFROpenGL.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\NvIFR64.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\NvFBC64.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\nvEncodeAPI64.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\nvdispgenco6434448.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\nvdispco6434448.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\nvcuvid.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\nvcuda.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\nvcompiler.dll
2014-10-22 20:08:52 ----A---- C:\windows\system32\drivers\nvpciflt.sys
2014-10-22 20:08:52 ----A---- C:\windows\system32\drivers\nvlddmkm.sys
2014-10-19 19:08:25 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2014-10-16 09:15:47 ----A---- C:\windows\system32\generaltel.dll
2014-10-16 09:15:47 ----A---- C:\windows\system32\aepdu.dll
2014-10-16 09:15:46 ----A---- C:\windows\system32\aeinv.dll
2014-10-16 09:15:36 ----A---- C:\windows\SYSWOW64\actxprxy.dll
2014-10-16 09:15:35 ----A---- C:\windows\SYSWOW64\twinui.dll
2014-10-16 09:15:35 ----A---- C:\windows\SYSWOW64\msi.dll
2014-10-16 09:15:35 ----A---- C:\windows\system32\actxprxy.dll
2014-10-16 09:15:34 ----A---- C:\windows\system32\twinui.dll
2014-10-16 09:15:34 ----A---- C:\windows\system32\msi.dll
2014-10-16 09:15:33 ----A---- C:\windows\SYSWOW64\authui.dll
2014-10-16 09:15:33 ----A---- C:\windows\system32\authui.dll
2014-10-16 09:14:31 ----A---- C:\windows\system32\ntdll.dll
2014-10-16 09:14:26 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2014-10-16 09:14:26 ----A---- C:\windows\system32\localspl.dll
2014-10-16 09:14:25 ----A---- C:\windows\SYSWOW64\ntdll.dll
2014-10-16 09:14:25 ----A---- C:\windows\system32\schannel.dll
2014-10-16 09:14:22 ----A---- C:\windows\system32\storagewmi.dll
2014-10-16 09:14:14 ----A---- C:\windows\SYSWOW64\schannel.dll
2014-10-16 09:14:11 ----A---- C:\windows\system32\WMVDECOD.DLL
2014-10-16 09:14:09 ----A---- C:\windows\SYSWOW64\dwmapi.dll
2014-10-16 09:14:09 ----A---- C:\windows\system32\winload.exe
2014-10-16 09:14:09 ----A---- C:\windows\system32\wcmsvc.dll
2014-10-16 09:14:09 ----A---- C:\windows\system32\d3d10warp.dll
2014-10-16 09:14:08 ----A---- C:\windows\SYSWOW64\storagewmi.dll
2014-10-16 09:14:08 ----A---- C:\windows\SYSWOW64\d3d10warp.dll
2014-10-16 09:14:08 ----A---- C:\windows\system32\wcmcsp.dll
2014-10-16 09:14:08 ----A---- C:\windows\system32\dwmapi.dll
2014-10-16 09:14:07 ----A---- C:\windows\system32\win32spl.dll
2014-10-16 09:14:07 ----A---- C:\windows\system32\profsvc.dll
2014-10-16 09:14:07 ----A---- C:\windows\system32\drivers\volsnap.sys
2014-10-16 09:14:07 ----A---- C:\windows\system32\defragsvc.dll
2014-10-16 09:14:01 ----A---- C:\windows\SYSWOW64\KBDRUM.DLL
2014-10-16 09:14:01 ----A---- C:\windows\system32\KBDTAT.DLL
2014-10-16 09:14:01 ----A---- C:\windows\system32\KBDRUM.DLL
2014-10-16 09:14:01 ----A---- C:\windows\system32\Defrag.exe
2014-10-16 09:14:00 ----A---- C:\windows\SYSWOW64\KBDYAK.DLL
2014-10-16 09:14:00 ----A---- C:\windows\SYSWOW64\KBDTAT.DLL
2014-10-16 09:14:00 ----A---- C:\windows\SYSWOW64\KBDRU1.DLL
2014-10-16 09:14:00 ----A---- C:\windows\SYSWOW64\KBDRU.DLL
2014-10-16 09:14:00 ----A---- C:\windows\SYSWOW64\KBDBASH.DLL
2014-10-16 09:14:00 ----A---- C:\windows\system32\KBDYAK.DLL
2014-10-16 09:14:00 ----A---- C:\windows\system32\KBDRU1.DLL
2014-10-16 09:14:00 ----A---- C:\windows\system32\KBDRU.DLL
2014-10-16 09:14:00 ----A---- C:\windows\system32\KBDBASH.DLL
2014-10-16 09:13:39 ----A---- C:\windows\SYSWOW64\packager.dll
2014-10-16 09:13:39 ----A---- C:\windows\system32\packager.dll
2014-10-16 09:13:26 ----A---- C:\windows\system32\mstscax.dll
2014-10-16 09:13:25 ----A---- C:\windows\SYSWOW64\mstscax.dll
2014-10-16 09:13:25 ----A---- C:\windows\system32\rdpcorets.dll
2014-10-16 09:13:24 ----A---- C:\windows\SYSWOW64\mstsc.exe
2014-10-16 09:13:24 ----A---- C:\windows\system32\winsta.dll
2014-10-16 09:13:24 ----A---- C:\windows\system32\termsrv.dll
2014-10-16 09:13:24 ----A---- C:\windows\system32\mstsc.exe
2014-10-16 09:13:23 ----A---- C:\windows\SYSWOW64\winsta.dll
2014-10-16 09:13:23 ----A---- C:\windows\SYSWOW64\aaclient.dll
2014-10-16 09:13:05 ----A---- C:\windows\system32\mshtml.dll
2014-10-16 09:13:01 ----A---- C:\windows\SYSWOW64\mshtml.dll
2014-10-16 09:12:57 ----A---- C:\windows\system32\wininet.dll
2014-10-16 09:12:57 ----A---- C:\windows\system32\iertutil.dll
2014-10-16 09:12:57 ----A---- C:\windows\system32\ieframe.dll
2014-10-16 09:12:56 ----A---- C:\windows\SYSWOW64\wininet.dll
2014-10-16 09:12:56 ----A---- C:\windows\SYSWOW64\iertutil.dll
2014-10-16 09:12:56 ----A---- C:\windows\SYSWOW64\ieframe.dll
2014-10-16 09:12:55 ----A---- C:\windows\SYSWOW64\urlmon.dll
2014-10-16 09:12:55 ----A---- C:\windows\system32\urlmon.dll
2014-10-16 09:12:54 ----A---- C:\windows\system32\msfeeds.dll
2014-10-16 09:12:53 ----A---- C:\windows\system32\uxtheme.dll
2014-10-16 09:12:53 ----A---- C:\windows\system32\mshtmled.dll
2014-10-16 09:12:53 ----A---- C:\windows\system32\dxtrans.dll
2014-10-16 09:12:52 ----A---- C:\windows\SYSWOW64\msrating.dll
2014-10-16 09:12:52 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2014-10-16 09:12:52 ----A---- C:\windows\SYSWOW64\jscript9.dll
2014-10-16 09:12:52 ----A---- C:\windows\SYSWOW64\jscript.dll
2014-10-16 09:12:52 ----A---- C:\windows\SYSWOW64\iesysprep.dll
2014-10-16 09:12:52 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2014-10-16 09:12:52 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2014-10-16 09:12:52 ----A---- C:\windows\system32\msrating.dll
2014-10-16 09:12:52 ----A---- C:\windows\system32\jscript9.dll
2014-10-16 09:12:52 ----A---- C:\windows\system32\iesysprep.dll
2014-10-16 09:12:52 ----A---- C:\windows\system32\iedkcs32.dll
2014-10-16 09:12:51 ----A---- C:\windows\SYSWOW64\UXInit.dll
2014-10-16 09:12:51 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2014-10-16 09:12:51 ----A---- C:\windows\SYSWOW64\iernonce.dll
2014-10-16 09:12:51 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2014-10-16 09:12:51 ----A---- C:\windows\system32\UXInit.dll
2014-10-16 09:12:51 ----A---- C:\windows\system32\jscript.dll
2014-10-16 09:12:51 ----A---- C:\windows\system32\iernonce.dll
2014-10-16 09:12:51 ----A---- C:\windows\system32\ie4uinit.exe
2014-10-16 09:12:51 ----A---- C:\windows\system32\dxtmsft.dll
2014-10-16 09:12:50 ----A---- C:\windows\system32\iesetup.dll
2014-10-16 09:12:49 ----A---- C:\windows\SYSWOW64\uxtheme.dll
2014-10-16 09:12:49 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2014-10-16 09:12:49 ----A---- C:\windows\SYSWOW64\iesetup.dll
2014-10-16 09:12:49 ----A---- C:\windows\system32\jsproxy.dll
2014-10-16 09:12:48 ----A---- C:\windows\SYSWOW64\rastls.dll
2014-10-16 09:12:48 ----A---- C:\windows\system32\rastls.dll
2014-10-16 09:12:40 ----A---- C:\windows\system32\user32.dll
2014-10-16 09:12:40 ----A---- C:\windows\system32\drivers\srv2.sys
2014-10-16 09:12:40 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2014-10-16 09:12:40 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2014-10-16 09:12:39 ----A---- C:\windows\system32\srvsvc.dll
2014-10-16 09:12:39 ----A---- C:\windows\system32\drivers\srvnet.sys
2014-10-16 09:12:38 ----A---- C:\windows\SYSWOW64\user32.dll
2014-10-16 09:12:38 ----A---- C:\windows\system32\msdtctm.dll
2014-10-16 09:12:38 ----A---- C:\windows\system32\drivers\USBHUB3.SYS
2014-10-16 09:12:36 ----A---- C:\windows\SYSWOW64\sscore.dll
2014-10-16 09:12:36 ----A---- C:\windows\system32\sscore.dll
2014-10-16 09:12:13 ----A---- C:\windows\system32\win32k.sys
2014-10-12 00:07:21 ----D---- C:\NVIDIA Corporation
2014-10-11 20:50:16 ----A---- C:\windows\system32\javaws.exe
2014-10-11 20:50:07 ----A---- C:\windows\system32\WindowsAccessBridge-64.dll
2014-10-11 20:50:07 ----A---- C:\windows\system32\javaw.exe
2014-10-11 20:50:06 ----A---- C:\windows\system32\java.exe
2014-10-11 20:49:51 ----D---- C:\Program Files\Java
2014-10-11 16:03:26 ----D---- C:\Program Files (x86)\Virtual Router
2014-10-10 22:44:17 ----D---- C:\Users\Michal\AppData\Roaming\Steam
2014-10-10 22:02:12 ----D---- C:\Program Files (x86)\Ryse Son of Rome

