Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Nežádoucí reklama v prohlížeči

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
spendlik.spidy

Nežádoucí reklama v prohlížeči

#1 Příspěvek od spendlik.spidy »

Dobrý den,
mám problém, který již zde byl nejspíše několikrát řešen, ale nevím zda mohu postupovat již dle řešených podobných témat. Používám prohlížeč Opera ve kterém mi vyskakují nežádoucí okna s reklamou a otevírají se další stránky s podobným reklamním obsahem. Toto se děje pokaždé při načítání nové stránky. Prosím o pomoc při odstranění tohoto viru z pc.

Zde přikládám log :

Logfile of random's system information tool 1.10 (written by random/random)
Run by Petr at 2014-12-09 20:41:21
Microsoft Windows 8.1
System drive C: has 1108 GB (77%) free of 1430 GB
Total RAM: 16349 MB (85% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:41:32, on 9. 12. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
C:\Program Files (x86)\Opera\26.0.1656.32\opera_crashreporter.exe
C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
C:\Program Files (x86)\Techgile\bin\Techgile.expext.exe
C:\Program Files (x86)\Techgile\bin\Techgile.BrowserAdapter.exe
C:\Program Files (x86)\Techgile\bin\Techgile.BOASHelper.exe
C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe
C:\Program Files\trend micro\Petr.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update Techgile - Unknown owner - C:\Program Files (x86)\Techgile\updateTechgile.exe
O23 - Service: Util Techgile - Unknown owner - C:\Program Files (x86)\Techgile\bin\utilTechgile.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6311 bytes

======Listing Processes======





wininit.exe


C:\Windows\system32\lsass.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
dashost.exe {df20ffe2-c34d-4c79-9ec45642adf6dfa4}
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
taskhostex.exe
C:\Windows\Explorer.EXE
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding

"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss b2695113-8141-42e7-96a5-f8dfa3c488be 1
C:\Windows\system32\SearchIndexer.exe /Embedding
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}

