Preventívka PC

Zpráva

Papandreo · #1 Příspěvek od **Papandreo** » 15 lis 2014 17:19

Dobrý den, prosím o kontrolu logu RSIT. Dik

Logfile of random's system information tool 1.10 (written by random/random)
Run by Admin at 2014-11-15 17:11:18
Microsoft Windows 8.1
System drive C: has 370 GB (78%) free of 477 GB
Total RAM: 2814 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:11:33, on 15.11.2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\taskhostex.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\skydrive.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmW.exe
C:\WINDOWS\system32\conhost.exe
C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmwj.exe
C:\WINDOWS\system32\conhost.exe
C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe
C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\pptd40nt.exe
C:\Program Files\Xerox Scan To PC Desktop 12\PDF Viewer 7\PdfPro7Hook.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Creative\Shared Files\CamTray.exe
C:\Windows\System32\rundll32.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Garmin\Express Tray\ExpressTray.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\xdcla.exe
C:\Windows\System32\SettingSyncHost.exe
C:\Program Files\WindowsApps\Microsoft.Taptiles_2.3.1409.1802_x86__8wekyb3d8bbwe\Taptiles.exe
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe\LiveComm.exe
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RJM2QEZC\RSIT.exe
C:\Program Files\trend micro\Admin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - (no file)
R3 - URLSearchHook: (no name) - {93a3111f-4f74-4ed8-895e-d9708497629e} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll
O2 - BHO: (no name) - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - (no file)
O2 - BHO: (no name) - {312f84fb-8970-4fd3-bddb-7012eac4afc9} - (no file)
O2 - BHO: Speed - {48A789BF-F6D6-4930-9C8B-77855A63EDE1} - C:\PROGRA~1\Secure Speed Dial\IE\SpeedDial.dll
O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Xerox Scan To PC Desktop 12\PDF Viewer 7\Bin\PlusIEContextMenu.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: (no name) - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - (no file)
O2 - BHO: Adblock - {EF5F59BA-B2AB-48D8-9747-54DF806C73B8} - C:\Program Files\Secure Speed Dial\IE\ADBlock\IE\Adblock.dll
O3 - Toolbar: (no name) - {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - (no file)
O3 - Toolbar: (no name) - {82E1477C-B154-48D3-9891-33D83C26BCD3} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - (no file)
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HPUsageTrackingLEDM] "C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files\HP\HP UT LEDM\"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [Launcher6015N] "C:\Program Files\Xerox Office Printing\WorkCentre SSW\Launcher\xrlaunch.exe" /S Xerox WorkCentre 6015N
O4 - HKLM\..\Run: [6015N RUN] "C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmRun.exe"
O4 - HKLM\..\Run: [StatusAutoRun6015N] "C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe" Xerox WorkCentre 6015N,hide,\S
O4 - HKLM\..\Run: [IndexSearch] "C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\IndexSearch.exe"
O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\pptd40nt.exe"
O4 - HKLM\..\Run: [PPort14reminder] "C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\14\Config\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [PDFProHook] "C:\Program Files\Xerox Scan To PC Desktop 12\PDF Viewer 7\pdfpro7hook.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [V0260Cfg.exe] V0260Cfg.exe /d:2
O4 - HKCU\..\Run: [Creative WebCam Tray] "C:\Program Files\Creative\Shared Files\CamTray.exe"
O4 - HKCU\..\Run: [NTRedirect] C:\WINDOWS\system32\rundll32.exe "C:\Users\Admin\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Global Startup: ImageRetriever.lnk = C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\xdcla.exe
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O9 - Extra 'Tools' menuitem: SmartPrint - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\Microsoft Office\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\Microsoft Office\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.1 ... rol_32.CAB
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} (Creative Software AutoUpdate 2) - http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Sentinel LDK License Manager (hasplms) - SafeNet Inc. - C:\WINDOWS\system32\hasplms.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: PDFProFiltSrvPP - Nuance Communications, Inc. - C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\PDFProFiltSrvPP.exe
O23 - Service: SecureUpdate (SecureUpdateSvc) - Unknown owner - C:\Program Files\Secure Speed Dial\IE\SecureUpdate.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: XRcnStatutsDatabase (XRNADB) - Unknown owner - C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmdb.exe

--
End of file - 10049 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\FTdownloader V4.0-codedownloader.job - C:\Program Files\FTdownloader V4.0\FTdownloader V4.0-codedownloader.exe /reinstallapp /agentregpath='FTdownloader V4.0' /appid=35574 /srcid='000179' /subid='0' /zdata='0' /bic=1BE83554FB2F412A864BB791E51AD441IE /verifier=9a105ce763f57e1808e42d9c18e678c1 /installerversion=1_27_153 /installerfullversion=1.27.153.8 /installationtime=1376218404 /statsdomain=http://stats.datasrvstats.com /errorsdomain=http://errors.datasrvstats.com /codedownloaddomain=http://cr.install-daddy.com /allusers /externallog=''
C:\WINDOWS\tasks\FTdownloader V4.0-enabler.job - C:\Program Files\FTdownloader V4.0\FTdownloader V4.0-enabler.exe /enablebho /agentregpath='FTdownloader V4.0' /appid=35574 /srcid='000179' /subid='0' /zdata='0' /bic=1BE83554FB2F412A864BB791E51AD441IE /verifier=9a105ce763f57e1808e42d9c18e678c1 /installerversion=1_27_153 /installationtime=1376218404 /statsdomain=http://stats.datasrvstats.com /errorsdomain=http://errors.datasrvstats.com /bhoguid=11111111-1111-1111-1111-110311551174 /allusers /externallog=''
C:\WINDOWS\tasks\FTdownloader V4.0-updater.job - C:\Program Files\FTdownloader V4.0\FTdownloader V4.0-updater.exe /runupdater /agentregpath='FTdownloader V4.0' /appid=35574 /srcid='000179' /subid='0' /zdata='0' /bic=1BE83554FB2F412A864BB791E51AD441IE /verifier=9a105ce763f57e1808e42d9c18e678c1 /installerversion=1_27_153 /installationtime=1376218404 /statsdomain=http://stats.datasrvstats.com /errorsdomain=http://errors.datasrvstats.com /geoserviceurl=http://ipgeoapi.com/ /updatejsondomain=http://update.datasrvstats.com /updaterversion=2 /externallog=''
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312f84fb-8970-4fd3-bddb-7012eac4afc9}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{48A789BF-F6D6-4930-9C8B-77855A63EDE1}]
AccelerateTab - C:\PROGRA~1\Secure Speed Dial\IE\SpeedDial.dll [2014-05-26 994128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{551A852F-39A6-44A7-9C13-AFBEC9185A9D}]
PlusIEEventHelper Class - C:\Program Files\Xerox Scan To PC Desktop 12\PDF Viewer 7\Bin\PlusIEContextMenu.dll [2011-06-30 245016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-09-29 457712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-27 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EF5F59BA-B2AB-48D8-9747-54DF806C73B8}]
Adblock - C:\Program Files\Secure Speed Dial\IE\ADBlock\IE\Adblock.dll [2014-06-17 464720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{48586425-6bb7-4f51-8dc6-38c88e3ebb58}
{82E1477C-B154-48D3-9891-33D83C26BCD3}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-27 194504]
{03EB0E9C-7A91-4381-A220-9B52B641CDB1}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"HPUsageTrackingLEDM"=C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe [2009-10-15 30264]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files\AMD AVT\bin\kdbsync.exe aml []
"Launcher6015N"=C:\Program Files\Xerox Office Printing\WorkCentre SSW\Launcher\xrlaunch.exe [2011-05-19 2571264]
"6015N RUN"=C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmRun.exe [2012-01-03 357376]
"StatusAutoRun6015N"=C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe [2012-01-03 3658240]
"IndexSearch"=C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\IndexSearch.exe [2013-02-26 51616]
"PaperPort PTD"=C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\pptd40nt.exe [2013-02-26 39328]
"PPort14reminder"=C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\Ereg\Ereg.exe [2013-01-14 334152]
"PDFProHook"=C:\Program Files\Xerox Scan To PC Desktop 12\PDF Viewer 7\pdfpro7hook.exe [2012-11-05 641424]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2014-04-17 748256]
""= []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-09-29 4085896]
"V0260Cfg.exe"=V0260Cfg.exe /d:2 []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Creative WebCam Tray"=C:\Program Files\Creative\Shared Files\CamTray.exe [2005-10-27 299008]
"NTRedirect"= C:\Users\Admin\AppData\Roaming\BabSolution\Shared\enhancedNT.dll,Run []
"GarminExpressTrayApp"=C:\Program Files\Garmin\Express Tray\ExpressTray.exe [2014-08-07 688984]
""= []
"NokiaSuite.exe"=C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [2013-10-02 1090912]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-10-01 22065760]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ImageRetriever.lnk - C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\xdcla.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.cvid"=iccvid.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"VIDC.I420"=msh263.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-15 17:11:18 ----D---- C:\rsit
2014-11-15 17:11:18 ----D---- C:\Program Files\trend micro
2014-11-12 10:26:18 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-11-12 07:13:21 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 07:13:21 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 07:13:21 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 07:13:20 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 07:13:20 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 07:13:20 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 07:13:20 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-12 07:13:19 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 07:13:17 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-12 07:13:17 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-12 07:13:17 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-12 07:13:16 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 07:13:15 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 07:13:15 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-12 07:13:15 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-12 07:13:15 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-12 07:13:15 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-12 07:13:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-12 07:11:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 07:11:22 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 07:11:19 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 07:11:19 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 07:11:18 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 07:11:18 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 07:11:17 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 07:11:16 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 07:11:16 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 07:11:16 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 07:11:16 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 07:11:15 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 07:11:15 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 07:11:15 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 07:11:14 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 07:11:14 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 07:11:13 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 07:11:13 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 07:11:12 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 07:11:12 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 07:11:11 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 07:11:11 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 07:11:11 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 07:11:11 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 07:11:11 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 07:11:10 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 07:11:10 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 07:11:10 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 07:11:10 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 07:11:10 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 07:11:09 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 07:11:09 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 07:11:09 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 07:11:08 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 07:11:08 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 07:11:08 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 07:11:08 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 07:11:07 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 07:11:07 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 07:11:07 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 07:11:07 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 07:11:06 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 07:11:06 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 07:10:25 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-11-12 07:10:24 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-11-12 07:10:23 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-11-12 07:10:22 ----A---- C:\WINDOWS\system32\winshfhc.dll
2014-11-12 07:09:57 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 07:09:55 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-12 07:09:55 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 07:09:55 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 07:09:53 ----A---- C:\WINDOWS\system32\packager.dll
2014-11-12 07:09:50 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-11-12 07:09:50 ----A---- C:\WINDOWS\system32\msi.dll
2014-11-12 07:09:50 ----A---- C:\WINDOWS\system32\consent.exe
2014-11-12 07:09:50 ----A---- C:\WINDOWS\system32\authui.dll
2014-11-12 07:09:50 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-11-12 07:09:49 ----A---- C:\WINDOWS\system32\generaltel.dll
2014-11-12 07:09:49 ----A---- C:\WINDOWS\system32\devinv.dll
2014-11-12 07:09:49 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-11-12 07:09:49 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-11-12 07:09:48 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-12 07:09:48 ----A---- C:\WINDOWS\system32\aepic.dll
2014-11-12 07:09:46 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-11-12 07:09:45 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-11-12 07:09:45 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-12 07:09:45 ----A---- C:\WINDOWS\system32\wups2.dll
2014-11-12 07:09:45 ----A---- C:\WINDOWS\system32\wups.dll
2014-11-12 07:09:45 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-11-12 07:09:45 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-11-12 07:09:45 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-11-12 07:09:45 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-11-12 07:09:45 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-11-12 07:09:45 ----A---- C:\WINDOWS\system32\wuaext.dll
2014-10-22 19:41:59 ----D---- C:\Program Files\Common Files\Skype
2014-10-20 11:52:14 ----A---- C:\WINDOWS\system32\shell32.dll
2014-10-20 11:52:13 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-10-20 11:52:12 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-10-20 11:52:12 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-10-20 11:52:11 ----A---- C:\WINDOWS\system32\twinui.dll
2014-10-20 11:52:10 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-10-20 11:52:10 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-10-20 11:52:10 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-10-20 11:52:10 ----A---- C:\WINDOWS\system32\localspl.dll
2014-10-20 11:52:09 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-10-20 11:52:09 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-10-20 11:52:09 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-10-20 11:52:08 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-10-20 11:52:07 ----A---- C:\WINDOWS\system32\untfs.dll
2014-10-20 11:52:07 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-10-20 11:52:06 ----A---- C:\WINDOWS\system32\WofTasks.dll
2014-10-20 11:52:06 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2014-10-16 20:26:50 ----A---- C:\WINDOWS\system32\rastls.dll
2014-10-16 20:11:46 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-10-16 20:11:44 ----A---- C:\WINDOWS\system32\winbici.dll