======List of files/folders modified in the last 1 month======

2014-10-30 13:29:34 ----D---- C:\Program Files\trend micro
2014-10-30 13:18:39 ----D---- C:\windows\Inf
2014-10-30 13:18:39 ----AD---- C:\windows\System32
2014-10-30 13:18:39 ----A---- C:\windows\system32\PerfStringBackup.INI
2014-10-30 13:16:48 ----D---- C:\windows\temp
2014-10-30 13:14:40 ----D---- C:\windows\system32\sru
2014-10-30 12:05:52 ----D---- C:\windows\Microsoft.NET
2014-10-30 11:58:07 ----D---- C:\Users\Michal\AppData\Roaming\Wise Care 365
2014-10-30 11:57:07 ----D---- C:\windows\debug
2014-10-30 11:52:46 ----D---- C:\windows\system32\catroot2
2014-10-30 11:52:46 ----D---- C:\windows\Logs
2014-10-30 11:52:46 ----AD---- C:\Windows
2014-10-30 11:51:52 ----D---- C:\windows\system32\config
2014-10-30 11:47:28 ----D---- C:\Users\Michal\AppData\Roaming\uTorrent
2014-10-29 22:24:23 ----D---- C:\Users\Michal\AppData\Roaming\vlc
2014-10-29 15:10:59 ----D---- C:\windows\CbsTemp
2014-10-29 15:10:33 ----D---- C:\windows\WinSxS
2014-10-29 15:09:56 ----SHD---- C:\System Volume Information
2014-10-27 13:16:48 ----D---- C:\Program Files (x86)\Opera
2014-10-27 13:16:47 ----D---- C:\windows\system32\Tasks
2014-10-24 10:28:13 ----D---- C:\windows\system32\NDF
2014-10-23 22:15:07 ----A---- C:\windows\SYSWOW64\log.txt
2014-10-23 22:11:18 ----D---- C:\ProgramData\NVIDIA
2014-10-23 22:10:40 ----D---- C:\windows\SysWOW64
2014-10-22 20:16:27 ----D---- C:\windows\system32\DriverStore
2014-10-22 20:16:26 ----D---- C:\Program Files\NVIDIA Corporation
2014-10-22 20:15:21 ----D---- C:\windows\system32\Drivers
2014-10-22 20:13:16 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-10-19 20:27:12 ----D---- C:\windows\system32\catroot
2014-10-19 20:23:14 ----RSD---- C:\windows\assembly
2014-10-19 20:12:05 ----D---- C:\windows\rescache
2014-10-19 19:03:23 ----SD---- C:\windows\system32\CompatTel
2014-10-19 19:03:20 ----D---- C:\windows\SYSWOW64\sk-SK
2014-10-19 19:03:20 ----D---- C:\windows\SYSWOW64\en-US
2014-10-19 19:03:19 ----D---- C:\windows\system32\sk-SK
2014-10-19 19:03:19 ----D---- C:\windows\system32\en-US
2014-10-19 19:03:14 ----D---- C:\windows\SYSWOW64\wbem
2014-10-19 19:03:13 ----D---- C:\windows\system32\Boot
2014-10-19 19:03:12 ----D---- C:\windows\system32\wbem
2014-10-19 19:03:09 ----RSD---- C:\windows\Fonts
2014-10-19 19:03:03 ----D---- C:\Program Files (x86)\Internet Explorer
2014-10-19 19:03:01 ----D---- C:\Program Files\Internet Explorer
2014-10-19 19:02:52 ----D---- C:\windows\system32\drivers\en-US
2014-10-19 19:02:50 ----RD---- C:\windows\ToastData
2014-10-16 17:54:03 ----A---- C:\windows\SYSWOW64\nvumdshim.dll
2014-10-16 17:54:03 ----A---- C:\windows\SYSWOW64\nvinit.dll
2014-10-16 17:54:03 ----A---- C:\windows\SYSWOW64\nvd3dum.dll
2014-10-16 17:54:03 ----A---- C:\windows\SYSWOW64\nvapi.dll
2014-10-16 17:54:03 ----A---- C:\windows\system32\nvumdshimx.dll
2014-10-16 17:54:03 ----A---- C:\windows\system32\nvinitx.dll
2014-10-16 17:54:03 ----A---- C:\windows\system32\nvd3dumx.dll
2014-10-16 17:54:03 ----A---- C:\windows\system32\nvapi64.dll
2014-10-16 15:11:40 ----A---- C:\windows\system32\nvsvc64.dll
2014-10-16 15:11:40 ----A---- C:\windows\system32\nvcpl.dll
2014-10-16 15:11:36 ----A---- C:\windows\SYSWOW64\oemdspif.dll
2014-10-16 15:11:36 ----A---- C:\windows\system32\nvvsvc.exe
2014-10-16 15:11:36 ----A---- C:\windows\system32\nvsvcr.dll
2014-10-16 15:11:36 ----A---- C:\windows\system32\nvshext.dll
2014-10-16 15:11:36 ----A---- C:\windows\system32\nvmctray.dll
2014-10-16 15:11:36 ----A---- C:\windows\system32\nv3dappshextr.dll
2014-10-16 15:11:36 ----A---- C:\windows\system32\nv3dappshext.dll
2014-10-16 13:34:53 ----SHD---- C:\windows\Installer
2014-10-16 13:34:53 ----D---- C:\Config.Msi
2014-10-16 13:34:46 ----D---- C:\ProgramData\Microsoft Help
2014-10-16 13:30:54 ----D---- C:\windows\system32\MRT
2014-10-16 09:59:02 ----A---- C:\windows\system32\MRT.exe
2014-10-15 08:22:24 ----D---- C:\windows\SoftwareDistribution
2014-10-12 00:07:21 ----D---- C:\NVIDIA
2014-10-11 20:58:21 ----D---- C:\Hry
2014-10-11 20:49:51 ----D---- C:\Program Files
2014-10-11 16:03:26 ----RD---- C:\Program Files (x86)
2014-10-08 12:14:01 ----D---- C:\Users\Michal\AppData\Roaming\Adobe
2014-10-07 20:13:46 ----SD---- C:\Users\Michal\AppData\Roaming\Microsoft
2014-10-04 07:42:47 ----A---- C:\windows\SYSWOW64\nvspcap.dll
2014-10-04 07:41:43 ----A---- C:\windows\system32\nvspcap64.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2014-08-17 65776]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2014-08-17 224896]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2012-07-09 645952]
R0 LHDmgr;LHDmgr; C:\windows\System32\DRIVERS\LhdX64.sys [2012-11-04 39008]
R0 nvpciflt;nvpciflt; C:\windows\system32\DRIVERS\nvpciflt.sys [2014-10-16 30408]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2014-08-17 93568]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2014-08-17 1041168]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2014-08-17 427360]
R1 SCDEmu;SCDEmu; C:\windows\system32\drivers\SCDEmu.sys [2013-10-23 129944]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2014-08-17 29208]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2014-08-17 79184]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2014-08-17 92008]
R2 SSPORT;SSPORT; \??\C:\windows\system32\Drivers\SSPORT.sys [2013-04-10 11576]
R3 ACPIVPC;@oem50.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2012-11-04 33560]
R3 AthBTPort;@oem49.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2012-08-11 88728]
R3 athr;@oem44.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athw8x.sys [2012-07-24 3618304]
R3 BTATH_A2DP;@oem48.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2012-08-11 344216]
R3 btath_avdt;@oem48.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\windows\system32\drivers\btath_avdt.sys [2012-08-11 114840]
R3 BTATH_BUS;@oem45.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\windows\System32\drivers\btath_bus.sys [2012-08-11 33944]
R3 BTATH_HCRP;@oem51.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\windows\System32\drivers\btath_hcrp.sys [2012-08-11 178840]
R3 BTATH_LWFLT;@oem52.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2012-08-11 76952]
R3 BTATH_RCP;@oem54.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\windows\System32\drivers\btath_rcp.sys [2012-08-11 135832]
R3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2012-08-11 567808]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2012-07-20 8982208]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2012-08-10 4102928]
R3 IntcDAud;@oem4.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 MEIx64;@oem8.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 nvlddmkm;nvlddmkm; C:\windows\system32\DRIVERS\nvlddmkm.sys [2014-10-16 13190288]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-10-04 20288]
R3 nvvad_WaveExtensible;@oem88.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 RTL8168;@oem6.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2012-06-12 683664]
R3 rtsuvc;@oem13.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\windows\system32\DRIVERS\rtsuvc.sys [2012-08-27 8227216]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-16 43832]
R3 SynTP;@oem42.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2012-08-16 447800]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 dg_ssudbus;@oem81.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 dot4;@oem61.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\windows\system32\DRIVERS\Dot4.sys [2012-10-19 151968]
S3 Dot4Print;@oem62.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\windows\System32\drivers\Dot4Prt.sys [2012-10-19 27040]
S3 dot4usb;@oem61.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\windows\system32\DRIVERS\dot4usb.sys [2012-10-19 49056]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 NETwNs64;@netwns64.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETwNs64.sys [2012-06-02 8604672]
S3 RSUSBVSTOR;@oem7.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2012-06-13 315536]
S3 ssudmdm;@oem82.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;USB Scanner Driver; C:\windows\System32\drivers\usbscan.sys [2013-07-01 43008]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2013-07-05 210560]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-08-11 211584]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-08-17 50344]
R2 CronService;Cron Service for Prey; C:\Program Files\Prey\platform\windows\cronsvc.exe [2012-11-28 23552]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-10-04 1149760]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 mi-raysat_3dsmax2012_64;mental ray 3.9 Satellite for Autodesk 3ds Max 2012 64-bit - English 64-bit; C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe [2011-02-22 86016]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-10-04 1796928]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-10-04 19440960]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2014-10-16 933064]
R2 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2013-11-10 76888]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-10-16 410952]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R2 Virtual Router;VirtualRouterService; C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe [2013-02-10 12288]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-22 267440]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2012-08-03 276288]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-12-25 1431888]
S3 InstallShield Licensing Service;InstallShield Licensing Service; C:\Program Files (x86)\Common Files\InstallShield Shared\Service\InstallShield Licensing Service.exe [2013-01-11 78536]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