"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe" --ran-launcher /crash-reporter-parent-id=32
"C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe" --type=gpu-process --channel="32.0.773327746\2101743587" --enable-proprietary-media-types-playback --crash-reporter-pid=5872 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,39,48 --gpu-vendor-id=0x10de --gpu-device-id=0x0614 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.3788 --enable-proprietary-media-types-playback --crash-reporter-pid=5872 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --enable-deferred-image-decoding --lang=cs --enable-proprietary-media-types-playback --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=5872 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="32.2.1228893186\514777730" /prefetch:673131151
"C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --enable-deferred-image-decoding --lang=cs --enable-proprietary-media-types-playback --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=5872 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="32.3.548964100\155924599" /prefetch:673131151
"C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --enable-deferred-image-decoding --lang=cs --enable-proprietary-media-types-playback --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=5872 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="32.4.1557892173\170704373" /prefetch:673131151
"C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe" --type=plugin --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_239.dll" --disable-direct-npapi-requests --lang=cs --channel="32.6.1448916496\1606891758" --enable-proprietary-media-types-playback --crash-reporter-pid=5872 /prefetch:-390060480
"C:\Program Files (x86)\Techgile\updateTechgile.exe"
"C:\Program Files (x86)\Techgile\bin\utilTechgile.exe"
/ieg 3bbc3e07-1aa0-4b51-ba90-023b8fe3937a /is IM27lsCZ
/c 4f00e6bb-676a-4c94-a732-f40373716d0e /i 3bbc3e07-1aa0-4b51-ba90-023b8fe3937a /z "n=Techgile&is=IM27lsCZ&dpt=20"
/c 4f00e6bb-676a-4c94-a732-f40373716d0e /i 3bbc3e07-1aa0-4b51-ba90-023b8fe3937a /z "n=Techgile&is=IM27lsCZ&dpt=20"
/w 910 /h 100 /cg 98afa872-c3cc-448e-962f-03804bd82473 /gc 1 /ff 1 /ie 1 /is IM27lsCZ
"C:\Program Files (x86)\Techgile\bin\Techgile.PurBrowse64.exe" /l false /s false /c "Techgile" /t "C:\Program Files (x86)\Techgile\bin\TEMP" /i "http://apitechgilenet-a.akamaihd.net/gs ... 0000000000" /d {670b17cf-f53d-46d2-a0f0-771be0b4f802}w64 /p 4f00e6bb-676a-4c94-a732-f40373716d0e:chrome /p 3bbc3e07-1aa0-4b51-ba90-023b8fe3937a:iexplore /p 93ba96b0-44f2-4f6a-9eb5-8ccc7f568d20:opera /h cdn.sharedaddomain.com,cdn.sharedaddomain2.com 0 10 "C:\Program Files (x86)\Techgile\bin\bau" true
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-23c36772-643a-4dcc-854b-eca0969d995d -SystemEventPortName:HostProcess-c301a9fd-29bd-40a5-93c6-be5c3fa72beb -IoCancelEventPortName:HostProcess-42111ba1-c6c7-497d-af49-7bc4ae00c5bb -NonStateChangingEventPortName:HostProcess-80213cfa-3c16-4dc7-96cf-e69911914ea6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6f5591df-6ceb-4347-962b-b63c217acab2 -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe" --type=renderer --alt-high-dpi-setting=96 --disable-direct-npapi-requests --enable-deferred-image-decoding --lang=cs --enable-proprietary-media-types-playback --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=5872 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="32.10.800972519\125126253" /prefetch:673131151
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe" -scan:full
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe13_ Global\UsGthrCtrlFltPipeMssGthrPipe13 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 556 560 568 65536 564
"C:\Users\Petr\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\DLL-Files.Com Fixer_MONTHLY.job - C:\Users\Petr\programy\DLL-Fixer-Full-Version-Cracked\DLLFixer.exe scan
C:\Windows\tasks\DLL-Files.Com Fixer_Updates.job - C:\Users\Petr\programy\DLL-Fixer-Full-Version-Cracked\DLLFixer.exe -updatecheck
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-04-10 13671640]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-04-15 1385840]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-05-30 2352072]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-05-30 1279480]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-12-09 20:41:21 ----D---- C:\rsit
2014-12-09 20:41:21 ----D---- C:\Program Files\trend micro
2014-12-08 23:48:06 ----A---- C:\Windows\system32\drivers\{670b17cf-f53d-46d2-a0f0-771be0b4f802}w64.sys
2014-12-07 19:38:49 ----D---- C:\Users\Petr\AppData\Roaming\systweak
2014-12-07 19:38:25 ----D---- C:\Program Files (x86)\Techgile
2014-12-07 19:37:48 ----D---- C:\Program Files (x86)\pazera-software
2014-11-19 16:57:47 ----D---- C:\Program Files\CCleaner
2014-11-19 16:40:51 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2014-11-19 16:40:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2014-11-19 16:40:51 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-11-19 16:40:51 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-11-19 16:40:50 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-11-19 16:40:50 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-11-19 16:40:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2014-11-19 16:40:50 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-11-19 16:40:50 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-11-19 16:40:50 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-11-19 16:40:48 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-11-19 16:40:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-11-19 16:40:48 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-11-19 16:40:48 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-11-19 16:40:48 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-11-19 16:40:48 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-11-19 16:40:47 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-11-19 16:40:47 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-11-19 16:40:47 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-11-19 16:40:47 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-11-19 16:40:47 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-11-19 16:40:46 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-11-19 16:40:46 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-11-19 16:40:46 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-11-19 16:40:46 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-11-19 16:40:45 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-11-19 16:40:45 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2014-11-19 16:40:45 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-11-19 16:40:45 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-11-19 16:40:45 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-11-19 16:40:45 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-11-19 16:40:44 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-11-19 16:40:44 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-11-19 16:40:44 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-11-19 16:40:44 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-11-19 16:40:44 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-11-19 16:40:43 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-11-19 16:40:43 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-11-19 16:40:42 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2014-11-19 16:40:42 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-11-19 16:40:42 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2014-11-19 16:40:42 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2014-11-19 16:40:42 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-11-19 16:40:42 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-11-19 16:40:42 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-11-19 16:40:42 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-11-19 16:40:40 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-11-19 16:40:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-11-19 16:40:40 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-11-19 16:40:40 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-11-19 16:40:39 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-11-19 16:40:39 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-11-19 16:40:38 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-11-19 16:40:38 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-11-19 16:40:38 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-11-19 16:40:38 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-11-19 16:40:38 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-11-19 16:40:38 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-11-19 16:40:38 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-11-19 16:40:38 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-11-19 16:40:37 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-11-19 16:40:37 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-11-19 16:40:37 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-11-19 16:40:37 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-11-19 16:40:36 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-11-19 16:40:36 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-11-19 16:40:36 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-11-19 16:40:36 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-11-19 16:40:36 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-11-19 16:40:36 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-11-19 16:40:35 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-11-19 16:40:35 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-11-19 16:40:34 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-11-19 16:40:34 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-11-19 16:40:34 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-11-19 16:40:34 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-11-19 16:40:34 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-11-19 16:40:34 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-11-19 16:40:33 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-11-19 16:40:33 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-11-19 16:40:32 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-11-19 16:40:32 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-11-19 16:40:32 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-11-19 16:40:32 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-11-19 16:40:31 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-11-19 16:40:31 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-11-19 16:40:30 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-11-19 16:40:30 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-11-19 16:40:30 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-11-19 16:40:30 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-11-19 16:40:29 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-11-19 16:40:29 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-11-19 16:40:28 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-11-19 16:40:28 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-11-19 16:40:28 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-11-19 16:40:28 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-11-19 16:40:27 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-11-19 16:40:27 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-11-19 16:40:26 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-11-19 16:40:26 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-11-19 16:40:25 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-11-19 16:40:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-11-19 16:40:25 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-11-19 16:40:25 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-11-19 16:40:24 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-11-19 16:40:24 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-11-19 16:40:23 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-11-19 16:40:23 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-11-19 16:40:23 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-11-19 16:40:23 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-11-19 16:40:23 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-11-19 16:40:23 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-11-19 16:40:21 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-11-19 16:40:21 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-11-19 16:40:21 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-11-19 16:40:21 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-11-19 16:40:21 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-11-19 16:40:21 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-11-19 16:37:36 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-11-19 16:37:35 ----RA---- C:\Windows\SYSWOW64\pbsvc.exe
2014-11-19 16:37:35 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2014-11-18 21:48:32 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-18 21:48:32 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-18 21:48:32 ----A---- C:\Windows\system32\pku2u.dll
2014-11-18 21:48:32 ----A---- C:\Windows\system32\kerberos.dll
2014-11-17 20:04:44 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2014-11-17 20:04:44 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-11-12 20:35:20 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 20:35:20 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 20:35:20 ----A---- C:\Windows\system32\ncryptsslp.dll
2014-11-12 20:35:20 ----A---- C:\Windows\system32\dpapisrv.dll
2014-11-12 20:35:19 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2014-11-12 20:34:54 ----A---- C:\Windows\SYSWOW64\certcli.dll
2014-11-12 20:34:54 ----A---- C:\Windows\system32\rdpcorets.dll
2014-11-12 20:34:54 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 20:34:54 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 20:34:54 ----A---- C:\Windows\system32\drivers\cng.sys
2014-11-12 20:34:54 ----A---- C:\Windows\system32\certcli.dll
2014-11-12 20:34:53 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 20:34:53 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 20:34:53 ----A---- C:\Windows\system32\rfxvmt.dll
2014-11-12 20:34:53 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 20:34:53 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2014-11-12 20:34:53 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 20:34:52 ----A---- C:\Windows\system32\rdpudd.dll
2014-11-12 20:34:02 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 20:34:02 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-12 20:34:00 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 20:34:00 ----A---- C:\Windows\system32\msi.dll
2014-11-12 20:33:59 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-11-12 20:33:59 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-11-12 20:33:59 ----A---- C:\Windows\system32\msihnd.dll
2014-11-12 20:33:59 ----A---- C:\Windows\system32\authui.dll
2014-11-12 20:33:58 ----A---- C:\Windows\system32\consent.exe
2014-11-12 20:33:58 ----A---- C:\Windows\system32\appinfo.dll
2014-11-12 20:33:54 ----A---- C:\Windows\system32\wuaueng.dll
2014-11-12 20:33:53 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-11-12 20:33:53 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-11-12 20:33:53 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-11-12 20:33:53 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-11-12 20:33:53 ----A---- C:\Windows\system32\wucltux.dll
2014-11-12 20:33:53 ----A---- C:\Windows\system32\wuapi.dll
2014-11-12 20:33:52 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-11-12 20:33:52 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-11-12 20:33:52 ----A---- C:\Windows\system32\wuwebv.dll
2014-11-12 20:33:52 ----A---- C:\Windows\system32\wups2.dll
2014-11-12 20:33:52 ----A---- C:\Windows\system32\wups.dll
2014-11-12 20:33:52 ----A---- C:\Windows\system32\wudriver.dll
2014-11-12 20:33:52 ----A---- C:\Windows\system32\wuauclt.exe
2014-11-12 20:33:52 ----A---- C:\Windows\system32\wuapp.exe
2014-11-12 20:33:52 ----A---- C:\Windows\system32\wuaext.dll
2014-11-12 20:33:08 ----A---- C:\Windows\system32\user32.dll
2014-11-12 20:33:07 ----A---- C:\Windows\SYSWOW64\user32.dll
2014-11-12 20:33:07 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2014-11-12 20:33:06 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2014-11-12 20:33:06 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2014-11-12 20:33:04 ----A---- C:\Windows\SYSWOW64\winshfhc.dll
2014-11-12 20:33:04 ----A---- C:\Windows\system32\winshfhc.dll
2014-11-12 20:32:28 ----A---- C:\Windows\system32\mshtml.dll
2014-11-12 20:32:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-11-12 20:32:00 ----A---- C:\Windows\system32\ieframe.dll
2014-11-12 20:31:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-11-12 20:31:52 ----A---- C:\Windows\system32\jscript9.dll
2014-11-12 20:31:50 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-11-12 20:31:49 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-11-12 20:31:49 ----A---- C:\Windows\system32\wininet.dll
2014-11-12 20:31:49 ----A---- C:\Windows\system32\urlmon.dll
2014-11-12 20:31:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-11-12 20:31:48 ----A---- C:\Windows\system32\inetcomm.dll
2014-11-12 20:31:48 ----A---- C:\Windows\system32\iertutil.dll
2014-11-12 20:31:48 ----A---- C:\Windows\system32\actxprxy.dll
2014-11-12 20:31:47 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2014-11-12 20:31:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-11-12 20:31:46 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-11-12 20:31:46 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-12 20:31:46 ----A---- C:\Windows\system32\jscript.dll
2014-11-12 20:31:46 ----A---- C:\Windows\system32\ieui.dll
2014-11-12 20:31:45 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-12 20:31:44 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-11-12 20:31:44 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-11-12 20:31:44 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-11-12 20:31:44 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-11-12 20:31:44 ----A---- C:\Windows\system32\vbscript.dll
2014-11-12 20:31:43 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-11-12 20:31:43 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-12 20:31:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-11-12 20:31:42 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-12 20:31:42 ----A---- C:\Windows\system32\webcheck.dll
2014-11-12 20:31:42 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-12 20:31:42 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-12 20:31:42 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-12 20:31:41 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-11-12 20:31:41 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-12 20:31:41 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-11-12 20:31:41 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-11-12 20:31:41 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-11-12 20:31:41 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-11-12 20:31:41 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-11-12 20:31:41 ----A---- C:\Windows\SYSWOW64\hlink.dll
2014-11-12 20:31:41 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-12 20:31:41 ----A---- C:\Windows\system32\iesysprep.dll
2014-11-12 20:31:41 ----A---- C:\Windows\system32\iepeers.dll
2014-11-12 20:31:41 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-12 20:31:41 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-12 20:31:41 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-12 20:31:41 ----A---- C:\Windows\system32\hlink.dll
2014-11-12 20:31:40 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-11-12 20:31:40 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-11-12 20:31:40 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-11-12 20:31:40 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-11-12 20:31:40 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-12 20:31:40 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 20:31:40 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-11-12 20:31:40 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-11-12 20:31:40 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-11-12 20:31:40 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2014-11-12 20:31:40 ----A---- C:\Windows\system32\occache.dll
2014-11-12 20:31:40 ----A---- C:\Windows\system32\msrating.dll
2014-11-12 20:31:40 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-12 20:31:40 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-12 20:31:40 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-11-12 20:31:40 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-12 20:31:40 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 20:31:40 ----A---- C:\Windows\system32\inseng.dll
2014-11-12 20:31:40 ----A---- C:\Windows\system32\imgutil.dll
2014-11-12 20:31:39 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-11-12 20:31:39 ----A---- C:\Windows\SYSWOW64\url.dll
2014-11-12 20:31:39 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-11-12 20:31:39 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-11-12 20:31:39 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-12 20:31:39 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-12 20:31:39 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-11-12 20:31:39 ----A---- C:\Windows\system32\wextract.exe
2014-11-12 20:31:39 ----A---- C:\Windows\system32\url.dll
2014-11-12 20:31:39 ----A---- C:\Windows\system32\pngfilt.dll
2014-11-12 20:31:39 ----A---- C:\Windows\system32\licmgr10.dll
2014-11-12 20:31:39 ----A---- C:\Windows\system32\iesetup.dll
2014-11-12 20:31:39 ----A---- C:\Windows\system32\iernonce.dll
2014-11-12 20:31:39 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-11-12 20:31:38 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-11-12 20:31:38 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-11-12 20:31:38 ----A---- C:\Windows\system32\mshta.exe
2014-11-12 20:31:38 ----A---- C:\Windows\system32\msfeedssync.exe
2014-11-12 20:31:38 ----A---- C:\Windows\system32\iexpress.exe
2014-11-12 20:30:51 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 20:30:51 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 20:30:49 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 20:30:49 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 20:30:49 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 20:30:49 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 20:30:49 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 20:30:49 ----A---- C:\Windows\system32\packager.dll
2014-11-12 20:30:49 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 20:30:49 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 20:30:49 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 20:30:49 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 20:30:49 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 20:30:49 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2014-11-12 20:30:49 ----A---- C:\Windows\system32\audiodg.exe
2014-11-12 20:30:46 ----A---- C:\Windows\system32\shell32.dll
2014-11-12 20:30:46 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-11-12 20:30:45 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-11-12 20:30:45 ----A---- C:\Windows\system32\SettingsHandlers.dll
2014-11-12 20:30:44 ----A---- C:\Windows\system32\twinui.dll
2014-11-12 20:30:44 ----A---- C:\Windows\system32\MFMediaEngine.dll
2014-11-12 20:30:44 ----A---- C:\Windows\system32\localspl.dll
2014-11-12 20:30:44 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-11-12 20:30:43 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-11-12 20:30:43 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2014-11-12 20:30:43 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2014-11-12 20:30:43 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2014-11-12 20:30:41 ----A---- C:\Windows\system32\win32spl.dll
2014-11-12 20:30:40 ----A---- C:\Windows\system32\WsmSvc.dll
2014-11-12 20:30:40 ----A---- C:\Windows\system32\drivers\netio.sys
2014-11-12 20:30:39 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-11-12 20:30:39 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2014-11-12 20:30:39 ----A---- C:\Windows\system32\puiobj.dll
2014-11-12 20:30:38 ----AC---- C:\Windows\system32\drivers\USBSTOR.SYS
2014-11-12 20:30:38 ----A---- C:\Windows\SYSWOW64\untfs.dll
2014-11-12 20:30:38 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll
2014-11-12 20:30:38 ----A---- C:\Windows\system32\untfs.dll
2014-11-12 20:30:38 ----A---- C:\Windows\system32\FXSCOMEX.dll
2014-11-12 20:30:38 ----A---- C:\Windows\system32\FXSAPI.dll
2014-11-12 20:30:38 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-11-11 20:45:24 ----D---- C:\Program Files (x86)\GameSpy Arcade