======List of files/folders modified in the last 1 month======

2014-11-15 17:11:25 ----D---- C:\WINDOWS\Prefetch
2014-11-15 17:11:18 ----RD---- C:\Program Files
2014-11-15 17:00:00 ----D---- C:\WINDOWS\system32\sru
2014-11-15 16:41:35 ----RD---- C:\WINDOWS\System32
2014-11-15 16:41:35 ----D---- C:\WINDOWS\inf
2014-11-15 16:41:35 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-15 12:51:57 ----D---- C:\Users\Admin\AppData\Roaming\Skype
2014-11-15 11:54:21 ----D---- C:\WINDOWS\Temp
2014-11-14 15:33:24 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-14 08:58:04 ----D---- C:\Windows
2014-11-14 07:10:34 ----HD---- C:\Program Files\WindowsApps
2014-11-14 07:10:34 ----D---- C:\WINDOWS\AppReadiness
2014-11-13 07:28:06 ----D---- C:\WINDOWS\system32\config
2014-11-12 14:23:29 ----D---- C:\WINDOWS\rescache
2014-11-12 14:13:07 ----D---- C:\WINDOWS\WinSxS
2014-11-12 13:57:26 ----RSD---- C:\WINDOWS\assembly
2014-11-12 10:33:43 ----D---- C:\WINDOWS\debug
2014-11-12 10:30:29 ----D---- C:\WINDOWS\system32\en-US
2014-11-12 10:30:29 ----D---- C:\WINDOWS\system32\Drivers
2014-11-12 10:30:28 ----D---- C:\WINDOWS\system32\migration
2014-11-12 10:30:28 ----D---- C:\Program Files\Windows Defender
2014-11-12 10:30:28 ----D---- C:\Program Files\Internet Explorer
2014-11-12 10:30:27 ----SD---- C:\WINDOWS\system32\CompatTel
2014-11-12 10:30:27 ----D---- C:\WINDOWS\system32\sk-SK
2014-11-12 10:30:25 ----D---- C:\WINDOWS\CbsTemp
2014-11-12 10:30:14 ----D---- C:\WINDOWS\system32\MRT
2014-11-12 10:28:25 ----A---- C:\WINDOWS\system32\MRT.exe
2014-11-12 10:28:12 ----SHD---- C:\WINDOWS\Installer
2014-11-12 10:28:11 ----HD---- C:\Config.Msi
2014-11-12 10:28:11 ----D---- C:\ProgramData\Microsoft Help
2014-11-12 10:26:20 ----D---- C:\WINDOWS\system32\wbem
2014-11-10 20:34:08 ----D---- C:\Servis
2014-11-10 18:22:44 ----SHD---- C:\System Volume Information
2014-11-10 15:00:38 ----D---- C:\Program Files\ATI Technologies
2014-11-10 14:52:54 ----SD---- C:\ProgramData\Microsoft
2014-11-10 14:52:54 ----D---- C:\Program Files\Microsoft
2014-11-09 08:14:59 ----D---- C:\WINDOWS\SoftwareDistribution
2014-11-01 07:42:12 ----D---- C:\Program Files\CCleaner
2014-10-30 21:40:04 ----D---- C:\WINDOWS\system32\Tasks
2014-10-30 21:40:04 ----D---- C:\Program Files\Opera
2014-10-22 19:42:02 ----D---- C:\ProgramData\Skype
2014-10-22 19:41:59 ----RD---- C:\Program Files\Skype
2014-10-22 19:41:59 ----D---- C:\Program Files\Common Files
2014-10-22 19:41:00 ----A---- C:\WINDOWS\system32\sqlite3.dll
2014-10-20 13:21:33 ----D---- C:\WINDOWS\system32\DriverStore
2014-10-20 12:50:12 ----RD---- C:\WINDOWS\ToastData
2014-10-20 12:50:12 ----D---- C:\WINDOWS\apppatch
2014-10-20 11:51:08 ----D---- C:\WINDOWS\system32\catroot2
2014-10-19 17:39:43 ----D---- C:\WINDOWS\Tasks
2014-10-16 21:31:35 ----D---- C:\WINDOWS\MediaViewer
2014-10-16 21:31:35 ----D---- C:\WINDOWS\FileManager
2014-10-16 21:31:35 ----D---- C:\WINDOWS\Camera

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-09-29 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-09-29 192352]
R0 Wof;Windows Overlay File System Filter Driver; C:\WINDOWS\system32\drivers\Wof.sys [2014-03-13 138584]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-09-29 81768]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-09-29 779536]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-09-29 414520]
R2 aksfridge;aksfridge; \??\C:\WINDOWS\system32\drivers\aksfridge.sys [2014-04-29 425352]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2014-02-11 50400]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-09-29 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-09-29 67824]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-09-29 71944]
R2 hardlock;hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys [2014-04-29 609624]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2012-07-04 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2012-07-04 290304]
R3 RTL8168;@netrt630x86.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x86.sys [2013-06-18 490496]
R3 V0260VID;@oem68.inf,%szDeviceDesc%;Live! Cam Vista IM; C:\WINDOWS\system32\DRIVERS\V0260Vid.sys [2006-11-03 178913]
S2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2014-02-11 50400]
S3 dot4;@oem2.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-09-25 137632]
S3 Dot4Print;@oem13.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-09-25 22432]
S3 dot4usb;@oem2.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-09-25 42912]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2013-02-02 17488]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2013-07-23 22016]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2013-07-23 61936]
S3 mvusbews;@oem5.inf,%mvusbews.SvcDesc%;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-12-24 17408]
S3 nmwcd;@oem72.inf,%MFG% %SVC%;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2013-01-23 18560]
S3 nmwcdc;@oem75.inf,%MFG% %SVC%;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2013-01-23 23168]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2013-01-23 8192]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 37888]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2013-08-22 27136]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2013-01-23 8192]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\WINDOWS\system32\DRIVERS\WinUsb.sys [2013-08-22 64000]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2012-07-04 217088]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-17 276992]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-09-29 50344]
R2 Garmin Core Update Service;Garmin Core Update Service; C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [2014-08-07 438616]
R2 hasplms;Sentinel LDK License Manager; C:\WINDOWS\system32\hasplms.exe [2014-04-29 4683144]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2012-11-08 100232]
R2 PDFProFiltSrvPP;PDFProFiltSrvPP; C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\PDFProFiltSrvPP.exe [2013-02-26 220488]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-02-02 116648]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S2 SecureUpdateSvc;SecureUpdate; C:\Program Files\Secure Speed Dial\IE\SecureUpdate.exe [2014-05-28 2580304]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-02-02 116648]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-02-02 194032]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]

