keyllogery v mém počítači

Zpráva

Eva71 · #1 Příspěvek od **Eva71** » 07 pro 2014 11:50

Dobrý den.Mám podezření na sledování mého počítače.Můžete mi ho prosím překontrolovat podle logu.Já se v tom vůbec nevyznám.Děkuji a přikládám log.
Лог утилиты random's system information tool 1.10 (автор: random/random)
Run by Ева at 2014-12-07 11:47:56
Microsoft Windows XP Professional Service Pack 3
Системный раздел C: размер 47 GB (58%) Свободно 82 GB
Total RAM: 1790 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:48:06, on 7.12.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\AVAST Software\Avast\afwServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Update\1.3.25.11\GoogleCrashHandler.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\skeys.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Ticno\Indexator\SearchService.exe
C:\PROGRA~1\Ticno\Multibar\SearchService.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
G:\AIMP3\AIMP3.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Ева\Рабочий стол\RSIT.exe
C:\Program Files\trend micro\Ева.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Текст заголовка окна
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Избранное
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,,SKEYS /I
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [VisualTaskTips] C:\Program Files\VisualTaskTips\VisualTaskTips.exe noTrayIcon (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [IE8_01] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [IE8_01] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [IE8_01] regsvr32 /s /n /i:u shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [IE8_01] regsvr32 /s /n /i:u shell32 (User 'Default user')
O8 - Extra context menu item: &Экспорт в Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O20 - AppInit_DLLs:
O22 - SharedTaskScheduler: Предзагрузчик Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Демон кэша категорий компонентов - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: 2GIS UpdateService (2GISUpdateService) - ООО ДубльГИС - C:\Program Files\2gis\3.0\2GISUpdateService.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Журнал событий (Eventlog) - Корпорация Майкрософт - C:\WINDOWS\system32\services.exe
O23 - Service: Служба Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Служба Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Служба COM записи компакт-дисков IMAPI (ImapiService) - Корпорация Майкрософт - C:\WINDOWS\system32\imapi.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Plug and Play (PlugPlay) - Корпорация Майкрософт - C:\WINDOWS\system32\services.exe
O23 - Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) - Корпорация Майкрософт - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Смарт-карты (SCardSvr) - Корпорация Майкрософт - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Журналы и оповещения производительности (SysmonLog) - Корпорация Майкрософт - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: TicnoIndexator - Unknown owner - C:\Program Files\Ticno\Indexator\SearchService.exe
O23 - Service: TicnoSearch - Unknown owner - C:\PROGRA~1\Ticno\Multibar\SearchService.exe
O23 - Service: Теневое копирование тома (VSS) - Корпорация Майкрософт - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Адаптер производительности WMI (WmiApSrv) - Корпорация Майкрософт - C:\WINDOWS\system32\wbem\wmiapsrv.exe

--
End of file - 6918 bytes

======Папка назначеных зданий======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Уведомление о завершении поддержки Microsoft Windows XP ежемесячно.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Уведомлением о завершении поддержки Microsoft Windows XP при входе.job - C:\WINDOWS\system32\xp_eos.exe -c

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Ева\Application Data\Mozilla\Firefox\Profiles\gsimab0e.default

prefs.js - "extensions.enabledItems" - "elemhidehelper@adblockplus.org:1.0.6, imglikeopera@imfo.ru:0.6.18, {54BB9F3F-07E5-486c-9B39-C7398B99391C}:3.1.2009032701, {77b819fa-95ad-4f2c-ac7c-486b356188a9}:1.5.20090525, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1, {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.6.5, {dc572301-7619-498c-a57d-39143191b318}:0.3.8.1, jqs@sun.com:1.0, {81514210-E22A-4e69-93D5-E1EFD45B4620}:0.2.09.08.16, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.3"
prefs.js - "keyword.URL" - "http://www.bing.com/search?FORM=UP97DF&PC=UP97&q="
prefs.js - "browser.startup.homepage" - "http://www.msn.com/en-us/?pc=UP97&ocid= ... -2014.html"

"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.239 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_239.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
elemhidehelper@adblockplus.org
{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
{dc572301-7619-498c-a57d-39143191b318}

C:\Documents and Settings\Ева\Application Data\Mozilla\Firefox\Profiles\gsimab0e.default\extensions\
tabs@ticno.com

C:\Documents and Settings\Ева\Application Data\Mozilla\Firefox\Profiles\gsimab0e.default\searchplugins\
badoo.xml
bingp.xml
default-search.xml
seznam-avast.xml
ticno.xml

======Снимок реестра======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-12-07 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2014-07-14 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2014-07-14 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-12-07 5226600]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2009-12-31 30208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\2Gis Update Notifier]
C:\Program Files\2gis\3.0\2GISTrayNotifier.exe [2014-09-30 4582936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Avast-Browser-Cleanup]
C:\Program Files\AVAST Software\Avast\BrowserCleanup.exe [2014-12-07 1449616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe /MONITOR []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EDO-Soft Sticky Notes]
C:\Program Files\Evernote Sticky Notes\StickyNotes.Wpf.exe [2014-02-23 373760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files\Google\Drive\googledrivesync.exe [2014-10-21 22869088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iSlim310_Monitor]
C:\WINDOWS\islim310\Monitor.exe [2007-12-10 323584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAP7501_Monitor]
C:\WINDOWS\Pixart\PAP7501\GUCI_AVS.exe [2008-04-25 327328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Timezone]
C:\WINDOWS\system32\CPLDAPU\timezone.exe [2005-01-14 712704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VisualTaskTips]
C:\Program Files\VisualTaskTips\VisualTaskTips.exe [2008-06-23 65536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Главное меню^Программы^Автозагрузка^Tabs.lnk]
C:\Program Files\Ticno\Tabs\Ticno Tabs.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-05-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"NoInternetOpenWith "=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Documents and Settings\Ева\Application Data\Mail.Ru\Installer\DE74F1BABDB645AABAD22BF8CFA2C501\uTorrent_3.0.25824_Rus_Setup.exe"="C:\Documents and Settings\Ева\Application Data\Mail.Ru\Installer\DE74F1BABDB645AABAD22BF8CFA2C501\uTorrent_3.0.25824_Rus_Setup.exe:*:Disabled:µTorrent"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Documents and Settings\Ева\Application Data\uTorrent\uTorrent.exe"="C:\Documents and Settings\Ева\Application Data\uTorrent\uTorrent.exe:*:Enabled:μTorrent"
"C:\Program Files\Ticno\Tabs\Ticno Tabs.exe"="C:\Program Files\Ticno\Tabs\Ticno Tabs.exe:*:Enabled:Ticno Tabs.exe"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe]
"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv

======Список файлов и папок, созданных за последние 3 месяца======

2014-12-07 10:02:16 ----A---- C:\WINDOWS\system32\drivers\aswNdis2.sys
2014-12-07 10:02:16 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2014-12-07 10:02:12 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-12-07 10:02:09 ----A---- C:\WINDOWS\avastSS.scr
2014-12-07 10:01:51 ----A---- C:\WINDOWS\system32\drivers\aswNdis.sys
2014-12-06 00:32:53 ----D---- C:\Program Files\trend micro
2014-12-06 00:32:52 ----D---- C:\rsit
2014-12-04 12:21:54 ----D---- C:\Documents and Settings\Ева\Application Data\AIMP3
2014-12-02 22:20:47 ----D---- C:\Program Files\Mozilla Thunderbird
2014-12-02 16:34:39 ----D---- C:\Program Files\Common Files\Skype
2014-12-02 13:58:41 ----A---- C:\WINDOWS\system32\drivers\AntiLog32.sys
2014-12-02 13:58:31 ----HDC---- C:\Documents and Settings\All Users\Application Data\{BB35AF0B-CAE6-4475-8DA3-E4C7591DD962}
2014-12-02 13:58:25 ----D---- C:\Program Files\AntiLogger
2014-11-29 14:19:07 ----D---- C:\Documents and Settings\All Users\Application Data\Particles
2014-11-29 14:02:18 ----D---- C:\Program Files\Bratr a sestra - smrti navzdory
2014-11-13 21:18:40 ----D---- C:\Program Files\Mozilla Firefox
2014-11-09 00:43:55 ----D---- C:\Documents and Settings\All Users\Application Data\NannyMania
2014-11-09 00:40:55 ----D---- C:\Program Files\MyPlayCity.com
2014-11-02 22:33:01 ----D---- C:\Documents and Settings\Ева\Application Data\URSE Games
2014-11-02 19:28:46 ----D---- C:\Documents and Settings\Ева\Application Data\Špidla Data Processing, s.r.o
2014-11-02 19:28:46 ----D---- C:\Documents and Settings\All Users\Application Data\Špidla Data Processing, s.r.o
2014-10-28 20:24:04 ----D---- C:\Program Files\2gis
2014-10-28 20:24:04 ----D---- C:\Documents and Settings\All Users\Application Data\2GIS
2014-10-26 17:47:12 ----D---- C:\Documents and Settings\Ева\Application Data\AVAST Software
2014-10-26 17:46:41 ----D---- C:\WINDOWS\jumpshot.com
2014-10-26 17:46:07 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2014-10-26 17:46:06 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-10-26 17:46:05 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-10-26 17:46:05 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-10-26 17:46:04 ----A---- C:\WINDOWS\system32\drivers\aswmonflt.sys
2014-10-26 17:46:04 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-10-26 17:46:03 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2014-10-26 17:46:00 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2014-10-26 17:45:41 ----A---- C:\WINDOWS\system32\drivers\aswTap.sys
2014-10-26 17:44:37 ----D---- C:\Program Files\AVAST Software
2014-10-26 16:43:59 ----D---- C:\Program Files\Common Files\DESIGNER
2014-10-26 16:26:12 ----D---- C:\WINDOWS\system32\CatRoot_bak
2014-10-26 16:08:16 ----D---- C:\WINDOWS\system32\MRT
2014-10-26 16:08:11 ----A---- C:\WINDOWS\system32\MRT.exe
2014-10-25 22:21:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2868626$
2014-10-25 22:16:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2922229$
2014-10-25 22:11:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2014-10-25 22:11:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2712808$
2014-10-25 22:08:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2014-10-25 22:08:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2014-10-25 22:06:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2014-10-25 22:06:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2916036$
2014-10-25 22:06:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2934207$
2014-10-25 22:06:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2014-10-25 22:01:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2014-10-25 22:00:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$
2014-10-25 22:00:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2014-10-25 22:00:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2014-10-25 22:00:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2014-10-25 21:59:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2014-10-25 21:59:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2014-10-25 21:59:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2691442$
2014-10-25 21:55:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2900986$
2014-10-25 21:54:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2014-10-25 21:49:27 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2014-10-25 21:49:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2847311$
2014-10-25 21:38:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2014-10-25 21:38:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2014-10-25 21:38:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2655992$
2014-10-25 21:34:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2802968$
2014-10-25 21:34:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2014-10-25 21:34:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2898715$
2014-10-25 21:34:00 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2014-10-25 21:33:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2014-10-25 21:33:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2014-10-25 21:33:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2929961$
2014-10-25 21:33:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2686509$
2014-10-25 21:33:02 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2014-10-25 21:32:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2862335$
2014-10-25 21:30:23 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2014-10-25 21:30:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2014-10-25 21:30:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2014-10-25 21:30:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2780091$
2014-10-25 21:29:53 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2014-10-25 21:19:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2904266$
2014-10-25 21:19:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2014-10-25 21:19:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$
2014-10-25 21:18:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2014-10-25 21:12:26 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2014-10-25 21:12:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2930275$
2014-10-25 21:11:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$
2014-10-25 21:11:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2719985$
2014-10-25 21:11:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2862152$
2014-10-25 21:11:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2014-10-25 21:11:25 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2014-10-25 21:02:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2770660$
2014-10-25 21:01:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2014-10-25 21:01:07 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2014-10-25 21:01:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$
2014-10-25 21:00:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2876331$
2014-10-25 21:00:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2813347-v2$
2014-10-25 21:00:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$
2014-10-25 21:00:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2807986$
2014-10-25 21:00:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2014-10-25 20:50:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2868038$
2014-10-25 20:49:50 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2014-10-25 20:49:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2820917$
2014-10-25 20:43:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2014-10-25 20:43:47 ----HDC---- C:\WINDOWS\$NtUninstallKB2893294$
2014-10-25 20:43:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2757638$
2014-10-25 20:43:20 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2014-10-25 20:43:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2014-10-25 20:42:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2653956$
2014-10-25 20:42:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2014-10-25 20:42:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2014-10-25 20:22:51 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2014-10-25 20:21:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2892075$
2014-10-25 20:20:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2698365$
2014-10-25 20:20:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2014-10-25 20:20:45 ----HDC---- C:\WINDOWS\$NtUninstallKB2705219-v2$
2014-10-25 20:14:32 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2014-10-25 20:14:25 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2014-10-25 20:14:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2727528$
2014-10-25 20:14:12 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2014-10-25 20:14:06 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2014-10-25 20:13:58 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2014-10-25 20:13:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2723135-v2$
2014-10-25 20:09:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2862330$
2014-10-25 20:08:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2014-10-25 20:07:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2676562$
2014-10-25 20:03:19 ----D---- C:\WINDOWS\ie8updates
2014-10-25 19:48:48 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2014-10-25 19:41:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2014-10-25 19:40:54 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2014-10-25 19:40:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2014-10-25 19:40:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2014-10-25 19:40:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2014-10-25 19:40:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$
2014-10-25 19:40:19 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2014-10-25 19:36:59 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2014-10-25 19:36:59 ----HD---- C:\WINDOWS\$hf_mig$
2014-10-25 15:19:04 ----N---- C:\WINDOWS\system32\xp_eos.exe
2014-10-25 15:03:51 ----A---- C:\WINDOWS\system32\SET256B.tmp
2014-10-25 14:59:53 ----N---- C:\WINDOWS\system32\browserchoice.exe
2014-10-25 14:54:42 ----A---- C:\WINDOWS\system32\SET243D.tmp
2014-10-25 14:54:22 ----A---- C:\WINDOWS\system32\SET2443.tmp
2014-10-25 14:51:28 ----N---- C:\WINDOWS\system32\iacenc.dll
2014-09-19 15:59:23 ----D---- C:\Documents and Settings\Ева\Application Data\DominiGames
2014-09-18 10:58:39 ----D---- C:\WINDOWS\Sun
2014-09-09 13:30:11 ----A---- C:\WINDOWS\system32\hidserv.dll

======Список файлов и папок, измененных за последние 3 месяца======

2014-12-07 10:28:05 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-12-07 10:21:10 ----D---- C:\WINDOWS\Prefetch
2014-12-07 10:08:13 ----AD---- C:\WINDOWS\system32
2014-12-07 10:08:12 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-07 10:05:35 ----D---- C:\WINDOWS
2014-12-07 10:03:29 ----A---- C:\WINDOWS\SchedLgU.Txt
2014-12-07 10:02:26 ----HD---- C:\WINDOWS\inf
2014-12-07 10:02:26 ----D---- C:\WINDOWS\system32\drivers
2014-12-07 10:02:24 ----D---- C:\WINDOWS\system32\CatRoot2
2014-12-07 10:02:19 ----SD---- C:\WINDOWS\Tasks
2014-12-06 18:42:52 ----D---- C:\Documents and Settings\Ева\Application Data\Skype
2014-12-06 11:23:53 ----D---- C:\WINDOWS\Temp
2014-12-06 00:36:35 ----RD---- C:\Program Files
2014-12-04 12:26:15 ----D---- C:\Documents and Settings\Ева\Application Data\vlc
2014-12-03 19:50:31 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-12-02 16:34:54 ----SHD---- C:\WINDOWS\Installer
2014-12-02 16:34:54 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2014-12-02 16:34:40 ----RD---- C:\Program Files\Skype
2014-12-02 16:34:39 ----D---- C:\Program Files\Common Files
2014-11-29 13:35:01 ----D---- C:\Documents and Settings\Ева\Application Data\uTorrent
2014-11-12 07:07:34 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2014-11-12 06:59:12 ----D---- C:\WINDOWS\Debug
2014-11-05 08:51:48 ----D---- C:\Program Files\Windows Media Player
2014-10-30 20:51:37 ----D---- C:\Program Files\Ticno
2014-10-29 15:44:58 ----D---- C:\WINDOWS\pss
2014-10-27 16:26:07 ----A---- C:\WINDOWS\win.ini
2014-10-26 18:01:48 ----D---- C:\Documents and Settings\Ева\Application Data\DAEMON Tools Lite
2014-10-26 17:50:19 ----D---- C:\Documents and Settings\All Users\Application Data\IePluginServices
2014-10-26 17:44:37 ----D---- C:\Documents and Settings\All Users\Application Data\AVAST Software
2014-10-26 17:10:46 ----D---- C:\Documents and Settings\Ева\Application Data\Ticno
2014-10-26 17:10:13 ----D---- C:\Documents and Settings\Ева\Application Data\TicnoTemp
2014-10-26 17:06:39 ----D---- C:\Documents and Settings\Ева\Application Data\Dropbox
2014-10-26 16:49:20 ----D---- C:\Program Files\Microsoft Office
2014-10-26 16:32:56 ----D---- C:\WINDOWS\system32\CatRoot
2014-10-26 00:39:53 ----RSD---- C:\WINDOWS\assembly
2014-10-26 00:36:22 ----D---- C:\WINDOWS\Microsoft.NET
2014-10-25 23:57:06 ----D---- C:\Program Files\Microsoft Silverlight
2014-10-25 22:21:12 ----RSHDC---- C:\WINDOWS\system32\dllcache
2014-10-25 22:20:22 ----D---- C:\WINDOWS\WinSxS
2014-10-25 21:54:04 ----D---- C:\Program Files\NVIDIA Corporation
2014-10-25 20:29:09 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-10-25 20:28:52 ----D---- C:\Program Files\Microsoft Works
2014-10-25 20:14:35 ----D---- C:\Program Files\Outlook Express
2014-10-25 20:14:00 ----D---- C:\Program Files\Movie Maker
2014-10-25 20:04:30 ----D---- C:\WINDOWS\system32\XPSViewer
2014-10-25 20:03:52 ----D---- C:\Program Files\Internet Explorer
2014-10-22 20:02:15 ----D---- C:\Documents and Settings
2014-10-18 16:50:17 ----D---- C:\Program Files\GRETECH