======List of files/folders modified in the last 1 month======

2014-12-09 20:41:21 ----D---- C:\Program Files
2014-12-09 20:41:20 ----D---- C:\Windows\Prefetch
2014-12-09 20:05:16 ----D---- C:\Windows\WinSxS
2014-12-09 20:04:29 ----D---- C:\Windows\Temp
2014-12-09 20:03:09 ----D---- C:\Windows\system32\MRT
2014-12-09 20:03:07 ----A---- C:\Windows\system32\MRT.exe
2014-12-09 20:01:58 ----RD---- C:\Windows\System32
2014-12-09 20:01:15 ----D---- C:\Windows\system32\catroot2
2014-12-09 20:01:14 ----SHD---- C:\System Volume Information
2014-12-09 20:00:49 ----D---- C:\Windows\system32\config
2014-12-09 20:00:00 ----D---- C:\Windows\system32\sru
2014-12-09 19:54:20 ----D---- C:\Windows\SysWOW64
2014-12-09 19:46:22 ----A---- C:\Windows\win.ini
2014-12-09 19:45:35 ----D---- C:\Windows\CbsTemp
2014-12-09 07:45:01 ----D---- C:\Windows\system32\Tasks
2014-12-09 07:45:00 ----SHD---- C:\Windows\Installer
2014-12-09 07:45:00 ----D---- C:\Windows\Tasks
2014-12-09 07:45:00 ----D---- C:\Program Files (x86)\globalUpdate
2014-12-09 06:41:02 ----D---- C:\Windows\system32\DriverStore
2014-12-09 06:41:02 ----D---- C:\Windows\Inf
2014-12-09 06:40:30 ----D---- C:\Windows\Microsoft.NET
2014-12-09 06:34:58 ----RD---- C:\Program Files (x86)
2014-12-09 06:34:57 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-12-09 06:33:54 ----D---- C:\Program Files (x86)\Secure Folder
2014-12-09 06:33:11 ----HD---- C:\ProgramData
2014-12-08 23:48:06 ----D---- C:\Windows\system32\drivers
2014-12-07 20:47:47 ----HD---- C:\Windows\system32\GroupPolicy
2014-12-04 18:59:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-12-04 18:32:07 ----D---- C:\Windows
2014-12-04 18:31:22 ----D---- C:\Windows\Logs
2014-12-04 18:31:22 ----D---- C:\Windows\debug
2014-12-04 18:27:49 ----D---- C:\Windows\LiveKernelReports
2014-12-04 16:58:31 ----D---- C:\Program Files (x86)\Opera
2014-11-20 21:51:37 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-11-19 17:49:07 ----D---- C:\Windows\SoftwareDistribution
2014-11-19 17:35:09 ----RSD---- C:\Windows\assembly
2014-11-19 17:00:19 ----D---- C:\Users\Petr\AppData\Roaming\AIMP3
2014-11-19 17:00:07 ----D---- C:\Windows\Panther
2014-11-19 17:00:07 ----D---- C:\Windows\Minidump
2014-11-19 16:37:34 ----D---- C:\Windows\system32\LogFiles
2014-11-17 20:02:55 ----D---- C:\Program Files (x86)\Hry
2014-11-15 19:50:57 ----D---- C:\Windows\rescache
2014-11-13 18:57:17 ----D---- C:\Program Files\Windows Defender
2014-11-13 18:57:17 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-13 18:57:12 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-11-13 18:57:12 ----D---- C:\Windows\system32\wbem
2014-11-13 18:57:12 ----D---- C:\Windows\system32\cs-CZ
2014-11-13 18:57:10 ----D---- C:\Windows\SYSWOW64\migration
2014-11-13 18:57:10 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-13 18:57:09 ----D---- C:\Windows\system32\migration
2014-11-13 18:57:08 ----D---- C:\Program Files\Internet Explorer
2014-11-13 18:57:07 ----RD---- C:\Windows\ToastData
2014-11-13 18:57:06 ----RD---- C:\Windows\ImmersiveControlPanel
2014-11-13 18:57:06 ----D---- C:\Windows\apppatch

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\System32\drivers\amd_sata.sys [2014-03-21 81608]
R0 amd_xata;amd_xata; C:\Windows\System32\drivers\amd_xata.sys [2014-03-21 23752]
R0 mvs91xx;mvs91xx; C:\Windows\System32\drivers\mvs91xx.sys [2013-10-11 328488]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 {670b17cf-f53d-46d2-a0f0-771be0b4f802}w64;{670b17cf-f53d-46d2-a0f0-771be0b4f802}w64; C:\Windows\system32\drivers\{670b17cf-f53d-46d2-a0f0-771be0b4f802}w64.sys [2014-12-08 48784]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2007-11-07 104912]
R3 GeneStor;@oem1.inf,%GENESTOR.SvcDesc%;Genesys Logic Storage Driver; C:\Windows\System32\drivers\GeneStor.sys [2014-01-17 107208]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-05-06 3956056]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-05-20 12688328]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-05-30 20256]
R3 nvvad_WaveExtensible;@oem7.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 RTL8168;@oem2.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2014-03-26 843480]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 WUDFWpdFs;WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-05-31 227840]
R3 WUDFWpdMtp;WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-05-31 227840]
S3 dg_ssudbus;@oem9.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 ssudmdm;@oem14.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
S3 WSDPrintDevice;@WSDPrint.Inf,%WSDPrintDevice.SVCDESC%;WSD Print Support; C:\Windows\System32\drivers\WSDPrint.sys [2013-08-22 20992]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-05-30 1631008]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-05-30 21055432]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-05-20 927520]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-11-19 75136]
R2 Update Techgile;Update Techgile; C:\Program Files (x86)\Techgile\updateTechgile.exe [2014-12-09 523504]
R2 Util Techgile;Util Techgile; C:\Program Files (x86)\Techgile\bin\utilTechgile.exe [2014-12-09 523504]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09 267440]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09 116648]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]

-----------------EOF-----------------
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7321
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Nežádoucí reklama v prohlížeči

#2 Příspěvek od altrok »

Zdravim :bye:

:arrow: Kazde leceni je v urcite fazi jedinecne a delane primo na konkretni pocitac, takze je dobre, ze jste se do samolecby nevrhnul sam :)

:arrow: Tyto reklamy jste si pravdepodobne do PC natahal jako tzv. adware s instalaci programu "pazera-software". Ponaouceni pro priste... cist fajfky a co vsechno se dale do PC instaluje... neklikat slepe na Next, Next, Next ;)

:arrow: V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

:arrow: Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
  • ukoncete vsechny programy
  • kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
  • kliknete na Scan, pote na Clean
  • po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
spendlik.spidy

Re: Nežádoucí reklama v prohlížeči

#3 Příspěvek od spendlik.spidy »

# AdwCleaner v4.105 - Report created 10/12/2014 at 21:06:56
# Updated 08/12/2014 by Xplode
# Database : 2014-12-08.2 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : Petr - SPENDLIK
# Running from : C:\Users\Petr\Desktop\adwcleaner_4.105.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : Update Techgile
[#] Service Deleted : Util Techgile
Service Deleted : {1faf557f-055a-41ea-bf98-8743d653dfbd}w64
Service Deleted : {670b17cf-f53d-46d2-a0f0-771be0b4f802}w64