-----------------EOF-----------------

#2 Příspěvek od **altrok** » 15 lis 2014 21:31

Zdravim

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/

ukoncete vsechny programy
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Scan, pote na Clean
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

Papandreo · #3 Příspěvek od **Papandreo** » 15 lis 2014 22:03

Tu je log z adwcleaner

# AdwCleaner v4.101 - Report created 15/11/2014 at 21:55:17
# Updated 09/11/2014 by Xplode
# Database : 2014-11-13.1 [Live]
# Operating System : Windows 8.1 (32 bits)
# Username : Admin - STEFAN
# Running from : C:\Users\Admin\Desktop\adwcleaner_4.101.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : SecureUpdateSvc

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\~0
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\BitGuard
Folder Deleted : C:\ProgramData\BrowserDefender
Folder Deleted : C:\ProgramData\Iminent
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Program Files\Application Updater
Folder Deleted : C:\Program Files\DownLite
Folder Deleted : C:\Program Files\IObit Apps Toolbar
Folder Deleted : C:\Program Files\MyPC Backup
Folder Deleted : C:\Program Files\Secure Speed Dial
Folder Deleted : C:\Program Files\VideoDownloadConverter_4z
Folder Deleted : C:\Program Files\Common Files\Spigot
Folder Deleted : C:\Users\Admin\AppData\Local\cool_mirage
Folder Deleted : C:\Users\Admin\AppData\Local\iac
Folder Deleted : C:\Users\Admin\AppData\Local\onlysearch
Folder Deleted : C:\Users\Admin\AppData\Local\VideoDownloadConverter_4z
Folder Deleted : C:\Users\Admin\AppData\LocalLow\iac
Folder Deleted : C:\Users\Admin\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\Admin\AppData\LocalLow\VideoDownloadConverter_4z
Folder Deleted : C:\Users\Admin\AppData\Roaming\BabSolution
Folder Deleted : C:\Users\Admin\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Admin\AppData\Roaming\DownLite
Folder Deleted : C:\Users\Admin\AppData\Roaming\Iminent
Folder Deleted : C:\Users\Admin\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Admin\AppData\Roaming\Smart Driver Updater
Folder Deleted : C:\Users\Admin\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Deleted : C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTDownloader.com
Folder Deleted : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\Extensions\speeddial@instair.net
Folder Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Folder Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Folder Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Folder Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Folder Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp
Folder Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
[/!\] Not Deleted ( Junction ) : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj
[/!\] Not Deleted ( Junction ) : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp
File Deleted : C:\WINDOWS\system32\roboot.exe
File Deleted : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js
File Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
File Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\bprotector web data
File Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pbjikboenpfhbbejgkoklgkhjpfogcam_0.localstorage

***** [ Scheduled Tasks ] *****

Task Deleted : EPUpdater

***** [ Shortcuts ] *****

***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [4zffxtbr@VideoDownloadConverter_4z.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lgnbhdnimikkoodkogjlcllngimhlapp
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Key Deleted : HKCU\Software\Classes\pokki
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NTRedirect]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\FTDownloader
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.DynamicBarButton
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.DynamicBarButton.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.FeedManager
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.FeedManager.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLMenu
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLMenu.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLPanel
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLPanel.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.MultipleButton
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.MultipleButton.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.PseudoTransparentPlugin
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.PseudoTransparentPlugin.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.Radio
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.Radio.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.RadioSettings
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.RadioSettings.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ScriptButton
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ScriptButton.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SettingsPlugin
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SettingsPlugin.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SkinLauncher
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SkinLauncher.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SkinLauncherSettings
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SkinLauncherSettings.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ThirdPartyInstaller
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ThirdPartyInstaller.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.UrlAlertButton
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.UrlAlertButton.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.XMLSessionPlugin
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.XMLSessionPlugin.1
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@VideoDownloadConverter_4z.com/Plugin
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\webcakeupdater
Key Deleted : HKCU\Software\Classes\keepmysearch
Key Deleted : HKCU\Software\e08cdee13abe45
Key Deleted : HKLM\SOFTWARE\e08cdee13abe45
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0035574.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0035574.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0035574.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0035574.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{7169BBB3-3289-4696-B35D-4A88BCF6FB12}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{13119113-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1F6F39C1-00A8-4752-A94C-D0EA92D978B6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2A1260C1-2964-453F-B0BA-FA429472EB5F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{363D5C92-10DC-4287-93E5-1832EECC48EC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B41BE90-F731-4137-AFF3-2CA951E7F0D9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3D429207-4689-492D-A0E5-CDC5DFBB5005}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4128C64D-F0DD-4811-9405-D22294E8151F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{48A789BF-F6D6-4930-9C8B-77855A63EDE1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5354D921-3F52-47C5-938D-77A2FB6DEFE7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66292684-B2C2-4C7C-B3D2-BF446E30744C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69407823-3494-4400-8D49-612549E8F4EE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6BFF4BCB-7A73-45A7-AC4C-389A34E1D1EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{71144427-1368-4D18-8DC9-2AE3CC4C4F83}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{84B7B98F-E018-4DBB-AB4C-4DDD3DFCB5FB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8FCA5302-6D6D-4645-BF99-D43CF76CE474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99E1F6FD-2E94-4CF6-8344-1BA63CD3BD9B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BB975E58-E769-4E5A-BA12-B765BC559FF3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DD385519-22E7-4BE2-8A8D-35C66DF4858E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ED345812-2722-4DCA-9976-D01832DB44EE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F511AFDB-726E-4458-90E7-1ECB97406544}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FF48DBA6-5DD8-4D10-9EB0-0FA968502E66}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{17B10E59-09E1-4C39-A738-6774D7AB7778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD2049E-E483-4425-8555-8E0775ACB631}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2D73F2D0-2FAB-458E-977D-2F9050E0ED60}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2D9083CE-8758-4704-BA57-3C891D7452BD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3E9469AF-E866-4476-B767-810630F1F6E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{47700C35-9E3E-4DAD-934C-0CE28A87237C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{716E443D-7CAA-44F1-866B-F45D00E712CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72063D77-7590-4DA9-A7F8-F5ECAF3632C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7FC87AC5-FA93-476E-A32C-A941229DED0B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555574}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556674}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{192F487E-E812-40C0-B0DE-CB4BFA20F37B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2D3826A1-F3E8-45D6-94B5-C26D8EC0073B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3EE17DD1-E28B-4AED-A3B2-9C29CB2C19D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{79332472-47F3-4E32-B07F-CF8DF4C58499}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{886F93AD-3CBB-4424-8442-A7340243540F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{AA289DBC-59B6-40A5-AC7D-C90DF850289C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BC153A3C-0BB7-4EED-83AE-28E6E398F56E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CA723163-6FAD-43D4-8B93-0D8C52BD9974}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F1F328EB-F5A5-432B-A54C-05F3EF5B0BD8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FB0E8A09-F08C-44CF-9E15-97ADAC016248}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FE8DBB09-C3D3-4477-80CB-D38914B94BB8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{48A789BF-F6D6-4930-9C8B-77855A63EDE1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C547C6C2-561B-4169-A2A5-20BA771CA93B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{48A789BF-F6D6-4930-9C8B-77855A63EDE1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{48A789BF-F6D6-4930-9C8B-77855A63EDE1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1F6F39C1-00A8-4752-A94C-D0EA92D978B6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5354D921-3F52-47C5-938D-77A2FB6DEFE7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{71144427-1368-4D18-8DC9-2AE3CC4C4F83}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{99E1F6FD-2E94-4CF6-8344-1BA63CD3BD9B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ED345812-2722-4DCA-9976-D01832DB44EE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{105CE2F6-6C71-4553-95DB-0521A2C0F060}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D9083CE-8758-4704-BA57-3C891D7452BD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D429207-4689-492D-A0E5-CDC5DFBB5005}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4AC48E96-EB40-4792-9D9D-70D59D8754BA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5935E203-F846-461D-89DF-435059EFCBB8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6419A700-23B8-46EA-800B-C0EA78E133A2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9BC852D3-9D70-4611-9AFC-016840417A4C}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{48586425-6BB7-4F51-8DC6-38C88E3EBB58}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{82E1477C-B154-48D3-9891-33D83C26BCD3}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{48586425-6BB7-4F51-8DC6-38C88E3EBB58}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{93A3111F-4F74-4ED8-895E-D9708497629E}]
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{357D1B58-69E7-4E63-AA27-C198EB325708}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\Alexa Internet
Key Deleted : HKCU\Software\BABSOLUTION
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\Delta
Key Deleted : HKCU\Software\distromatic
Key Deleted : HKCU\Software\filescout
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\SweetIM
Key Deleted : HKCU\Software\VideoDownloadConverter_4z
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\FTdownloader V4.0
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\AppDataLow\Software\VideoDownloadConverter_4z
Key Deleted : HKLM\SOFTWARE\Application Updater
Key Deleted : HKLM\SOFTWARE\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\FTdownloader V4.0
Key Deleted : HKLM\SOFTWARE\Search Settings
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Key Deleted : HKLM\SOFTWARE\VideoDownloadConverter_4z
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