======Список драйверов (тип запуска: R=Запущен, S=остановлен, 0=Загрузочный, 1=Системный, 2=Автоматически, 3=Вручную, 4=Отключено)======

R0 aswNdis;avast! Firewall NDIS Filter Service; C:\WINDOWS\system32\DRIVERS\aswNdis.sys [2014-12-07 12112]
R0 aswNdis2;avast! Firewall NDIS Driver; C:\WINDOWS\system32\drivers\aswNdis2.sys [2014-12-07 253640]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-12-07 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-12-07 206248]
R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2010-04-08 168040]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2014-07-14 473656]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-05-18 77568]
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-07-02 36864]
R1 AntiLog32;AntiLog32; \??\C:\WINDOWS\system32\drivers\AntiLog32.sys []
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2014-12-07 26136]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2014-12-07 55240]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-12-07 787800]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-12-07 423784]
R1 aswTdi;aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [2014-12-07 57928]
R1 WmiAcpi;Интерфейс управления для ACPI Microsoft Windows; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-12-07 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-12-07 70384]
R2 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2009-01-28 133632]
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2008-10-11 62848]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2014-07-15 243128]
R3 HDAudBus;Драйвер шины Microsoft UAA для High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384]
R3 hidusb;Драйвер класса HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-15 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-12-30 6290024]
R3 mouhid;Драйвер мыши HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2009-12-31 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2013-02-08 12648960]
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2010-03-04 70912]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2010-03-04 13824]
R3 PAC7302;iSlim310; C:\WINDOWS\system32\DRIVERS\PAC7302.SYS [2009-04-28 461824]
R3 usbaudio;Аудио драйвер USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-07-17 60160]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
R3 usbstor;Драйвер запоминающих устройств для USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-15 26368]
S1 AmdPPM;Драйвер AMD HwPState процессора; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
S1 F06DEFF2-5B9C-490D-910F-35D3A9119622;F06DEFF2-5B9C-490D-910F-35D3A9119622; \??\C:\Program Files\Settings Manager\systemk\systemkmgrc2.cfg []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\WINDOWS\system32\DRIVERS\aswTap.sys [2014-10-26 35144]
S3 CCDECODE;Closed Caption декодер; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft видео или ТВ подключение; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys []
S3 StillCam;Драйвер цифровой фотокамеры для посл. порта; C:\WINDOWS\system32\DRIVERS\serscan.sys [2008-05-30 7424]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbscan;Драйвер USB-сканера; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WinUSB;Android USB Driver; C:\WINDOWS\system32\DRIVERS\WinUSB.sys [2006-11-02 39368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2008-05-18 38528]
S3 WSTCODEC;World Standard Teletext кодек; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-05-18 82944]

======Список служб (тип запуска: R=Запущена, S=остановлена, 0=Загрузочная, 1=Системная, 2=Автоматически, 3=Вручную, 4=Отключено)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-12-07 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-12-07 104416]
R2 SerialKeys;SerialKeys; C:\WINDOWS\system32\skeys.exe [2008-04-15 26112]
R2 TicnoIndexator;TicnoIndexator; C:\Program Files\Ticno\Indexator\SearchService.exe [2012-05-10 517632]
R2 TicnoSearch;TicnoSearch; C:\PROGRA~1\Ticno\Multibar\SearchService.exe [2011-12-07 279968]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Служба Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-17 116648]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-22 159810]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 2GISUpdateService;2GIS UpdateService; C:\Program Files\2gis\3.0\2GISUpdateService.exe [2014-09-30 3764760]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-07 267440]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Служба Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-17 116648]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-13 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:\Program Files\Windows Media Player\wmpnetwk.exe [2006-11-02 914944]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2014-07-14 153376]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

#2 Příspěvek od **altrok** » 07 pro 2014 12:03

Prijemnou nedeli Vam preju

Drzte se presne navodu! Win XP neni podporovan novou verzi 2.0

Stahnete a nainstalujte MBAM 1.75 http://www.bleepingcomputer.com/downloa ... i-malware/
na konci instalace zruste zatrzitko u polozky Povolit bezplatnou zkusebni verzi Malwarebytes Anti-Malware PRO
ted je dulezity krok - stahuje se aktualizace celeho programu a na konci vyskoci hlaska - zvolte Cancel, pripadne Zrusit
jako dalsi se sama stahla aktualizace virove databaze a dava Vam jedinou moznost -> OK
opet je Vam nabizena aktualizace celeho programu -> zvolte opet Cancel
v zalozce Kontrolor vyberte moznost Kompletni kontrola a kliknete na Prohledat
po dokonceni skenovani, ktere se muze protahnout az na nekolik hodin, na Vas vyskoci log, ktery mi zkopirujte do pristi odpovedi... pripadne jej najdete v karte Slozka protokolu

Eva71 · #3 Příspěvek od **Eva71** » 07 pro 2014 14:21

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2014.12.07.06

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Ева :: EVA [administrátor]

7.12.2014 12:27:27
MBAM-log-2014-12-07 (14-14-26).txt

Typ: Kompletní kontrola (C:\|E:\|F:\|G:\|H:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 408314
Uplynulý čas: 1 hodin, 45 minut, 29 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 3
C:\Program Files\Settings Manager\systemk\smdmf.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\smdmfldr.dll (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\sysapcrt.dll (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.

Nalezené klíče v registru: 21
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} (PUP.Optional.Linkey.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} (PUP.Optional.Linkey.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} (PUP.Optional.SupTab.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect (PUP.Optional.WindowsProtectManger.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{E1842850-FB16-4471-B327-7343FBAED55C} (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{93D511B5-143B-4A99-ABFC-B5B78AD0AE1B} (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{AA760BA8-5862-4BC5-9263-4452CBC0B264} (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
HKCR\keepmysearch (PUP.Optional.KeepMySearch.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Softonic (PUP.Optional.Softonic.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} (PUP.Optional.DefaultSearch) -> Nebyla provedena žádná instrukce.
HKCU\Software\SupHpUISoft (PUP.Optional.WebSearches.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\SystemK (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\supWindowsMangerProtect (PUP.Optional.WPM.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\sweet-pageSoftware (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\SystemK (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} (PUP.Optional.DefaultSearch) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\SystemK\General (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\SUPTAB (PUP.Optional.SupTab.A) -> Nebyla provedena žádná instrukce.
HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices (PUP.Optional.IEPluginServices.A) -> Nebyla provedena žádná instrukce.
HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect (PUP.Optional.WindowsMangerProtect.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 5
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}|DisplayName (PUP.Optional.DefaultSearch) -> Data: default-search.net -> Nebyla provedena žádná instrukce.
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Associations|LowRiskFileTypes (PUM.LowRiskFileTypes) -> Data: .zip;.rar;.nfo;.txt;.exe;.bat;.com;.cmd;.reg;.msi;.htm;.html;.gif;.bmp;.jpg;.avi;.mpg;.mpeg;.mov;.mp3;.m3u;.wav;.mdb; -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}|DisplayName (PUP.Optional.DefaultSearch) -> Data: default-search.net -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\SystemK|browser (PUP.Optional.SettingsManager.A) -> Data: ie ff cr -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\supTab|ptid (PUP.Optional.SupTab.A) -> Data: sof -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 2
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command| (PUP.Optional.SweetPage.A) -> Špatný: (C:\Program Files\Internet Explorer\iexplore.exe http://www.sweet-page.com/?type=sc&ts=1 ... XX4NF1K4VP) Dobrý: (iexplore.exe) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Nebyla provedena žádná instrukce.

Nalezené složky: 19
C:\Documents and Settings\All Users\Application Data\systemk (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\OpenCandy\646B5656E62F4F50AFE91462885AE826 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\OpenCandy\DDE57E162BFE47CA889B7898DEB46F53 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\OpenCandy\F8CDFFBA80604982917982891F37C146 (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\IePluginServices (PUP.Optional.IePluginServices.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\IePluginServices\update (PUP.Optional.IePluginServices.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect (PUP.Optional.WPM.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\log (PUP.Optional.WPM.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\update (PUP.Optional.WPM.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\content (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\code (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\log (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 111
C:\Program Files\Settings Manager\systemk\smdmf.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\ProtectWindowsManager.exe (PUP.Optional.WindowsProtectManger.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF14.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF10.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF11.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF12.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF13.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF15.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF16.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF17.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF18.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF19.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF2.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF20.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF21.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF22.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF23.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF24.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF25.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF26.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF27.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF28.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF29.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF30.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF31.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF4.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF5.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF6.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF7.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF8.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF9.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\OpenCandy\F8CDFFBA80604982917982891F37C146\SettingsManagerSetup.exe (PUP.Optional.Linkey.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Local Settings\Temp\DTLite4491-0356.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Local Settings\Temp\1120_sof_sweet-page.exe (PUP.Optional.SearchHijacker.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Local Settings\Temp\nsm46A\Helper.dll (PUP.Optional.AztecMedia.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Local Settings\Temp\nsm46A\Uninstall.exe (PUP.Optional.Linkey.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Local Settings\Temp\nst428\tbicon.exe (PUP.Optional.Linkey.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Local Settings\Temp\nst428\nsm42C.tmp\ffExtension.exe (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Local Settings\Temp\nst428\nsm42C.tmp\mediabar.exe (PUP.Optional.Linkey.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Local Settings\Temp\nst428\nsm42C.tmp\SettingsManagerMediaBar.exe (PUP.Optional.Linkey.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Local Settings\Temp\nsl21\Helper.dll (PUP.Optional.AztecMedia.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Мои документы\Downloads\SoftonicDownloader_for_sticky-notes.exe (PUP.Optional.Softonic.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\systemkbho.dll (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\SystemkService.exe (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\systemku.exe (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\tbicon.exe (PUP.Optional.Linkey.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\Uninstall.exe (PUP.Optional.Linkey.A) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\system32\GreenFields.scr (Malware.Packer.Gen) -> Nebyla provedena žádná instrukce.
C:\WINDOWS\system32\CPLDAPU\ProduKey.exe (PUP.PSWTool.ProductKey) -> Nebyla provedena žádná instrukce.
G:\Eva\AIMP 3.55 Build 1332 Final RePack (& Portable) by D!akov\AIMP-3.55.1332.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
G:\Stazene\AdbeRdr11007_en_US.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
G:\Stazene\DTLite4491-0356.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\systemk\general.cfg (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\systemk\coordinator.cfg (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\systemk\S-1-5-21-725345543-854245398-1177238915-1003.cfg (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\systemk\S-1-5-32.cfg (PUP.Optional.SystemK.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Mozilla Firefox\browser\searchplugins\default-search.xml (PUP.Optional.DefaultSearch.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\OpenCandy\646B5656E62F4F50AFE91462885AE826\speedupmypcROW.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\OpenCandy\646B5656E62F4F50AFE91462885AE826\speedupmypcROW_p3v1.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\favicon.ico (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\Helper.dll (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\Internet Explorer Settings.exe (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\smdmfldr.dll (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\smdmfldr_u.dll (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Settings Manager\systemk\sysapcrt.dll (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\IePluginServices\update\conf (PUP.Optional.IePluginServices.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\log\ProtectWindowsManager_2014-08-06[20-03-11-281].log (PUP.Optional.WPM.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\log\ProtectWindowsManager_2014-08-06[20-03-16-937].log (PUP.Optional.WPM.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\update\conf (PUP.Optional.WPM.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\chrome.manifest (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\install.rdf (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\components\SystemKHlpFF.xpt (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\content\DnsBHO.js (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\content\Error404BHO.js (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\content\MainBHO.js (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\content\NativeHelper.js (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\content\NewTabBHO.js (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\content\overlay.js (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\content\overlay.xul (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\content\RelatedSearch.js (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\content\RequestPreserver.js (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\content\SearchBHO.js (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\FirefoxToolbar\Settings Manager\systemk\content\SettingManager.js (PUP.Optional.SettingsManager.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\246.json (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\MessageBox.xml (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\un.ini (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\uninstallDlg2.xml (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\UninstallManager.exe (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\bg.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\bg1.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\bk_shadow.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\button.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\button1.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\checkbox.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\checkbox_select.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\checked.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\close.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\loading_bg.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\loading_light.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\min.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\scrollbar.bmp (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\Thumbs.db (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\unchecked.png (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\code\code1.jpg (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\code\code2.jpg (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\code\code3.jpg (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\code\code4.jpg (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\code\code5.jpg (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\code\code6.jpg (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\images\code\Thumbs.db (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.
C:\Documents and Settings\Ева\Application Data\sweet-page\log\UninstallManager_2014-08-09[12-32-30-390].log (PUP.Optional.SweetPage.A) -> Nebyla provedena žádná instrukce.

(konec)

#4 Příspěvek od **altrok** » 07 pro 2014 14:22

Vsechny nalezy presunte do karanteny. Zadny keylogger v PC neni videt. Je treba vsak jeste docistit.

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/

ukoncete vsechny programy
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Scan, pote na Clean
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

Eva71 · #5 Příspěvek od **Eva71** » 07 pro 2014 14:27

Když označím všechny položky je tam jen odstranit.To je ono?
Neumím s počítači tak se omlouvám za neznalost.Nechci nic vymazat zbytečně.

#6 Příspěvek od **altrok** » 07 pro 2014 14:30

Neni proc se omlouvat. Ano, to je ono

Eva71 · #7 Příspěvek od **Eva71** » 07 pro 2014 14:53

# AdwCleaner v4.104 - Отчёт создан 07/12/2014 at 14:45:12
# Обновлено 05/12/2014 by Xplode
# Database : 2014-12-03.1 [Live]
# Операционная система : Microsoft Windows XP Service Pack 3 (32 bits)
# Имя пользователя : Ева - EVA
# Запущено из : C:\Documents and Settings\Ева\Рабочий стол\adwcleaner_4.104.exe
# Настройки : Очистить

***** [ Службы ] *****

[#] Служба Удалён : F06DEFF2-5B9C-490D-910F-35D3A9119622
Служба Удалён : TicnoSearch

***** [ Файлы / Папки ] *****

Папка Удалён : C:\Documents and Settings\All Users\Application Data\~0
Папка Удалён : C:\Documents and Settings\All Users\Application Data\IePluginServices
Папка Удалён : C:\Documents and Settings\All Users\Application Data\systemk
Папка Удалён : C:\Documents and Settings\All Users\Application Data\Ticno
Папка Удалён : C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect
Папка Удалён : C:\Program Files\Settings Manager
Папка Удалён : C:\Program Files\Ticno
Папка Удалён : C:\Program Files\Common Files\Ticno
Папка Удалён : C:\Documents and Settings\Ева\Local Settings\Application Data\Ticno
Папка Удалён : C:\Documents and Settings\Ева\Application Data\FirefoxToolbar
Папка Удалён : C:\Documents and Settings\Ева\Application Data\Mail.Ru
Папка Удалён : C:\Documents and Settings\Ева\Application Data\OpenCandy
Папка Удалён : C:\Documents and Settings\Ева\Application Data\quickclick
Папка Удалён : C:\Documents and Settings\Ева\Application Data\sweet-page
Папка Удалён : C:\Documents and Settings\Ева\Application Data\Ticno
Папка Удалён : C:\Documents and Settings\Ева\Главное меню\Программы\Ticno
Файл Удалён : C:\DOCUME~1\99C3~1\LOCALS~1\Temp\Uninstall.exe
Файл Удалён : C:\Documents and Settings\Ева\Application Data\Mozilla\Firefox\Profiles\gsimab0e.default\invalidprefs.js
Файл Удалён : C:\Documents and Settings\Ева\Application Data\Mozilla\Firefox\Profiles\gsimab0e.default\searchplugins\bingp.xml
Файл Удалён : C:\Documents and Settings\Ева\Application Data\Mozilla\Firefox\Profiles\gsimab0e.default\searchplugins\default-search.xml

***** [ задачи ] *****

***** [ Ярлыки ] *****

***** [ Реестр ] *****

Ключ Удалёнa : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Ключ Удалёнa : HKLM\SOFTWARE\Classes\speedupmypc
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Значение Удалёнa : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Значение Удалёнa : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Значение Удалёнa : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
Значение Удалёнa : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x86]
Ключ Удалёнa : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Ключ Удалёнa : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Ключ Удалёнa : HKCU\Software\Classes\keepmysearch
Ключ Удалёнa : HKLM\SOFTWARE\Classes\SettingsManagerIEHelper.DNSGuard.1
Ключ Удалёнa : HKLM\SOFTWARE\Classes\SettingsManagerIEHelper.DNSGuard
Ключ Удалёнa : HKLM\SOFTWARE\Classes\CLSID\{E1842850-FB16-4471-B327-7343FBAED55C}
Ключ Удалёнa : HKLM\SOFTWARE\Classes\Interface\{AA760BA8-5862-4BC5-9263-4452CBC0B264}
Ключ Удалёнa : HKLM\SOFTWARE\Classes\TypeLib\{93D511B5-143B-4A99-ABFC-B5B78AD0AE1B}
Ключ Удалёнa : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Ключ Удалёнa : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Ключ Удалёнa : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Данные Восстановлена : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Ключ Удалёнa : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Ключ Удалёнa : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{45CA6A03-F9F6-43D1-AB06-BC1F64324221}
Ключ Удалёнa : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}
Ключ Удалёнa : HKCU\Software\Linkey
Ключ Удалёнa : HKCU\Software\Softonic
Ключ Удалёнa : HKCU\Software\SupHpUISoft
Ключ Удалёнa : HKCU\Software\SystemK
Ключ Удалёнa : HKCU\Software\Ticno Multibar
Ключ Удалёнa : HKLM\SOFTWARE\Speedchecker Limited
Ключ Удалёнa : HKLM\SOFTWARE\SupTab
Ключ Удалёнa : HKLM\SOFTWARE\supWindowsMangerProtect
Ключ Удалёнa : HKLM\SOFTWARE\sweet-pageSoftware
Ключ Удалёнa : HKLM\SOFTWARE\SystemK
Ключ Удалёнa : HKLM\SOFTWARE\Ticno Multibar
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\multibar
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{90120000-00B2-0405-0000-0000000FF1CE}
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\multibar
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Settings Manager
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WindowsMangerProtect
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{90120000-00B2-0405-0000-0000000FF1CE}
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