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plus500
Folder Deleted : C:\Program Files (x86)\globalUpdate
[!] Folder Deleted : C:\Program Files (x86)\Techgile
Folder Deleted : C:\Program Files (x86)\Plus500
[!] Folder Deleted : C:\Program Files (x86)\Techgile
Folder Deleted : C:\Users\Petr\AppData\Local\Temp\Techgile
Folder Deleted : C:\Users\Petr\AppData\Local\globalUpdate
Folder Deleted : C:\Users\Petr\AppData\Local\CrashRpt
Folder Deleted : C:\Users\Petr\AppData\Local\Plus500
Folder Deleted : C:\Users\Petr\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Petr\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Plus500
Folder Deleted : C:\Users\Public\Documents\Goobzo
Folder Deleted : C:\Users\Public\Documents\ShopperPro
Folder Deleted : C:\Users\Public\Documents\YTAHelper
Folder Deleted : C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgpdioedihjhncjafcpgbbjdpbbkikmi
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Windows\System32\drivers\{1faf557f-055a-41ea-bf98-8743d653dfbd}w64.sys
File Deleted : C:\Windows\System32\drivers\{670b17cf-f53d-46d2-a0f0-771be0b4f802}w64.sys
File Deleted : C:\Users\Petr\Desktop\Live PC Help.lnk
File Deleted : C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Deleted : C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_www.superfish.com_0.localstorage
File Deleted : C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\Local Storage\hxxps_www.superfish.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update Techgile
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util Techgile
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\Goobzo
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\Techgile
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\Techgile
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Techgile

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Google Chrome v39.0.2171.71

[C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : dgpdioedihjhncjafcpgbbjdpbbkikmi

-\\ Opera v26.0.1656.32

[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : aaipilfmheplbcghignccoiiebekkdhe
[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : elchiiiejkobdbblfejjkbphbddgmljf
[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ffhfoagmjcnkolneahbpagjcjjaeofbg
[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : hjghiofiijcepdnocbgefbdlbckjfheg
[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : iklgpchfbohgmghgfagediakopecfmbm
[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : kfgaibfbmkjgmimhbbaikfnpkkjkpoan
[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : lmnbobhffedhdhfpcjkjphcfpeeiocdn
[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : kjpifmjicccpbkfjdkehimhgklfkbanh
[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : hoidflomjnnnbiemmkjdjkkialmhbago
[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ekpibplnnkfdcafdpoekhoffegcajene
[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ipljmghelflfikejmgkmlmpjmehfjodc
[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : ejddjnilmdncjilbfjgameihlklfpohp
[C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\preferences] - Deleted [Extension] : eagomcfjiefffhpaejnlpjccikpipdoe

*************************

AdwCleaner[R0].txt - [7067 octets] - [10/12/2014 21:05:18]
AdwCleaner[S0].txt - [6441 octets] - [10/12/2014 21:06:56]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6501 octets] ##########
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7321
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Nežádoucí reklama v prohlížeči

#4 Příspěvek od altrok »

:arrow: Ulozte na plochu zoek.exe http://hijackthis.nl/smeenk/zoek.htm
  • spustte jako spravce
  • do velkeho okna zkopirujte script uvedeny nize
  • kliknete na Run script
  • po restartu na Vas vyskoci log (pripadne jej najdete v C:\zoek-results.log) - vlozte mi jej do pristi odpovedi

    Kód: Vybrat vše

    autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
spendlik.spidy

Re: Nežádoucí reklama v prohlížeči

#5 Příspěvek od spendlik.spidy »

Zoek.exe v5.0.0.0 Updated 10-December-2014
Tool run by Petr on źt 11. 12. 2014 at 6:28:39,09.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Petr\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

11. 12. 2014 6:29:26 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{18EAD05F-86B0-427C-91C-E8075FABE74} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1B6C9EB0-F433-43C7-8475-C6A49673FCE} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1C5396CE-115B-4769-B143-17FBAFC242B} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1CC21564-120A-4C02-83DE-E87CDFAC1E8} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{221F7681-EFD6-4D13-B2F8-27ED14BDF85} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2324C2AD-A81C-41A0-9E7C-5092F7DEF5A5} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28E1FA36-C518-4588-8DBD-8F77C6EEA4A} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{29C34F9C-6DF1-4E8A-9727-1E4E4510FB21} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2B50B8BD-1CD7-4EBD-89E9-6FC48653E515} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{314E2355-29A7-44EF-8DC3-2A942BD6B034} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{375E6D45-7EDA-4988-9CA9-974484F1D73} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{38F3C010-653A-42A6-9511-D124B26751D9} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4153AC9B-80F7-4361-935D-24C7BDE43136} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{41EAD409-A2-48B8-AEA2-C350646EB6B4} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{441F0562-3E28-451F-9383-5CF3F8199E31} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{48E78A6A-BF4D-472D-B677-86F9C9C64B} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{58775AC0-A881-4683-AD23-B46CB4A230C7} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{667989A8-1CBD-445E-BFCB-2E561725F1A3} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7BB7AA89-DC49-426F-A284-E17D8BD0FCA2} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{84CE9E00-CB62-4A69-BE8-58520F980A0} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{858B459-F05B-42AA-99E3-2616A2C599EB} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{86BA39B6-BAA5-45A4-B69E-4999E8C6431} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{89443743-2FFB-46BA-81E2-83EDE376D0AF} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8E3C5D66-E978-4C7B-BDB1-CE49DD3726A5} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8E7D95F4-9628-4A25-886F-4F314383E010} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9A8F3147-924F-4602-A911-9BEC3E105A3} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9F70978D-CCB5-414B-BD82-B7DF68A84DAD} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9FC80C79-C645-498F-ADF-5CBFEA4F22A} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A097C71A-CF5F-4816-982C-4297B3B07F31} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A19F4699-9341-4F7E-9F9D-747AC93432B2} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A7779BA9-3AA0-4048-9A2B-525F6918DA75} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AD596EF1-C70B-42F3-9FC3-362273D64378} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C28B7B5B-F72F-440A-A81E-86CC47BB48D3} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CE8F1FEF-5DD9-410A-8975-247E4E2EAB1F} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CEAFF137-CDCB-411B-982B-E3867EE5B83C} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D15F0F69-72C7-45DD-9029-749DD4A7A0E2} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D70DC229-B8CA-4350-BBCA-37AA6B8B91E3} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DBB8494E-EF20-4A7A-92B5-C34760E9D188} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DBC6EB33-3818-496A-AA46-4A33A59981B4} deleted successfully
HKEY_USERS\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EB9B27FE-D201-4802-9696-F8CB4453FB} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~3\Adobe deleted
C:\Users\Petr\AppData\Roaming\dll-files.com deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Windows\tasks\DLL-Files.Com Fixer_MONTHLY.job deleted
C:\Windows\tasks\DLL-Files.Com Fixer_Updates.job deleted
C:\windows\SysNative\tasks\DLL-Files.Com Fixer_MONTHLY deleted
C:\windows\SysNative\tasks\DLL-Files.Com Fixer_Updates deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
C:\Windows\SysWOW64\AniGIF.ocx deleted

==== Chromium Look ======================

Techgile - Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogebobifcbinokmjlmngefnmaaapblo
Photo Zoom for Facebook - Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi
Downloads - Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfchnphgogjhineanplmfkofljiagjfb

==== Chromium Startpages ======================

C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.seznam.cz/",


==== Chromium Fix ======================

C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogebobifcbinokmjlmngefnmaaapblo deleted successfully
C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dogebobifcbinokmjlmngefnmaaapblo_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Petr\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Petr\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Petr\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Petr\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Petr\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=29 folders=10 250436 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Petr\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Petr\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on źt 11. 12. 2014 at 6:38:03,71 ======================
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7321
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Nežádoucí reklama v prohlížeči

#6 Příspěvek od altrok »

:arrow: Dejte novy log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
spendlik.spidy

Re: Nežádoucí reklama v prohlížeči

#7 Příspěvek od spendlik.spidy »

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-12-2014 01
Ran by Petr (administrator) on SPENDLIK on 11-12-2014 20:13:31
Running from C:\Users\Petr\Desktop
Loaded Profile: Petr (Available profiles: Petr)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\TiWorker.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
() C:\Program Files (x86)\Opera\26.0.1656.32\opera_crashreporter.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671640 2014-04-10] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1385840 2014-04-15] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2352072 2014-05-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKU\S-1-5-21-1320987048-3415038541-2125130481-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-23] (Piriform Ltd)
HKU\S-1-5-21-1320987048-3415038541-2125130481-1001\...\Policies\Explorer: [NoSecurityTab] 0
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1320987048-3415038541-2125130481-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1320987048-3415038541-2125130481-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1320987048-3415038541-2125130481-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Petr\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