-\\ Mozilla Firefox v

-\\ Google Chrome v38.0.2125.111

[C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=E6B7902B3493D6BD&affID=121564&tt=1850813_ctrl&tsp=4979
[C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=E6B7902B3493D6BD&affID=121564&tt=1850813_ctrl&tsp=4979

-\\ Opera v25.0.1614.68

[C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=E6B7902B3493D6BD&affID=121564&tt=1850813_ctrl&tsp=4979
[C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=E6B7902B3493D6BD&affID=121564&tt=1850813_ctrl&tsp=4979

*************************

AdwCleaner[R0].txt - [20410 octets] - [15/11/2014 21:52:37]
AdwCleaner[S0].txt - [21032 octets] - [15/11/2014 21:55:17]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [21093 octets] ##########

#4 Příspěvek od **altrok** » 15 lis 2014 22:06

Ulozte na plochu zoek.exe http://hijackthis.nl/smeenk/zoek.htm

spustte jako spravce
do velkeho okna zkopirujte script uvedeny nize
kliknete na Run script
po restartu na Vas vyskoci log (pripadne jej najdete v C:\zoek-results.log) - vlozte mi jej do pristi odpovedi
Kód: Vybrat vše
```
autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;
```

Papandreo · #5 Příspěvek od **Papandreo** » 15 lis 2014 22:29

Nemôžem to stiahnuť, lebo mi to avast blokuje, uložil do truhly a stránka už nereaguje

#6 Příspěvek od **altrok** » 15 lis 2014 22:32

Pocas stahnuti vypnete antivir (avast ma moznost vypnout antivir napr. na 15 minut).

Papandreo · #7 Příspěvek od **Papandreo** » 15 lis 2014 22:58

Prikladám log zoek

Zoek.exe v5.0.0.0 Updated 15-November-2014
Tool run by Admin on so 15.11.2014 at 22:38:55,78.
Microsoft Windows 8.1 6.3.9600 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Admin\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

15.11.2014 22:40:21 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1998989806-2990118016-3208609371-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6784433B-E008-48CF-9687-CED0711CCB2A} deleted successfully
HKEY_USERS\S-1-5-21-1998989806-2990118016-3208609371-1001\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6} deleted successfully
HKEY_USERS\S-1-5-21-1998989806-2990118016-3208609371-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF5F59BA-B2AB-48D8-9747-54DF806C73B8} deleted successfully
HKEY_USERS\S-1-5-21-1998989806-2990118016-3208609371-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF5F59BA-B2AB-48D8-9747-54DF806C73B8} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EF5F59BA-B2AB-48D8-9747-54DF806C73B8} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{EF5F59BA-B2AB-48D8-9747-54DF806C73B8} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EF5F59BA-B2AB-48D8-9747-54DF806C73B8} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1998989806-2990118016-3208609371-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{434D452D-5637-006A-76A7-7A786E7484D7} deleted successfully

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js:

Added to C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

==== Deleting Files \ Folders ======================

C:\Program Files\Video Download Converter deleted
C:\search.sqlite deleted
C:\prefs.js deleted
C:\found.000 deleted
C:\Users\Admin\AppData\Roaming\DRPSu deleted
C:\Users\Admin\AppData\Local\avgchrome deleted
C:\Users\Admin\AppData\Local\TempDIR deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\Public\AlexaNSISPlugin.6876.dll deleted
C:\Users\Admin\AppData\LocalLow\IObit Apps deleted
C:\WINDOWS\wininit.ini deleted
C:\WINDOWS\system32\Tasks\FTdownloader V4.0-codedownloader deleted
C:\WINDOWS\system32\Tasks\FTdownloader V4.0-enabler deleted
C:\WINDOWS\system32\Tasks\FTdownloader V4.0-updater deleted
C:\WINDOWS\Tasks\FTdownloader V4.0-codedownloader.job deleted
C:\WINDOWS\Tasks\FTdownloader V4.0-enabler.job deleted
C:\WINDOWS\Tasks\FTdownloader V4.0-updater.job deleted
C:\WINDOWS\system32\config\systemprofile\Searches deleted
C:\WINDOWS\System32\InstallUtil.InstallLog deleted
C:\WINDOWS\System32\searchplugins deleted
C:\WINDOWS\System32\Extensions deleted
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\extensions\searchads@instair.net deleted
"C:\WINDOWS\Installer\5a644.msi" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [29.09.2014 10:37]

==== Firefox Extensions ======================

ExtDir: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\extensions
- FT Downloader - %ExtDir%\ftd@ftd.com.xpi

==== Firefox Plugins ======================

==== Deleted Firefox Extensions ======================

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\ftd@ftd.com.xpi deleted

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[29.09.2014 10:36]

avast Online Security - Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
PDF Viewer - Admin\AppData\Roaming\Opera Software\Opera Stable\Extensions\encfpfilknmenlmjemepncnlbbjlabkc

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.sk/"
"Search Page"="http://www.bing.com/search?q={searchTer ... DF&PC=AV01"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.bing.com/search?q={searchTer ... DF&PC=AV01"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.google.sk/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IESR02"
{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} Microsoft (Bing) Url="http://www.bing.com/search?q={searchTer ... DF&PC=AV01"

==== Reset Google Chrome ======================

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\903C920E1244B01498A0032D8E8ED2C0 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\903C920E1244B01498A0032D8E8ED2C0 deleted successfully

==== Empty IE Cache ======================

C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Admin\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=65 folders=20 28024490 bytes)

==== Empty Temp Folders ======================

C:\Users\Admin\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Admin\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on so 15.11.2014 at 22:55:29,12 ======================

#8 Příspěvek od **altrok** » 15 lis 2014 23:01

Dejte novy log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

Papandreo · #9 Příspěvek od **Papandreo** » 15 lis 2014 23:17

Posielam log FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-11-2014 01
Ran by Admin (administrator) on STEFAN on 15-11-2014 23:12:22
Running from C:\Users\Admin\Desktop
Loaded Profile: Admin (Available profiles: Admin)
Platform: Microsoft Windows 8.1 (X86) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Garmin Ltd or its subsidiaries) C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(Nuance Communications, Inc.) C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\PDFProFiltSrvPP.exe
() C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmdb.exe
(Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
() C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmW.exe
() C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmwj.exe
() C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe
(Nuance Communications, Inc.) C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\pptd40nt.exe
(Nuance Communications, Inc.) C:\Program Files\Xerox Scan To PC Desktop 12\PDF Viewer 7\PdfPro7Hook.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Creative Technology Ltd) C:\Program Files\Creative\Shared Files\CamTray.exe
(Garmin Ltd or its subsidiaries) C:\Program Files\Garmin\Express Tray\ExpressTray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Nuance Communications, Inc.) C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\xdcla.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft) C:\Program Files\WindowsApps\Microsoft.Taptiles_2.3.1409.1802_x86__8wekyb3d8bbwe\Taptiles.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe\livecomm.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM\...\Run: [HPUsageTrackingLEDM] => C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe [30264 2009-10-15] (Hewlett-Packard Company)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [AMD AVT] => C:\Program Files\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM\...\Run: [Launcher6015N] => C:\Program Files\Xerox Office Printing\WorkCentre SSW\Launcher\xrlaunch.exe [2571264 2011-05-19] (Xerox)
HKLM\...\Run: [6015N RUN] => C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmRun.exe [357376 2012-01-03] ()
HKLM\...\Run: [StatusAutoRun6015N] => C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe [3658240 2012-01-03] ()
HKLM\...\Run: [IndexSearch] => C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\IndexSearch.exe [51616 2013-02-26] (Nuance Communications, Inc.)
HKLM\...\Run: [PaperPort PTD] => C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\pptd40nt.exe [39328 2013-02-26] (Nuance Communications, Inc.)
HKLM\...\Run: [PPort14reminder] => C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\Ereg\Ereg.exe [334152 2013-01-14] (Nuance Communications, Inc.)
HKLM\...\Run: [PDFProHook] => C:\Program Files\Xerox Scan To PC Desktop 12\PDF Viewer 7\pdfpro7hook.exe [641424 2012-11-05] (Nuance Communications, Inc.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [748256 2014-04-17] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-09-29] (AVAST Software)
HKLM\...\Run: [V0260Cfg.exe] => V0260Cfg.exe /d:2
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\...\Run: [Creative WebCam Tray] => C:\Program Files\Creative\Shared Files\CamTray.exe [299008 2005-10-27] (Creative Technology Ltd)
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\...\Run: [] => [X]
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\...\Run: [NokiaSuite.exe] => C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [1090912 2013-10-02] (Nokia)
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-29] (Piriform Ltd)
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22065760 2014-10-01] (Skype Technologies S.A.)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ImageRetriever.lnk
ShortcutTarget: ImageRetriever.lnk -> C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\xdcla.exe (Nuance Communications, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
SearchScopes: HKLM - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKLM - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKCU - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
BHO: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files\Xerox Scan To PC Desktop 12\PDF Viewer 7\Bin\PlusIEContextMenu.dll (Zeon Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: ZEON/PDF,version=2.0 -> C:\Program Files\Xerox Scan To PC Desktop 12\PDF Viewer 7\bin\nppdf.dll (Zeon Corporation)
FF Extension: No Name - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2013-08-19]
FF HKLM\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: SmartPrintButton - C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension [2013-02-09]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-10-14]