***** [ Браузеры ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v33.1 (x86 ru)

-\\ Google Chrome v39.0.2171.71

[C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data] - Удалёнa [Search Provider] : hxxp://www.default-search.net/search?sid=503&a ... earchTerms}
[C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences] - Удалёнa [Startup_URLs] : hxxp://www.sweet-page.com/?type=hp&ts=14073481 ... XX4NF1K4VP

*************************

AdwCleaner[R0].txt - [9899 octets] - [07/12/2014 14:41:08]
AdwCleaner[S0].txt - [8656 octets] - [07/12/2014 14:45:12]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [8716 octets] ##########

#8 Příspěvek od **altrok** » 07 pro 2014 14:59

Dejte novy log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

Eva71 · #9 Příspěvek od **Eva71** » 07 pro 2014 15:20

=======
CHR HomePage: Profile 1 -> hxxp://www.google.cz./
CHR StartupUrls: Profile 1 -> "hxxp://search.conduit.com/?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&ISID=MD82BB129-8304-4E09-BDCF-AE7F331C176F&SearchSource=55&CUI=&UM=5&UP=SPC4324327-41F0-486C-8967-D23DA20B60E4&SSPV=", "hxxp://seznam.cz/"
CHR DefaultSuggestURL: Profile 1 -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-17]
CHR Extension: (Disk Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-17]
CHR Extension: (Seznam Lištička - Email) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-07-17]
CHR Extension: (Seznam Lištička - Slovník) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-07-17]
CHR Extension: (YouTube) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-17]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-17]
CHR Extension: (PasswordBox - Free Password Manager) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dljbcjbfojhlfhgenhepllagfecdpchb [2014-07-17]
CHR Extension: (AdBlock) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-17]
CHR Extension: (Clock Radio) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jfackcppbegjiloeomjijaeiikchjfdc [2014-07-21]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-17]
CHR Extension: (TabMaster) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\obehagdlnhmkdgedpghmjanndhoadmen [2014-10-26]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-07-17]
CHR Extension: (Gmail) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-17]
CHR Profile: C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1
CHR Extension: (Překladač Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2014-10-17]
CHR Extension: (Prezentace Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-15]
CHR Extension: (Angry Birds) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2014-10-17]
CHR Extension: (ShopGlider) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\amlaangphhocoadfbogkjfomfceioeaj [2014-10-17]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-15]
CHR Extension: (Disk Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-15]
CHR Extension: (Seznam Lištička - Email) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-09-15]
CHR Extension: (Seznam Lištička - Slovník) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-09-15]
CHR Extension: (YouTube) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-15]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-15]
CHR Extension: (PasswordBox - Free Password Manager) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\dljbcjbfojhlfhgenhepllagfecdpchb [2014-09-15]
CHR Extension: (Torrent Turbo Search App) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\eegbffmjdkflkcfncpfjjbggbdlnbdif [2014-10-17]
CHR Extension: (Kalendář Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2014-10-17]
CHR Extension: (bílý šum) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\ejkjpdnomgodmagfmhojepjlajpoicip [2014-10-17]
CHR Extension: (Tabulky Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-15]
CHR Extension: (Oběšence Deluxe) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\fhfldafmihkemlfaolfgmppbafmappjj [2014-10-17]
CHR Extension: (Hodiny) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2014-10-17]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-10-26]
CHR Extension: (Foursquare Maps) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\iapagnfaodiddddbbdjkkadbndimimkb [2014-10-17]
CHR Extension: (Daily Alarms) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\idhpdfgpkffmfckogmmekjofaddimdni [2014-10-17]
CHR Extension: (Valuid - Inzeráty zdarma) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\ifgmhhkblhlclhfmbhgagloflnkekmkd [2014-10-17]
CHR Extension: (Quick Earth) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\khodocggeplgfhppgagfdpbjkniadmdh [2014-10-17]
CHR Extension: (Alarm Clock Radio) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\kipdhcpepbpjaoggihaloebfjfafagmi [2014-10-17]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-11-22]
CHR Extension: (Mapy Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-10-17]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-15]
CHR Extension: (Picky Wallpapers) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\odklcfojpedohplkimfdpcamkjnhanaj [2014-10-17]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-09-15]
CHR Extension: (Online Music Alarm Clock) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\pblohfmipkhnjcgpoamnmjelcajhpcjg [2014-10-17]
CHR Extension: (Gmail) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-15]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-07]
CHR HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - No Path
CHR HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - No Path

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 2GISUpdateService; C:\Program Files\2gis\3.0\2GISUpdateService.exe [3764760 2014-09-30] (ООО ДубльГИС)
S3 AppMgmt; C:\WINDOWS\System32\appmgmts.dll [171008 2008-04-15] (Корпорация Майкрософт)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-07] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [104416 2014-12-07] (AVAST Software)
R3 BITS; C:\WINDOWS\system32\qmgr.dll [409088 2008-04-15] (Корпорация Майкрософт)
S4 ClipSrv; C:\WINDOWS\system32\clipsrv.exe [47616 2009-12-31] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\WINDOWS\System32\dhcpcsvc.dll [126464 2008-04-15] (Корпорация Майкрософт)
S3 dmadmin; C:\WINDOWS\System32\dmadmin.exe [224768 2009-12-31] (Корпорация Microsoft и VERITAS Software) [File not signed]
R2 dmserver; C:\WINDOWS\System32\dmserver.dll [24064 2008-04-15] (Корпорация Майкрософт)
R2 Dnscache; C:\WINDOWS\System32\dnsrslvr.dll [45568 2009-12-31] (Корпорация Майкрософт)
R2 Eventlog; C:\WINDOWS\system32\services.exe [111104 2009-12-31] (Корпорация Майкрософт)
R3 FastUserSwitchingCompatibility; C:\WINDOWS\System32\shsvcs.dll [135680 2009-12-31] (Корпорация Майкрософт) [File not signed]
S3 ImapiService; C:\WINDOWS\system32\imapi.exe [150528 2008-04-15] (Корпорация Майкрософт)
S4 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2014-07-14] (Sun Microsystems, Inc.)
S3 MSDTC; C:\WINDOWS\system32\msdtc.exe [20480 2009-12-31] (Microsoft Corporation) [File not signed]
S4 NetDDE; C:\WINDOWS\system32\netdde.exe [113664 2008-04-15] (Корпорация Майкрософт)
S4 NetDDEdsdm; C:\WINDOWS\system32\netdde.exe [113664 2008-04-15] (Корпорация Майкрософт)
R3 Netman; C:\WINDOWS\System32\netman.dll [198144 2008-04-15] (Корпорация Майкрософт)
R3 Nla; C:\WINDOWS\System32\mswsock.dll [247296 2009-12-31] (Корпорация Майкрософт)
S3 NtmsSvc; C:\WINDOWS\system32\ntmssvc.dll [436736 2008-04-15] (Корпорация Майкрософт)
R2 PlugPlay; C:\WINDOWS\system32\services.exe [111104 2009-12-31] (Корпорация Майкрософт)
S3 RDSessMgr; C:\WINDOWS\system32\sessmgr.exe [141824 2008-04-15] (Корпорация Майкрософт)
S3 SCardSvr; C:\WINDOWS\System32\SCardSvr.exe [96768 2008-04-15] (Корпорация Майкрософт)
R2 Schedule; C:\WINDOWS\system32\schedsvc.dll [193024 2008-04-15] (Корпорация Майкрософт)
R2 seclogon; C:\WINDOWS\System32\seclogon.dll [18944 2008-04-15] (Корпорация Майкрософт)
R2 SerialKeys; C:\WINDOWS\system32\skeys.exe [26112 2008-04-15] (Microsoft Corporation)
R2 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [330752 2009-12-31] (Корпорация Майкрософт)
R2 ShellHWDetection; C:\WINDOWS\System32\shsvcs.dll [135680 2009-12-31] (Корпорация Майкрософт) [File not signed]
S2 srservice; C:\WINDOWS\system32\srsvc.dll [171008 2008-04-15] (Корпорация Майкрософт)
R2 stisvc; C:\WINDOWS\system32\wiaservc.dll [349696 2009-12-31] (Корпорация Майкрософт) [File not signed]
S3 SysmonLog; C:\WINDOWS\system32\smlogsvc.exe [91648 2008-04-15] (Корпорация Майкрософт)
R3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [257024 2009-12-31] (Корпорация Майкрософт) [File not signed]
R3 TermService; C:\WINDOWS\System32\termsrv.dll [297472 2009-12-31] (Корпорация Майкрософт)
R2 Themes; C:\WINDOWS\System32\shsvcs.dll [135680 2009-12-31] (Корпорация Майкрософт) [File not signed]
S4 TlntSvr; C:\WINDOWS\system32\tlntsvr.exe [73216 2008-04-15] (Корпорация Майкрософт)
S3 upnphost; C:\WINDOWS\System32\upnphost.dll [186368 2008-04-15] (Корпорация Майкрософт)
S3 VSS; C:\WINDOWS\System32\vssvc.exe [290304 2008-04-15] (Корпорация Майкрософт)
R2 W32Time; C:\WINDOWS\system32\w32time.dll [175616 2009-12-31] (Корпорация Майкрософт)
R2 winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [145408 2008-04-15] (Корпорация Майкрософт)
S3 Wmi; C:\WINDOWS\System32\advapi32.dll [687616 2009-12-31] (Корпорация Майкрософт)
S3 WmiApSrv; C:\WINDOWS\system32\wbem\wmiapsrv.exe [126464 2008-04-15] (Корпорация Майкрософт)
R2 WZCSVC; C:\WINDOWS\System32\wzcsvc.dll [635392 2009-12-23] (Корпорация Майкрософт) [File not signed]
S2 TicnoIndexator; C:\Program Files\Ticno\Indexator\SearchService.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 ACPI; C:\WINDOWS\System32\DRIVERS\ACPI.sys [188288 2008-04-15] (Корпорация Майкрософт)
S4 ACPIEC; C:\WINDOWS\system32\Drivers\ACPIEC.sys [11776 2008-04-15] (Корпорация Майкрософт)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [36864 2006-07-02] (Advanced Micro Devices)
S1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] (Advanced Micro Devices)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-12-07] ()
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [26136 2014-12-07] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [70384 2014-12-07] (AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2014-12-07] (ALWIL Software)
R0 aswNdis2; C:\WINDOWS\system32\Drivers\aswNdis2.sys [253640 2014-12-07] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55240 2014-12-07] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-12-07] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787800 2014-12-07] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [423784 2014-12-07] (AVAST Software)
S3 aswTap; C:\WINDOWS\System32\DRIVERS\aswTap.sys [35144 2014-10-26] (The OpenVPN Project)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57928 2014-12-07] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [206248 2014-12-07] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S4 dmboot; C:\WINDOWS\System32\drivers\dmboot.sys [799872 2009-12-31] (Корпорация Microsoft и VERITAS Software) [File not signed]
R0 dmio; C:\WINDOWS\System32\drivers\dmio.sys [153600 2008-04-15] (Корпорация Microsoft и VERITAS Software)
R3 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-07-15] (Disc Soft Ltd)
R1 Fips; C:\WINDOWS\system32\Drivers\Fips.sys [44544 2008-04-15] (Корпорация Майкрософт)
R0 Ftdisk; C:\WINDOWS\System32\DRIVERS\ftdisk.sys [125440 2008-04-15] (Корпорация Майкрософт)
R1 i8042prt; C:\WINDOWS\System32\DRIVERS\i8042prt.sys [53120 2008-04-15] (Корпорация Майкрософт)
R0 isapnp; C:\WINDOWS\System32\DRIVERS\isapnp.sys [37504 2008-04-15] (Корпорация Майкрософт)
R1 Kbdclass; C:\WINDOWS\System32\DRIVERS\kbdclass.sys [24832 2008-04-15] (Корпорация Майкрософт)
S3 Modem; C:\WINDOWS\system32\Drivers\Modem.sys [30208 2009-12-31] (Корпорация Майкрософт)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R1 Mouclass; C:\WINDOWS\System32\DRIVERS\mouclass.sys [23296 2009-12-31] (Корпорация Майкрософт)
R3 mouhid; C:\WINDOWS\System32\DRIVERS\mouhid.sys [12160 2009-12-31] (Корпорация Майкрософт)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [70912 2010-03-04] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [168040 2010-04-08] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2010-03-04] (NVIDIA Corporation)
R3 PAC7302; C:\WINDOWS\System32\DRIVERS\PAC7302.SYS [461824 2009-04-28] (PixArt Imaging Inc.)
S3 Parport; C:\WINDOWS\system32\Drivers\Parport.sys [80128 2009-12-31] (Корпорация Майкрософт)
S2 ParVdm; C:\WINDOWS\system32\Drivers\ParVdm.sys [6912 2008-04-15] (Корпорация Майкрософт)
R0 PCI; C:\WINDOWS\System32\DRIVERS\pci.sys [68480 2008-04-15] (Корпорация Майкрософт)
R0 PCIIde; C:\WINDOWS\System32\DRIVERS\pciide.sys [3328 2008-04-15] (Корпорация Майкрософт)
S4 Pcmcia; C:\WINDOWS\system32\Drivers\Pcmcia.sys [120192 2008-04-15] (Корпорация Майкрософт)
R1 redbook; C:\WINDOWS\System32\DRIVERS\redbook.sys [58368 2008-04-14] (Корпорация Майкрософт)
S2 Serial; C:\WINDOWS\system32\Drivers\Serial.sys [65024 2008-04-15] (Корпорация Майкрософт)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [473656 2014-07-14] (Duplex Secure Ltd.)
S4 sr; C:\WINDOWS\system32\DRIVERS\sr.sys [73472 2008-04-15] (Корпорация Майкрософт)
S3 StillCam; C:\WINDOWS\System32\DRIVERS\serscan.sys [7424 2008-05-30] (Корпорация Майкрософт)
R0 VolSnap; C:\WINDOWS\system32\Drivers\VolSnap.sys [51968 2008-04-15] (Корпорация Майкрософт)
S1 AntiLog32; \??\C:\WINDOWS\system32\drivers\AntiLog32.sys [X]
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2011-10-24] (Huawei Technologies Co., Ltd.)
S4 IntelIde; No ImagePath
U5 Sdbus; C:\Windows\System32\Drivers\Sdbus.sys [80384 2009-12-31] (Microsoft Corporation)
S3 StarOpen; No ImagePath
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-07 15:16 - 2014-12-07 15:17 - 00037231 _____ () C:\Documents and Settings\Ева\Рабочий стол\FRST.txt
2014-12-07 15:15 - 2014-12-07 15:16 - 00000000 ____D () C:\FRST
2014-12-07 15:15 - 2014-12-07 15:15 - 00015327 _____ () C:\Documents and Settings\Ева\Plocha
2014-12-07 15:13 - 2014-12-07 15:13 - 01111040 _____ (Farbar) C:\Documents and Settings\Ева\Рабочий стол\FRST.exe
2014-12-07 15:13 - 2014-12-07 15:13 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Ева\Рабочий стол\FRSTLauncher.exe
2014-12-07 15:07 - 2014-12-07 15:15 - 00029696 _____ () C:\Documents and Settings\Ева\Local Settings\Application Data\MSGBOX.EXE
2014-12-07 14:39 - 2014-12-07 14:45 - 00000000 ____D () C:\AdwCleaner
2014-12-07 14:39 - 2014-12-07 14:39 - 00000055 _____ () C:\AdwCleanerDebug.txt
2014-12-07 14:38 - 2014-12-07 14:38 - 02153472 _____ () C:\Documents and Settings\Ева\Рабочий стол\adwcleaner_4.104.exe
2014-12-07 12:22 - 2014-12-07 12:22 - 00000784 _____ () C:\Documents and Settings\All Users\Рабочий стол\Malwarebytes Anti-Malware.lnk
2014-12-07 12:22 - 2014-12-07 12:22 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-12-07 12:22 - 2014-12-07 12:22 - 00000000 ____D () C:\Documents and Settings\Ева\Application Data\Malwarebytes
2014-12-07 12:22 - 2014-12-07 12:22 - 00000000 ____D () C:\Documents and Settings\All Users\Главное меню\Программы\Malwarebytes' Anti-Malware
2014-12-07 12:22 - 2014-12-07 12:22 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-12-07 12:22 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-12-07 10:02 - 2014-12-07 10:02 - 00291352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-12-07 10:02 - 2014-12-07 10:02 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-12-07 10:02 - 2014-12-07 10:01 - 00253640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2014-12-07 10:02 - 2014-12-07 10:01 - 00026136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2014-12-07 10:01 - 2014-12-07 10:01 - 00012112 _____ (ALWIL Software) C:\WINDOWS\system32\Drivers\aswNdis.sys
2014-12-06 00:32 - 2014-12-07 11:47 - 00000000 ____D () C:\Program Files\trend micro
2014-12-06 00:32 - 2014-12-06 00:40 - 00000000 ____D () C:\rsit
2014-12-04 21:14 - 2014-12-04 21:15 - 00010360 _____ () C:\WINDOWS\ocgen.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00006792 _____ () C:\WINDOWS\FaxSetup.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00006725 _____ () C:\WINDOWS\iis6.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00004591 _____ () C:\WINDOWS\tsoc.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00002508 _____ () C:\WINDOWS\comsetup.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00001917 _____ () C:\WINDOWS\imsins.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00001806 _____ () C:\WINDOWS\ntdtcsetup.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00001592 _____ () C:\WINDOWS\netfxocm.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00000719 _____ () C:\WINDOWS\MedCtrOC.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00000311 _____ () C:\WINDOWS\tabletoc.log
2014-12-04 21:14 - 2014-12-04 21:14 - 00001934 _____ () C:\WINDOWS\msmqinst.log
2014-12-04 19:23 - 2014-12-04 19:23 - 01107968 _____ () C:\Documents and Settings\Ева\Рабочий стол\RSIT.exe
2014-12-04 12:22 - 2014-12-04 12:22 - 00000000 ____D () C:\Documents and Settings\All Users\Главное меню\Программы\AIMP3
2014-12-04 12:21 - 2014-12-07 15:16 - 00000000 ____D () C:\Documents and Settings\Ева\Application Data\AIMP3
2014-12-02 22:20 - 2014-12-03 06:29 - 00000000 ____D () C:\Program Files\Mozilla Thunderbird
2014-12-02 16:34 - 2014-12-02 16:34 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-12-02 16:34 - 2014-12-02 16:34 - 00000000 ____D () C:\Documents and Settings\All Users\Главное меню\Программы\Skype
2014-12-02 13:58 - 2014-12-07 14:31 - 00000000 ____D () C:\Program Files\AntiLogger
2014-12-02 13:58 - 2014-12-02 13:58 - 00000000 ____D () C:\Documents and Settings\Ева\Local Settings\Application Data\Zemana
2014-11-29 14:19 - 2014-11-29 14:19 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Particles
2014-11-29 14:08 - 2014-11-29 14:08 - 00000000 ____D () C:\Documents and Settings\All Users\Главное меню\Программы\Bratr a sestra - smrti navzdory
2014-11-29 14:02 - 2014-11-29 14:08 - 00000000 ____D () C:\Program Files\Bratr a sestra - smrti navzdory
2014-11-29 13:18 - 2014-11-29 13:18 - 00015921 _____ () C:\Documents and Settings\Ева\Мои документы\[CzT]Bratr_a_sestra_smrti_navzdory_2014_CZ_.torrent
2014-11-22 19:26 - 2014-12-02 08:28 - 00001696 _____ () C:\WINDOWS\setupact.log
2014-11-22 19:26 - 2014-11-22 19:26 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-11-17 23:57 - 2014-12-06 18:43 - 00429040 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2014-11-13 21:18 - 2014-11-13 21:19 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-11-09 00:43 - 2014-11-09 00:43 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\NannyMania
2014-11-09 00:41 - 2014-11-09 00:41 - 00001686 _____ () C:\Documents and Settings\Ева\Главное меню\MyPlayCity Games.lnk
2014-11-09 00:41 - 2014-11-09 00:41 - 00000000 ____D () C:\Documents and Settings\All Users\Главное меню\Программы\MyPlayCity.com
2014-11-09 00:40 - 2014-11-09 00:40 - 00000000 ____D () C:\Program Files\MyPlayCity.com
2014-11-08 23:14 - 2014-12-07 10:02 - 00045904 _____ () C:\WINDOWS\setupapi.log