Chrome:
=======
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (James White) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkeidgmehkdjmpjodpjkepolokanalkm [2014-08-20]
CHR Extension: (Lookup Companion for Wikipedia) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhgpkiiipkgmckicafkhcihkcldbdeej [2014-08-20]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2014-08-20]
CHR Extension: (Downloads) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfchnphgogjhineanplmfkofljiagjfb [2014-08-20]
CHR Extension: (Google Mail Checker) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2014-08-20]
CHR Extension: (Google Wallet) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-09]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-11-19] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 GeneStor; C:\Windows\System32\drivers\GeneStor.sys [107208 2014-01-17] (GenesysLogic)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [104912 2007-11-07] (EZB Systems, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [12464 2014-06-26] (Macrovision Europe Ltd) [File not signed]
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-11 20:13 - 2014-12-11 20:14 - 00009063 _____ () C:\Users\Petr\Desktop\FRST.txt
2014-12-11 20:12 - 2014-12-11 20:13 - 00000000 ____D () C:\FRST
2014-12-11 20:11 - 2014-12-11 20:11 - 02119680 _____ (Farbar) C:\Users\Petr\Desktop\FRST64.exe
2014-12-11 06:35 - 2014-12-11 06:28 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-12-11 06:29 - 2014-12-11 06:38 - 00013171 _____ () C:\zoek-results.log
2014-12-11 06:28 - 2014-12-11 06:35 - 00000000 ____D () C:\zoek_backup
2014-12-11 06:27 - 2014-12-11 06:27 - 01295360 _____ () C:\Users\Petr\Desktop\zoek.exe
2014-12-10 21:11 - 2014-12-11 02:34 - 3102574032 _____ () C:\Users\Petr\Downloads\8.-HP-2-2011-HDrip.mp4
2014-12-10 21:07 - 2014-12-11 06:36 - 00002206 _____ () C:\Windows\PFRO.log
2014-12-10 21:05 - 2014-12-10 21:07 - 00000000 ____D () C:\AdwCleaner
2014-12-10 20:29 - 2014-12-10 20:32 - 04439253 _____ () C:\Users\Petr\Downloads\6.-HP-2009-HDrip.mp4
2014-12-10 15:08 - 2014-12-10 20:52 - 2777443778 _____ () C:\Users\Petr\Downloads\Harry Potter a Relikvie smrti - 1.avi
2014-12-09 21:14 - 2014-12-09 21:14 - 02166272 _____ () C:\Users\Petr\Desktop\adwcleaner_4.105.exe
2014-12-09 21:12 - 2014-12-10 21:04 - 00000000 ____D () C:\Users\Petr\Desktop\potter mp4
2014-12-09 20:41 - 2014-12-09 20:41 - 01222144 _____ () C:\Users\Petr\Downloads\RSITx64.exe
2014-12-09 20:41 - 2014-12-09 20:41 - 00000000 ____D () C:\rsit
2014-12-09 20:41 - 2014-12-09 20:41 - 00000000 ____D () C:\Program Files\trend micro
2014-12-09 20:00 - 2014-11-10 03:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupStatusProvider.dll
2014-12-09 20:00 - 2014-11-10 02:51 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceSetupStatusProvider.dll
2014-12-09 20:00 - 2014-10-31 00:39 - 01970432 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-12-09 20:00 - 2014-10-31 00:38 - 01612992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-12-09 19:48 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-09 19:48 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-09 19:48 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-09 19:48 - 2014-11-22 03:49 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-12-09 19:48 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-09 19:48 - 2014-11-22 03:35 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-12-09 19:48 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-09 19:48 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-09 19:48 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-09 19:48 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-09 19:48 - 2014-11-22 03:06 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-12-09 19:48 - 2014-11-22 03:06 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-12-09 19:48 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-09 19:48 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-09 19:48 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-09 19:48 - 2014-11-22 02:59 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-12-09 19:48 - 2014-11-22 02:55 - 00661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-12-09 19:48 - 2014-11-22 02:52 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-12-09 19:48 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-09 19:48 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-09 19:48 - 2014-11-22 02:49 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-09 19:48 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-09 19:48 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-09 19:48 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-09 19:48 - 2014-11-22 02:34 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-12-09 19:48 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-09 19:48 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-09 19:48 - 2014-11-22 02:29 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-12-09 19:48 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-09 19:48 - 2014-11-22 02:25 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-12-09 19:48 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-09 19:48 - 2014-11-22 02:23 - 00326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-09 19:48 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-09 19:48 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-09 19:48 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-09 19:48 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-09 19:48 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-09 19:48 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-09 19:48 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-09 19:48 - 2014-11-07 05:16 - 01762840 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-09 19:48 - 2014-11-07 04:26 - 01489072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-09 19:48 - 2014-11-01 00:57 - 01091072 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-12-09 19:48 - 2014-11-01 00:47 - 00790528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-12-09 19:48 - 2014-10-13 03:43 - 00238912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2014-12-09 19:48 - 2014-10-13 03:43 - 00153920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2014-12-09 19:48 - 2014-10-13 03:43 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2014-12-09 19:48 - 2014-10-13 03:43 - 00039744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2014-12-08 06:34 - 2014-12-11 06:37 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-12-07 19:43 - 2014-12-07 17:24 - 3995451753 _____ () C:\Users\Petr\Desktop\Harry Potter a Tajemná komnata.mp4
2014-12-07 19:37 - 2014-12-07 19:37 - 00001291 _____ () C:\Users\Public\Desktop\Pazera Free MP4 to AVI Converter.lnk
2014-12-07 19:37 - 2014-12-07 19:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pazera Free MP4 to AVI Converter
2014-12-07 19:37 - 2014-12-07 19:37 - 00000000 ____D () C:\Program Files (x86)\pazera-software
2014-12-06 15:21 - 2014-12-06 15:21 - 18293197 _____ () C:\Users\Petr\Desktop\projekt dům.rar
2014-12-06 10:51 - 2014-12-06 13:42 - 1585815552 _____ () C:\Users\Petr\Downloads\Let---Flight-(2012)-DVDRip-XviD-AC3-Drama-No-1.avi
2014-12-05 19:54 - 2014-12-05 19:54 - 00000480 _____ () C:\Users\Petr\Desktop\výběr oříznutý.lnk
2014-12-05 19:40 - 2014-12-05 20:07 - 00000000 ____D () C:\Users\Petr\Desktop\výběr
2014-12-05 19:38 - 2014-12-05 19:49 - 00000000 ____D () C:\Users\Petr\Desktop\fotky Jana
2014-12-04 18:32 - 2014-12-04 18:32 - 00000788 _____ () C:\Windows\setupact.log
2014-12-04 18:32 - 2014-12-04 18:32 - 00000000 _____ () C:\Windows\setuperr.log
2014-11-24 07:39 - 2014-12-11 05:54 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-24 07:39 - 2014-12-09 19:54 - 00003802 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-19 17:49 - 2014-12-11 20:11 - 01714908 _____ () C:\Windows\WindowsUpdate.log
2014-11-19 17:31 - 2014-11-19 17:31 - 00000145 _____ () C:\Users\Petr\Desktop\Assassin's Creed IV Black Flag.url
2014-11-19 16:57 - 2014-11-19 16:57 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-11-19 16:57 - 2014-11-19 16:57 - 00000794 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-11-19 16:57 - 2014-11-19 16:57 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-19 16:42 - 2014-11-19 16:42 - 00000000 ____D () C:\Users\Petr\Documents\Assassin's Creed IV Black Flag
2014-11-19 16:40 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-11-19 16:40 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-11-19 16:40 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-11-19 16:40 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-11-19 16:40 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-11-19 16:40 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-11-19 16:40 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-11-19 16:40 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-11-19 16:40 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-11-19 16:40 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-11-19 16:40 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-11-19 16:40 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-11-19 16:40 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-11-19 16:40 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-11-19 16:40 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-11-19 16:40 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-11-19 16:40 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-11-19 16:40 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-11-19 16:40 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-11-19 16:40 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-11-19 16:40 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-11-19 16:40 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-11-19 16:40 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-11-19 16:40 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-11-19 16:40 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-11-19 16:40 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-11-19 16:40 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-11-19 16:40 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-11-19 16:40 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-11-19 16:40 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-11-19 16:40 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-11-19 16:40 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-11-19 16:40 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-11-19 16:40 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-11-19 16:40 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-11-19 16:40 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-11-19 16:40 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-11-19 16:40 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-11-19 16:40 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-11-19 16:40 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-11-19 16:40 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-11-19 16:40 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-11-19 16:40 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-11-19 16:40 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-11-19 16:40 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-11-19 16:40 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-11-19 16:40 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-11-19 16:40 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-11-19 16:40 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-11-19 16:40 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-11-19 16:40 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-11-19 16:40 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-11-19 16:40 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-11-19 16:40 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-11-19 16:40 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-11-19 16:40 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-11-19 16:40 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-11-19 16:40 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-11-19 16:40 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-11-19 16:40 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-11-19 16:40 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-11-19 16:40 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-11-19 16:40 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-11-19 16:40 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-11-19 16:40 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-11-19 16:40 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-11-19 16:40 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-11-19 16:40 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-11-19 16:40 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-11-19 16:40 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-11-19 16:40 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-11-19 16:40 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-11-19 16:40 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-11-19 16:40 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-11-19 16:40 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-11-19 16:40 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-11-19 16:40 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-11-19 16:40 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-11-19 16:40 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-11-19 16:40 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-11-19 16:40 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-11-19 16:40 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-11-19 16:40 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-11-19 16:40 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-11-19 16:40 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-11-19 16:40 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-11-19 16:40 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-11-19 16:40 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-11-19 16:40 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-11-19 16:40 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-11-19 16:40 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-11-19 16:40 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-11-19 16:40 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-11-19 16:40 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-11-19 16:40 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-11-19 16:40 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-11-19 16:40 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-11-19 16:40 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-11-19 16:40 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-11-19 16:40 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-11-19 16:40 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-11-19 16:40 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-11-19 16:40 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-11-19 16:40 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-11-19 16:40 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-11-19 16:40 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-11-19 16:40 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-11-19 16:40 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-11-19 16:40 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-11-19 16:40 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-11-19 16:40 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-11-19 16:40 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-11-19 16:40 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-11-19 16:40 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-11-19 16:40 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-11-19 16:40 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-11-19 16:40 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-11-19 16:40 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-11-19 16:37 - 2014-11-19 17:33 - 00189248 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-11-19 16:37 - 2014-11-19 17:33 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-11-19 16:37 - 2012-06-19 13:02 - 03123272 ____R () C:\Windows\SysWOW64\pbsvc.exe
2014-11-18 21:48 - 2014-11-10 00:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-18 21:48 - 2014-11-10 00:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-18 21:48 - 2014-11-10 00:18 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-18 21:48 - 2014-11-10 00:18 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-18 19:20 - 2014-11-19 08:54 - 2770339841 _____ () C:\Users\Petr\Downloads\Assassin's-Creed-IV-Black-Flag-CZ---DVD-3.iso
2014-11-18 06:28 - 2014-11-18 13:55 - 3746826240 _____ () C:\Users\Petr\Downloads\Assassin's-Creed-IV-Black-Flag-CZ---DVD-2.iso
2014-11-17 20:58 - 2014-11-18 05:58 - 4090365952 _____ () C:\Users\Petr\Downloads\Assassin's-Creed-IV-Black-Flag-CZ---DVD-1.iso
2014-11-17 20:29 - 2014-11-17 20:29 - 00000000 ____D () C:\Users\Petr\AppData\Local\Unity
2014-11-17 20:28 - 2014-11-17 20:28 - 03249480 _____ (Unity Technologies ApS) C:\Users\Petr\Downloads\UnityWebPlayer.exe
2014-11-17 20:04 - 2014-11-17 20:04 - 00002126 _____ () C:\Users\Petr\Desktop\Hitman - Sniper Challenge.lnk
2014-11-17 20:04 - 2014-11-17 20:04 - 00000000 ____D () C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-17 20:04 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-11-17 20:04 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-11-17 20:01 - 2014-11-17 20:02 - 00000000 ____D () C:\Users\Petr\Downloads\-Hitman---Sniper-Challenge-+-cestina
2014-11-17 18:07 - 2014-11-17 19:00 - 940045742 _____ () C:\Users\Petr\Downloads\-Hitman---Sniper-Challenge-+-cestina.zip
2014-11-17 18:05 - 2014-12-09 20:28 - 00002058 _____ () C:\Users\Public\Desktop\Hitman Sniper Challenge.lnk
2014-11-17 18:05 - 2014-11-17 18:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Square Enix
2014-11-17 14:42 - 2014-11-17 16:00 - 1046764478 _____ () C:\Users\Petr\Downloads\hitman-sniper.iso
2014-11-15 19:04 - 2014-11-16 09:43 - 696775349 _____ () C:\Users\Petr\Downloads\Královský-víkend-Hrají-B.Murray,L.Linney-a-další..Drama,Životopisný,Komedie-Velká-Británie-2012-CZ-HD-Flv-sebek73.flv
2014-11-12 20:35 - 2014-09-27 08:13 - 00104336 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2014-11-12 20:35 - 2014-09-27 06:24 - 00088800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2014-11-12 20:35 - 2014-09-27 04:38 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 20:35 - 2014-09-27 04:30 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-11-12 20:35 - 2014-09-27 04:17 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 20:34 - 2014-10-17 08:01 - 00789184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 20:34 - 2014-10-17 07:58 - 00602768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 20:34 - 2014-10-11 01:58 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 20:34 - 2014-10-11 01:53 - 03607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 20:34 - 2014-10-10 02:58 - 00177472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 20:34 - 2014-10-10 02:58 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-11-12 20:34 - 2014-10-10 02:44 - 00563976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-11-12 20:34 - 2014-10-08 08:37 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 20:34 - 2014-10-08 08:37 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 20:34 - 2014-10-08 08:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-11-12 20:34 - 2014-10-08 08:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2014-11-12 20:34 - 2014-10-08 07:56 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-11-12 20:34 - 2014-10-08 07:51 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 20:34 - 2014-10-08 07:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 20:34 - 2014-10-08 07:18 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2014-11-12 20:34 - 2014-10-08 07:17 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 20:34 - 2014-10-08 06:23 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-11-12 20:33 - 2014-10-18 10:55 - 00055776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-11-12 20:33 - 2014-10-18 09:09 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-11-12 20:33 - 2014-10-18 09:09 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-11-12 20:33 - 2014-10-18 08:25 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-11-12 20:33 - 2014-10-18 07:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2014-11-12 20:33 - 2014-10-18 07:38 - 03557376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-11-12 20:33 - 2014-10-18 07:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-11-12 20:33 - 2014-10-18 07:26 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-11-12 20:33 - 2014-10-18 07:23 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-11-12 20:33 - 2014-10-18 07:23 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-11-12 20:33 - 2014-10-18 07:21 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-11-12 20:33 - 2014-10-18 07:20 - 01714176 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-11-12 20:33 - 2014-10-18 07:14 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-11-12 20:33 - 2014-10-18 07:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-11-12 20:33 - 2014-10-18 07:12 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-11-12 20:33 - 2014-10-18 07:11 - 00723968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-11-12 20:33 - 2014-10-13 03:33 - 00116032 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-11-12 20:33 - 2014-10-08 08:30 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-11-12 20:33 - 2014-10-08 08:09 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-11-12 20:33 - 2014-10-08 07:27 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-11-12 20:33 - 2014-10-08 06:32 - 02773504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-11-12 20:33 - 2014-10-08 06:19 - 02459136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-11-12 20:33 - 2014-09-22 05:38 - 01519488 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-11-12 20:33 - 2014-09-22 04:06 - 00258368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-11-12 20:33 - 2014-09-22 04:06 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2014-11-12 20:33 - 2014-09-22 03:49 - 00035320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-11-12 20:33 - 2014-09-19 01:16 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-11-12 20:33 - 2014-09-02 23:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2014-11-12 20:33 - 2014-09-02 23:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2014-11-12 20:31 - 2014-10-31 06:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-11-12 20:31 - 2014-10-31 06:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-11-12 20:31 - 2014-10-31 06:10 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-11-12 20:31 - 2014-10-31 06:09 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-11-12 20:31 - 2014-10-31 06:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-11-12 20:31 - 2014-10-31 06:06 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-11-12 20:31 - 2014-10-31 06:06 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 20:31 - 2014-10-31 06:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 20:31 - 2014-10-31 05:57 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 20:31 - 2014-10-31 05:56 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 20:31 - 2014-10-31 05:54 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-11-12 20:31 - 2014-10-31 05:53 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 20:31 - 2014-10-31 05:52 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2014-11-12 20:31 - 2014-10-31 05:51 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 20:31 - 2014-10-31 05:51 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 20:31 - 2014-10-31 05:50 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 20:31 - 2014-10-31 05:40 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-11-12 20:31 - 2014-10-31 05:38 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 20:31 - 2014-10-31 05:30 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 20:31 - 2014-10-31 05:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-11-12 20:31 - 2014-10-31 05:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-11-12 20:31 - 2014-10-31 05:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-11-12 20:31 - 2014-10-31 05:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 20:31 - 2014-10-31 05:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-11-12 20:31 - 2014-10-31 05:19 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-11-12 20:31 - 2014-10-31 04:44 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-11-12 20:31 - 2014-10-31 04:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-11-12 20:31 - 2014-10-31 04:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-11-12 20:31 - 2014-10-31 04:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-11-12 20:31 - 2014-10-31 04:27 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-11-12 20:31 - 2014-10-31 04:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-11-12 20:31 - 2014-10-31 04:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-11-12 20:31 - 2014-10-31 04:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-11-12 20:31 - 2014-10-31 04:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 20:31 - 2014-10-31 04:23 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 20:31 - 2014-10-31 04:16 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 20:31 - 2014-10-31 04:15 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 20:31 - 2014-10-31 04:14 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-11-12 20:31 - 2014-10-31 04:13 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 20:31 - 2014-10-31 04:13 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2014-11-12 20:31 - 2014-10-31 04:12 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 20:31 - 2014-10-31 04:11 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 20:31 - 2014-10-31 04:03 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-11-12 20:31 - 2014-10-31 04:02 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 20:31 - 2014-10-31 03:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 20:31 - 2014-10-31 03:56 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-11-12 20:31 - 2014-10-31 03:56 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-11-12 20:31 - 2014-10-31 03:56 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-11-12 20:31 - 2014-10-31 03:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 20:31 - 2014-10-31 03:53 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-11-12 20:31 - 2014-10-31 03:48 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-11-12 20:31 - 2014-10-31 03:26 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-11-12 20:31 - 2014-10-31 03:24 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-11-12 20:30 - 2014-10-23 06:48 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 20:30 - 2014-10-23 06:05 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 20:30 - 2014-10-07 07:28 - 00500016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 20:30 - 2014-10-07 07:27 - 00482872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 20:30 - 2014-10-07 07:27 - 00394120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 20:30 - 2014-10-07 07:27 - 00272248 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-11-12 20:30 - 2014-10-07 07:27 - 00108432 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 20:30 - 2014-10-07 04:34 - 00370424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 20:30 - 2014-10-07 04:34 - 00344536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 20:30 - 2014-10-07 04:33 - 00424544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 20:30 - 2014-10-07 04:30 - 04182016 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 20:30 - 2014-10-07 02:54 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2014-11-12 20:30 - 2014-10-07 02:46 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 20:30 - 2014-09-10 07:25 - 00474432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-11-12 20:30 - 2014-09-08 04:07 - 02497344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-11-12 20:30 - 2014-09-08 04:07 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-11-12 20:30 - 2014-09-07 23:08 - 00389176 _____ () C:\Windows\system32\ApnDatabase.xml
2014-11-12 20:30 - 2014-09-04 23:30 - 00822272 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-11-12 20:30 - 2014-09-04 23:21 - 01053184 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-11-12 20:30 - 2014-09-04 04:05 - 00836176 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2014-11-12 20:30 - 2014-09-04 03:22 - 00670384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2014-11-12 20:30 - 2014-09-04 02:01 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2014-11-12 20:30 - 2014-09-04 01:32 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2014-11-12 20:30 - 2014-08-31 01:17 - 00148800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-11-12 20:30 - 2014-08-31 01:15 - 21197152 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-11-12 20:30 - 2014-08-30 23:59 - 18723112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-11-12 20:30 - 2014-08-30 23:05 - 00615424 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2014-11-12 20:30 - 2014-08-30 22:58 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2014-11-12 20:30 - 2014-08-30 22:04 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-11-12 20:30 - 2014-08-30 21:53 - 00239104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2014-11-12 20:30 - 2014-08-30 21:17 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-11-12 20:30 - 2014-08-28 03:55 - 07484224 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-11-12 20:30 - 2014-08-28 01:21 - 02480128 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-11-12 20:30 - 2014-08-28 01:06 - 02030592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-11-12 20:30 - 2014-08-23 06:18 - 02149376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 20:30 - 2014-08-23 06:14 - 13424128 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-11-12 20:30 - 2014-08-23 06:04 - 11820544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-11-12 20:30 - 2014-08-23 06:03 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 20:30 - 2014-08-23 05:50 - 02714112 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2014-11-12 20:30 - 2014-08-02 01:51 - 00545792 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-11-12 20:30 - 2014-08-02 01:35 - 00485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2014-11-11 20:48 - 2014-11-11 20:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cenega Czech
2014-11-11 20:45 - 2014-11-11 20:45 - 00000000 ____D () C:\Program Files (x86)\GameSpy Arcade