Chrome:
=======
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-07]
CHR Extension: (Disk Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-07]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-07]
CHR Extension: (Hľadať v Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-07]
CHR Extension: (Avast Online Security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-10-02]
CHR Extension: (Peňaženka Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-24]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-07]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-09-29]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [276992 2014-04-17] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-09-29] (AVAST Software)
R2 Garmin Core Update Service; C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [438616 2014-08-07] (Garmin Ltd or its subsidiaries)
R2 hasplms; C:\WINDOWS\system32\hasplms.exe [4683144 2014-04-29] (SafeNet Inc.)
R2 PDFProFiltSrvPP; C:\Program Files\Xerox Scan To PC Desktop 12\PaperPort 14\PDFProFiltSrvPP.exe [220488 2013-02-26] (Nuance Communications, Inc.)
S3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [105472 2013-08-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [288128 2014-09-22] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [20992 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22192 2014-09-22] (Microsoft Corporation)
S3 workfolderssvc; C:\WINDOWS\system32\workfolderssvc.dll [1222144 2014-07-24] (Microsoft Corporation)
R2 XRNADB; C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmdb.exe [79872 2012-01-03] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [425352 2014-04-29] (SafeNet Inc.)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [50400 2014-02-11] (Advanced Micro Devices)
S2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [50400 2014-02-11] (Advanced Micro Devices)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-09-29] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-09-29] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [81768 2014-09-29] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-09-29] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [779536 2014-09-29] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [414520 2014-09-29] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [71944 2014-09-29] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [192352 2014-09-29] ()
R1 BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [25600 2014-02-22] (Microsoft Corporation)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [137632 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [22432 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [17488 2013-02-02] (Windows (R) 2000 DDK provider)
S3 GPIO; C:\WINDOWS\System32\drivers\iaiogpio.sys [22016 2013-07-23] (Intel Corporation)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [609624 2014-04-29] (SafeNet Inc.)
R3 V0260VID; C:\WINDOWS\system32\DRIVERS\V0260Vid.sys [178913 2006-11-03] (Creative Technology Ltd.)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [84800 2014-09-22] (Microsoft Corporation)
R0 Wof; C:\WINDOWS\system32\Drivers\Wof.sys [138584 2014-03-13] (Microsoft Corporation)
S3 WUDFSensorLP; C:\WINDOWS\System32\drivers\WUDFRd.sys [188416 2014-05-31] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [188416 2014-05-31] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-15 23:12 - 2014-11-15 23:12 - 00016940 _____ () C:\Users\Admin\Desktop\FRST.txt
2014-11-15 23:12 - 2014-11-15 23:12 - 00000000 ____D () C:\FRST
2014-11-15 23:11 - 2014-11-15 23:11 - 01108480 _____ (Farbar) C:\Users\Admin\Desktop\FRST.exe
2014-11-15 22:51 - 2014-11-15 22:38 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-11-15 22:39 - 2014-11-15 22:55 - 00010021 _____ () C:\zoek-results.log
2014-11-15 22:38 - 2014-11-15 22:50 - 00000000 ____D () C:\zoek_backup
2014-11-15 22:38 - 2014-11-15 22:38 - 01294848 _____ () C:\Users\Admin\Desktop\zoek.exe
2014-11-15 21:51 - 2014-11-15 21:55 - 00000000 ____D () C:\AdwCleaner
2014-11-15 21:45 - 2014-11-15 21:45 - 02140160 _____ () C:\Users\Admin\Desktop\adwcleaner_4.101.exe
2014-11-15 17:11 - 2014-11-15 17:11 - 00000000 ____D () C:\rsit
2014-11-15 17:11 - 2014-11-15 17:11 - 00000000 ____D () C:\Program Files\trend micro
2014-11-14 08:58 - 2014-11-14 08:58 - 00000117 _____ () C:\WINDOWS\setupact.log
2014-11-14 08:58 - 2014-11-14 08:58 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-11-12 13:11 - 2014-11-12 13:11 - 00000000 __SHD () C:\Users\Admin\AppData\Local\EmieBrowserModeList
2014-11-12 10:32 - 2014-11-15 22:54 - 00004052 _____ () C:\WINDOWS\PFRO.log
2014-11-12 10:26 - 2014-10-30 01:55 - 00714208 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-11-12 10:26 - 2014-10-30 01:55 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-11-12 07:13 - 2014-10-31 04:42 - 19781632 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-11-12 07:13 - 2014-10-10 03:28 - 00148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-11-12 07:13 - 2014-10-10 03:28 - 00022848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2014-11-12 07:13 - 2014-10-10 03:12 - 00478776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-11-12 07:13 - 2014-10-08 07:51 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-11-12 07:13 - 2014-10-08 07:51 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2014-11-12 07:13 - 2014-10-08 07:48 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-11-12 07:13 - 2014-10-08 07:39 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 07:13 - 2014-10-08 06:48 - 01117696 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-11-12 07:13 - 2014-10-08 06:16 - 02975232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 07:13 - 2014-10-07 04:34 - 00370424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-11-12 07:13 - 2014-10-07 04:34 - 00344536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 07:13 - 2014-10-07 04:33 - 00424544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-11-12 07:13 - 2014-10-07 04:33 - 00213344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-11-12 07:13 - 2014-10-07 04:33 - 00107376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2014-11-12 07:13 - 2014-10-07 03:45 - 03558400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-11-12 07:13 - 2014-10-07 02:36 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 07:13 - 2014-10-07 02:31 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-11-12 07:11 - 2014-10-31 04:28 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2014-11-12 07:11 - 2014-10-31 04:28 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2014-11-12 07:11 - 2014-10-31 04:27 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2014-11-12 07:11 - 2014-10-31 04:26 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2014-11-12 07:11 - 2014-10-31 04:25 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 07:11 - 2014-10-31 04:24 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-11-12 07:11 - 2014-10-31 04:24 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2014-11-12 07:11 - 2014-10-31 04:24 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-11-12 07:11 - 2014-10-31 04:23 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-11-12 07:11 - 2014-10-31 04:23 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 07:11 - 2014-10-31 04:22 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 07:11 - 2014-10-31 04:18 - 02277376 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-11-12 07:11 - 2014-10-31 04:16 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-11-12 07:11 - 2014-10-31 04:15 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-11-12 07:11 - 2014-10-31 04:14 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 07:11 - 2014-10-31 04:13 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2014-11-12 07:11 - 2014-10-31 04:13 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2014-11-12 07:11 - 2014-10-31 04:12 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-11-12 07:11 - 2014-10-31 04:12 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 07:11 - 2014-10-31 04:12 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 07:11 - 2014-10-31 04:11 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 07:11 - 2014-10-31 04:03 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2014-11-12 07:11 - 2014-10-31 04:02 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 07:11 - 2014-10-31 03:57 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 07:11 - 2014-10-31 03:56 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2014-11-12 07:11 - 2014-10-31 03:56 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2014-11-12 07:11 - 2014-10-31 03:56 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2014-11-12 07:11 - 2014-10-31 03:53 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-11-12 07:11 - 2014-10-31 03:53 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 07:11 - 2014-10-31 03:52 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-11-12 07:11 - 2014-10-31 03:51 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-11-12 07:11 - 2014-10-31 03:50 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-11-12 07:11 - 2014-10-31 03:48 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-11-12 07:11 - 2014-10-31 03:46 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-11-12 07:11 - 2014-10-31 03:46 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-11-12 07:11 - 2014-10-31 03:42 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-11-12 07:11 - 2014-10-31 03:40 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-11-12 07:11 - 2014-10-31 03:40 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 07:11 - 2014-10-31 03:39 - 02051072 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-11-12 07:11 - 2014-10-31 03:39 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 07:11 - 2014-10-31 03:30 - 12819456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-11-12 07:11 - 2014-10-31 03:26 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-11-12 07:11 - 2014-10-31 03:24 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2014-11-12 07:11 - 2014-10-31 03:17 - 01892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-11-12 07:11 - 2014-10-31 03:13 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-11-12 07:11 - 2014-10-31 03:11 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 07:10 - 2014-09-22 03:40 - 00219968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-11-12 07:10 - 2014-09-22 03:40 - 00084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-11-12 07:10 - 2014-09-22 03:39 - 00029688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-11-12 07:10 - 2014-09-02 23:08 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2014-11-12 07:09 - 2014-11-05 00:40 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-11-12 07:09 - 2014-11-04 01:09 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2014-11-12 07:09 - 2014-10-31 04:13 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-11-12 07:09 - 2014-10-31 04:10 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-11-12 07:09 - 2014-10-31 03:52 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-11-12 07:09 - 2014-10-23 06:05 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2014-11-12 07:09 - 2014-10-18 09:49 - 00048496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-11-12 07:09 - 2014-10-18 08:25 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-11-12 07:09 - 2014-10-18 08:25 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-11-12 07:09 - 2014-10-18 07:29 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2014-11-12 07:09 - 2014-10-18 07:16 - 02946560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-11-12 07:09 - 2014-10-18 07:14 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-11-12 07:09 - 2014-10-18 07:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-11-12 07:09 - 2014-10-18 07:12 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-12 07:09 - 2014-10-18 07:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-11-12 07:09 - 2014-10-18 07:11 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-11-12 07:09 - 2014-10-18 07:08 - 01653248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-11-12 07:09 - 2014-10-17 07:58 - 00602768 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-11-12 07:09 - 2014-10-13 03:37 - 00108864 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2014-11-12 07:09 - 2014-10-11 01:53 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-11-12 07:09 - 2014-10-08 07:44 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-11-12 07:09 - 2014-10-08 07:27 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2014-11-12 07:09 - 2014-10-08 06:19 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-11-12 07:09 - 2014-09-27 06:24 - 00088800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 07:09 - 2014-09-27 04:17 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-11-12 07:09 - 2014-09-27 04:12 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 07:09 - 2014-08-23 06:03 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-11-09 08:14 - 2014-11-15 23:06 - 00908275 _____ () C:\WINDOWS\WindowsUpdate.log
2014-11-07 06:44 - 2014-11-07 06:44 - 00000000 ____D () C:\Users\Default\AppData\Local\Google
2014-11-07 06:44 - 2014-11-07 06:44 - 00000000 ____D () C:\Users\Default User\AppData\Local\Google
2014-10-29 18:52 - 2014-10-29 18:52 - 00000276 ____H () C:\Users\Admin\Desktop\PP11Thumbs.ptn
2014-10-27 23:19 - 2014-10-27 23:19 - 00000000 ____D () C:\Users\Admin\Documents\Zariadenie Garmin
2014-10-22 19:41 - 2014-10-22 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-10-22 19:41 - 2014-10-22 19:41 - 00002557 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-10-22 19:41 - 2014-10-22 19:41 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-10-20 11:52 - 2014-09-10 07:18 - 00333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-10-20 11:52 - 2014-09-08 03:33 - 01858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-10-20 11:52 - 2014-09-08 03:33 - 00286528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-10-20 11:52 - 2014-09-07 23:07 - 00389176 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-10-20 11:52 - 2014-09-04 23:29 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-10-20 11:52 - 2014-09-04 23:20 - 00839168 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-10-20 11:52 - 2014-09-04 03:22 - 00670384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-10-20 11:52 - 2014-09-04 01:32 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2014-10-20 11:52 - 2014-09-04 01:11 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\WofTasks.dll
2014-10-20 11:52 - 2014-08-31 00:00 - 00120640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-10-20 11:52 - 2014-08-30 23:59 - 18723112 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-10-20 11:52 - 2014-08-30 21:53 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2014-10-20 11:52 - 2014-08-30 21:17 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-10-20 11:52 - 2014-08-28 03:16 - 05783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-10-20 11:52 - 2014-08-28 01:06 - 02030592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-10-20 11:52 - 2014-08-23 06:04 - 11820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-10-20 11:52 - 2014-08-23 05:47 - 02151936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-10-20 11:52 - 2014-08-02 01:35 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-10-19 17:39 - 2014-11-15 22:55 - 00000942 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-19 17:39 - 2014-11-15 22:44 - 00000946 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-16 20:26 - 2014-09-04 01:01 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-10-16 20:11 - 2014-09-04 01:00 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-10-16 20:11 - 2014-09-04 00:49 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-15 23:00 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-11-15 23:00 - 2013-02-11 22:08 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-11-15 22:55 - 2013-11-24 11:11 - 00000000 ___DO () C:\Users\Admin\SkyDrive
2014-11-15 22:54 - 2013-08-22 08:23 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-11-15 22:54 - 2013-08-22 07:13 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-11-15 22:49 - 2013-08-22 07:21 - 00000000 ___RD () C:\Users\Public
2014-11-15 22:11 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-11-15 18:48 - 2012-12-23 09:18 - 00444416 ___SH () C:\Users\Admin\Desktop\Thumbs.db
2014-11-15 16:41 - 2013-11-24 10:53 - 00931582 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-15 16:41 - 2013-02-09 15:22 - 00062630 _____ () C:\WINDOWS\system32\perfh01B.dat
2014-11-15 16:41 - 2013-02-09 15:22 - 00016662 _____ () C:\WINDOWS\system32\perfc01B.dat
2014-11-15 12:51 - 2013-02-02 21:54 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Skype
2014-11-14 11:08 - 2013-01-26 22:16 - 00693248 ___SH () C:\Users\Admin\Downloads\Thumbs.db
2014-11-14 07:10 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-11-12 14:23 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\rescache
2014-11-12 10:33 - 2013-08-22 08:22 - 00513576 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-11-12 10:30 - 2014-07-10 12:06 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-11-12 10:30 - 2013-08-22 09:17 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-12 10:30 - 2013-08-22 09:17 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-12 10:30 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\system32\sk-SK
2014-11-12 10:30 - 2013-08-22 09:17 - 00000000 ____D () C:\Program Files\Windows Defender
2014-11-12 10:30 - 2013-08-11 17:03 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-11-12 10:30 - 2012-07-26 07:43 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-11-12 10:28 - 2013-02-02 22:09 - 100445232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-11-12 10:28 - 2013-02-02 19:03 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-10 20:34 - 2012-12-20 18:52 - 00000000 ____D () C:\Servis
2014-11-10 15:00 - 2013-02-02 21:10 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-11-07 08:11 - 2014-09-21 11:25 - 00017876 _____ () C:\Users\Admin\Desktop\Tabuľka.xlsx
2014-11-07 06:45 - 2014-09-06 16:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-11-01 07:42 - 2013-08-17 06:44 - 00000981 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-11-01 07:42 - 2013-08-17 06:44 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-31 20:23 - 2014-02-26 14:59 - 00000000 ____D () C:\Users\Admin\SICHR14
2014-10-31 20:22 - 2013-11-24 10:41 - 00000000 ____D () C:\Users\Admin
2014-10-30 21:40 - 2013-02-02 19:36 - 00000000 ____D () C:\Program Files\Opera
2014-10-29 18:53 - 2013-12-17 15:29 - 00000000 ____D () C:\Users\Admin\Documents\My Scans
2014-10-28 18:46 - 2013-02-02 18:41 - 00002161 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-27 13:50 - 2013-10-19 18:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2014-10-27 11:16 - 2014-06-13 07:29 - 00000000 _____ () C:\sparkraw.log
2014-10-22 19:42 - 2013-02-02 21:53 - 00000000 ____D () C:\ProgramData\Skype
2014-10-22 19:41 - 2014-01-27 21:21 - 00000000 ___RD () C:\Program Files\Skype
2014-10-22 19:41 - 2013-08-19 18:12 - 00362029 _____ () C:\WINDOWS\system32\sqlite3.dll
2014-10-20 12:50 - 2013-08-22 09:17 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-10-19 16:47 - 2014-07-25 12:36 - 00001573 _____ () C:\Users\Admin\Desktop\vplyvy_c_feb2012.pdf - odkaz.lnk
2014-10-19 07:36 - 2014-08-17 09:47 - 00000000 ____D () C:\Users\Admin\AppData\Local\Adobe
2014-10-16 21:31 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-10-16 21:31 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\FileManager
2014-10-16 21:31 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\Camera