-----------------EOF-----------------

#2 Příspěvek od **altrok** » 30 říj 2014 16:41

Zdravim

doinstalujte vsechny MS Windows aktualizace vcetne IE11

jedna se o preventivku ci jsou s PC nejake konkretni problemy?

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/

ukoncete vsechny programy
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Scan, pote na Clean
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

michalt91 · #3 Příspěvek od **michalt91** » 30 říj 2014 17:48

prečo si mám aktualizovať internet explorer ? ja ho nepoužívam

#4 Příspěvek od **altrok** » 30 říj 2014 17:56

Protoze je uzce svazany se systemem a nezaplatovany system nema cenu lecit viz http://forum.viry.cz/viewtopic.php?p=1353406#p1353406

michalt91 · #5 Příspěvek od **michalt91** » 30 říj 2014 18:04

lenže na to treba Windows 8.1 a ja nechcem aktualizovať systém.

#6 Příspěvek od **altrok** » 30 říj 2014 18:08

Dobre, pustte tam AdwCleaner.

Jsou s PC nejake konkretni problemy?

michalt91 · #7 Příspěvek od **michalt91** » 30 říj 2014 18:14

momentálne nič nazaznamenávam

# AdwCleaner v3.311 - Report created 30/10/2014 at 18:07:55
# Updated 30/09/2014 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Michal - IDEAPAD
# Running from : C:\Users\Michal\Desktop\adwcleaner_3.311.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

File Deleted : C:\windows\System32\drivers\iSafeKrnlBoot.sys
File Deleted : C:\windows\System32\log\iSafeKrnlCall.log

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.17116

-\\ Mozilla Firefox v

*************************

AdwCleaner[R0].txt - [7667 octets] - [31/07/2014 20:13:08]
AdwCleaner[R1].txt - [794 octets] - [31/07/2014 20:58:36]
AdwCleaner[R2].txt - [912 octets] - [21/08/2014 21:40:30]
AdwCleaner[R3].txt - [1949 octets] - [30/10/2014 18:06:42]
AdwCleaner[S0].txt - [7779 octets] - [31/07/2014 20:15:01]
AdwCleaner[S1].txt - [854 octets] - [31/07/2014 21:00:10]
AdwCleaner[S2].txt - [972 octets] - [21/08/2014 21:41:52]
AdwCleaner[S3].txt - [1866 octets] - [30/10/2014 18:07:55]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1926 octets] ##########

#8 Příspěvek od **altrok** » 30 říj 2014 23:35

Doporucuji velikou opatrnost s programy typu Wise Care 365 a dalsich optimizeru, ktere zrychli a vycisti PC na jedno kliknuti.

Dejte log FRST, pripojte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

michalt91 · #9 Příspěvek od **michalt91** » 30 říj 2014 23:58

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-10-2014 01
Ran by Michal (administrator) on IDEAPAD on 30-10-2014 23:56:30
Running from C:\Users\Michal\Desktop
Loaded Profile: Michal (Available profiles: Michal)
Platform: Windows 8 (X64) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 10
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Fork Ltd.) C:\Program Files\Prey\platform\windows\cronsvc.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
() C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
() C:\Windows\SysWOW64\PnkBstrA.exe
(Chris Pietschmann (http://pietschsoft.com)) C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(WiseCleaner.com) C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Lenovo) C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Microsoft) C:\Program Files (x86)\Lenovo\Intelligent Touchpad\IntelligentTouchpad.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Opera Software) C:\Program Files (x86)\Opera\25.0.1614.68\opera.exe
() C:\Program Files (x86)\Opera\25.0.1614.68\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\25.0.1614.68\opera.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Opera Software) C:\Program Files (x86)\Opera\25.0.1614.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\25.0.1614.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\25.0.1614.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\25.0.1614.68\opera.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
(Opera Software) C:\Program Files (x86)\Opera\25.0.1614.68\opera.exe
(BitTorrent Inc.) C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe
(Opera Software) C:\Program Files (x86)\Opera\25.0.1614.68\opera.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtsFT] => C:\windows\RTFTrack.exe [6334096 2012-08-27] (Realtek semiconductor)
HKLM\...\Run: [SynLenovoGestureMgr] => C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [665400 2012-08-16] (Synaptics)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191824 2012-08-10] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1215632 2012-08-06] (Realtek Semiconductor)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [764032 2012-08-11] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-08-11] (Atheros Communications)
HKLM\...\Run: [OnekeyStudio] => C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-08-10] (Lenovo)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2012-11-04] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191544 2012-11-04] (Lenovo(beijing) Limited)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2463552 2014-10-04] (NVIDIA Corporation)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] ()
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\rundll32.exe C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [IntellingentTouchpad] => C:\Program Files (x86)\Lenovo\Intelligent Touchpad\IntelligentTouchpad.exe [673336 2012-07-23] (Microsoft)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2237328 2013-09-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-17] (AVAST Software)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-822971858-4240643665-2656738410-1002\...\Run: [uTorrent] => C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe [905296 2014-02-07] (BitTorrent Inc.)
HKU\S-1-5-21-822971858-4240643665-2656738410-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
AppInit_DLLs: c:\Windows\System32\nvinitx.dll => c:\Windows\System32\nvinitx.dll [174856 2014-10-16] (NVIDIA Corporation)
AppInit_DLLs: c:\Windows\System32\nvinitx.dll => c:\Windows\System32\nvinitx.dll [174856 2014-10-16] (NVIDIA Corporation)
AppInit_DLLs: ,C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [174856 2014-10-16] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [156840 2014-10-16] (NVIDIA Corporation)
AppInit_DLLs-x32: ,C:\windows\SysWOW64\nvinit.dll => C:\windows\SysWOW64\nvinit.dll [156840 2014-10-16] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\DRSpawner.lnk
ShortcutTarget: DRSpawner.lnk -> C:\ProgramData\ASGvis\DRSpawner\DRSpawner.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Virtual Router Manager.lnk
ShortcutTarget: Virtual Router Manager.lnk -> C:\Windows\Installer\{BE905C46-2B34-4D73-AEE1-769ED138E0FF}\_118D1A4EFFA6998C3492EB.exe ()
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://de.search.yahoo.com/yhs/search? ... earchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.sk/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
StartMenuInternet: IEXPLORE.EXE - c:\program files (x86)\internet explorer\iexplore.exe
SearchScopes: HKLM - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM - {413AF46C-D49E-4636-9B9F-17176BAF8031} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM-x32 - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 - {413AF46C-D49E-4636-9B9F-17176BAF8031} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKCU - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: No Name -> {15126465-2056-7EBA-DF48-2839F1865607} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload2.macromedia.com/get/s ... tor/sw.cab

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @torrentstream.net/tsplugin,version=2.0.8.9 -> C:\Users\Michal\AppData\Roaming\TorrentStream\player\npts_plugin.dll (Innovative Digital Technologies)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Michal\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-12-28]
FF HKCU\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Users\Michal\AppData\Roaming\TorrentStream\extensions\firefox\magicplayer@torrentstream.org
FF Extension: TS Magic Player - C:\Users\Michal\AppData\Roaming\TorrentStream\extensions\firefox\magicplayer@torrentstream.org [2013-04-02]