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-11 20:10 - 2014-06-09 20:16 - 00000974 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-11 20:10 - 2014-06-09 19:39 - 00000000 ___DO () C:\Users\Petr\OneDrive
2014-12-11 20:09 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2014-12-11 06:37 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-11 06:36 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-12-11 06:34 - 2013-08-22 16:36 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-12-11 06:34 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-12-11 06:28 - 2014-08-21 09:11 - 00313856 ___SH () C:\Users\Petr\Downloads\Thumbs.db
2014-12-11 05:42 - 2014-06-09 20:16 - 00000978 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-11 05:35 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache
2014-12-10 21:19 - 2014-06-09 19:43 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1320987048-3415038541-2125130481-1001
2014-12-10 20:20 - 2013-08-22 14:25 - 00000194 _____ () C:\Windows\win.ini
2014-12-10 04:18 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-RS
2014-12-10 04:18 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2014-12-10 04:18 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-09 20:05 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-12-09 20:04 - 2014-06-12 05:49 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-09 20:03 - 2014-06-12 05:49 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-09 06:33 - 2014-06-14 15:04 - 00000000 ____D () C:\Program Files (x86)\Secure Folder
2014-12-07 21:43 - 2014-06-20 17:19 - 00293888 ___SH () C:\Users\Petr\Desktop\Thumbs.db
2014-12-04 18:59 - 2014-03-18 16:33 - 01745984 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-04 18:59 - 2014-03-18 15:54 - 00738682 _____ () C:\Windows\system32\perfh005.dat
2014-12-04 18:59 - 2014-03-18 15:54 - 00151404 _____ () C:\Windows\system32\perfc005.dat
2014-12-04 18:27 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-12-04 16:58 - 2014-06-09 20:12 - 00003830 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1402341137
2014-12-04 16:58 - 2014-06-09 20:12 - 00001057 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-12-04 16:58 - 2014-06-09 20:12 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-11-26 22:10 - 2013-08-22 16:38 - 00714720 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-26 22:10 - 2013-08-22 16:38 - 00106976 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-19 17:00 - 2014-06-20 15:50 - 00000000 ____D () C:\Users\Petr\AppData\Roaming\AIMP3
2014-11-19 17:00 - 2014-06-10 17:01 - 00000000 ____D () C:\Windows\Minidump
2014-11-19 17:00 - 2014-06-03 11:29 - 00000000 ____D () C:\Windows\Panther
2014-11-17 20:02 - 2014-06-10 21:07 - 00000000 ____D () C:\Program Files (x86)\Hry
2014-11-16 09:37 - 2014-06-09 20:16 - 00003950 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-16 09:37 - 2014-06-09 20:16 - 00003714 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-16 09:28 - 2014-06-09 19:37 - 00000000 ____D () C:\Users\Petr
2014-11-13 19:00 - 2013-08-22 15:44 - 00375360 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-13 18:57 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ToastData
2014-11-13 18:57 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-11-13 18:57 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-13 18:57 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-13 18:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-11-13 18:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-11-12 21:03 - 2014-08-20 12:47 - 00000000 ___RD () C:\Users\Petr\Desktop\Hry
2014-11-12 20:48 - 2014-08-31 20:19 - 00000000 ____D () C:\Users\Petr\Downloads\Game of Thrones