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-11-15 22:11

==================== End Of Log ============================

log addition

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-11-2014 01
Ran by Admin at 2014-11-15 23:12:59
Running from C:\Users\Admin\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
Creative Live! Cam Vista IM Driver (1.01.03.1104) (HKLM\...\Creative VF0260) (Version: - )
Garmin City Navigator Europe NTU 2015.30 (HKLM\...\{63F1BF21-7435-4055-AA71-7ED2B7948C8C}) (Version: 2.0.0.0 - Garmin Ltd or its subsidiaries)
Google Drive (HKLM\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 38.0.2125.111 - Spoločnosť Google Inc.)
Google Update Helper (Version: 1.3.25.5 - Google Inc.) Hidden
Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 (HKLM\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Opera Stable 25.0.1614.68 (HKLM\...\Opera 25.0.1614.68) (Version: 25.0.1614.68 - Opera Software ASA)
Skype™ 6.21 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
Windows Driver Package - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1998989806-2990118016-3208609371-1001_Classes\CLSID\{4EDE09DD-0761-4ABF-8DAD-1444A02C54A1}\localserver32 -> C:\Program Files\Brother\Ptedit51\Ptedit51.exe (Brother Industries, Ltd.)
CustomCLSID: HKU\S-1-5-21-1998989806-2990118016-3208609371-1001_Classes\CLSID\{93a3111f-4f74-4ed8-895e-d9708497629e}\InprocServer32 -> C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll No File