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-07 15:17 - 2014-07-14 18:14 - 00000000 ____D () C:\Documents and Settings\Ева\Local Settings\Temp
2014-12-07 15:16 - 2014-07-14 18:14 - 00000000 ____D () C:\Documents and Settings\Ева\Рабочий стол
2014-12-07 15:15 - 2014-07-14 18:14 - 00000000 ____D () C:\Documents and Settings\Ева
2014-12-07 15:01 - 2014-07-17 08:36 - 00000956 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-07 14:52 - 2014-10-26 17:46 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-12-07 14:51 - 2014-07-14 19:11 - 01234338 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-07 14:51 - 2008-04-15 13:00 - 00538904 _____ () C:\WINDOWS\system32\perfh019.dat
2014-12-07 14:51 - 2008-04-15 13:00 - 00099898 _____ () C:\WINDOWS\system32\perfc019.dat
2014-12-07 14:48 - 2014-07-14 17:19 - 02090112 _____ () C:\WINDOWS\WindowsUpdate.log
2014-12-07 14:47 - 2014-10-25 23:57 - 00000218 _____ () C:\WINDOWS\Tasks\Уведомлением о завершении поддержки Microsoft Windows XP при входе.job
2014-12-07 14:47 - 2014-07-17 08:36 - 00000952 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-07 14:47 - 2014-07-14 19:13 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-12-07 14:47 - 2014-07-14 19:13 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-12-07 14:47 - 2014-07-14 18:13 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-07 14:46 - 2014-07-14 18:14 - 00000178 ___SH () C:\Documents and Settings\Ева\ntuser.ini
2014-12-07 14:46 - 2014-07-14 18:13 - 00032570 _____ () C:\WINDOWS\SchedLgU.Txt
2014-12-07 14:45 - 2014-07-14 18:14 - 00000000 ___RD () C:\Documents and Settings\Ева\Главное меню\Программы
2014-12-07 14:31 - 2014-07-14 19:10 - 00000000 ___RD () C:\Documents and Settings\All Users\Главное меню\Программы
2014-12-07 12:22 - 2014-07-14 19:10 - 00000000 ____D () C:\Documents and Settings\All Users\Рабочий стол
2014-12-07 11:34 - 2014-09-16 19:36 - 00000000 ____D () C:\Documents and Settings\Ева\Рабочий стол\vse z plohi
2014-12-07 10:59 - 2014-07-14 18:14 - 00000000 ___RD () C:\Documents and Settings\Ева\Мои документы
2014-12-07 10:35 - 2014-09-23 19:40 - 00048640 ___SH () C:\Documents and Settings\Ева\Рабочий стол\Thumbs.db
2014-12-07 10:28 - 2014-07-15 15:37 - 00701104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-12-07 10:28 - 2014-07-15 15:37 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-12-07 10:28 - 2014-07-15 15:37 - 00000896 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-12-07 10:02 - 2014-10-26 17:46 - 00787800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00423784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00206248 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00070384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00057928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00055240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00000000 ____D () C:\Documents and Settings\All Users\Главное меню\Программы\AVAST Software
2014-12-06 18:42 - 2014-07-14 18:34 - 00000000 ____D () C:\Documents and Settings\Ева\Application Data\Skype
2014-12-06 14:16 - 2014-07-15 16:39 - 00021391 _____ () C:\WINDOWS\FontData.fdb
2014-12-05 21:58 - 2014-10-25 23:57 - 00000212 _____ () C:\WINDOWS\Tasks\Уведомление о завершении поддержки Microsoft Windows XP ежемесячно.job
2014-12-05 21:50 - 2014-07-15 14:51 - 00000000 ____D () C:\Documents and Settings\Ева\Мои документы\Загрузки
2014-12-04 12:26 - 2014-07-15 15:15 - 00000000 ____D () C:\Documents and Settings\Ева\Application Data\vlc
2014-12-03 19:50 - 2014-07-15 14:52 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-12-02 22:05 - 2014-07-15 16:31 - 00000256 _____ () C:\Documents and Settings\All Users\tic.lic
2014-12-02 16:34 - 2014-08-06 19:00 - 00000000 ___RD () C:\Program Files\Skype
2014-12-02 16:34 - 2014-07-14 18:31 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
2014-11-30 21:05 - 2008-04-15 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-11-29 14:16 - 2014-09-19 15:59 - 00000000 ____D () C:\Documents and Settings\Ева\Application Data\DominiGames
2014-11-29 13:35 - 2014-07-14 18:31 - 00000000 ____D () C:\Documents and Settings\Ева\Application Data\uTorrent
2014-11-22 08:44 - 2014-08-31 14:08 - 00000000 ___RD () C:\Documents and Settings\Ева\Мои документы\Disk Google
2014-11-21 00:15 - 2014-07-21 14:33 - 00002315 _____ () C:\Documents and Settings\All Users\Главное меню\Программы\Adobe Reader XI.lnk
2014-11-12 07:07 - 2014-07-14 18:20 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Microsoft Help
2014-11-12 07:06 - 2014-10-26 16:08 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-11-12 06:58 - 2014-10-26 16:08 - 100445232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-11-09 17:47 - 2014-10-12 21:59 - 00000000 ____D () C:\Documents and Settings\Ева\Мои документы\Goša ornamenty
2014-11-09 00:41 - 2014-07-14 18:14 - 00000000 ___RD () C:\Documents and Settings\Ева\Главное меню

Some content of TEMP:
====================
C:\Documents and Settings\Ева\Local Settings\Temp\1120_sof_sweet-page.exe
C:\Documents and Settings\Ева\Local Settings\Temp\BuenoSearchTB.exe
C:\Documents and Settings\Ева\Local Settings\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp3_93j9.dll
C:\Documents and Settings\Ева\Local Settings\Temp\DTLite4491-0356.exe
C:\Documents and Settings\Ева\Local Settings\Temp\InstHelper.exe
C:\Documents and Settings\Ева\Local Settings\Temp\pcspeedup.exe
C:\Documents and Settings\Ева\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Ева\Local Settings\Temp\SkypeSetup.exe
C:\Documents and Settings\Ева\Local Settings\Temp\sqlite3.dll
C:\Documents and Settings\Ева\Local Settings\Temp\StickyNotesUpdate.exe
C:\Documents and Settings\Ева\Local Settings\Temp\utt3A7.tmp.exe
C:\Documents and Settings\Ева\Local Settings\Temp\vlc-2.1.5-win32.exe
C:\Documents and Settings\Ева\Local Settings\Temp\YandexPackSetup.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe
[2009-12-31 16:21] - [2009-12-31 16:21] - 1574400 ____A (Корпорация Майкрософт) cca55cd69441bfe961a665a15f9620f6

C:\WINDOWS\explorer.exe No Company Name <===== ATTENTION!

C:\WINDOWS\system32\winlogon.exe
[2009-12-31 16:25] - [2009-12-31 16:25] - 0616448 ____A (Корпорация Майкрософт) 3731c34b20e49a92e6a1185dae2793d5

C:\WINDOWS\system32\winlogon.exe No Company Name <===== ATTENTION!

C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll
[2009-12-31 16:25] - [2009-12-31 16:25] - 0632320 ____A (Корпорация Майкрософт) e7ecd4fa070b0beea3c3c7115c5c2f17

C:\WINDOWS\system32\User32.dll No Company Name <===== ATTENTION!