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-12-11 05:14

==================== End Of Log ============================
Nahoru
spendlik.spidy

Re: Nežádoucí reklama v prohlížeči

#8 Příspěvek od spendlik.spidy »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-12-2014 01
Ran by Petr at 2014-12-11 20:14:31
Running from C:\Users\Petr\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Age of Mythology (HKLM-x32\...\Age of Mythology 1.0) (Version: - )
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.55.1345, 26.03.2014 - AIMP DevTeam)
Aktualizace NVIDIA 14.6.22 (Version: 14.6.22 - NVIDIA Corporation) Hidden
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 443) (Version: - Ubisoft)
BFME2 3PACK VER.1 (HKLM-x32\...\BFME2 3PACK_is1) (Version: - By Xnode)
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden
Call of Juarez - Bound in Blood (HKLM-x32\...\InstallShield_{019908AA-79E9-4389-A1AD-8BBEED63CFBA}) (Version: 1.01.0000 - Ubisoft)
Call of Juarez - Bound in Blood (x32 Version: 1.01.0000 - Ubisoft) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
Command & Conquer Generals (HKLM-x32\...\InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}) (Version: 0.50.0000 - Electronic Arts)
Command & Conquer Generals (x32 Version: 0.50.0000 - Electronic Arts) Hidden
Command and ConquerTM Generals Zero Hour (HKLM-x32\...\InstallShield_{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}) (Version: 1.00.0000 - Electronic Arts)
Command and ConquerTM Generals Zero Hour (x32 Version: 1.00.0000 - Electronic Arts) Hidden
DraftSight (HKLM-x32\...\{A7E24CE8-F9D0-408F-A37C-5BF0716D3E91}) (Version: 8.2.301 - Dassault Systemes)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.2.62.5207 - Gretech Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.71 - Google Inc.)
Hidden & Dangerous Deluxe (HKLM-x32\...\{FB6AE173-CBB2-40AE-8DB1-3321B281BD76}) (Version: 1.0 - )
Hitman - Sniper Challenge — Repacked by R.G. Revenants (HKLM-x32\...\Hitman - Sniper Challenge_R.G. Revenants) (Version: 1.0.364.0 - SQUARE ENIX)
Hitman Sniper Challenge (HKLM-x32\...\Hitman Sniper Challenge_is1) (Version: - )
Imperial Glory (HKLM-x32\...\{1FCC8C70-66B9-420D-942C-2C2A8441C744}) (Version: 1.00.0000 - Pyro Studios)
Imperial Glory CZ (HKLM-x32\...\Imperial Glory CZ ) (Version: - )
Mafia (HKLM-x32\...\{C72D7008-266D-4DD8-BF3C-296B736127F6}) (Version: 1.02 - )
Mafia II (HKLM-x32\...\Mafia II_is1) (Version: - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
Nero 7 Ultra Edition (HKLM-x32\...\{235BBFC6-D863-4066-A01A-3BD504C31029}) (Version: 7.02.2620 - Nero AG)
NVIDIA GeForce Experience 2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OpenOffice 4.1.0 (HKLM-x32\...\{43245B34-BAEA-4716-B877-38E7E7026698}) (Version: 4.10.9764 - Apache Software Foundation)
Opera Stable 26.0.1656.32 (HKLM-x32\...\Opera 26.0.1656.32) (Version: 26.0.1656.32 - Opera Software ASA)
Ovládací panel NVIDIA 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
Pazera Free MP4 to AVI Converter 1.9 (HKLM-x32\...\{42442BC6-5A92-4BC2-9E0C-3D359D548A21}_is1) (Version: 1.9 - Jacek Pazera)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.208.0 - Tracker Software Products Ltd)
Plus500 (HKLM-x32\...\Plus500) (Version: - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7240 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 2.1.214 - NVIDIA Corporation) Hidden
Stronghold Crusader (HKLM-x32\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: - )
Stronghold Legends (HKLM-x32\...\{66A405D2-BA14-4594-BF36-B3B544F0754E}) (Version: 1.00.0000 - Firefly Studios)
Subtitle Edit 3.3.10 (HKLM-x32\...\SubtitleEdit_is1) (Version: 3.3.10.2226 - Nikse)
Sweet Home 3D version 3.0 (HKLM-x32\...\Sweet Home 3D_is1) (Version: - eTeks)
The Battle for Middle-earth (tm) II (HKLM-x32\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - )
UltraISO Premium V9.3 (HKLM-x32\...\UltraISO_is1) (Version: - )
Unity Web Player (HKU\S-1-5-21-1320987048-3415038541-2125130481-1001\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Vypínač na dobrou noc verze 2.0 (HKLM-x32\...\Vypínač na dobrou noc_is1) (Version: - )
win8codecs (HKLM-x32\...\{898E81AD-6DB9-4750-866B-B8958C5DC7AA}) (Version: 1.4.8 - Shark007)
WinRAR 5.00 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points =========================