==================== Restore Points =========================

26-10-2014 13:59:51 Scheduled Checkpoint
04-11-2014 16:03:24 Scheduled Checkpoint
10-11-2014 13:54:44 Removed CCC Help Danish
15-11-2014 21:40:00 zoek.exe restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2014-11-15 22:40 - 2014-11-15 22:40 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {5694964D-D0A1-4E77-B300-8BD9C6434156} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-29] (Piriform Ltd)
Task: {5A4D66BF-5263-4672-B1B3-B7380B8B1818} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-11-12] (Microsoft Corporation)
Task: {6F89268D-E59D-4432-B912-CA89274A63E9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12] (Adobe Systems Incorporated)
Task: {7B3D0060-320B-4E2D-A958-AD069E71DCE3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-02-02] (Google Inc.)
Task: {8A6CC65E-64FD-44D5-B631-906D82AA78A2} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-09-29] (AVAST Software)
Task: {9A7D57AB-F8CF-4CFA-8516-BEB8A8A3F996} - System32\Tasks\GarminUpdaterTask => C:\Program Files\Garmin\Express Self Updater\ExpressSelfUpdater.exe [2014-08-07] ()
Task: {BBCE87FC-7F21-496A-AEB7-C8707F33B29F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-02-02] (Google Inc.)
Task: {E2086EF9-A048-4212-BCAF-827DBCC0A5FC} - System32\Tasks\Opera scheduled Autoupdate 1382099457 => C:\Program Files\Opera\launcher.exe [2014-10-29] (Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-09-29 10:36 - 2014-09-29 10:36 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-11-15 21:06 - 2014-11-15 21:06 - 02903040 _____ () C:\Program Files\AVAST Software\Avast\defs\14111501\algo.dll
2013-02-09 15:11 - 2012-09-29 13:24 - 00167936 _____ () C:\WINDOWS\System32\HPM1210LM.DLL
2014-06-05 14:27 - 2012-03-09 13:32 - 00018944 _____ () C:\WINDOWS\System32\xrhk2alm.dll
2014-10-29 18:16 - 2012-09-29 13:24 - 00069632 _____ () C:\WINDOWS\system32\spool\PRTPROCS\W32X86\HPM1210PP.dll
2013-03-02 10:09 - 2009-12-12 15:12 - 00141824 _____ () C:\Program Files\WinRAR\rarext.dll
2012-01-03 09:03 - 2012-01-03 09:03 - 00079872 _____ () C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmdb.exe
2012-01-03 09:03 - 2012-01-03 09:03 - 00215552 _____ () C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmW.exe
2012-01-03 09:03 - 2012-01-03 09:03 - 00204800 _____ () C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmwj.exe
2012-01-03 09:04 - 2012-01-03 09:04 - 03658240 _____ () C:\Program Files\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe
2014-09-29 10:37 - 2014-09-29 10:37 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-10-23 20:19 - 2014-10-23 20:19 - 00042496 _____ () C:\Program Files\CCleaner\lang\lang-1051.dll
2014-10-17 07:15 - 2014-10-17 07:15 - 03530752 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.UI.Xaml\90a4331ab5b5bb3ead23d75d4349a491\Windows.UI.Xaml.ni.dll
2014-10-17 07:15 - 2014-10-17 07:15 - 00960000 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.UI\6c2169e34bfb3814fa44f267572335f6\Windows.UI.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 00122880 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Ap4e5cc921#\5583b251bf3683a562057dc1688d13ff\Arkadium.ApplicationFramework.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 00038400 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Wi82189356#\bca0415f3391cdc00ac8e09b58f54b12\Arkadium.Win8.MediaPlayer.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 00175104 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Acc213f109#\ff0c368db8a3a88d48aaf4741fead423\Arkadium.AchievementsModule.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 00264704 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Awd4f12c8f#\d4de0cb3f6d4987aeb9cb8f1874ac4a9\Arkadium.AwardsModule.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 00374784 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Le816657bc#\a69d610db3a4100a5d4f3c8e35d82858\Arkadium.LeaderboardModule.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 02062336 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Dae4911807#\55ace2aba3c3df06a0c2b15c99f5dffd\Arkadium.DailyChallengeModule.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 00685568 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Ad1735b4ba#\2dd5a2b6355320c4a72db2556d469646\Arkadium.Advertisement.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 00301568 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Wi4bbc307d#\040a520812e5ca5a1b166e4efa31435c\Arkadium.WindowsStoreModule.ni.dll
2014-10-17 07:15 - 2014-10-17 07:15 - 00337920 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Data\fe565d34d4335337c06264bb0d85e3b0\Windows.Data.ni.dll
2014-10-17 07:15 - 2014-10-17 07:15 - 01130496 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.App640a3541#\6e37f358bf8363dad51e2333292d61a9\Windows.ApplicationModel.ni.dll
2014-10-17 07:15 - 2014-10-17 07:15 - 00808448 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Storage\f0a2c10499402eff632a7a7df0b4afef\Windows.Storage.ni.dll
2014-10-17 07:15 - 2014-10-17 07:15 - 00228864 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Foundation\f7e726805e56676bd7b8662a3d842b0e\Windows.Foundation.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 00122880 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Xaba8eb3bf#\f92e1f3e4ea2452f7e355f4ab8d428b7\Arkadium.Xaml.Toolkit.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 00317952 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.CdnModule\fca1ad661c323573243df2d1a65c2141\Arkadium.CdnModule.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 00427520 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Fae5110155#\9a47b26528bbc7d05edf59f1f257fd35\Arkadium.FacebookModule.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 00215040 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\CustomProgr3d91ab4c#\bc4a996d91600b2fd44afa03642630c1\CustomProgressControl.ni.dll
2014-05-16 20:14 - 2014-05-16 20:14 - 00483840 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.Xbox\7334cf3cd56e548536e510cce0ed4e14\Microsoft.Xbox.ni.dll
2014-10-17 07:15 - 2014-10-17 07:15 - 00770560 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Media\ca5d421f33f051f1b561add6753e4360\Windows.Media.ni.dll
2014-10-17 07:18 - 2014-10-17 07:18 - 00197120 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\MicroStudioe45cbf8f#\16671d9202716b3c85290c6f7c2c828e\MicroStudios.HouseAdController.ni.dll
2014-10-17 07:17 - 2014-10-17 07:17 - 00227328 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\CEServices\c1cbabc316caabe260365f723757062f\CEServices.ni.dll
2014-10-17 07:15 - 2014-10-17 07:15 - 00133120 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.System\7819e306c2c55c42f35a5fa10b93710f\Windows.System.ni.dll
2014-10-17 07:15 - 2014-10-17 07:15 - 00402432 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Security\ade4f25e9d8384f190ede9eb090281cb\Windows.Security.ni.dll
2014-05-03 06:49 - 2014-05-03 06:49 - 00238080 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Gloaae92e31#\a1306b1fdd9c22508f9e5d901fceb4cd\Windows.Globalization.ni.dll
2014-10-17 07:15 - 2014-10-17 07:15 - 00797696 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Networking\e1a2f3f274995f1f847c00f962657943\Windows.Networking.ni.dll
2014-05-16 20:15 - 2014-05-16 20:15 - 00041984 _____ () C:\Users\Admin\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.G42d2c636#\c9c9d32d102cd8eb4ad7d760ede11f62\Microsoft.Games.Sentient.ni.dll
2014-05-03 06:53 - 2014-05-03 06:53 - 00304128 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Graphics\4e33edd5ee2ee09f751c0071ba0a26c3\Windows.Graphics.ni.dll
2014-05-03 06:53 - 2014-05-03 06:53 - 01282048 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Windows.Devices\bf5509cf3a0d2e3afbd0c33e9153ecbd\Windows.Devices.ni.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Admin\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run: => "HP Software Update"
HKLM\...\StartupApproved\Run: => "InboxToolbar"
HKLM\...\StartupApproved\Run: => "IndexSearch"
HKCU\...\StartupApproved\StartupFolder: => "Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk"
HKCU\...\StartupApproved\Run: => "Skype"
HKCU\...\StartupApproved\Run: => "NokiaSuite.exe"
HKCU\...\StartupApproved\Run: => "WebCake Desktop"

========================= Accounts: ==========================

Admin (S-1-5-21-1998989806-2990118016-3208609371-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-1998989806-2990118016-3208609371-500 - Administrator - Disabled)
Guest (S-1-5-21-1998989806-2990118016-3208609371-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1998989806-2990118016-3208609371-1006 - Limited - Enabled)

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (11/15/2014 03:45:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program LiveComm.exe version 17.5.9600.20605 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1280

Start Time: 01d000e210aae8e5

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe\LiveComm.exe

Report Id: 04f712a8-6cd6-11e4-aff7-902b3493d6bd

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (11/15/2014 02:42:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.17416 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1700

Start Time: 01d000d8d0e791ed

Termination Time: 31

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id: 405d40ff-6ccd-11e4-aff7-902b3493d6bd

Faulting package full name:

Faulting package-relative application ID:

Error: (11/14/2014 05:27:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: iexplore.exe, verzia: 11.0.9600.17416, časová značka: 0x5452eed9
Názov chybujúceho modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x80562edf
Identifikácia chybujúceho procesu: 0x660
Čas spustenia chybujúcej aplikácie: 0xiexplore.exe0
Cesta chybujúcej aplikácie: iexplore.exe1
Cesta chybujúceho modulu: iexplore.exe2
Identifikácia hlásenia: iexplore.exe3
Celé meno chybujúceho balíka: iexplore.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: iexplore.exe5