Chrome:
=======
CHR HKCU\...\Chrome\Extension: [ochbjojkpcmlfeagbaahkofepalngihg] - C:\Users\Michal\AppData\Roaming\TorrentStream\extensions\chrome\magicplayer.crx [2013-07-11]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-11] (Qualcomm Atheros Commnucations)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-17] (AVAST Software)
R2 CronService; C:\Program Files\Prey\platform\windows\cronsvc.exe [23552 2012-11-28] (Fork Ltd.) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1149760 2014-10-04] (NVIDIA Corporation)
S3 InstallShield Licensing Service; C:\Program Files (x86)\Common Files\InstallShield Shared\Service\InstallShield Licensing Service.exe [78536 2013-01-11] (Macrovision )
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [43520 2012-07-26] (Microsoft Corporation)
R2 mi-raysat_3dsmax2012_64; C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe [86016 2011-02-22] () [File not signed]
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [634368 2012-07-26] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1796928 2014-10-04] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19440960 2014-10-04] (NVIDIA Corporation)
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [76888 2013-11-10] ()
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18432 2012-07-26] (Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 Virtual Router; C:\Program Files (x86)\Virtual Router\VirtualRouterService.exe [12288 2013-02-10] (Chris Pietschmann (http://pietschsoft.com)) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580232 2013-04-25] (WiseCleaner.com)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-11] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-17] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-17] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-17] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-17] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-17] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-17] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-17] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-17] ()
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-11] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20288 2014-10-04] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8227216 2012-08-27] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-16] (Synaptics Incorporated)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-30 23:56 - 2014-10-30 23:57 - 00022355 _____ () C:\Users\Michal\Desktop\FRST.txt
2014-10-30 23:51 - 2014-10-30 23:56 - 00000000 ____D () C:\FRST
2014-10-30 23:48 - 2014-10-30 23:48 - 02113536 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2014-10-30 22:29 - 2014-10-30 22:29 - 00021100 _____ () C:\Users\Michal\Desktop\Madden.NFL.09 - RELOADED.torrent
2014-10-30 17:56 - 2014-10-30 18:40 - 00034002 _____ () C:\windows\WindowsUpdate.log
2014-10-30 17:55 - 2014-10-30 18:08 - 00003220 _____ () C:\windows\PFRO.log
2014-10-30 17:53 - 2014-10-30 17:53 - 00000000 ____D () C:\windows\system32\AutoUpdateLicense
2014-10-30 17:52 - 2014-09-13 07:24 - 02233152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-10-30 17:52 - 2014-09-06 01:46 - 00389176 _____ () C:\windows\system32\ApnDatabase.xml
2014-10-30 17:52 - 2014-09-03 03:48 - 00457728 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2014-10-30 17:52 - 2014-09-03 03:48 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2014-10-30 17:52 - 2014-09-03 03:22 - 00188928 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2014-10-30 17:52 - 2014-09-03 03:21 - 00623104 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2014-10-30 17:52 - 2014-09-03 03:21 - 00212992 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2014-10-30 17:52 - 2014-08-29 05:17 - 02043392 _____ (Microsoft Corporation) C:\windows\SysWOW64\WsmSvc.dll
2014-10-30 17:52 - 2014-08-29 05:17 - 00227328 _____ (Microsoft Corporation) C:\windows\SysWOW64\WsmWmiPl.dll
2014-10-30 17:52 - 2014-08-29 05:04 - 02837504 _____ (Microsoft Corporation) C:\windows\system32\WsmSvc.dll
2014-10-30 17:52 - 2014-08-29 05:04 - 00309248 _____ (Microsoft Corporation) C:\windows\system32\WsmWmiPl.dll
2014-10-30 17:52 - 2014-08-28 07:04 - 00499712 _____ (Microsoft Corporation) C:\windows\SysWOW64\FXSCOMEX.dll
2014-10-30 17:52 - 2014-08-28 07:04 - 00227840 _____ (Microsoft Corporation) C:\windows\SysWOW64\FXSAPI.dll
2014-10-30 17:52 - 2014-08-28 06:59 - 00616448 _____ (Microsoft Corporation) C:\windows\system32\FXSAPI.dll
2014-10-30 17:52 - 2014-08-28 06:59 - 00609280 _____ (Microsoft Corporation) C:\windows\system32\FXSCOMEX.dll
2014-10-30 17:52 - 2014-08-28 06:59 - 00432640 _____ (Microsoft Corporation) C:\windows\system32\FXSTIFF.dll
2014-10-30 17:52 - 2014-08-28 06:59 - 00254976 _____ (Microsoft Corporation) C:\windows\system32\FXST30.dll
2014-10-30 17:52 - 2014-07-24 14:12 - 00328512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Classpnp.sys
2014-10-29 13:34 - 2014-10-22 04:34 - 00010777 _____ () C:\windows\system32\AutoconfigV2.cab
2014-10-29 13:34 - 2014-10-22 04:33 - 00581016 _____ (Microsoft Corporation) C:\windows\system32\AutoUpdate.exe
2014-10-29 13:34 - 2014-10-22 04:33 - 00462760 _____ (Microsoft Corporation) C:\windows\system32\NotificationUI.exe
2014-10-29 13:34 - 2014-10-22 02:08 - 00568832 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSShared.dll
2014-10-29 13:34 - 2014-10-22 02:08 - 00124928 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-29 13:34 - 2014-10-22 02:01 - 00695808 _____ (Microsoft Corporation) C:\windows\system32\WSShared.dll
2014-10-29 13:34 - 2014-10-22 02:01 - 00198656 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Store.dll
2014-10-29 13:34 - 2014-10-22 02:01 - 00163840 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-29 13:34 - 2014-10-22 02:00 - 00125952 _____ (Microsoft Corporation) C:\windows\system32\WinSetupUI.dll
2014-10-29 09:36 - 2014-10-29 09:37 - 00000154 _____ () C:\Users\Michal\Desktop\Nový textový dokument.txt
2014-10-23 23:10 - 2014-10-23 23:10 - 00027403 _____ () C:\Users\Michal\Desktop\playlist_intrak.xspf
2014-10-23 22:10 - 2014-10-23 22:11 - 05065104 _____ () C:\windows\system32\FNTCACHE.DAT
2014-10-23 00:00 - 2014-10-23 00:00 - 00000000 ____D () C:\windows\SysWOW64\NV
2014-10-23 00:00 - 2014-10-23 00:00 - 00000000 ____D () C:\windows\system32\NV
2014-10-22 20:15 - 2014-10-04 07:42 - 01291280 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspbridge.dll
2014-10-22 20:15 - 2014-10-04 07:41 - 01715224 _____ (NVIDIA Corporation) C:\windows\system32\nvspbridge64.dll
2014-10-22 20:15 - 2014-09-04 20:14 - 00038048 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvad64v.sys
2014-10-22 20:15 - 2014-09-04 20:14 - 00032416 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll
2014-10-22 20:13 - 2014-10-16 13:27 - 00614544 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvStreaming.exe
2014-10-22 20:08 - 2014-10-16 17:54 - 31890064 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 24555840 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 20968040 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2umx.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 20922696 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 18499648 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 17260864 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcompiler.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 14029400 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 13942368 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 13190288 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-10-22 20:08 - 2014-10-16 17:54 - 11395672 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 11333848 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 04289856 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 04009672 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 01876296 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6434448.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 01539272 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6434448.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 00962376 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 00931984 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 00921928 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 00895176 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 00500880 _____ (NVIDIA Corporation) C:\windows\system32\nvEncodeAPI64.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 00418112 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncodeAPI.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 00392008 _____ (NVIDIA Corporation) C:\windows\system32\NvIFROpenGL.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 00352016 _____ (NVIDIA Corporation) C:\windows\system32\nvoglshim64.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 00348488 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFROpenGL.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 00303600 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglshim32.dll
2014-10-22 20:08 - 2014-10-16 17:54 - 00030408 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvpciflt.sys
2014-10-20 13:44 - 2014-10-20 13:44 - 00001619 _____ () C:\Users\Michal\Desktop\Ryse Sone of Rome.lnk
2014-10-19 19:08 - 2014-09-29 23:49 - 00705480 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-10-19 19:08 - 2014-09-29 23:49 - 00104904 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-16 09:15 - 2014-10-10 05:47 - 00693248 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-10-16 09:15 - 2014-10-10 05:47 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2014-10-16 09:15 - 2014-10-08 05:26 - 00556544 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-10-16 09:15 - 2014-09-18 00:24 - 02416128 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2014-10-16 09:15 - 2014-09-17 23:56 - 02885120 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-10-16 09:15 - 2014-08-30 06:48 - 10115072 _____ (Microsoft Corporation) C:\windows\system32\twinui.dll
2014-10-16 09:15 - 2014-08-30 06:46 - 02306560 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-10-16 09:15 - 2014-08-30 05:05 - 08858112 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.dll
2014-10-16 09:15 - 2014-08-30 05:03 - 02037760 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2014-10-16 09:15 - 2014-06-13 00:34 - 00754176 _____ (Microsoft Corporation) C:\windows\SysWOW64\actxprxy.dll
2014-10-16 09:15 - 2014-06-13 00:29 - 02146304 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
2014-10-16 09:14 - 2014-07-12 05:41 - 00008704 _____ (Microsoft Corporation) C:\windows\system32\KBDRUM.DLL
2014-10-16 09:14 - 2014-07-12 05:41 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDYAK.DLL
2014-10-16 09:14 - 2014-07-12 05:41 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDTAT.DLL