C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

Eva71 · #10 Příspěvek od **Eva71** » 07 pro 2014 15:22

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 07-12-2014 01
Ran by Ева at 2014-12-07 15:18:15
Running from C:\Documents and Settings\Ева\Рабочий стол
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus (Disabled) {7591DB91-41F0-48A3-B128-1A293FD8233D}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\uTorrent) (Version: 3.4.2.33680 - BitTorrent Inc.)
2GIS 3.14.9.0 (HKLM\...\{E859C0BC-9563-46ED-ACD1-A7D91AB17E9E}) (Version: 3.14.9.0 - DublGIS, s.r.o.)
7-Zip 9.20 (HKLM\...\{23170F69-40C1-2701-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
7-Zip 9.22beta (HKLM\...\7-Zip) (Version: v9.09b - oszone.net)
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.239 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Russian (HKLM\...\{AC76BA86-7AD7-1049-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
AIMP3 (HKLM\...\AIMP3) (Version: v3.55.1345, 26.03.2014 - AIMP DevTeam)
Avast Internet Security (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software)
Badoo Desktop (HKLM\...\{D91D71FB-C52E-440D-8A78-5E5E05487DA0}) (Version: 1.6.58.1220 - Badoo)
Bratr a sestra - smrti navzdory 1.1a (HKLM\...\{1.1a Bratr a sestra - smrti navzdory 1.1a}_is1) (Version: - Љpidla Data Processing, s.r.o.)
Corel Graphics - Windows Shell Extension (HKLM\...\_{B6BFCD02-BA0E-41A9-9C9C-6624C4BB475F}) (Version: 15.2.0.686 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 15.2.686 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Capture (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Common (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Connect (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Custom Data (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Draw (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - EN (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Filters (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FontNav (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - IPM (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Photozoom Plugin (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Redist (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - RU (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Setup Files (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VBA (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VideoBrowser (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VSTA (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - WT (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 (Version: 15.3 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X5 (HKLM\...\_{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.2.0.686 - Corel Corporation)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Evernote Sticky Notes (HKLM\...\{4FC3ACD7-105C-42E2-9A48-4FFF58C76D19}) (Version: 1.5.9 - Evernote Sticky Notes)
Google Drive (HKLM\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.71 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
iSlim 330 (HKLM\...\{28A7EEF4-BD0D-45D3-85C6-AAAB68764061}) (Version: 1.0.0.0 - )
Java(TM) 6 Update 17 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.)
Malwarebytes Anti-Malware verze 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
MenuEx (HKLM\...\MenuEx) (Version: 1.4.0.0 - LENIN INC)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - RUS (HKLM\...\{736D8DEB-66C6-3655-9D59-DF6493A81F77}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - RUS (HKLM\...\{6CF6A814-CE65-39FC-BBBC-6CB340A4028B}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0015-0000-0000-0000000FF1CE}_Access_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0018-0000-0000-0000000FF1CE}_POWERPOINT_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-001B-0000-0000-0000000FF1CE}_WORD_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Access 2007 (HKLM\...\Access) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel 2007 (HKLM\...\EXCEL) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office PowerPoint 2007 (HKLM\...\POWERPOINT) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Word 2007 (HKLM\...\WORD) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft WinUsb 1.0 (HKLM\...\winusb0100) (Version: - Microsoft Corporation)
Mozilla Firefox 33.1 (x86 ru) (HKLM\...\Mozilla Firefox 33.1 (x86 ru)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
Mozilla Thunderbird 31.3.0 (x86 cs) (HKLM\...\Mozilla Thunderbird 31.3.0 (x86 cs)) (Version: 31.3.0 - Mozilla)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
Nanny Mania (HKLM\...\Nanny Mania_is1) (Version: 1.0 - MyPlayCity, Inc.)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
OpenOffice 4.1.0 (HKLM\...\{43245B34-BAEA-4716-B877-38E7E7026698}) (Version: 4.10.9764 - Apache Software Foundation)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.6278 - Realtek Semiconductor Corp.)
Skype™ 6.22 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.22.107 - Skype Technologies S.A.)
Ticno Indexator (HKLM\...\Ticno Indexator) (Version: 0.0.2.5 - Ticno.com)
Ticno Notepad (HKLM\...\Ticno Notepad) (Version: 1.0.0.31 - Ticno.com)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0015-0000-0000-0000000FF1CE}_Access_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0018-0000-0000-0000000FF1CE}_POWERPOINT_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-001B-0000-0000-0000000FF1CE}_WORD_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Visual Task Tips (HKLM\...\Visual Task Tips_addon) (Version: v3.4 - oszone.net)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.9.0040.0 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
WinRAR (HKLM\...\WinRAR archiver) (Version: v3.91ru - Александр Л. Рошал)
XML Paper Specification Shared Components Language Pack 1.0 (Version: - Microsoft Corporation) Hidden
Базовый пакет поставщика службы криптографии смарт-карт (Microsoft) (HKLM\...\KB909520) (Version: - Microsoft Corporation)
Дополнительные апплеты (HKLM\...\Дополнительные апплеты_is1) (Version: 12b.09 - prokazzza & Habetdin)
Исправление для Windows XP (KB889320-v2) (HKLM\...\KB889320-v2) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB922120-v6) (HKLM\...\KB922120-v6) (Version: 6 - Microsoft Corporation)
Исправление для Windows XP (KB927436-v2) (HKLM\...\KB927436-v2) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB932716-v2) (HKLM\...\KB932716-v2) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB934401) (HKLM\...\KB934401) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB938759) (HKLM\...\KB938759) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB940159-v2) (HKLM\...\KB940159-v2) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB942288-v3) (HKLM\...\KB942288-v3) (Version: 3 - Microsoft Corporation)
Исправление для Windows XP (KB943232-v2) (HKLM\...\KB943232-v2) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB944043-v3) (HKLM\...\KB944043-v3) (Version: 3 - Microsoft Corporation)
Исправление для Windows XP (KB945060-v3) (HKLM\...\KB945060-v3) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB945436) (HKLM\...\KB945436) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB948101-v3) (HKLM\...\KB948101-v3) (Version: 3 - Microsoft Corporation)
Исправление для Windows XP (KB948698) (HKLM\...\KB948698) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB948877-v2) (HKLM\...\KB948877-v2) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB950616) (HKLM\...\KB950616) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB951163) (HKLM\...\KB951163) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB951312) (HKLM\...\KB951312) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB951624) (HKLM\...\KB951624) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB951709) (HKLM\...\KB951709) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB951830) (HKLM\...\KB951830) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB952117-v2) (HKLM\...\KB952117-v2) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB952595-v3) (HKLM\...\KB952595-v3) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB953024) (HKLM\...\KB953024) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB953028) (HKLM\...\KB953028) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB953930) (HKLM\...\KB953930) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB954232) (HKLM\...\KB954232) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB954434) (HKLM\...\KB954434) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB954708) (HKLM\...\KB954708) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB955109) (HKLM\...\KB955109) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB955356) (HKLM\...\KB955356) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB955567) (HKLM\...\KB955567) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB955988) (HKLM\...\KB955988) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB956625) (HKLM\...\KB956625) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB956807) (HKLM\...\KB956807) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB957264) (HKLM\...\KB957264) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB957495) (HKLM\...\KB957495) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB957502) (HKLM\...\KB957502) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB957808) (HKLM\...\KB957808) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB957931) (HKLM\...\KB957931) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB958071) (HKLM\...\KB958071) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB958106) (HKLM\...\KB958106) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB958149) (HKLM\...\KB958149) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB958244) (HKLM\...\KB958244) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB958259-v2) (HKLM\...\KB958259-v2) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB958347) (HKLM\...\KB958347) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB958817) (HKLM\...\KB958817) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB958910) (HKLM\...\KB958910) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB959160) (HKLM\...\KB959160) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB959267) (HKLM\...\KB959267) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB959465) (HKLM\...\KB959465) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB959554) (HKLM\...\KB959554) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB959765) (HKLM\...\KB959765) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB959873) (HKLM\...\KB959873) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB960519) (HKLM\...\KB960519) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB960655) (HKLM\...\KB960655) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB960680-v2) (HKLM\...\KB960680-v2) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB960715) (HKLM\...\KB960715) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB960921) (HKLM\...\KB960921) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB960970) (HKLM\...\KB960970) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB961187-v2) (HKLM\...\KB961187-v2) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB961451-v2) (HKLM\...\KB961451-v2) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB961853-v2) (HKLM\...\KB961853-v2) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB963038) (HKLM\...\KB963038) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB967048-v2) (HKLM\...\KB967048-v2) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB967756) (HKLM\...\KB967756) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB967885) (HKLM\...\KB967885) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB968358) (HKLM\...\KB968358) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB968585-v2) (HKLM\...\KB968585-v2) (Version: 2 - Microsoft Corporation)
Исправление для Windows XP (KB968730) (HKLM\...\KB968730) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB968764) (HKLM\...\KB968764) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB969084) (HKLM\...\KB969084) (Version: 3 - Microsoft Corporation)
Исправление для Windows XP (KB969262) (HKLM\...\KB969262) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB969395) (HKLM\...\KB969395) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB970048) (HKLM\...\KB970048) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB970063) (HKLM\...\KB970063) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB970413) (HKLM\...\KB970413) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB970685) (HKLM\...\KB970685) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB970922) (HKLM\...\KB970922) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB971165) (HKLM\...\KB971165) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB971234) (HKLM\...\KB971234) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB971314) (HKLM\...\KB971314) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB971323) (HKLM\...\KB971323) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB971345) (HKLM\...\KB971345) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB971421) (HKLM\...\KB971421) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB971455) (HKLM\...\KB971455) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB972435) (HKLM\...\KB972435) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB972878) (HKLM\...\KB972878) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB973296) (HKLM\...\KB973296) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB973502) (HKLM\...\KB973502) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB973624) (HKLM\...\KB973624) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB975791) (HKLM\...\KB975791) (Version: 1 - Microsoft Corporation)
Исправление для Windows XP (KB976098-v2) (HKLM\...\KB976098-v2) (Version: 2 - Microsoft Corporation)
Исправление для проигрывателя Windows Media 11 - (KB939683) (HKLM\...\KB939683) (Version: - Microsoft Corporation)
Обновление безопасности для Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version: - Microsoft Corporation)
Обновление безопасности для Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows Internet Explorer 8 (KB2964358) (HKLM\...\KB2964358-IE8) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows Internet Explorer 8 (KB971961) (HKLM\...\KB971961-IE8) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows Internet Explorer 8 (KB976325) (HKLM\...\KB976325-IE8) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP - (KB941569) (HKLM\...\KB941569) (Version: - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2705219-v2) (HKLM\...\KB2705219-v2) (Version: 2 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2723135-v2) (HKLM\...\KB2723135-v2) (Version: 2 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB951066) (HKLM\...\KB951066) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB953155) (HKLM\...\KB953155) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB955417) (HKLM\...\KB955417) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB956744) (HKLM\...\KB956744) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB956802) (HKLM\...\KB956802) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB957097) (HKLM\...\KB957097) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB957579) (HKLM\...\KB957579) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB958644) (HKLM\...\KB958644) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB958687) (HKLM\...\KB958687) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB958869) (HKLM\...\KB958869) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB961371-v2) (HKLM\...\KB961371-v2) (Version: 2 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB961501) (HKLM\...\KB961501) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB969947) (HKLM\...\KB969947) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB970238) (HKLM\...\KB970238) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB970483) (HKLM\...\KB970483) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB971486) (HKLM\...\KB971486) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB971557) (HKLM\...\KB971557) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB971633) (HKLM\...\KB971633) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB971961) (HKLM\...\KB971961) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB973354) (HKLM\...\KB973354) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB973525) (HKLM\...\KB973525) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB975254) (HKLM\...\KB975254) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB975713) (HKLM\...\KB975713) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB976325) (HKLM\...\KB976325) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Обновление безопасности для Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Обновление безопасности для проигрывателя Windows Media - (KB2378111) (HKLM\...\KB2378111_WM9) (Version: - Microsoft Corporation)
Обновление безопасности для проигрывателя Windows Media - (KB2834904-v2) (HKLM\...\KB2834904-v2_WM11) (Version: - Microsoft Corporation)
Обновление безопасности для проигрывателя Windows Media - (KB952069) (HKLM\...\KB952069_WM9) (Version: - Microsoft Corporation)
Обновление безопасности для проигрывателя Windows Media - (KB954155) (HKLM\...\KB954155_WM9) (Version: - Microsoft Corporation)
Обновление безопасности для проигрывателя Windows Media - (KB968816) (HKLM\...\KB968816_WM9) (Version: - Microsoft Corporation)
Обновление безопасности для проигрывателя Windows Media - (KB973540) (HKLM\...\KB973540_WM9) (Version: - Microsoft Corporation)
Обновление безопасности для проигрывателя Windows Media - (KB975558) (HKLM\...\KB975558_WM8) (Version: - Microsoft Corporation)
Обновление безопасности для проигрывателя Windows Media - (KB978695) (HKLM\...\KB978695_WM9) (Version: - Microsoft Corporation)
Обновление безопасности для проигрывателя Windows Media 11 - (KB954154) (HKLM\...\KB954154_WM11) (Version: - Microsoft Corporation)
Обновление для Microsoft Windows (KB971513) (HKLM\...\KB971513) (Version: - Microsoft Corporation)
Обновление для Windows Internet Explorer 8 (KB975364) (HKLM\...\KB975364-IE8) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB2813347-v2) (HKLM\...\KB2813347-v2) (Version: 2 - Microsoft Corporation)
Обновление для Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB943729) (HKLM\...\KB943729) (Version: - Microsoft Corporation)
Обновление для Windows XP (KB951618-v2) (HKLM\...\KB951618-v2) (Version: 2 - Microsoft Corporation)
Обновление для Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB954920-v2) (HKLM\...\KB954920-v2) (Version: 2 - Microsoft Corporation)
Обновление для Windows XP (KB955704) (HKLM\...\KB955704) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB961503) (HKLM\...\KB961503) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Обновление для Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Пакет Windows Feature Pack for Storage (32-разрядный) - обновление IMAPI для Blu-Ray (HKLM\...\KB952011) (Version: 1.0 - Microsoft Corporation)
Пакет драйверов Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0) (HKLM\...\53F13DB4D9611FD63BE580F06F0729BF236ABE68) (Version: 05/27/2006 1.3.2.0 - Advanced Micro Devices)
Пакет драйверов Windows - Advanced Micro Devices (AmdPPM) Processor (08/10/2007 1.0.0.0) (HKLM\...\1EC46BD120B0DFF33FB607971D9518CC4ADC68CB) (Version: 08/10/2007 1.0.0.0 - Advanced Micro Devices)
Пакет драйверов Windows - AMD System (02/28/2003 1.0.0.0) (HKLM\...\F23386FE8B0DA0C61EA3BF911E7A605DCAE44DF3) (Version: 02/28/2003 1.0.0.0 - AMD)
Пакет драйверов Windows - Intel System (11/07/2008 7.0.1.1011) (HKLM\...\019BA247F4BF373BFF125045DCD742221AF9A191) (Version: 11/07/2008 7.0.1.1011 - Intel)
Пакет драйверов Windows - KYE (PAC7302) Image (06/01/2009 1.0.0.28) (HKLM\...\4899026C5207824669C8AAE0955B114B5278BD17) (Version: 06/01/2009 1.0.0.28 - KYE)
Пакет драйверов Windows - NVIDIA (nv) Display (01/07/2011 6.14.12.6658) (HKLM\...\409E95AD7CB3D5ADDC264264DB3001CBF4B6B1E5) (Version: 01/07/2011 6.14.12.6658 - NVIDIA)
Пакет драйверов Windows - NVIDIA (nv) Display (01/07/2011 6.14.12.6658) (HKLM\...\FC9E8D6BEED299828396FA9693664A5B08161EBA) (Version: 01/07/2011 6.14.12.6658 - NVIDIA)
Пакет драйверов Windows - NVIDIA (nv) Display (10/22/2006 6.14.10.9371) (HKLM\...\D01A901C46C8EE3C53DE1D38D388E4A55DDD0498) (Version: 10/22/2006 6.14.10.9371 - NVIDIA)
Пакет драйверов Windows - NVIDIA (NVENETFD) Net (03/04/2010 73.3.0) (HKLM\...\20A55C2D88CB016EECB9DCAF2DE1849D7B62E0BF) (Version: 03/04/2010 73.3.0 - NVIDIA)
Пакет драйверов Windows - NVIDIA (NVENETFD) Net (03/13/2006 65.6.5) (HKLM\...\EDB3B9282585E8A15874015E7D95959C5E1CFBF7) (Version: 03/13/2006 65.6.5 - NVIDIA)
Пакет драйверов Windows - NVIDIA (NVENETFD) Net (04/14/2006 73.3.5) (HKLM\...\79A02B4FF23DCA2736F61FD32A3B6AE2A81AB1EE) (Version: 04/14/2006 73.3.5 - NVIDIA)
Пакет драйверов Windows - NVIDIA (NVENETFD) Net (05/15/2006 60.1.5) (HKLM\...\1BB8D3C10F39CE86DA0B7D4DAE245E4FC3531474) (Version: 05/15/2006 60.1.5 - NVIDIA)
Пакет драйверов Windows - NVIDIA (NVENETFD) Net (07/11/2007 67.5.3) (HKLM\...\7B109EF5D14A98D6F01BA5B6CB637A5F1AFA96EC) (Version: 07/11/2007 67.5.3 - NVIDIA)
Пакет драйверов Windows - NVIDIA (NVENETFD) Net (08/01/2008 67.8.9) (HKLM\...\A30E50A07823D59A946144FEBA4BA303198835B7) (Version: 08/01/2008 67.8.9 - NVIDIA)
Пакет драйверов Windows - NVIDIA (nvnetbus) NVIDIA Network Bus Enumerator (03/04/2010 73.3.0) (HKLM\...\AA77AE03E01BC756D2233A42A1FCAC54199BC95D) (Version: 03/04/2010 73.3.0 - NVIDIA)
Пакет драйверов Windows - NVIDIA (nvnetbus) NVIDIA Network Bus Enumerator (08/01/2008 67.8.9) (HKLM\...\5A4762FF384B40C28101981B5F49E693082F076A) (Version: 08/01/2008 67.8.9 - NVIDIA)
Пакет драйверов Windows - NVIDIA Corporation (nvgts) HDC (04/09/2010 11.1.0.43) (HKLM\...\DBF0C0ECF03A5D88843C7F39C64DFFDA467A96B0) (Version: 04/09/2010 11.1.0.43 - NVIDIA Corporation)
Пакет драйверов Windows - NVIDIA System (03/22/2010 4.7.9) (HKLM\...\B8D868F858D3EB19329A0357EB06D88AF1266350) (Version: 03/22/2010 4.7.9 - NVIDIA)
Пакет драйверов Windows - NVIDIA System (05/07/2006 4.6.9) (HKLM\...\C48AE6D94CCD619BF74F3C8D9924D0B0096E00AE) (Version: 05/07/2006 4.6.9 - NVIDIA)
Пакет драйверов Windows - NVIDIA System (06/08/2006 4.5.7) (HKLM\...\8616D564CF16B5649AD2CCD417FAF71FF9A55845) (Version: 06/08/2006 4.5.7 - NVIDIA)
Пакет драйверов Windows - NVIDIA System (07/29/2009 4.7.4) (HKLM\...\C7673D4A149BAF70D70E3C39B68D66139B75EDBF) (Version: 07/29/2009 4.7.4 - NVIDIA)
Пакет драйверов Windows - Realtek Semiconductor Corp. HD Audio Driver (12/30/2010 5.10.0.6278) (HKLM\...\4467C5DD136FE5B2D19E9CECF4D50B5C3975D86C) (Version: 12/30/2010 5.10.0.6278 - Realtek Semiconductor Corp.)
Пакет драйверов Windows - Realtek Semiconductor Corp. HD Audio Driver (12/30/2010 5.10.0.6278) (HKLM\...\79A09673B2FD56AD607B62F2E256D9619B7D3EA2) (Version: 12/30/2010 5.10.0.6278 - Realtek Semiconductor Corp.)
Проигрыватель Windows Media 11 (HKLM\...\Windows Media Player) (Version: - )
Языковой пакет Microsoft .NET Framework 3.5 SP1 — RUS (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - rus) (Version: - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points =========================

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2008-04-15 13:00 - 2008-04-15 13:00 - 00000769 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Уведомление о завершении поддержки Microsoft Windows XP ежемесячно.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Уведомлением о завершении поддержки Microsoft Windows XP при входе.job => C:\WINDOWS\system32\xp_eos.exe

==================== Loaded Modules (whitelisted) =============

2014-12-07 09:30 - 2014-12-07 09:30 - 02905088 _____ () C:\Program Files\AVAST Software\Avast\defs\14120700\algo.dll
2014-10-26 17:45 - 2014-12-07 10:02 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2008-04-15 13:00 - 2008-04-15 13:00 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2014-11-26 23:04 - 2014-11-25 07:39 - 09009480 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.71\pdf.dll
2014-11-26 23:04 - 2014-11-25 07:39 - 01677128 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.71\ffmpegsumo.dll
2014-12-04 12:21 - 2014-12-04 12:21 - 00505344 _____ () G:\AIMP3\Sqlite3.dll
2014-12-04 12:21 - 2014-12-04 12:21 - 00218112 _____ () G:\AIMP3\libsoxr.dll
2014-12-04 12:21 - 2014-12-04 12:21 - 00220672 _____ () G:\AIMP3\Modules\MACDll.dll
2014-12-04 12:21 - 2014-12-04 12:21 - 00294400 _____ () G:\AIMP3\Modules\libFLAC.dll
2014-12-04 12:21 - 2014-12-04 12:21 - 01733120 _____ () G:\AIMP3\Modules\aimp_libvorbis.dll
2014-12-04 12:21 - 2014-12-04 12:21 - 00072136 _____ () G:\AIMP3\Plugins\aimp_lastfm.dll
2014-12-04 12:21 - 2014-12-04 12:21 - 00026624 _____ () G:\AIMP3\Plugins\Aorta.svp
2014-12-04 12:21 - 2014-12-04 12:21 - 00237568 _____ () G:\AIMP3\Plugins\OptimFROG.dll
2014-12-04 12:21 - 2014-12-04 12:21 - 00141768 _____ () G:\AIMP3\Plugins\PandemicAnalogMeter.dll
2014-07-17 09:03 - 2014-02-10 12:44 - 04592128 _____ () C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-07-17 09:03 - 2014-02-10 12:44 - 00112128 _____ () C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => ""=""

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Главное меню^Программы^Автозагрузка^Tabs.lnk => C:\WINDOWS\pss\Tabs.lnkCommon Startup
MSCONFIG\startupreg: 2Gis Update Notifier => "C:\Program Files\2gis\3.0\2GISTrayNotifier.exe" -delayed_start
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Avast-Browser-Cleanup => "C:\Program Files\AVAST Software\Avast\BrowserCleanup.exe"/RunOnce
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: EDO-Soft Sticky Notes => C:\Program Files\Evernote Sticky Notes\StickyNotes.Wpf.exe
MSCONFIG\startupreg: GoogleDriveSync => "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
MSCONFIG\startupreg: iSlim310_Monitor => C:\WINDOWS\islim310\Monitor.exe
MSCONFIG\startupreg: PAP7501_Monitor => C:\WINDOWS\Pixart\PAP7501\GUCI_AVS.exe
MSCONFIG\startupreg: Timezone => "C:\WINDOWS\system32\CPLDAPU\timezone.exe"
MSCONFIG\startupreg: VisualTaskTips => C:\Program Files\VisualTaskTips\VisualTaskTips.exe noTrayIcon

========================= Accounts: ==========================

ASPNET (S-1-5-21-725345543-854245398-1177238915-1004 - Limited - Enabled)
HelpAssistant (S-1-5-21-725345543-854245398-1177238915-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-725345543-854245398-1177238915-1002 - Limited - Disabled)
Администратор (S-1-5-21-725345543-854245398-1177238915-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Администратор
Гость (S-1-5-21-725345543-854245398-1177238915-501 - Limited - Disabled)
Ева (S-1-5-21-725345543-854245398-1177238915-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Ева

==================== Faulty Device Manager Devices =============

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================
Error: (11/22/2014 02:46:50 AM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=39.0.2171.65;lang=;guid=6B2B64B67B714293870FF2BD173AB8C7;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\577b9d7f-da91-498f-9eab-5962f34652df.dmp

Error: (11/21/2014 07:40:59 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=39.0.2171.65;lang=;guid=6B2B64B67B714293870FF2BD173AB8C7;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\6864450d-b902-4d38-9a08-ddab4e6c5b02.dmp

Error: (11/04/2014 11:38:24 AM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=38.0.2125.111;lang=;guid=6B2B64B67B714293870FF2BD173AB8C7;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\5f0f0e69-edce-4801-9a50-4be3f73e1c27.dmp

Error: (11/02/2014 10:27:23 PM) (Source: Chrome) (EventID: 1) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=38.0.2125.111;lang=;guid=6B2B64B67B714293870FF2BD173AB8C7;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\556494fd-392f-4d46-9c1d-c746738dc30a.dmp

Error: (11/02/2014 07:24:56 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: StickyNotes.Wpf.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.InvalidOperationException
Stack:
at System.WeakReference.set_Target(System.Object)
at System.Windows.Threading.Dispatcher.FromThread(System.Threading.Thread)
at System.Windows.Threading.Dispatcher.get_CurrentDispatcher()
at System.Windows.Threading.DispatcherObject..ctor()
at MS.Win32.HwndWrapper..ctor(Int32, Int32, Int32, Int32, Int32, Int32, Int32, System.String, IntPtr, MS.Win32.HwndWrapperHook[])
at System.Windows.Threading.Dispatcher..ctor()
at System.Windows.Threading.Dispatcher.get_CurrentDispatcher()
at StickyNotes.Wpf.WorkingAreaHelper.Dispose()
at StickyNotes.Wpf.WorkingAreaHelper.Finalize()

Error: (11/01/2014 04:11:43 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: StickyNotes.Wpf.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.InvalidOperationException
Stack:
at System.WeakReference.set_Target(System.Object)
at System.Windows.Threading.Dispatcher.FromThread(System.Threading.Thread)
at System.Windows.Threading.Dispatcher.get_CurrentDispatcher()
at System.Windows.Threading.DispatcherObject..ctor()
at MS.Win32.HwndWrapper..ctor(Int32, Int32, Int32, Int32, Int32, Int32, Int32, System.String, IntPtr, MS.Win32.HwndWrapperHook[])
at System.Windows.Threading.Dispatcher..ctor()
at System.Windows.Threading.Dispatcher.get_CurrentDispatcher()
at StickyNotes.Wpf.WorkingAreaHelper.Dispose()
at StickyNotes.Wpf.WorkingAreaHelper.Finalize()