Error: (11/14/2014 05:27:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: iexplore.exe, verzia: 11.0.9600.17416, časová značka: 0x5452eed9
Názov chybujúceho modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x2ee48056
Identifikácia chybujúceho procesu: 0x10d4
Čas spustenia chybujúcej aplikácie: 0xiexplore.exe0
Cesta chybujúcej aplikácie: iexplore.exe1
Cesta chybujúceho modulu: iexplore.exe2
Identifikácia hlásenia: iexplore.exe3
Celé meno chybujúceho balíka: iexplore.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: iexplore.exe5

Error: (11/14/2014 07:18:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: iexplore.exe, verzia: 11.0.9600.17416, časová značka: 0x5452eed9
Názov chybujúceho modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0xe4e4805c
Identifikácia chybujúceho procesu: 0xd68
Čas spustenia chybujúcej aplikácie: 0xiexplore.exe0
Cesta chybujúcej aplikácie: iexplore.exe1
Cesta chybujúceho modulu: iexplore.exe2
Identifikácia hlásenia: iexplore.exe3
Celé meno chybujúceho balíka: iexplore.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: iexplore.exe5

Error: (11/14/2014 07:14:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: iexplore.exe, verzia: 11.0.9600.17416, časová značka: 0x5452eed9
Názov chybujúceho modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0xe4e4805c
Identifikácia chybujúceho procesu: 0x2f0
Čas spustenia chybujúcej aplikácie: 0xiexplore.exe0
Cesta chybujúcej aplikácie: iexplore.exe1
Cesta chybujúceho modulu: iexplore.exe2
Identifikácia hlásenia: iexplore.exe3
Celé meno chybujúceho balíka: iexplore.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: iexplore.exe5

Error: (11/14/2014 07:00:06 AM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Správca okien na pracovnej ploche zistil kritickú chybu (0x8898008d)

Error: (11/13/2014 06:37:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: WebCamCenter.exe, verzia: 1.7.7.0, časová značka: 0x4371651c
Názov chybujúceho modulu: MFC42.DLL, verzia: 6.6.8063.0, časová značka: 0x52158160
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000f4ff
Identifikácia chybujúceho procesu: 0x15d4
Čas spustenia chybujúcej aplikácie: 0xWebCamCenter.exe0
Cesta chybujúcej aplikácie: WebCamCenter.exe1
Cesta chybujúceho modulu: WebCamCenter.exe2
Identifikácia hlásenia: WebCamCenter.exe3
Celé meno chybujúceho balíka: WebCamCenter.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: WebCamCenter.exe5

Error: (11/13/2014 06:36:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: WebCamCenter.exe, verzia: 1.7.7.0, časová značka: 0x4371651c
Názov chybujúceho modulu: MFC42.DLL, verzia: 6.6.8063.0, časová značka: 0x52158160
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000f4ff
Identifikácia chybujúceho procesu: 0x470
Čas spustenia chybujúcej aplikácie: 0xWebCamCenter.exe0
Cesta chybujúcej aplikácie: WebCamCenter.exe1
Cesta chybujúceho modulu: WebCamCenter.exe2
Identifikácia hlásenia: WebCamCenter.exe3
Celé meno chybujúceho balíka: WebCamCenter.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: WebCamCenter.exe5

Error: (11/13/2014 03:49:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: iexplore.exe, verzia: 11.0.9600.17416, časová značka: 0x5452eed9
Názov chybujúceho modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0xe4805ce4
Identifikácia chybujúceho procesu: 0xc34
Čas spustenia chybujúcej aplikácie: 0xiexplore.exe0
Cesta chybujúcej aplikácie: iexplore.exe1
Cesta chybujúceho modulu: iexplore.exe2
Identifikácia hlásenia: iexplore.exe3
Celé meno chybujúceho balíka: iexplore.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: iexplore.exe5

System errors:
=============
Error: (11/15/2014 10:55:32 PM) (Source: DCOM) (EventID: 10016) (User: STEFAN)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}STEFANAdminS-1-5-21-1998989806-2990118016-3208609371-1001LocalHost (Using LRPC)UnavailableUnavailable

Error: (11/15/2014 10:55:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby AODDriver4.3 zlyhalo kvôli nasledujúcej chybe:
%%2

Error: (11/15/2014 10:54:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby AODDriver4.3 zlyhalo kvôli nasledujúcej chybe:
%%2

Error: (11/15/2014 10:54:53 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (11/15/2014 10:49:26 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (11/15/2014 10:49:25 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (11/15/2014 10:49:25 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (11/15/2014 10:49:25 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (11/15/2014 10:49:25 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (11/15/2014 09:57:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby AODDriver4.3 zlyhalo kvôli nasledujúcej chybe:
%%2

Microsoft Office Sessions:
=========================
Error: (11/19/2013 06:12:39 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 914 seconds with 900 seconds of active time. This session ended with a crash.

Error: (04/06/2013 06:20:29 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 5179 seconds with 3720 seconds of active time. This session ended with a crash.

CodeIntegrity Errors:
===================================
Date: 2014-09-26 17:41:42.218
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-26 17:41:42.168
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-26 17:41:41.987
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-26 17:41:41.937
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-26 17:39:15.175
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-26 17:39:15.097
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-26 16:25:28.822
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-26 16:09:07.639
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-26 16:09:07.639
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-09-26 16:09:07.624
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: AMD Athlon(tm) II X2 270 Processor
Percentage of memory in use: 37%
Total physical RAM: 2813.55 MB
Available physical RAM: 1762.97 MB
Total Pagefile: 5629.55 MB
Available Pagefile: 4106.53 MB
Total Virtual: 2047.88 MB
Available Virtual: 1869.54 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.41 GB) (Free:361.56 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: ECFB69A1)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.4 GB) - (Type=07 NTFS)

==================== End Of Log ============================

#10 Příspěvek od **altrok** » 15 lis 2014 23:28

Odinstalujte Skype Click to Call

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
C:\Program Files\trend micro
DisableService: gupdate
DisableService: gupdatem
DisableService: gusvc
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\...\Run: [] => [X]
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\...\Run: [NokiaSuite.exe] => C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [1090912 2013-10-02] (Nokia)
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-29] (Piriform Ltd)
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
SearchScopes: HKLM - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
2014-11-15 22:51 - 2014-11-15 22:38 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-11-15 22:39 - 2014-11-15 22:55 - 00010021 _____ () C:\zoek-results.log
2014-11-15 22:38 - 2014-11-15 22:50 - 00000000 ____D () C:\zoek_backup
2014-11-15 22:38 - 2014-11-15 22:38 - 01294848 _____ () C:\Users\Admin\Desktop\zoek.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End

Papandreo · #11 Příspěvek od **Papandreo** » 16 lis 2014 00:05

Posielam Fixlog

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 13-11-2014 01
Ran by Admin at 2014-11-15 23:54:06 Run:2
Running from C:\Users\Admin\Desktop
Loaded Profile: Admin (Available profiles: Admin)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
C:\Program Files\trend micro
DisableService: gupdate
DisableService: gupdatem
DisableService: gusvc
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\...\Run: [] => [X]
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\...\Run: [NokiaSuite.exe] => C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [1090912 2013-10-02] (Nokia)
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-29] (Piriform Ltd)
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
SearchScopes: HKLM - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKLM - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKCU - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
2014-11-15 22:51 - 2014-11-15 22:38 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-11-15 22:39 - 2014-11-15 22:55 - 00010021 _____ () C:\zoek-results.log
2014-11-15 22:38 - 2014-11-15 22:50 - 00000000 ____D () C:\zoek_backup
2014-11-15 22:38 - 2014-11-15 22:38 - 01294848 _____ () C:\Users\Admin\Desktop\zoek.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
C:\Program Files\trend micro => Moved successfully.
gupdate service was disabled
gupdatem service was disabled
gusvc service was disabled
"C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcennhacfaagdopikcegfcobcadeocj" => File/Directory not found.
"C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfndaklgolladniicklehhancnlgocpp" => File/Directory not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\Software\Microsoft\Windows\CurrentVersion\Run\\NokiaSuite.exe => value deleted successfully.
HKU\S-1-5-21-1998989806-2990118016-3208609371-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Bar => value deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Bar => value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => Key deleted successfully.
"HKCR\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => Key deleted successfully.
"HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => Key deleted successfully.
"HKCR\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => Key not found.
C:\WINDOWS\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Admin\Desktop\zoek.exe => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 83.2 MB temporary data.

The system needed a reboot.

==== End of Fixlog ====

#12 Příspěvek od **altrok** » 16 lis 2014 00:07

Takze jeste uklidime.

Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
Oznacte jen moznost "Remove disinfection tools"
kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

Papandreo · #13 Příspěvek od **Papandreo** » 16 lis 2014 07:14

Ďakujem za spoluprácu. Dovi

#14 Příspěvek od **altrok** » 16 lis 2014 10:46

Nemate zac, rad jsem pomohl

Preji prijemnou nedeli... mejte se

VIRY.CZ

Preventívka PC

Preventívka PC

Re: Preventívka PC

Re: Preventívka PC

Re: Preventívka PC

Re: Preventívka PC

Re: Preventívka PC

Re: Preventívka PC

Re: Preventívka PC

Re: Preventívka PC

Re: Preventívka PC

Re: Preventívka PC

Re: Preventívka PC

Re: Preventívka PC

Re: Preventívka PC