2014-10-16 09:14 - 2014-07-12 05:41 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDRU1.DLL
2014-10-16 09:14 - 2014-07-12 05:41 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\KBDRU.DLL
2014-10-16 09:14 - 2014-07-12 05:41 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\KBDBASH.DLL
2014-10-16 09:14 - 2014-07-12 05:16 - 00008192 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRUM.DLL
2014-10-16 09:14 - 2014-07-12 05:16 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDYAK.DLL
2014-10-16 09:14 - 2014-07-12 05:16 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDTAT.DLL
2014-10-16 09:14 - 2014-07-12 05:16 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRU1.DLL
2014-10-16 09:14 - 2014-07-12 05:16 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRU.DLL
2014-10-16 09:14 - 2014-07-12 05:15 - 00006144 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDBASH.DLL
2014-10-16 09:14 - 2014-07-12 01:02 - 00478352 _____ () C:\windows\SysWOW64\locale.nls
2014-10-16 09:14 - 2014-07-12 01:00 - 00478352 _____ () C:\windows\system32\locale.nls
2014-10-16 09:14 - 2014-07-08 23:33 - 00181248 _____ (Microsoft Corp.) C:\windows\system32\Defrag.exe
2014-10-16 09:14 - 2014-07-08 23:32 - 01539584 _____ (Microsoft Corporation) C:\windows\system32\storagewmi.dll
2014-10-16 09:14 - 2014-07-08 23:32 - 00340480 _____ (Microsoft Corporation) C:\windows\system32\defragsvc.dll
2014-10-16 09:14 - 2014-07-08 23:30 - 01220608 _____ (Microsoft Corporation) C:\windows\SysWOW64\storagewmi.dll
2014-10-16 09:14 - 2014-07-07 06:52 - 00263680 _____ (Microsoft Corporation) C:\windows\system32\wcmsvc.dll
2014-10-16 09:14 - 2014-07-07 06:52 - 00074752 _____ (Microsoft Corporation) C:\windows\system32\wcmcsp.dll
2014-10-16 09:14 - 2014-07-04 11:52 - 00328000 _____ (Microsoft Corporation) C:\windows\system32\Drivers\volsnap.sys
2014-10-16 09:14 - 2014-07-03 02:59 - 01824784 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-10-16 09:14 - 2014-07-03 01:30 - 01408952 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2014-10-16 09:14 - 2014-06-28 08:01 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmapi.dll
2014-10-16 09:14 - 2014-06-28 07:57 - 00209920 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2014-10-16 09:14 - 2014-06-28 07:56 - 00117248 _____ (Microsoft Corporation) C:\windows\system32\dwmapi.dll
2014-10-16 09:14 - 2014-06-25 08:09 - 00733184 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2014-10-16 09:14 - 2014-06-25 08:07 - 01023488 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2014-10-16 09:14 - 2014-06-18 00:27 - 02032640 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2014-10-16 09:14 - 2014-06-18 00:23 - 02238464 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2014-10-16 09:14 - 2014-06-11 15:47 - 02842112 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2014-10-16 09:14 - 2014-06-11 05:40 - 02620928 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL
2014-10-16 09:14 - 2014-06-10 23:44 - 01403896 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2014-10-16 09:14 - 2014-05-30 00:31 - 00323072 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-10-16 09:14 - 2014-05-30 00:03 - 00419328 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-10-16 09:14 - 2014-02-04 11:57 - 01271664 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2014-10-16 09:13 - 2014-09-20 06:16 - 19280896 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-10-16 09:13 - 2014-09-20 04:57 - 14368768 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-10-16 09:13 - 2014-09-13 06:29 - 00079360 _____ (Microsoft Corporation) C:\windows\system32\packager.dll
2014-10-16 09:13 - 2014-09-13 05:02 - 00068096 _____ (Microsoft Corporation) C:\windows\SysWOW64\packager.dll
2014-10-16 09:13 - 2014-07-07 06:53 - 01125376 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe
2014-10-16 09:13 - 2014-07-07 06:52 - 03248128 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2014-10-16 09:13 - 2014-07-07 06:52 - 00724992 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2014-10-16 09:13 - 2014-07-07 06:52 - 00300544 _____ (Microsoft Corporation) C:\windows\system32\winsta.dll
2014-10-16 09:13 - 2014-07-07 06:51 - 05982208 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2014-10-16 09:13 - 2014-07-07 05:01 - 01049600 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstsc.exe
2014-10-16 09:13 - 2014-07-07 05:01 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\winsta.dll
2014-10-16 09:13 - 2014-07-07 05:00 - 05095424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2014-10-16 09:13 - 2014-07-07 04:59 - 00269312 _____ (Microsoft Corporation) C:\windows\SysWOW64\aaclient.dll
2014-10-16 09:12 - 2014-09-28 05:18 - 04068352 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-10-16 09:12 - 2014-09-20 06:18 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-10-16 09:12 - 2014-09-20 06:17 - 02236928 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-10-16 09:12 - 2014-09-20 06:17 - 01407488 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-10-16 09:12 - 2014-09-20 06:17 - 00915968 _____ (Microsoft Corporation) C:\windows\system32\uxtheme.dll
2014-10-16 09:12 - 2014-09-20 06:17 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\UXInit.dll
2014-10-16 09:12 - 2014-09-20 06:16 - 15399424 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-10-16 09:12 - 2014-09-20 06:16 - 03959296 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-10-16 09:12 - 2014-09-20 06:16 - 02655232 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-10-16 09:12 - 2014-09-20 06:16 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-10-16 09:12 - 2014-09-20 06:16 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-10-16 09:12 - 2014-09-20 06:16 - 00255488 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-10-16 09:12 - 2014-09-20 06:16 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-10-16 09:12 - 2014-09-20 06:16 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-10-16 09:12 - 2014-09-20 06:16 - 00097280 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-10-16 09:12 - 2014-09-20 06:16 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-10-16 09:12 - 2014-09-20 06:16 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-10-16 09:12 - 2014-09-20 06:16 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-10-16 09:12 - 2014-09-20 06:15 - 01508864 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-10-16 09:12 - 2014-09-20 06:15 - 00451584 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-10-16 09:12 - 2014-09-20 06:15 - 00281600 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 13757952 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 02861568 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 02055168 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 01762816 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 01180672 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 00226816 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 00080384 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\UXInit.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 00039936 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-10-16 09:12 - 2014-09-20 04:57 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-10-16 09:12 - 2014-09-20 04:56 - 01440768 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-10-16 09:12 - 2014-09-20 04:56 - 00357888 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-10-16 09:12 - 2014-09-20 04:56 - 00226816 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-10-16 09:12 - 2014-09-20 04:38 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-10-16 09:12 - 2014-09-20 04:33 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-10-16 09:12 - 2014-09-20 02:06 - 00534528 _____ (Microsoft Corporation) C:\windows\SysWOW64\uxtheme.dll
2014-10-16 09:12 - 2014-09-03 03:48 - 00510464 _____ (Microsoft Corporation) C:\windows\SysWOW64\rastls.dll
2014-10-16 09:12 - 2014-09-03 03:21 - 00585728 _____ (Microsoft Corporation) C:\windows\system32\rastls.dll
2014-10-16 09:12 - 2014-07-24 14:50 - 00447296 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBHUB3.SYS
2014-10-16 09:12 - 2014-07-17 00:28 - 00027648 _____ (Microsoft Corporation) C:\windows\SysWOW64\sscore.dll
2014-10-16 09:12 - 2014-07-16 23:59 - 00305664 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2014-10-16 09:12 - 2014-07-16 23:59 - 00035840 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2014-10-16 09:12 - 2014-07-12 07:45 - 01549824 _____ (Microsoft Corporation) C:\windows\system32\msdtctm.dll
2014-10-16 09:12 - 2014-07-12 05:36 - 00674304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2014-10-16 09:12 - 2014-07-12 05:36 - 00211456 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2014-10-16 09:12 - 2014-07-12 05:34 - 00404480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2014-10-16 09:12 - 2014-07-12 05:34 - 00250368 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2014-10-16 09:12 - 2014-06-28 07:57 - 01341952 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2014-10-16 09:12 - 2014-06-28 03:23 - 01126400 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2014-10-14 15:06 - 2014-10-29 21:13 - 00000000 ____D () C:\Users\Michal\Desktop\hádzaná
2014-10-12 00:07 - 2014-10-12 00:07 - 00000000 ____D () C:\NVIDIA Corporation
2014-10-11 20:50 - 2014-10-11 20:49 - 00319912 _____ (Oracle Corporation) C:\windows\system32\javaws.exe
2014-10-11 20:50 - 2014-10-11 20:49 - 00189352 _____ (Oracle Corporation) C:\windows\system32\javaw.exe
2014-10-11 20:50 - 2014-10-11 20:49 - 00189352 _____ (Oracle Corporation) C:\windows\system32\java.exe
2014-10-11 20:50 - 2014-10-11 20:49 - 00111016 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge-64.dll
2014-10-11 20:49 - 2014-10-11 20:49 - 00000000 ____D () C:\Program Files\Java
2014-10-11 18:46 - 2014-10-11 18:46 - 00000000 ____D () C:\Users\Michal\AppData\Local\Chris_Pietschmann_(http__
2014-10-11 16:03 - 2014-10-11 16:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Router
2014-10-11 16:03 - 2014-10-11 16:03 - 00000000 ____D () C:\Program Files (x86)\Virtual Router
2014-10-10 22:44 - 2014-10-10 22:44 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Steam
2014-10-10 22:38 - 2014-10-10 22:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ryse Son of Rome
2014-10-10 22:02 - 2014-10-11 19:41 - 00000000 ____D () C:\Program Files (x86)\Ryse Son of Rome
2014-10-08 13:45 - 2014-10-26 19:22 - 00000000 ____D () C:\Users\Michal\Desktop\filozoficka-antropologia-a-axiologia
2014-10-08 13:29 - 2014-10-29 16:10 - 00000000 ____D () C:\Users\Michal\Desktop\gym
2014-10-01 19:50 - 2014-10-01 19:50 - 00000635 _____ () C:\Users\Michal\Desktop\NHL09.lnk
2014-09-30 19:26 - 2014-09-30 19:26 - 00000000 ____D () C:\Users\Michal\Downloads\CZ-DABING-DO-NHL-09