Error: (10/29/2014 03:43:09 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: StickyNotes.Wpf.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.InvalidOperationException
Stack:
at System.WeakReference.set_Target(System.Object)
at System.Windows.Threading.Dispatcher.FromThread(System.Threading.Thread)
at System.Windows.Threading.Dispatcher.get_CurrentDispatcher()
at System.Windows.Threading.DispatcherObject..ctor()
at MS.Win32.HwndWrapper..ctor(Int32, Int32, Int32, Int32, Int32, Int32, Int32, System.String, IntPtr, MS.Win32.HwndWrapperHook[])
at System.Windows.Threading.Dispatcher..ctor()
at System.Windows.Threading.Dispatcher.get_CurrentDispatcher()
at StickyNotes.Wpf.WorkingAreaHelper.Dispose()
at StickyNotes.Wpf.WorkingAreaHelper.Finalize()

Error: (10/29/2014 08:14:00 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: StickyNotes.Wpf.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.InvalidOperationException
Stack:
at System.WeakReference.set_Target(System.Object)
at System.Windows.Threading.Dispatcher.FromThread(System.Threading.Thread)
at System.Windows.Threading.Dispatcher.get_CurrentDispatcher()
at System.Windows.Threading.DispatcherObject..ctor()
at MS.Win32.HwndWrapper..ctor(Int32, Int32, Int32, Int32, Int32, Int32, Int32, System.String, IntPtr, MS.Win32.HwndWrapperHook[])
at System.Windows.Threading.Dispatcher..ctor()
at System.Windows.Threading.Dispatcher.get_CurrentDispatcher()
at StickyNotes.Wpf.WorkingAreaHelper.Dispose()
at StickyNotes.Wpf.WorkingAreaHelper.Finalize()

Error: (10/28/2014 00:29:10 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: StickyNotes.Wpf.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.InvalidOperationException
Stack:
at System.WeakReference.set_Target(System.Object)
at System.Windows.Threading.Dispatcher.FromThread(System.Threading.Thread)
at System.Windows.Threading.Dispatcher.get_CurrentDispatcher()
at System.Windows.Threading.DispatcherObject..ctor()
at MS.Win32.HwndWrapper..ctor(Int32, Int32, Int32, Int32, Int32, Int32, Int32, System.String, IntPtr, MS.Win32.HwndWrapperHook[])
at System.Windows.Threading.Dispatcher..ctor()
at System.Windows.Threading.Dispatcher.get_CurrentDispatcher()
at StickyNotes.Wpf.WorkingAreaHelper.Dispose()
at StickyNotes.Wpf.WorkingAreaHelper.Finalize()

Error: (10/27/2014 10:29:12 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: StickyNotes.Wpf.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.InvalidOperationException
Stack:
at System.WeakReference.set_Target(System.Object)
at System.Windows.Threading.Dispatcher.FromThread(System.Threading.Thread)
at System.Windows.Threading.Dispatcher.get_CurrentDispatcher()
at System.Windows.Threading.DispatcherObject..ctor()
at MS.Win32.HwndWrapper..ctor(Int32, Int32, Int32, Int32, Int32, Int32, Int32, System.String, IntPtr, MS.Win32.HwndWrapperHook[])
at System.Windows.Threading.Dispatcher..ctor()
at System.Windows.Threading.Dispatcher.get_CurrentDispatcher()
at StickyNotes.Wpf.WorkingAreaHelper.Dispose()
at StickyNotes.Wpf.WorkingAreaHelper.Finalize()

System errors:
=============
Error: (12/07/2014 02:47:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Сбой при запуске службы "TicnoIndexator" из-за ошибки
%%2

Error: (12/07/2014 02:47:30 PM) (Source: 0) (EventID: 4191) (User: )
Description: TCPIP\Parameters\Adapters\NDISWANIP

Error: (12/07/2014 02:45:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Служба "Служба шлюза уровня приложения" неожиданно прервана. Это произошло (раз): 1.

Error: (12/07/2014 02:45:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Служба "TicnoIndexator" неожиданно прервана. Это произошло (раз): 1.

Error: (12/07/2014 02:45:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Служба "Служба индексирования" неожиданно прервана. Это произошло (раз): 1.

Error: (12/07/2014 02:45:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Служба Диспетчер очереди печати была неожиданно завершена. Это произошло 1 раз(а). Следующее корректирующее действие будет предпринято через 60000 мсек: Перезапуск службы.

Error: (12/07/2014 02:45:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Служба "SerialKeys" неожиданно прервана. Это произошло (раз): 1.

Error: (12/07/2014 10:05:31 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Сбой при загрузке драйвера(ов) перезагрузки или запуска системы:
F06DEFF2-5B9C-490D-910F-35D3A9119622

Error: (12/07/2014 10:05:31 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Служба "TicnoSearch" зависла при запуске.

Error: (12/07/2014 10:05:29 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Служба "TicnoIndexator" зависла при запуске.

Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Processor: AMD Athlon(tm) Processor 2650e
Percentage of memory in use: 48%
Total physical RAM: 1790.42 MB
Available physical RAM: 928.06 MB
Total Pagefile: 3684.07 MB
Available Pagefile: 2814.55 MB
Total Virtual: 2047.88 MB
Available Virtual: 1928.03 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:79.63 GB) (Free:46.21 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive g: () (Fixed) (Total:292.98 GB) (Free:287.87 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 372.6 GB) (Disk ID: 3682CA0B)
Partition 1: (Active) - (Size=79.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=293 GB) - (Type=07 NTFS)

==================== End Of Log ============================

#11 Příspěvek od **altrok** » 07 pro 2014 15:26

Log z frst.txt neni cely (chybi zhruba prvni polovina). Zaslete ji prosim take

Eva71 · #12 Příspěvek od **Eva71** » 07 pro 2014 15:35

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-12-2014 01
Ran by Ева (administrator) on EVA on 07-12-2014 15:16:47
Running from C:\Documents and Settings\Ева\Рабочий стол
Loaded Profile: Ева (Available profiles: Ева & Администратор)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Русский
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Корпорация Майкрософт) C:\WINDOWS\system32\smss.exe
(Корпорация Майкрософт) C:\WINDOWS\system32\winlogon.exe
(Корпорация Майкрософт) C:\WINDOWS\system32\services.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Корпорация Майкрософт) C:\WINDOWS\explorer.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\WINDOWS\system32\skeys.exe
(Корпорация Майкрософт) C:\WINDOWS\system32\notepad.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AIMP DevTeam) G:\AIMP3\AIMP3.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2014-12-07] (AVAST Software)
HKLM\...\Winlogon: [Userinit] C:\WINDOWS\system32\userinit.exe,SKEYS /I,
HKLM\...\Winlogon: [Shell] Explorer.exe [1574400 2009-12-31] (Корпорация Майкрософт)
HKLM\...\Winlogon: [UIHost] C:\WINDOWS\system32\logonui.exe [3893760 2014-07-15] (Корпорация Майкрософт)
Winlogon\Notify\crypt32chain: C:\WINDOWS\system32\crypt32.dll (Корпорация Майкрософт)
Winlogon\Notify\cscdll: C:\WINDOWS\system32\cscdll.dll (Корпорация Майкрософт)
Winlogon\Notify\ScCertProp: C:\WINDOWS\system32\wlnotify.dll (Корпорация Майкрософт)
Winlogon\Notify\Schedule: C:\WINDOWS\system32\wlnotify.dll (Корпорация Майкрософт)
Winlogon\Notify\sclgntfy: C:\WINDOWS\system32\sclgntfy.dll (Корпорация Майкрософт)
Winlogon\Notify\SensLogn: C:\WINDOWS\system32\WlNotify.dll (Корпорация Майкрософт)
Winlogon\Notify\termsrv: C:\WINDOWS\system32\wlnotify.dll (Корпорация Майкрософт)
Winlogon\Notify\wlballoon: C:\WINDOWS\system32\wlnotify.dll (Корпорация Майкрософт)
HKLM\...\Policies\Explorer: [NoRemoteRecursiveEvents] 1
HKU\S-1-5-19\...\Run: [VisualTaskTips] => C:\Program Files\VisualTaskTips\VisualTaskTips.exe [65536 2008-06-23] (VisualTaskTips.com)
HKU\S-1-5-19\...\RunOnce: [IE8_01] => regsvr32 /s /n /i:u shell32
HKU\S-1-5-19\...\RunOnce: [IE8_02] => rundll32 advpack.dll,LaunchINFSectionEx IE8int.inf,AfterUserStart,,4,N
HKU\S-1-5-19\...\Policies\system: [NoInternetOpenWith] 1
HKU\S-1-5-20\...\Run: [VisualTaskTips] => C:\Program Files\VisualTaskTips\VisualTaskTips.exe [65536 2008-06-23] (VisualTaskTips.com)
HKU\S-1-5-20\...\RunOnce: [IE8_01] => regsvr32 /s /n /i:u shell32
HKU\S-1-5-20\...\RunOnce: [IE8_02] => rundll32 advpack.dll,LaunchINFSectionEx IE8int.inf,AfterUserStart,,4,N
HKU\S-1-5-20\...\Policies\system: [NoInternetOpenWith] 1
HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\Policies\system: [NoInternetOpenWith] 1
HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\MountPoints2: {5d2d6c40-0b7e-11e4-9dba-88861d580809} - J:\RunThis.exe
HKU\S-1-5-18\...\Run: [VisualTaskTips] => C:\Program Files\VisualTaskTips\VisualTaskTips.exe [65536 2008-06-23] (VisualTaskTips.com)
HKU\S-1-5-18\...\RunOnce: [IE8_01] => regsvr32 /s /n /i:u shell32
HKU\S-1-5-18\...\RunOnce: [IE8_02] => rundll32 advpack.dll,LaunchINFSectionEx IE8int.inf,AfterUserStart,,4,N
HKU\S-1-5-18\...\Policies\system: [NoInternetOpenWith] 1
SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - %SystemRoot%\system32\shell32.dll (Корпорация Майкрософт)
SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - %SystemRoot%\system32\shell32.dll (Корпорация Майкрософт)
SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Корпорация Майкрософт)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [Offline Files] -> {750fdf0e-2a26-11d1-a3ea-080036587f03} => C:\WINDOWS\System32\cscui.dll (Корпорация Майкрософт)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/en-us/?pc=UP97&ocid=UP97DHP
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://www.seznam.cz/?clid=22668
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKLM -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://www.bing.com/search?FORM=UP97DF& ... -SearchBox
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {058C66B2-4CB7-4EFD-BC18-D2ACA9E04F73} URL = http://ru.wikipedia.org/wiki/Special:Se ... earchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://www.bing.com/search?FORM=UP97DF& ... -SearchBox
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {368BE5A3-91B2-45E2-BC65-D65C3D0B8E9B} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {4264EE74-5D05-4206-AE86-A0C245D79380} URL = http://www.google.ru/search?hl=ru&q={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {72724C58-B2DC-4F6B-B377-BBD98BBD432A} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {8A244612-A1F7-11E0-95C0-E71F4824019B} URL = http://badoo.com/startpage/?source=bsb&q={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {95D52D85-4DFA-48C2-9C85-2CB4BB0ECB2C} URL = http://price.ru/enter?from=oss&pnam={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {95F663C0-C370-4955-8B39-63069DB1F6C0} URL = http://www.yandex.ru/yandsearch?stype=& ... earchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {F857121E-A9E5-4fb4-8C54-C2851C5F22C9} URL = http://search.ticno.com/?c=t&q={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {FA6CC280-3AEA-4DC3-9C5B-9B729779EC31} URL = http://search.microsoft.com/results.asp ... earchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Корпорация Майкрософт)
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Корпорация Майкрософт)
Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Корпорация Майкрософт)
Winsock: Catalog5 01 %SystemRoot%\System32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog5 03 %SystemRoot%\System32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 01 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 02 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 03 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 04 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 05 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 06 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 07 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 08 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 09 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 10 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 11 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 12 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Winsock: Catalog9 13 %SystemRoot%\system32\mswsock.dll [247296] (Корпорация Майкрософт)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Ева\Application Data\Mozilla\Firefox\Profiles\gsimab0e.default
FF DefaultSearchUrl: hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Seznam
FF SearchEngineOrder.3: Bing
FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
FF DefaultSearchEngine: Bing
FF SelectedSearchEngine: Bing
FF Homepage: hxxp://www.msn.com/en-us/?pc=UP97&ocid=UP97DHP ... -2014.html
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_239.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Documents and Settings\Ева\Application Data\Mozilla\Firefox\Profiles\gsimab0e.default\searchplugins\badoo.xml
FF SearchPlugin: C:\Documents and Settings\Ева\Application Data\Mozilla\Firefox\Profiles\gsimab0e.default\searchplugins\seznam-avast.xml
FF SearchPlugin: C:\Documents and Settings\Ева\Application Data\Mozilla\Firefox\Profiles\gsimab0e.default\searchplugins\ticno.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mailru.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\ozonru.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\priceru.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yandex-slovari.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yandex.xml
FF Extension: tabs - C:\Documents and Settings\Ева\Application Data\Mozilla\Firefox\Profiles\gsimab0e.default\Extensions\tabs@ticno.com [2014-10-26]
FF Extension: Google™ Translator - C:\Documents and Settings\Ева\Application Data\Mozilla\Firefox\Profiles\gsimab0e.default\Extensions\jid1-dgnIBwQga0SIBw@jetpack.xpi [2014-07-15]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\elemhidehelper@adblockplus.org [2014-11-13]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2014-11-13]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{dc572301-7619-498c-a57d-39143191b318} [2014-11-13]
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2014-07-14]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-07-15]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-26]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

Chrome:
=======
CHR HomePage: Profile 1 -> hxxp://www.google.cz./
CHR StartupUrls: Profile 1 -> "hxxp://search.conduit.com/?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&ISID=MD82BB129-8304-4E09-BDCF-AE7F331C176F&SearchSource=55&CUI=&UM=5&UP=SPC4324327-41F0-486C-8967-D23DA20B60E4&SSPV=", "hxxp://seznam.cz/"
CHR DefaultSuggestURL: Profile 1 -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-17]
CHR Extension: (Disk Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-17]
CHR Extension: (Seznam Lištička - Email) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-07-17]
CHR Extension: (Seznam Lištička - Slovník) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-07-17]
CHR Extension: (YouTube) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-17]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-17]
CHR Extension: (PasswordBox - Free Password Manager) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dljbcjbfojhlfhgenhepllagfecdpchb [2014-07-17]
CHR Extension: (AdBlock) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-07-17]
CHR Extension: (Clock Radio) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jfackcppbegjiloeomjijaeiikchjfdc [2014-07-21]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-17]
CHR Extension: (TabMaster) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\obehagdlnhmkdgedpghmjanndhoadmen [2014-10-26]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-07-17]
CHR Extension: (Gmail) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-17]
CHR Profile: C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1
CHR Extension: (Překladač Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2014-10-17]
CHR Extension: (Prezentace Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-15]
CHR Extension: (Angry Birds) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2014-10-17]
CHR Extension: (ShopGlider) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\amlaangphhocoadfbogkjfomfceioeaj [2014-10-17]
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-15]
CHR Extension: (Disk Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-15]
CHR Extension: (Seznam Lištička - Email) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2014-09-15]
CHR Extension: (Seznam Lištička - Slovník) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2014-09-15]
CHR Extension: (YouTube) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-15]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-15]
CHR Extension: (PasswordBox - Free Password Manager) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\dljbcjbfojhlfhgenhepllagfecdpchb [2014-09-15]
CHR Extension: (Torrent Turbo Search App) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\eegbffmjdkflkcfncpfjjbggbdlnbdif [2014-10-17]
CHR Extension: (Kalendář Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2014-10-17]
CHR Extension: (bílý šum) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\ejkjpdnomgodmagfmhojepjlajpoicip [2014-10-17]
CHR Extension: (Tabulky Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-15]
CHR Extension: (Oběšence Deluxe) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\fhfldafmihkemlfaolfgmppbafmappjj [2014-10-17]
CHR Extension: (Hodiny) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2014-10-17]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-10-26]
CHR Extension: (Foursquare Maps) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\iapagnfaodiddddbbdjkkadbndimimkb [2014-10-17]
CHR Extension: (Daily Alarms) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\idhpdfgpkffmfckogmmekjofaddimdni [2014-10-17]
CHR Extension: (Valuid - Inzeráty zdarma) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\ifgmhhkblhlclhfmbhgagloflnkekmkd [2014-10-17]
CHR Extension: (Quick Earth) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\khodocggeplgfhppgagfdpbjkniadmdh [2014-10-17]
CHR Extension: (Alarm Clock Radio) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\kipdhcpepbpjaoggihaloebfjfafagmi [2014-10-17]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-11-22]
CHR Extension: (Mapy Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-10-17]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-15]
CHR Extension: (Picky Wallpapers) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\odklcfojpedohplkimfdpcamkjnhanaj [2014-10-17]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-09-15]
CHR Extension: (Online Music Alarm Clock) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\pblohfmipkhnjcgpoamnmjelcajhpcjg [2014-10-17]
CHR Extension: (Gmail) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-15]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-07]
CHR HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - No Path
CHR HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - No Path