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-30 23:56 - 2012-12-24 23:31 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-10-30 23:55 - 2012-12-25 10:02 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\uTorrent
2014-10-30 23:00 - 2012-07-26 09:12 - 00000000 ____D () C:\windows\system32\sru
2014-10-30 22:33 - 2013-04-28 07:39 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\vlc
2014-10-30 22:11 - 2013-10-23 22:17 - 01182720 ___SH () C:\Users\Michal\Downloads\Thumbs.db
2014-10-30 21:47 - 2014-01-21 17:56 - 00001326 _____ () C:\Users\Michal\Desktop\fil.txt
2014-10-30 21:11 - 2012-07-26 08:28 - 00848230 _____ () C:\windows\system32\PerfStringBackup.INI
2014-10-30 19:42 - 2012-07-26 09:12 - 00000000 ____D () C:\windows\rescache
2014-10-30 18:11 - 2013-07-22 06:24 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Wise Care 365
2014-10-30 18:10 - 2014-07-31 21:06 - 00000440 _____ () C:\windows\Tasks\Wise Care 365.job
2014-10-30 18:09 - 2012-07-26 08:22 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-10-30 18:08 - 2012-11-04 00:35 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-30 18:08 - 2012-07-26 06:26 - 00786432 ___SH () C:\windows\system32\config\BBI
2014-10-30 18:07 - 2014-07-31 20:11 - 00000000 ____D () C:\AdwCleaner
2014-10-30 18:07 - 2014-07-31 19:41 - 00000000 ____D () C:\windows\system32\log
2014-10-30 18:05 - 2013-08-28 20:24 - 00010752 ___SH () C:\Users\Michal\Thumbs.db
2014-10-30 18:02 - 2014-08-21 22:25 - 00003840 _____ () C:\windows\System32\Tasks\Opera scheduled Autoupdate 1408656316
2014-10-30 18:02 - 2014-08-21 22:25 - 00001056 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-10-30 18:02 - 2014-08-21 22:25 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-10-30 17:58 - 2013-08-22 14:08 - 02923008 ___SH () C:\Users\Michal\Desktop\Thumbs.db
2014-10-30 17:53 - 2012-07-26 09:12 - 00000000 ____D () C:\windows\WinStore
2014-10-30 17:53 - 2012-07-26 08:59 - 00000000 ____D () C:\windows\CbsTemp
2014-10-30 13:29 - 2013-11-19 18:58 - 00000000 ____D () C:\Program Files\trend micro
2014-10-30 12:44 - 2013-08-28 10:42 - 00000601 _____ () C:\windows\system32\Drivers\etc\hosts.ics
2014-10-30 11:52 - 2012-12-25 12:25 - 00000000 ____D () C:\Users\Michal\AppData\Local\CrashDumps
2014-10-30 11:49 - 2012-12-25 16:50 - 00000000 ____D () C:\Users\Michal\AppData\Local\Adobe
2014-10-27 22:17 - 2014-09-29 18:57 - 00000000 ____D () C:\Users\Michal\Documents\NHL09
2014-10-27 17:21 - 2013-05-27 16:19 - 00004182 _____ () C:\windows\System32\Tasks\avast! Emergency Update
2014-10-24 10:28 - 2012-07-26 09:12 - 00000000 ____D () C:\windows\system32\NDF
2014-10-22 20:16 - 2013-11-18 19:17 - 00000000 ____D () C:\Users\Michal\AppData\Local\NVIDIA Corporation
2014-10-22 20:16 - 2012-11-04 00:34 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-10-22 20:13 - 2012-11-04 00:34 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-10-22 12:45 - 2012-12-24 23:31 - 00003718 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2014-10-19 19:03 - 2014-07-11 17:06 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-10-19 19:03 - 2012-07-26 09:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-19 19:03 - 2012-07-26 09:12 - 00000000 ____D () C:\windows\SysWOW64\sk-SK
2014-10-19 19:03 - 2012-07-26 09:12 - 00000000 ____D () C:\windows\system32\sk-SK
2014-10-19 19:02 - 2012-07-26 09:12 - 00000000 ___RD () C:\windows\ToastData
2014-10-16 17:54 - 2014-05-27 11:37 - 00027024 _____ () C:\windows\system32\nvinfo.pb
2014-10-16 17:54 - 2012-11-04 00:34 - 19966856 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll
2014-10-16 17:54 - 2012-11-04 00:34 - 16886168 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll
2014-10-16 17:54 - 2012-11-04 00:34 - 03237528 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll
2014-10-16 17:54 - 2012-11-04 00:34 - 02849224 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll
2014-10-16 17:54 - 2012-11-04 00:34 - 00987008 _____ (NVIDIA Corporation) C:\windows\system32\nvumdshimx.dll
2014-10-16 17:54 - 2012-11-04 00:34 - 00870112 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvumdshim.dll
2014-10-16 17:54 - 2012-11-04 00:34 - 00174856 _____ (NVIDIA Corporation) C:\windows\system32\nvinitx.dll
2014-10-16 17:54 - 2012-11-04 00:34 - 00156840 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvinit.dll
2014-10-16 15:11 - 2012-11-04 00:34 - 06883136 _____ (NVIDIA Corporation) C:\windows\system32\nvcpl.dll
2014-10-16 15:11 - 2012-11-04 00:34 - 03533632 _____ (NVIDIA Corporation) C:\windows\system32\nvsvc64.dll
2014-10-16 15:11 - 2012-11-04 00:34 - 02559808 _____ (NVIDIA Corporation) C:\windows\system32\nvsvcr.dll
2014-10-16 15:11 - 2012-11-04 00:34 - 01089736 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshext.dll
2014-10-16 15:11 - 2012-11-04 00:34 - 00933064 _____ (NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
2014-10-16 15:11 - 2012-11-04 00:34 - 00623936 _____ (NVIDIA Corporation) C:\windows\SysWOW64\oemdspif.dll
2014-10-16 15:11 - 2012-11-04 00:34 - 00384200 _____ (NVIDIA Corporation) C:\windows\system32\nvmctray.dll
2014-10-16 15:11 - 2012-11-04 00:34 - 00067072 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshextr.dll
2014-10-16 15:11 - 2012-11-04 00:34 - 00061640 _____ (NVIDIA Corporation) C:\windows\system32\nvshext.dll
2014-10-16 13:34 - 2012-12-25 00:21 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-16 13:30 - 2013-08-07 19:49 - 00000000 ____D () C:\windows\system32\MRT
2014-10-16 09:59 - 2012-12-24 23:09 - 103265616 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-10-15 01:48 - 2012-11-04 00:34 - 04047877 _____ () C:\windows\system32\nvcoproc.bin
2014-10-12 08:51 - 2012-12-25 12:21 - 00003598 _____ () C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-822971858-4240643665-2656738410-1002
2014-10-12 00:07 - 2013-03-16 09:21 - 00000000 ____D () C:\NVIDIA
2014-10-11 20:59 - 2012-12-28 20:22 - 00000000 ____D () C:\Users\Michal\Documents\My Games
2014-10-11 20:58 - 2013-07-23 20:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2014-10-11 20:58 - 2013-07-23 20:47 - 00000000 ____D () C:\Hry
2014-10-08 12:14 - 2012-12-25 12:15 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Adobe
2014-10-04 07:42 - 2013-10-28 20:55 - 02197680 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll
2014-10-04 07:41 - 2013-10-28 20:55 - 02800296 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll

Some content of TEMP:
====================
C:\Users\Michal\AppData\Local\temp\Quarantine.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-10-21 12:55

==================== End Of Log ============================

michalt91 · #10 Příspěvek od **michalt91** » 30 říj 2014 23:58

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-10-2014 01
Ran by Michal at 2014-10-30 23:57:25
Running from C:\Users\Michal\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKCU\...\uTorrent) (Version: 3.3.2.30488 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1380 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.1.2.232 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated)
Adobe Illustrator CS5.1 (HKLM-x32\...\{23767F5D-A80C-4264-B8EA-ED4085FC332A}) (Version: 15.1 - Adobe Systems Incorporated)
Adobe InDesign CS5 (HKLM-x32\...\{F9766AC1-1461-1033-B862-DF8FE1C033BE}) (Version: 7.0 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.9.149 - Adobe Systems, Inc.)
Aktualizácie NVIDIA 16.13.56 (Version: 16.13.56 - NVIDIA Corporation) Hidden
Arma 3 Complete (HKLM-x32\...\QXJtYTM=_is1) (Version: 1 - )
Autodesk 3ds Max 2012 64-bit - English (HKLM\...\Autodesk 3ds Max 2012 64-bit - English) (Version: 14.0 - Autodesk)
Autodesk 3ds Max 2012 64-bit - English (Version: 14.0 - Autodesk) Hidden
Autodesk Backburner 2012.0.0 (HKLM-x32\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 2012.0.0 - Autodesk, Inc.)
Autodesk FBX Plug-in 2012.0 - 3ds Max 2012 64-bit (HKLM\...\Autodesk FBX Plug-in 2012.0 - 3ds Max 2012 64-bit) (Version: - Autodesk)
Autodesk Material Library 2012 (HKLM-x32\...\{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}) (Version: 2.5.0.8 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2012 (HKLM-x32\...\{65420DC9-306E-4371-905F-F4DC3B418E52}) (Version: 2.5.0.8 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2012 (HKLM-x32\...\{B5751715-EC10-43D9-8C95-62E1368433EF}) (Version: 2.5.0.8 - Autodesk)
avast! Free Antivirus (HKLM-x32\...\avast) (Version: 9.0.2021 - AVAST Software)
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
Composite 2012 64-bit (HKLM\...\{EA234BC3-39FE-4734-B72F-076086889F6D}) (Version: 7.0.0 - Autodesk)
Defraggler (HKLM\...\Defraggler) (Version: 2.12 - Piriform)
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.4 - Lenovo)
Energy Management (x32 Version: 8.0.2.4 - Lenovo) Hidden
Flamingo 1.1 for Rhino 4.0 (HKLM-x32\...\Flamingo 1.1 for Rhino 4.0) (Version: 1.1.4 Release 2007-01-18 - Robert McNeel & Associates, 3670 Woodland Park Avenue North, Seattle, WA 98103 USA)
Flamingo 2.0 (HKLM-x32\...\{C475527D-AB5C-47D8-8C25-85CA3E42B5A4}) (Version: 2.0.30724.0 - Robert McNeel & Associates)
Flvto Youtube Downloader (HKLM-x32\...\Flvto Youtube Downloader) (Version: 0.5.6 - Hotger)
Free Video Joiner (HKLM-x32\...\{14FA6DD9-92ED-493D-A937-81A78870E08A}_is1) (Version: - FreeVideoJoiner.com)
Google SketchUp Pro 8 (HKLM-x32\...\{3AB65E95-37D6-4DD7-8862-29AED3AFD54B}) (Version: 3.0.3117 - Google, Inc.)
Grand Theft Auto IV (x32 Version: 1.0.0011.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2817 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intelligent Touchpad (HKLM-x32\...\{DD7D6D84-93AB-48CA-A759-94324E341CBA}) (Version: 2.00.0012.0723 - Lenovo)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.8400.10182 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.0710 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.0710 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4331.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.4331.52 - CyberLink Corp.) Hidden
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3127 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 4.1.3127 - CyberLink Corp.) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 8.0 Support DLLs (HKLM-x32\...\{342F5437-C87D-4BB5-89B9-B23E16C6A395}) (Version: 1.0.0 - McNeel & Associates)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
NHL™ 09 (HKLM-x32\...\{827B97A9-B347-4110-9F89-37AF2B758F94}) (Version: 2.0.1.0 - Electronic Arts)
NVIDIA GeForce Experience 2.1.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.3 - NVIDIA Corporation)
NVIDIA Grafický ovládač 344.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.48 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 344.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 344.48 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Onekey Theater (HKLM-x32\...\{91CC5BAE-A098-40D3-A43B-C0DC7CE263FE}) (Version: 3.0.0.9 - Lenovo)
Opera Stable 25.0.1614.68 (HKLM-x32\...\Opera 25.0.1614.68) (Version: 25.0.1614.68 - Opera Software ASA)
Ovládací panel NVIDIA 344.48 (Version: 344.48 - NVIDIA Corporation) Hidden
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PeerBlock 1.1 (r518) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.1.0.518 - PeerBlock, LLC)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.9109 - CyberLink Corp.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.8 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.206 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Race Driver - GRID 2 1.0.82.5097 (HKLM-x32\...\Race Driver - GRID 2_is1) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6702 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39029 - Realtek Semiconductor Corp.)
Rhino RDK (HKLM-x32\...\Rhino RDK) (Version: - )
Rhinoceros 4.0 (HKLM-x32\...\{5C2CBFFD-FC3B-4AA9-993B-CE2B8DA25B87}) (Version: 4.0.20118 - McNeel & Associates)
Rhinoceros 4.0 SR9 (HKLM-x32\...\{E3355E5C-965C-4f67-8A8C-E9A0FA9FD80F}) (Version: 4.0.60309 - Robert McNeel & Associates)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
RollerCoaster Tycoon 3 Platinum (HKLM-x32\...\{907B4640-266B-4A21-92FB-CD1A86CD0F63}) (Version: 1.00.000 - Atari)
Ryse Son of Rome (HKLM-x32\...\Ryse Son of Rome_is1) (Version: - )
Samsung C410 Series (HKLM-x32\...\Samsung C410 Series) (Version: 1.01 (20.5.2013) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.03.23.00(3.5.2013) - Samsung Electronics Co., Ltd.)
Samsung Easy Wireless Setup (HKLM-x32\...\Easy Wireless Setup) (Version: 3.60.25 - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (Version: 3.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.56 - NVIDIA Corporation) Hidden
Spintires (HKLM-x32\...\Spintires_is1) (Version: - )
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.10.5 - Synaptics Incorporated)
System Requirements Lab CYRI (HKLM-x32\...\{E5F05232-96B6-4552-A480-785A60A94B21}) (Version: 5.0.6.0 - Husdawg, LLC)
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
Torrent Stream 2.0.8.9 (HKCU\...\TorrentStream) (Version: 2.0.8.9 - Torrent Stream)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
UserGuide (x32 Version: 1.0.0.9 - Lenovo) Hidden
View User's Guide (HKLM-x32\...\View User Guide) (Version: 3.60.02.0 - )
Virtual Router v1.0 (HKLM-x32\...\{BE905C46-2B34-4D73-AEE1-769ED138E0FF}) (Version: 1.0 - Chris Pietschmann)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
V-Ray for Rhinoceros (HKLM-x32\...\{40625DE4-DCDB-44FE-84B5-E65F1365BF44}) (Version: 01.05.29 - ASGvis, LLC)
V-Ray for Rhinoceros (x32 Version: 01.05.29 - ASGvis, LLC) Hidden
V-Ray for SketchUp (HKLM-x32\...\V-Ray for SketchUp 1.49.00) (Version: 1.49.00 - ASGVIS)
Windows Driver Package - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wise Care 365 version 2.66 (HKLM-x32\...\{E864A1C8-EEE1-47D0-A7F8-00CC86D26D5E}_is1) (Version: 3.2.3 - WiseCleaner.com, Inc.)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points =========================

16-10-2014 08:51:22 Windows Update
22-10-2014 19:15:38 Installed DirectX
29-10-2014 14:08:22 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 06:26 - 2013-11-14 10:20 - 00000027 ____A C:\windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {08AD0FB5-95A1-4D4C-946B-6CAFAC35E6C4} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2014-10-16] (Microsoft Corporation)
Task: {09EF8E1B-55DA-4B47-A624-3E4D926B46F8} - System32\Tasks\Opera scheduled Autoupdate 1408656316 => C:\Program Files (x86)\Opera\launcher.exe [2014-10-29] (Opera Software)
Task: {154101E8-B09E-49DC-8C31-A59605FB48DB} - System32\Tasks\Wise Care 365 => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2014-09-04] (WiseCleaner.com)
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {55C7C9CC-C9E9-454C-A91B-D3339A74D33F} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {56E7412B-D0F3-4D31-915D-4DB76BE720A5} - System32\Tasks\AdobeAAMUpdater-1.0-IdeaPad-Michal => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-06-13] (Adobe Systems Incorporated)
Task: {6EA0E0D7-C594-41F0-84A1-FE2C0C3D06DE} - System32\Tasks\Microsoft\Windows\Setup\8.1 auto install v2 => C:\Windows\system32\AutoUpdate.exe [2014-10-22] (Microsoft Corporation)
Task: {760417A4-9701-4948-9F1E-071136B3C6BB} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-16] (Synaptics Incorporated)
Task: {8518F378-6C74-4B08-BACE-1BD154A34850} - System32\Tasks\{2D70CADF-E615-45FD-BC58-AA17AABD3F33} => c:\program files (x86)\opera\opera.exe
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {AB1F6EE5-1ED3-471E-A70D-3793A40BF70A} - System32\Tasks\Wise Turbo Checker => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe [2014-06-23] (WiseCleaner.COM)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {D24EBDB6-90EF-41C9-AB09-832F4FE52A9D} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27] (CyberLink)
Task: {E67E2A0D-B542-4B00-86F4-861B21DD49A0} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-08-17] (AVAST Software)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {EF497DF1-0889-4860-9328-0C0990AF89C5} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-22] (Adobe Systems Incorporated)
Task: {FE5F0F6B-EFE1-4B12-AE66-1E8A5DEDB77D} - System32\Tasks\Microsoft\Windows\Setup\8.1 auto install ping => C:\Windows\system32\AutoUpdate.exe [2014-10-22] (Microsoft Corporation)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\Wise Care 365.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
Task: C:\windows\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe