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 2GISUpdateService; C:\Program Files\2gis\3.0\2GISUpdateService.exe [3764760 2014-09-30] (ООО ДубльГИС)
S3 AppMgmt; C:\WINDOWS\System32\appmgmts.dll [171008 2008-04-15] (Корпорация Майкрософт)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-07] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [104416 2014-12-07] (AVAST Software)
R3 BITS; C:\WINDOWS\system32\qmgr.dll [409088 2008-04-15] (Корпорация Майкрософт)
S4 ClipSrv; C:\WINDOWS\system32\clipsrv.exe [47616 2009-12-31] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\WINDOWS\System32\dhcpcsvc.dll [126464 2008-04-15] (Корпорация Майкрософт)
S3 dmadmin; C:\WINDOWS\System32\dmadmin.exe [224768 2009-12-31] (Корпорация Microsoft и VERITAS Software) [File not signed]
R2 dmserver; C:\WINDOWS\System32\dmserver.dll [24064 2008-04-15] (Корпорация Майкрософт)
R2 Dnscache; C:\WINDOWS\System32\dnsrslvr.dll [45568 2009-12-31] (Корпорация Майкрософт)
R2 Eventlog; C:\WINDOWS\system32\services.exe [111104 2009-12-31] (Корпорация Майкрософт)
R3 FastUserSwitchingCompatibility; C:\WINDOWS\System32\shsvcs.dll [135680 2009-12-31] (Корпорация Майкрософт) [File not signed]
S3 ImapiService; C:\WINDOWS\system32\imapi.exe [150528 2008-04-15] (Корпорация Майкрософт)
S4 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153376 2014-07-14] (Sun Microsystems, Inc.)
S3 MSDTC; C:\WINDOWS\system32\msdtc.exe [20480 2009-12-31] (Microsoft Corporation) [File not signed]
S4 NetDDE; C:\WINDOWS\system32\netdde.exe [113664 2008-04-15] (Корпорация Майкрософт)
S4 NetDDEdsdm; C:\WINDOWS\system32\netdde.exe [113664 2008-04-15] (Корпорация Майкрософт)
R3 Netman; C:\WINDOWS\System32\netman.dll [198144 2008-04-15] (Корпорация Майкрософт)
R3 Nla; C:\WINDOWS\System32\mswsock.dll [247296 2009-12-31] (Корпорация Майкрософт)
S3 NtmsSvc; C:\WINDOWS\system32\ntmssvc.dll [436736 2008-04-15] (Корпорация Майкрософт)
R2 PlugPlay; C:\WINDOWS\system32\services.exe [111104 2009-12-31] (Корпорация Майкрософт)
S3 RDSessMgr; C:\WINDOWS\system32\sessmgr.exe [141824 2008-04-15] (Корпорация Майкрософт)
S3 SCardSvr; C:\WINDOWS\System32\SCardSvr.exe [96768 2008-04-15] (Корпорация Майкрософт)
R2 Schedule; C:\WINDOWS\system32\schedsvc.dll [193024 2008-04-15] (Корпорация Майкрософт)
R2 seclogon; C:\WINDOWS\System32\seclogon.dll [18944 2008-04-15] (Корпорация Майкрософт)
R2 SerialKeys; C:\WINDOWS\system32\skeys.exe [26112 2008-04-15] (Microsoft Corporation)
R2 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [330752 2009-12-31] (Корпорация Майкрософт)
R2 ShellHWDetection; C:\WINDOWS\System32\shsvcs.dll [135680 2009-12-31] (Корпорация Майкрософт) [File not signed]
S2 srservice; C:\WINDOWS\system32\srsvc.dll [171008 2008-04-15] (Корпорация Майкрософт)
R2 stisvc; C:\WINDOWS\system32\wiaservc.dll [349696 2009-12-31] (Корпорация Майкрософт) [File not signed]
S3 SysmonLog; C:\WINDOWS\system32\smlogsvc.exe [91648 2008-04-15] (Корпорация Майкрософт)
R3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [257024 2009-12-31] (Корпорация Майкрософт) [File not signed]
R3 TermService; C:\WINDOWS\System32\termsrv.dll [297472 2009-12-31] (Корпорация Майкрософт)
R2 Themes; C:\WINDOWS\System32\shsvcs.dll [135680 2009-12-31] (Корпорация Майкрософт) [File not signed]
S4 TlntSvr; C:\WINDOWS\system32\tlntsvr.exe [73216 2008-04-15] (Корпорация Майкрософт)
S3 upnphost; C:\WINDOWS\System32\upnphost.dll [186368 2008-04-15] (Корпорация Майкрософт)
S3 VSS; C:\WINDOWS\System32\vssvc.exe [290304 2008-04-15] (Корпорация Майкрософт)
R2 W32Time; C:\WINDOWS\system32\w32time.dll [175616 2009-12-31] (Корпорация Майкрософт)
R2 winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [145408 2008-04-15] (Корпорация Майкрософт)
S3 Wmi; C:\WINDOWS\System32\advapi32.dll [687616 2009-12-31] (Корпорация Майкрософт)
S3 WmiApSrv; C:\WINDOWS\system32\wbem\wmiapsrv.exe [126464 2008-04-15] (Корпорация Майкрософт)
R2 WZCSVC; C:\WINDOWS\System32\wzcsvc.dll [635392 2009-12-23] (Корпорация Майкрософт) [File not signed]
S2 TicnoIndexator; C:\Program Files\Ticno\Indexator\SearchService.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 ACPI; C:\WINDOWS\System32\DRIVERS\ACPI.sys [188288 2008-04-15] (Корпорация Майкрософт)
S4 ACPIEC; C:\WINDOWS\system32\Drivers\ACPIEC.sys [11776 2008-04-15] (Корпорация Майкрософт)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [36864 2006-07-02] (Advanced Micro Devices)
S1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] (Advanced Micro Devices)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-12-07] ()
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [26136 2014-12-07] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [70384 2014-12-07] (AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2014-12-07] (ALWIL Software)
R0 aswNdis2; C:\WINDOWS\system32\Drivers\aswNdis2.sys [253640 2014-12-07] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55240 2014-12-07] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-12-07] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787800 2014-12-07] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [423784 2014-12-07] (AVAST Software)
S3 aswTap; C:\WINDOWS\System32\DRIVERS\aswTap.sys [35144 2014-10-26] (The OpenVPN Project)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57928 2014-12-07] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [206248 2014-12-07] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S4 dmboot; C:\WINDOWS\System32\drivers\dmboot.sys [799872 2009-12-31] (Корпорация Microsoft и VERITAS Software) [File not signed]
R0 dmio; C:\WINDOWS\System32\drivers\dmio.sys [153600 2008-04-15] (Корпорация Microsoft и VERITAS Software)
R3 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-07-15] (Disc Soft Ltd)
R1 Fips; C:\WINDOWS\system32\Drivers\Fips.sys [44544 2008-04-15] (Корпорация Майкрософт)
R0 Ftdisk; C:\WINDOWS\System32\DRIVERS\ftdisk.sys [125440 2008-04-15] (Корпорация Майкрософт)
R1 i8042prt; C:\WINDOWS\System32\DRIVERS\i8042prt.sys [53120 2008-04-15] (Корпорация Майкрософт)
R0 isapnp; C:\WINDOWS\System32\DRIVERS\isapnp.sys [37504 2008-04-15] (Корпорация Майкрософт)
R1 Kbdclass; C:\WINDOWS\System32\DRIVERS\kbdclass.sys [24832 2008-04-15] (Корпорация Майкрософт)
S3 Modem; C:\WINDOWS\system32\Drivers\Modem.sys [30208 2009-12-31] (Корпорация Майкрософт)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R1 Mouclass; C:\WINDOWS\System32\DRIVERS\mouclass.sys [23296 2009-12-31] (Корпорация Майкрософт)
R3 mouhid; C:\WINDOWS\System32\DRIVERS\mouhid.sys [12160 2009-12-31] (Корпорация Майкрософт)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [70912 2010-03-04] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [168040 2010-04-08] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2010-03-04] (NVIDIA Corporation)
R3 PAC7302; C:\WINDOWS\System32\DRIVERS\PAC7302.SYS [461824 2009-04-28] (PixArt Imaging Inc.)
S3 Parport; C:\WINDOWS\system32\Drivers\Parport.sys [80128 2009-12-31] (Корпорация Майкрософт)
S2 ParVdm; C:\WINDOWS\system32\Drivers\ParVdm.sys [6912 2008-04-15] (Корпорация Майкрософт)
R0 PCI; C:\WINDOWS\System32\DRIVERS\pci.sys [68480 2008-04-15] (Корпорация Майкрософт)
R0 PCIIde; C:\WINDOWS\System32\DRIVERS\pciide.sys [3328 2008-04-15] (Корпорация Майкрософт)
S4 Pcmcia; C:\WINDOWS\system32\Drivers\Pcmcia.sys [120192 2008-04-15] (Корпорация Майкрософт)
R1 redbook; C:\WINDOWS\System32\DRIVERS\redbook.sys [58368 2008-04-14] (Корпорация Майкрософт)
S2 Serial; C:\WINDOWS\system32\Drivers\Serial.sys [65024 2008-04-15] (Корпорация Майкрософт)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [473656 2014-07-14] (Duplex Secure Ltd.)
S4 sr; C:\WINDOWS\system32\DRIVERS\sr.sys [73472 2008-04-15] (Корпорация Майкрософт)
S3 StillCam; C:\WINDOWS\System32\DRIVERS\serscan.sys [7424 2008-05-30] (Корпорация Майкрософт)
R0 VolSnap; C:\WINDOWS\system32\Drivers\VolSnap.sys [51968 2008-04-15] (Корпорация Майкрософт)
S1 AntiLog32; \??\C:\WINDOWS\system32\drivers\AntiLog32.sys [X]
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2011-10-24] (Huawei Technologies Co., Ltd.)
S4 IntelIde; No ImagePath
U5 Sdbus; C:\Windows\System32\Drivers\Sdbus.sys [80384 2009-12-31] (Microsoft Corporation)
S3 StarOpen; No ImagePath
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-07 15:16 - 2014-12-07 15:17 - 00037231 _____ () C:\Documents and Settings\Ева\Рабочий стол\FRST.txt
2014-12-07 15:15 - 2014-12-07 15:16 - 00000000 ____D () C:\FRST
2014-12-07 15:15 - 2014-12-07 15:15 - 00015327 _____ () C:\Documents and Settings\Ева\Plocha
2014-12-07 15:13 - 2014-12-07 15:13 - 01111040 _____ (Farbar) C:\Documents and Settings\Ева\Рабочий стол\FRST.exe
2014-12-07 15:13 - 2014-12-07 15:13 - 00112640 _____ (forum.viry.cz) C:\Documents and Settings\Ева\Рабочий стол\FRSTLauncher.exe
2014-12-07 15:07 - 2014-12-07 15:15 - 00029696 _____ () C:\Documents and Settings\Ева\Local Settings\Application Data\MSGBOX.EXE
2014-12-07 14:39 - 2014-12-07 14:45 - 00000000 ____D () C:\AdwCleaner
2014-12-07 14:39 - 2014-12-07 14:39 - 00000055 _____ () C:\AdwCleanerDebug.txt
2014-12-07 14:38 - 2014-12-07 14:38 - 02153472 _____ () C:\Documents and Settings\Ева\Рабочий стол\adwcleaner_4.104.exe
2014-12-07 12:22 - 2014-12-07 12:22 - 00000784 _____ () C:\Documents and Settings\All Users\Рабочий стол\Malwarebytes Anti-Malware.lnk
2014-12-07 12:22 - 2014-12-07 12:22 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-12-07 12:22 - 2014-12-07 12:22 - 00000000 ____D () C:\Documents and Settings\Ева\Application Data\Malwarebytes
2014-12-07 12:22 - 2014-12-07 12:22 - 00000000 ____D () C:\Documents and Settings\All Users\Главное меню\Программы\Malwarebytes' Anti-Malware
2014-12-07 12:22 - 2014-12-07 12:22 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-12-07 12:22 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-12-07 10:02 - 2014-12-07 10:02 - 00291352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-12-07 10:02 - 2014-12-07 10:02 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-12-07 10:02 - 2014-12-07 10:01 - 00253640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2014-12-07 10:02 - 2014-12-07 10:01 - 00026136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2014-12-07 10:01 - 2014-12-07 10:01 - 00012112 _____ (ALWIL Software) C:\WINDOWS\system32\Drivers\aswNdis.sys
2014-12-06 00:32 - 2014-12-07 11:47 - 00000000 ____D () C:\Program Files\trend micro
2014-12-06 00:32 - 2014-12-06 00:40 - 00000000 ____D () C:\rsit
2014-12-04 21:14 - 2014-12-04 21:15 - 00010360 _____ () C:\WINDOWS\ocgen.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00006792 _____ () C:\WINDOWS\FaxSetup.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00006725 _____ () C:\WINDOWS\iis6.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00004591 _____ () C:\WINDOWS\tsoc.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00002508 _____ () C:\WINDOWS\comsetup.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00001917 _____ () C:\WINDOWS\imsins.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00001806 _____ () C:\WINDOWS\ntdtcsetup.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00001592 _____ () C:\WINDOWS\netfxocm.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00000719 _____ () C:\WINDOWS\MedCtrOC.log
2014-12-04 21:14 - 2014-12-04 21:15 - 00000311 _____ () C:\WINDOWS\tabletoc.log
2014-12-04 21:14 - 2014-12-04 21:14 - 00001934 _____ () C:\WINDOWS\msmqinst.log
2014-12-04 19:23 - 2014-12-04 19:23 - 01107968 _____ () C:\Documents and Settings\Ева\Рабочий стол\RSIT.exe
2014-12-04 12:22 - 2014-12-04 12:22 - 00000000 ____D () C:\Documents and Settings\All Users\Главное меню\Программы\AIMP3
2014-12-04 12:21 - 2014-12-07 15:16 - 00000000 ____D () C:\Documents and Settings\Ева\Application Data\AIMP3
2014-12-02 22:20 - 2014-12-03 06:29 - 00000000 ____D () C:\Program Files\Mozilla Thunderbird
2014-12-02 16:34 - 2014-12-02 16:34 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-12-02 16:34 - 2014-12-02 16:34 - 00000000 ____D () C:\Documents and Settings\All Users\Главное меню\Программы\Skype
2014-12-02 13:58 - 2014-12-07 14:31 - 00000000 ____D () C:\Program Files\AntiLogger
2014-12-02 13:58 - 2014-12-02 13:58 - 00000000 ____D () C:\Documents and Settings\Ева\Local Settings\Application Data\Zemana
2014-11-29 14:19 - 2014-11-29 14:19 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Particles
2014-11-29 14:08 - 2014-11-29 14:08 - 00000000 ____D () C:\Documents and Settings\All Users\Главное меню\Программы\Bratr a sestra - smrti navzdory
2014-11-29 14:02 - 2014-11-29 14:08 - 00000000 ____D () C:\Program Files\Bratr a sestra - smrti navzdory
2014-11-29 13:18 - 2014-11-29 13:18 - 00015921 _____ () C:\Documents and Settings\Ева\Мои документы\[CzT]Bratr_a_sestra_smrti_navzdory_2014_CZ_.torrent
2014-11-22 19:26 - 2014-12-02 08:28 - 00001696 _____ () C:\WINDOWS\setupact.log
2014-11-22 19:26 - 2014-11-22 19:26 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-11-17 23:57 - 2014-12-06 18:43 - 00429040 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2014-11-13 21:18 - 2014-11-13 21:19 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-11-09 00:43 - 2014-11-09 00:43 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\NannyMania
2014-11-09 00:41 - 2014-11-09 00:41 - 00001686 _____ () C:\Documents and Settings\Ева\Главное меню\MyPlayCity Games.lnk
2014-11-09 00:41 - 2014-11-09 00:41 - 00000000 ____D () C:\Documents and Settings\All Users\Главное меню\Программы\MyPlayCity.com
2014-11-09 00:40 - 2014-11-09 00:40 - 00000000 ____D () C:\Program Files\MyPlayCity.com
2014-11-08 23:14 - 2014-12-07 10:02 - 00045904 _____ () C:\WINDOWS\setupapi.log

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-07 15:17 - 2014-07-14 18:14 - 00000000 ____D () C:\Documents and Settings\Ева\Local Settings\Temp
2014-12-07 15:16 - 2014-07-14 18:14 - 00000000 ____D () C:\Documents and Settings\Ева\Рабочий стол
2014-12-07 15:15 - 2014-07-14 18:14 - 00000000 ____D () C:\Documents and Settings\Ева
2014-12-07 15:01 - 2014-07-17 08:36 - 00000956 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-07 14:52 - 2014-10-26 17:46 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-12-07 14:51 - 2014-07-14 19:11 - 01234338 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-07 14:51 - 2008-04-15 13:00 - 00538904 _____ () C:\WINDOWS\system32\perfh019.dat
2014-12-07 14:51 - 2008-04-15 13:00 - 00099898 _____ () C:\WINDOWS\system32\perfc019.dat
2014-12-07 14:48 - 2014-07-14 17:19 - 02090112 _____ () C:\WINDOWS\WindowsUpdate.log
2014-12-07 14:47 - 2014-10-25 23:57 - 00000218 _____ () C:\WINDOWS\Tasks\Уведомлением о завершении поддержки Microsoft Windows XP при входе.job
2014-12-07 14:47 - 2014-07-17 08:36 - 00000952 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-07 14:47 - 2014-07-14 19:13 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-12-07 14:47 - 2014-07-14 19:13 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-12-07 14:47 - 2014-07-14 18:13 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-07 14:46 - 2014-07-14 18:14 - 00000178 ___SH () C:\Documents and Settings\Ева\ntuser.ini
2014-12-07 14:46 - 2014-07-14 18:13 - 00032570 _____ () C:\WINDOWS\SchedLgU.Txt
2014-12-07 14:45 - 2014-07-14 18:14 - 00000000 ___RD () C:\Documents and Settings\Ева\Главное меню\Программы
2014-12-07 14:31 - 2014-07-14 19:10 - 00000000 ___RD () C:\Documents and Settings\All Users\Главное меню\Программы
2014-12-07 12:22 - 2014-07-14 19:10 - 00000000 ____D () C:\Documents and Settings\All Users\Рабочий стол
2014-12-07 11:34 - 2014-09-16 19:36 - 00000000 ____D () C:\Documents and Settings\Ева\Рабочий стол\vse z plohi
2014-12-07 10:59 - 2014-07-14 18:14 - 00000000 ___RD () C:\Documents and Settings\Ева\Мои документы
2014-12-07 10:35 - 2014-09-23 19:40 - 00048640 ___SH () C:\Documents and Settings\Ева\Рабочий стол\Thumbs.db
2014-12-07 10:28 - 2014-07-15 15:37 - 00701104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-12-07 10:28 - 2014-07-15 15:37 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-12-07 10:28 - 2014-07-15 15:37 - 00000896 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-12-07 10:02 - 2014-10-26 17:46 - 00787800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00423784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00206248 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00070384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00057928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00055240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-12-07 10:02 - 2014-10-26 17:46 - 00000000 ____D () C:\Documents and Settings\All Users\Главное меню\Программы\AVAST Software
2014-12-06 18:42 - 2014-07-14 18:34 - 00000000 ____D () C:\Documents and Settings\Ева\Application Data\Skype
2014-12-06 14:16 - 2014-07-15 16:39 - 00021391 _____ () C:\WINDOWS\FontData.fdb
2014-12-05 21:58 - 2014-10-25 23:57 - 00000212 _____ () C:\WINDOWS\Tasks\Уведомление о завершении поддержки Microsoft Windows XP ежемесячно.job
2014-12-05 21:50 - 2014-07-15 14:51 - 00000000 ____D () C:\Documents and Settings\Ева\Мои документы\Загрузки
2014-12-04 12:26 - 2014-07-15 15:15 - 00000000 ____D () C:\Documents and Settings\Ева\Application Data\vlc
2014-12-03 19:50 - 2014-07-15 14:52 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-12-02 22:05 - 2014-07-15 16:31 - 00000256 _____ () C:\Documents and Settings\All Users\tic.lic
2014-12-02 16:34 - 2014-08-06 19:00 - 00000000 ___RD () C:\Program Files\Skype
2014-12-02 16:34 - 2014-07-14 18:31 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
2014-11-30 21:05 - 2008-04-15 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-11-29 14:16 - 2014-09-19 15:59 - 00000000 ____D () C:\Documents and Settings\Ева\Application Data\DominiGames
2014-11-29 13:35 - 2014-07-14 18:31 - 00000000 ____D () C:\Documents and Settings\Ева\Application Data\uTorrent
2014-11-22 08:44 - 2014-08-31 14:08 - 00000000 ___RD () C:\Documents and Settings\Ева\Мои документы\Disk Google
2014-11-21 00:15 - 2014-07-21 14:33 - 00002315 _____ () C:\Documents and Settings\All Users\Главное меню\Программы\Adobe Reader XI.lnk
2014-11-12 07:07 - 2014-07-14 18:20 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Microsoft Help
2014-11-12 07:06 - 2014-10-26 16:08 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-11-12 06:58 - 2014-10-26 16:08 - 100445232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-11-09 17:47 - 2014-10-12 21:59 - 00000000 ____D () C:\Documents and Settings\Ева\Мои документы\Goša ornamenty
2014-11-09 00:41 - 2014-07-14 18:14 - 00000000 ___RD () C:\Documents and Settings\Ева\Главное меню