==================== Loaded Modules (whitelisted) =============

2012-11-04 00:34 - 2014-10-16 17:54 - 00012104 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2012-11-04 00:34 - 2014-10-16 15:11 - 00116880 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-09-19 10:24 - 2013-05-06 07:07 - 00034304 _____ () C:\windows\System32\sst8clm.dll
2011-02-22 21:52 - 2011-02-22 21:52 - 00086016 _____ () C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
2013-02-21 12:34 - 2013-11-10 19:23 - 00076888 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2013-08-30 09:01 - 2013-08-30 09:01 - 03358064 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
2013-06-04 21:59 - 2013-06-04 21:59 - 00176048 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2012-08-11 02:28 - 2012-08-11 02:28 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2012-08-11 02:23 - 2012-08-11 02:23 - 00020992 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\sk-SK\BtTray.sk-SK.dll
2012-11-04 00:44 - 2012-03-21 04:05 - 00051776 _____ () C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
2012-03-09 08:58 - 2012-03-09 08:58 - 00462712 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2012-03-09 08:58 - 2012-03-09 08:58 - 00057208 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2014-10-30 18:02 - 2014-10-30 18:01 - 00500344 _____ () C:\Program Files (x86)\Opera\25.0.1614.68\opera_crashreporter.exe
2014-08-17 20:41 - 2014-08-17 20:41 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-10-30 17:56 - 2014-10-30 17:56 - 02897920 _____ () C:\Program Files\AVAST Software\Avast\defs\14103001\algo.dll
2012-11-04 00:34 - 2014-10-16 17:54 - 00013120 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2014-08-17 20:41 - 2014-08-17 20:41 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-10-30 18:02 - 2014-10-30 18:01 - 00156792 _____ () C:\Program Files (x86)\Opera\25.0.1614.68\message_center_win8.dll
2014-10-30 18:02 - 2014-10-30 18:01 - 01310328 _____ () C:\Program Files (x86)\Opera\25.0.1614.68\libglesv2.dll
2014-10-30 18:02 - 2014-10-30 18:01 - 00219256 _____ () C:\Program Files (x86)\Opera\25.0.1614.68\libegl.dll
2014-10-30 18:02 - 2014-10-30 18:01 - 09218680 _____ () C:\Program Files (x86)\Opera\25.0.1614.68\pdf.dll
2014-10-30 18:02 - 2014-10-30 18:01 - 00991864 _____ () C:\Program Files (x86)\Opera\25.0.1614.68\ffmpegsumo.dll
2012-11-04 00:40 - 2012-06-25 18:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "DRSpawner.lnk"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run: => "RtsFT"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "UpdateP2GShortCut"
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "YouCam Mirage"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"

========================= Accounts: ==========================

Administrator (S-1-5-21-822971858-4240643665-2656738410-500 - Administrator - Disabled)
Guest (S-1-5-21-822971858-4240643665-2656738410-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-822971858-4240643665-2656738410-1004 - Limited - Enabled)
Michal (S-1-5-21-822971858-4240643665-2656738410-1002 - Administrator - Enabled) => C:\Users\Michal

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (10/30/2014 09:11:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/30/2014 09:11:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/30/2014 05:48:56 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/30/2014 05:48:56 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/30/2014 04:37:11 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/30/2014 04:37:11 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/30/2014 01:18:39 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/30/2014 01:18:39 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/30/2014 00:32:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/30/2014 00:32:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

System errors:
=============
Error: (10/30/2014 06:08:25 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: NT AUTHORITY)
Description: 0xc000014d0

Error: (10/30/2014 05:54:56 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: NT AUTHORITY)
Description: 0xc000014d0

Error: (10/30/2014 05:53:31 PM) (Source: DCOM) (EventID: 10010) (User: IdeaPad)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (10/30/2014 00:30:05 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description:

Error: (10/29/2014 07:24:58 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description:

Error: (10/29/2014 07:02:48 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description:

Error: (10/29/2014 06:55:41 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description:

Error: (10/29/2014 06:53:41 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description:

Error: (10/29/2014 06:34:01 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description:

Error: (10/29/2014 06:07:44 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description:

Microsoft Office Sessions:
=========================
Error: (10/30/2014 09:11:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B80200000008010000

Error: (10/30/2014 09:11:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B120200000000000000AA000000

Error: (10/30/2014 05:48:56 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B80200000008010000

Error: (10/30/2014 05:48:56 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B120200000000000000AA000000

Error: (10/30/2014 04:37:11 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B80200000008010000

Error: (10/30/2014 04:37:11 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B120200000000000000AA000000

Error: (10/30/2014 01:18:39 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B80200000008010000

Error: (10/30/2014 01:18:39 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B120200000000000000AA000000

Error: (10/30/2014 00:32:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B80200000008010000

Error: (10/30/2014 00:32:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: 01B120200000000000000AA000000

CodeIntegrity Errors:
===================================
Date: 2014-10-30 22:35:56.250
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-10-30 22:35:54.488
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-10-30 22:35:47.360
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-10-27 14:32:21.354
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-10-27 14:32:18.071
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-10-01 22:44:18.251
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-10-01 22:44:08.119
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-07-25 11:35:11.047
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-07-13 11:05:48.974
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-07-09 16:45:40.752
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz
Percentage of memory in use: 38%
Total physical RAM: 8047.52 MB
Available physical RAM: 4927.66 MB
Total Pagefile: 9263.52 MB
Available Pagefile: 5225.35 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:297.78 GB) (Free:171.7 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.54 GB) NTFS
Drive f: (DATA) (Fixed) (Total:439.91 GB) (Free:42.97 GB) NTFS
Drive g: (KRYCHLE) (Fixed) (Total:146.48 GB) (Free:135.83 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: BDC3A12A)

Partition: GPT Partition Type.

==================== End Of Log ============================

#11 Příspěvek od **altrok** » 31 říj 2014 00:16

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu na Vas vyskoci fixlog, jehoz obsah mi vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKU\S-1-5-21-822971858-4240643665-2656738410-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
SearchScopes: HKLM - {413AF46C-D49E-4636-9B9F-17176BAF8031} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKLM-x32 - {413AF46C-D49E-4636-9B9F-17176BAF8031} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKCU - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = 
BHO-x32: No Name -> {15126465-2056-7EBA-DF48-2839F1865607} -> No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Task: C:\windows\Tasks\Wise Care 365.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
Task: C:\windows\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe
Hosts:
EmptyTemp:
End

michalt91 · #12 Příspěvek od **michalt91** » 31 říj 2014 00:26

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 30-10-2014 01
Ran by Michal at 2014-10-31 00:20:15 Run:1
Running from C:\Users\Michal\Desktop
Loaded Profile: Michal (Available profiles: Michal)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKU\S-1-5-21-822971858-4240643665-2656738410-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://de.search.yahoo.com/yhs/search? ... earchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
SearchScopes: HKLM - {413AF46C-D49E-4636-9B9F-17176BAF8031} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKLM-x32 - {413AF46C-D49E-4636-9B9F-17176BAF8031} URL = http://www.bing.com/search?q={searchTer ... &pc=MALNJS
SearchScopes: HKCU - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL =
BHO-x32: No Name -> {15126465-2056-7EBA-DF48-2839F1865607} -> No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Task: C:\windows\Tasks\Wise Care 365.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
Task: C:\windows\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKU\S-1-5-21-822971858-4240643665-2656738410-1002\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoLowDiskSpaceChecks => value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL => value deleted successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{413AF46C-D49E-4636-9B9F-17176BAF8031}" => Key deleted successfully.
"HKCR\CLSID\{413AF46C-D49E-4636-9B9F-17176BAF8031}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{413AF46C-D49E-4636-9B9F-17176BAF8031}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{413AF46C-D49E-4636-9B9F-17176BAF8031}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key deleted successfully.
"HKCR\CLSID\{0191A6B0-1154-4C22-9182-23A95BBE92D9}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{15126465-2056-7EBA-DF48-2839F1865607}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{15126465-2056-7EBA-DF48-2839F1865607}" => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value deleted successfully.
"HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value deleted successfully.
"HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}" => Key not found.
C:\windows\Tasks\Wise Care 365.job => Moved successfully.
C:\windows\Tasks\Wise Turbo Checker.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 37.6 MB temporary data.

The system needed a reboot.

==== End of Fixlog ====

#13 Příspěvek od **altrok** » 31 říj 2014 00:28

Takze jeste uklidime.

Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
Oznacte jen moznost "Remove disinfection tools"
kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

Jestli Vam i po pouziti teto utility zbydou nektere casti programu, ktere jsme pouzivali, dejte mi prosim vedet jejich presne umisteni. Dekuji

michalt91 · #14 Příspěvek od **michalt91** » 31 říj 2014 00:32

ďakujem moc za pomoc, a teda hovoríte že nemám používať ten Wise Care 365 ? ja ho používam už dlhšie a nepostrehol som dáke problémy s notebookom.

#15 Příspěvek od **altrok** » 31 říj 2014 00:37

Byly to jen kosmeticke upravy a docisteni po haveti, kterou jste tam pred casem mel, takze nemate zac

Zde na foru nevim o nikom, kdo by Vam tyto optimizery doporucil pouzivat (krome CCleaneru, ale to neni optimizer a zrychlovac jako Wise Care 365).

VIRY.CZ

Prosím o kontrolku

Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku

Re: Prosím o kontrolku