Some content of TEMP:
====================
C:\Documents and Settings\Ева\Local Settings\Temp\1120_sof_sweet-page.exe
C:\Documents and Settings\Ева\Local Settings\Temp\BuenoSearchTB.exe
C:\Documents and Settings\Ева\Local Settings\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp3_93j9.dll
C:\Documents and Settings\Ева\Local Settings\Temp\DTLite4491-0356.exe
C:\Documents and Settings\Ева\Local Settings\Temp\InstHelper.exe
C:\Documents and Settings\Ева\Local Settings\Temp\pcspeedup.exe
C:\Documents and Settings\Ева\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Ева\Local Settings\Temp\SkypeSetup.exe
C:\Documents and Settings\Ева\Local Settings\Temp\sqlite3.dll
C:\Documents and Settings\Ева\Local Settings\Temp\StickyNotesUpdate.exe
C:\Documents and Settings\Ева\Local Settings\Temp\utt3A7.tmp.exe
C:\Documents and Settings\Ева\Local Settings\Temp\vlc-2.1.5-win32.exe
C:\Documents and Settings\Ева\Local Settings\Temp\YandexPackSetup.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe
[2009-12-31 16:21] - [2009-12-31 16:21] - 1574400 ____A (Корпорация Майкрософт) cca55cd69441bfe961a665a15f9620f6

C:\WINDOWS\explorer.exe No Company Name <===== ATTENTION!

C:\WINDOWS\system32\winlogon.exe
[2009-12-31 16:25] - [2009-12-31 16:25] - 0616448 ____A (Корпорация Майкрософт) 3731c34b20e49a92e6a1185dae2793d5

C:\WINDOWS\system32\winlogon.exe No Company Name <===== ATTENTION!

C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll
[2009-12-31 16:25] - [2009-12-31 16:25] - 0632320 ____A (Корпорация Майкрософт) e7ecd4fa070b0beea3c3c7115c5c2f17

C:\WINDOWS\system32\User32.dll No Company Name <===== ATTENTION!

C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

#13 Příspěvek od **altrok** » 07 pro 2014 15:51

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
HKLM\...\Policies\Explorer: [NoRemoteRecursiveEvents] 1
HKU\S-1-5-19\...\Policies\system: [NoInternetOpenWith] 1
HKU\S-1-5-20\...\Policies\system: [NoInternetOpenWith] 1
HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\Policies\system: [NoInternetOpenWith] 1
HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\MountPoints2: {5d2d6c40-0b7e-11e4-9dba-88861d580809} - J:\RunThis.exe
HKU\S-1-5-18\...\Policies\system: [NoInternetOpenWith] 1

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/en-us/?pc=UP97&ocid=UP97DHP
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://www.seznam.cz/?clid=22668
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {058C66B2-4CB7-4EFD-BC18-D2ACA9E04F73} URL = http://ru.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {368BE5A3-91B2-45E2-BC65-D65C3D0B8E9B} URL = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {4264EE74-5D05-4206-AE86-A0C245D79380} URL = http://www.google.ru/search?hl=ru&q={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {72724C58-B2DC-4F6B-B377-BBD98BBD432A} URL = http://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {8A244612-A1F7-11E0-95C0-E71F4824019B} URL = http://badoo.com/startpage/?source=bsb&q={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {95D52D85-4DFA-48C2-9C85-2CB4BB0ECB2C} URL = http://price.ru/enter?from=oss&pnam={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {95F663C0-C370-4955-8B39-63069DB1F6C0} URL = http://www.yandex.ru/yandsearch?stype=&nl=0&text={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {F857121E-A9E5-4fb4-8C54-C2851C5F22C9} URL = http://search.ticno.com/?c=t&q={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {FA6CC280-3AEA-4DC3-9C5B-9B729779EC31} URL = http://search.microsoft.com/results.asp ... g=ru-RU&q={searchTerms}

FF DefaultSearchUrl: hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Seznam
FF SearchEngineOrder.3: Bing
FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
FF DefaultSearchEngine: Bing
FF SelectedSearchEngine: Bing 
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mailru.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\ozonru.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\priceru.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yandex-slovari.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yandex.xml

CHR StartupUrls: Profile 1 -> "hxxp://search.conduit.com/?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&ISID=MD82BB129-8304-4E09-BDCF-AE7F331C176F&SearchSource=55&CUI=&UM=5&UP=SPC4324327-41F0-486C-8967-D23DA20B60E4&SSPV=", "hxxp://seznam.cz/"
CHR DefaultSuggestURL: Profile 1 -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Extension: (ShopGlider) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\amlaangphhocoadfbogkjfomfceioeaj [2014-10-17]
CHR HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - No Path
CHR HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - No Path

S2 TicnoIndexator; C:\Program Files\Ticno\Indexator\SearchService.exe [X]
S4 IntelIde; No ImagePath
S3 StarOpen; No ImagePath
U1 WS2IFSL; No ImagePath

2014-12-07 15:07 - 2014-12-07 15:15 - 00029696 _____ () C:\Documents and Settings\Ева\Local Settings\Application Data\MSGBOX.EXE
2014-12-07 14:39 - 2014-12-07 14:45 - 00000000 ____D () C:\AdwCleaner
2014-12-07 14:39 - 2014-12-07 14:39 - 00000055 _____ () C:\AdwCleanerDebug.txt
2014-12-07 14:38 - 2014-12-07 14:38 - 02153472 _____ () C:\Documents and Settings\Ева\Рабочий стол\adwcleaner_4.104.exe
2014-12-06 00:32 - 2014-12-07 11:47 - 00000000 ____D () C:\Program Files\trend micro
2014-12-06 00:32 - 2014-12-06 00:40 - 00000000 ____D () C:\rsit
2014-12-04 19:23 - 2014-12-04 19:23 - 01107968 _____ () C:\Documents and Settings\Ева\Рабочий стол\RSIT.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Уведомление о завершении поддержки Microsoft Windows XP ежемесячно.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Уведомлением о завершении поддержки Microsoft Windows XP при входе.job => C:\WINDOWS\system32\xp_eos.exe

CMD: del C:\WINDOWS\system32\*.tmp
Hosts:
EmptyTemp:
End

Eva71 · #14 Příspěvek od **Eva71** » 07 pro 2014 16:29

Nejde mi pustit ten fix ,vždy mi vyběhne tabulka s hlášením chyby.
Na ploše nic po restartu nevyběhlo a já nevím co teď.

Eva71 · #15 Příspěvek od **Eva71** » 07 pro 2014 16:38

našla jsem tohle

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 07-12-2014 01
Ran by Ева at 2014-12-07 16:03:54 Run:1
Running from C:\Documents and Settings\Ева\Рабочий стол
Loaded Profile: Ева (Available profiles: Ева & Администратор)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM\...\Policies\Explorer: [NoRemoteRecursiveEvents] 1
HKU\S-1-5-19\...\Policies\system: [NoInternetOpenWith] 1
HKU\S-1-5-20\...\Policies\system: [NoInternetOpenWith] 1
HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\Policies\system: [NoInternetOpenWith] 1
HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\MountPoints2: {5d2d6c40-0b7e-11e4-9dba-88861d580809} - J:\RunThis.exe
HKU\S-1-5-18\...\Policies\system: [NoInternetOpenWith] 1

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/en-us/?pc=UP97&ocid=UP97DHP
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://www.seznam.cz/?clid=22668
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKLM -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://www.bing.com/search?FORM=UP97DF& ... -SearchBox
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {058C66B2-4CB7-4EFD-BC18-D2ACA9E04F73} URL = http://ru.wikipedia.org/wiki/Special:Se ... earchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = http://www.bing.com/search?FORM=UP97DF& ... -SearchBox
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {368BE5A3-91B2-45E2-BC65-D65C3D0B8E9B} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {4264EE74-5D05-4206-AE86-A0C245D79380} URL = http://www.google.ru/search?hl=ru&q={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {72724C58-B2DC-4F6B-B377-BBD98BBD432A} URL = http://search.seznam.cz/?sourceid=quick ... earchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {8A244612-A1F7-11E0-95C0-E71F4824019B} URL = http://badoo.com/startpage/?source=bsb&q={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {95D52D85-4DFA-48C2-9C85-2CB4BB0ECB2C} URL = http://price.ru/enter?from=oss&pnam={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {95F663C0-C370-4955-8B39-63069DB1F6C0} URL = http://www.yandex.ru/yandsearch?stype=& ... earchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {F857121E-A9E5-4fb4-8C54-C2851C5F22C9} URL = http://search.ticno.com/?c=t&q={searchTerms}
SearchScopes: HKU\S-1-5-21-725345543-854245398-1177238915-1003 -> {FA6CC280-3AEA-4DC3-9C5B-9B729779EC31} URL = http://search.microsoft.com/results.asp ... g=ru-RU&q={searchTerms}

FF DefaultSearchUrl: hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Seznam
FF SearchEngineOrder.3: Bing
FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
FF DefaultSearchEngine: Bing
FF SelectedSearchEngine: Bing
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mailru.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\ozonru.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\priceru.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yandex-slovari.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yandex.xml

CHR StartupUrls: Profile 1 -> "hxxp://search.conduit.com/?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&ISID=MD82BB129-8304-4E09-BDCF-AE7F331C176F&SearchSource=55&CUI=&UM=5&UP=SPC4324327-41F0-486C-8967-D23DA20B60E4&SSPV=", "hxxp://seznam.cz/"
CHR DefaultSuggestURL: Profile 1 -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Extension: (ShopGlider) - C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\amlaangphhocoadfbogkjfomfceioeaj [2014-10-17]
CHR HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - No Path
CHR HKU\S-1-5-21-725345543-854245398-1177238915-1003\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - No Path

S2 TicnoIndexator; C:\Program Files\Ticno\Indexator\SearchService.exe [X]
S4 IntelIde; No ImagePath
S3 StarOpen; No ImagePath
U1 WS2IFSL; No ImagePath

2014-12-07 15:07 - 2014-12-07 15:15 - 00029696 _____ () C:\Documents and Settings\Ева\Local Settings\Application Data\MSGBOX.EXE
2014-12-07 14:39 - 2014-12-07 14:45 - 00000000 ____D () C:\AdwCleaner
2014-12-07 14:39 - 2014-12-07 14:39 - 00000055 _____ () C:\AdwCleanerDebug.txt
2014-12-07 14:38 - 2014-12-07 14:38 - 02153472 _____ () C:\Documents and Settings\Ева\Рабочий стол\adwcleaner_4.104.exe
2014-12-06 00:32 - 2014-12-07 11:47 - 00000000 ____D () C:\Program Files\trend micro
2014-12-06 00:32 - 2014-12-06 00:40 - 00000000 ____D () C:\rsit
2014-12-04 19:23 - 2014-12-04 19:23 - 01107968 _____ () C:\Documents and Settings\Ева\Рабочий стол\RSIT.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Уведомление о завершении поддержки Microsoft Windows XP ежемесячно.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Уведомлением о завершении поддержки Microsoft Windows XP при входе.job => C:\WINDOWS\system32\xp_eos.exe

CMD: del C:\WINDOWS\system32\*.tmp
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoRemoteRecursiveEvents => value deleted successfully.
HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Policies\system\\NoInternetOpenWith => value deleted successfully.
HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Policies\system\\NoInternetOpenWith => value deleted successfully.
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Windows\CurrentVersion\Policies\system\\NoInternetOpenWith => value deleted successfully.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5d2d6c40-0b7e-11e4-9dba-88861d580809}" => Key deleted successfully.
"HKCR\CLSID\{5d2d6c40-0b7e-11e4-9dba-88861d580809}" => Key not found.
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Policies\system\\NoInternetOpenWith => value deleted successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main\\Search Bar => value deleted successfully.
HKU\S-1-5-21-725345543-854245398-1177238915-1003\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages => value deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0}" => Key deleted successfully.
"HKCR\CLSID\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0}" => Key not found.
HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{058C66B2-4CB7-4EFD-BC18-D2ACA9E04F73}" => Key deleted successfully.
"HKCR\CLSID\{058C66B2-4CB7-4EFD-BC18-D2ACA9E04F73}" => Key not found.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0}" => Key deleted successfully.
"HKCR\CLSID\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0}" => Key not found.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{368BE5A3-91B2-45E2-BC65-D65C3D0B8E9B}" => Key deleted successfully.
"HKCR\CLSID\{368BE5A3-91B2-45E2-BC65-D65C3D0B8E9B}" => Key not found.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4264EE74-5D05-4206-AE86-A0C245D79380}" => Key deleted successfully.
"HKCR\CLSID\{4264EE74-5D05-4206-AE86-A0C245D79380}" => Key not found.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{72724C58-B2DC-4F6B-B377-BBD98BBD432A}" => Key deleted successfully.
"HKCR\CLSID\{72724C58-B2DC-4F6B-B377-BBD98BBD432A}" => Key not found.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8A244612-A1F7-11E0-95C0-E71F4824019B}" => Key deleted successfully.
"HKCR\CLSID\{8A244612-A1F7-11E0-95C0-E71F4824019B}" => Key not found.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95D52D85-4DFA-48C2-9C85-2CB4BB0ECB2C}" => Key deleted successfully.
"HKCR\CLSID\{95D52D85-4DFA-48C2-9C85-2CB4BB0ECB2C}" => Key not found.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95F663C0-C370-4955-8B39-63069DB1F6C0}" => Key deleted successfully.
"HKCR\CLSID\{95F663C0-C370-4955-8B39-63069DB1F6C0}" => Key not found.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F857121E-A9E5-4fb4-8C54-C2851C5F22C9}" => Key deleted successfully.
"HKCR\CLSID\{F857121E-A9E5-4fb4-8C54-C2851C5F22C9}" => Key not found.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{FA6CC280-3AEA-4DC3-9C5B-9B729779EC31}" => Key deleted successfully.
"HKCR\CLSID\{FA6CC280-3AEA-4DC3-9C5B-9B729779EC31}" => Key not found.
Firefox DefaultSearchUrl deleted successfully.
Firefox SearchEngineOrder.1 deleted successfully.
Firefox SearchEngineOrder.3 deleted successfully.
Firefox Keyword.URL deleted successfully.
Firefox DefaultSearchEngine deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
C:\Program Files\mozilla firefox\browser\searchplugins\default-search.xml => Moved successfully.
C:\Program Files\mozilla firefox\browser\searchplugins\mailru.xml => Moved successfully.
C:\Program Files\mozilla firefox\browser\searchplugins\ozonru.xml => Moved successfully.
C:\Program Files\mozilla firefox\browser\searchplugins\priceru.xml => Moved successfully.
C:\Program Files\mozilla firefox\browser\searchplugins\yandex-slovari.xml => Moved successfully.
C:\Program Files\mozilla firefox\browser\searchplugins\yandex.xml => Moved successfully.
Chrome StartupUrls deleted successfully.
Chrome DefaultSuggestURL deleted successfully.
C:\Documents and Settings\Ева\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Extensions\amlaangphhocoadfbogkjfomfceioeaj => Moved successfully.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd" => Key deleted successfully.
"HKU\S-1-5-21-725345543-854245398-1177238915-1003\SOFTWARE\Google\Chrome\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh" => Key deleted successfully.
TicnoIndexator => Service deleted successfully.
IntelIde => Service deleted successfully.
StarOpen => Service deleted successfully.
WS2IFSL => Service deleted successfully.
C:\Documents and Settings\Ева\Local Settings\Application Data\MSGBOX.EXE => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\AdwCleanerDebug.txt => Moved successfully.
"C:\Documents and Settings\Ева\Рабочий стол\adwcleaner_4.104.exe" => File/Directory not found.
C:\Program Files\trend micro => Moved successfully.
C:\rsit => Moved successfully.
"C:\Documents and Settings\Ева\Рабочий стол\RSIT.exe" => File/Directory not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\WINDOWS\Tasks\Уведомление о завершении поддержки Microsoft Windows XP ежемесячно.job => Moved successfully.
C:\WINDOWS\Tasks\Уведомлением о завершении поддержки Microsoft Windows XP при входе.job => Moved successfully.

========= del C:\WINDOWS\system32\*.tmp =========

========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 1.9 GB temporary data.

The system needed a reboot.

==== End of Fixlog ====

VIRY.CZ

keyllogery v mém počítači

keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači

Re: keyllogery v mém počítači