19-11-2014 15:38:42 Nainstalováno rozhraní DirectX
04-12-2014 17:20:10 Naplánovaný kontrolní bod
09-12-2014 19:00:54 Windows Update
11-12-2014 05:29:16 zoek.exe restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {53B01C16-C0AD-455A-81D6-B673136668DF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09] (Google Inc.)
Task: {557C8AA5-4D55-47DD-8DA3-24A368E640E6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-23] (Piriform Ltd)
Task: {8B8DDFE7-B9DE-4D92-9E97-55E4CBB64AAC} - System32\Tasks\Opera scheduled Autoupdate 1402341137 => C:\Program Files (x86)\Opera\launcher.exe [2014-11-25] (Opera Software)
Task: {90BD3561-EF10-433B-92FB-17D50537684B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09] (Adobe Systems Incorporated)
Task: {E1FA79C2-5F90-40F0-A3E0-83DC8F65D74C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09] (Google Inc.)
Task: {EBB9ECC6-ABE0-484D-90B5-051378F1E018} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-12-09] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-11-19 16:37 - 2014-11-19 17:33 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-06-03 11:02 - 2014-05-20 02:25 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-12-04 16:58 - 2014-12-04 16:58 - 00535160 _____ () C:\Program Files (x86)\Opera\26.0.1656.32\opera_crashreporter.exe
2014-10-23 20:19 - 2014-10-23 20:19 - 00043520 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:56E2E879
AlternateDataStreams: C:\Users\Petr\OneDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1320987048-3415038541-2125130481-1001\...\StartupApproved\Run: => "GoobzoYouTubeAccelerator"

========================= Accounts: ==========================

Administrator (S-1-5-21-1320987048-3415038541-2125130481-500 - Administrator - Disabled)
Guest (S-1-5-21-1320987048-3415038541-2125130481-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1320987048-3415038541-2125130481-1004 - Limited - Enabled)
Petr (S-1-5-21-1320987048-3415038541-2125130481-1001 - Administrator - Enabled) => C:\Users\Petr

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/07/2014 07:40:36 PM) (Source: MsiInstaller) (EventID: 11309) (User: SPENDLIK)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt. System error 3. Verify that the file exists and that you can access it.

Error: (12/05/2014 03:20:41 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (11/19/2014 05:50:07 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNetworkStreamService did not shut down when asked, terminating. [18]

Error: (11/19/2014 05:31:56 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru D:\Support\Software\GameLauncher\UplayInstaller.exe z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Ubisoft Uplay Installer.

Program: Ubisoft Uplay Installer
Soubor: D:\Support\Software\GameLauncher\UplayInstaller.exe

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C0000023
Typ disku: 5

Error: (11/19/2014 05:31:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: UplayInstaller.exe, verze: 4.0.0.2043, časové razítko: 0x4f47e2e4
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17278, časové razítko: 0x53eeb4a3
Kód výjimky: 0xc0000006
Posun chyby: 0x000553e2
ID chybujícího procesu: 0x330
Čas spuštění chybující aplikace: 0xUplayInstaller.exe0
Cesta k chybující aplikaci: UplayInstaller.exe1
Cesta k chybujícímu modulu: UplayInstaller.exe2
ID zprávy: UplayInstaller.exe3
Úplný název chybujícího balíčku: UplayInstaller.exe4
ID aplikace související s chybujícím balíčkem: UplayInstaller.exe5

Error: (11/19/2014 05:13:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: opera.exe, verze: 25.0.1614.71, časové razítko: 0x54656236
Název chybujícího modulu: opera.exe, verze: 25.0.1614.71, časové razítko: 0x54656236
Kód výjimky: 0xc000041d
Posun chyby: 0x02371d83
ID chybujícího procesu: 0x1204
Čas spuštění chybující aplikace: 0xopera.exe0
Cesta k chybující aplikaci: opera.exe1
Cesta k chybujícímu modulu: opera.exe2
ID zprávy: opera.exe3
Úplný název chybujícího balíčku: opera.exe4
ID aplikace související s chybujícím balíčkem: opera.exe5

Error: (11/19/2014 04:47:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SPENDLIK)
Description: Aplikaci windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (11/19/2014 04:47:06 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SPENDLIK)
Description: Aplikaci windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (11/19/2014 04:47:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SPENDLIK)
Description: Aplikaci windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (11/19/2014 04:46:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SPENDLIK)
Description: Aplikaci windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.


System errors:
=============
Error: (12/11/2014 06:40:22 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5

Error: (12/11/2014 06:34:54 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/11/2014 06:34:54 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/11/2014 06:34:53 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/11/2014 06:34:53 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/11/2014 06:34:53 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/11/2014 05:14:48 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT AUTHORITY)
Description: 0x8000002a42\SystemRoot\System32\Config\RegBack\SYSTEM

Error: (12/10/2014 09:07:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Util Techgile byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.

Error: (12/10/2014 09:07:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Update Techgile byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.

Error: (12/10/2014 09:07:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.


Microsoft Office Sessions:
=========================
Error: (12/07/2014 07:40:36 PM) (Source: MsiInstaller) (EventID: 11309) (User: SPENDLIK)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt. System error 3. Verify that the file exists and that you can access it.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/05/2014 03:20:41 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (11/19/2014 05:50:07 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNetworkStreamService did not shut down when asked, terminating. [18]

Error: (11/19/2014 05:31:56 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: D:\Support\Software\GameLauncher\UplayInstaller.exeUbisoft Uplay InstallerC00000235

Error: (11/19/2014 05:31:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: UplayInstaller.exe4.0.0.20434f47e2e4ntdll.dll6.3.9600.1727853eeb4a3c0000006000553e233001d0041654fcac9eD:\Support\Software\GameLauncher\UplayInstaller.exeC:\Windows\SYSTEM32\ntdll.dll92edbc21-7009-11e4-827c-74d4355eaab7

Error: (11/19/2014 05:13:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: opera.exe25.0.1614.7154656236opera.exe25.0.1614.7154656236c000041d02371d83120401d00410c08e4496C:\Program Files (x86)\Opera\25.0.1614.71\opera.exeC:\Program Files (x86)\Opera\25.0.1614.71\opera.exeef3cc1f9-7006-11e4-827c-74d4355eaab7

Error: (11/19/2014 04:47:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SPENDLIK)
Description: windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel-2144927148

Error: (11/19/2014 04:47:06 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SPENDLIK)
Description: windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel-2144927148

Error: (11/19/2014 04:47:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SPENDLIK)
Description: windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel-2144927148

Error: (11/19/2014 04:46:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SPENDLIK)
Description: windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel-2144927148


==================== Memory info ===========================

Processor: AMD FX(tm)-9370 Eight-Core Processor
Percentage of memory in use: 7%
Total physical RAM: 16348.62 MB
Available physical RAM: 15077.95 MB
Total Pagefile: 18780.62 MB
Available Pagefile: 17441.84 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:1396.75 GB) (Free:1079.88 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7321
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Nežádoucí reklama v prohlížeči

#9 Příspěvek od altrok »

  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CloseProcesses:
HKU\S-1-5-21-1320987048-3415038541-2125130481-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-23] (Piriform Ltd)
HKU\S-1-5-21-1320987048-3415038541-2125130481-1001\...\Policies\Explorer: [NoSecurityTab] 0
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

2014-12-11 06:35 - 2014-12-11 06:28 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-12-11 06:29 - 2014-12-11 06:38 - 00013171 _____ () C:\zoek-results.log
2014-12-11 06:28 - 2014-12-11 06:35 - 00000000 ____D () C:\zoek_backup
2014-12-11 06:27 - 2014-12-11 06:27 - 01295360 _____ () C:\Users\Petr\Desktop\zoek.exe
2014-12-09 21:14 - 2014-12-09 21:14 - 02166272 _____ () C:\Users\Petr\Desktop\adwcleaner_4.105.exe
2014-12-09 20:41 - 2014-12-09 20:41 - 01222144 _____ () C:\Users\Petr\Downloads\RSITx64.exe
2014-12-09 20:41 - 2014-12-09 20:41 - 00000000 ____D () C:\rsit
2014-12-09 20:41 - 2014-12-09 20:41 - 00000000 ____D () C:\Program Files\trend micro
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879
C:\Program Files (x86)\globalUpdate
Hosts:
EmptyTemp:
End
:arrow: Start -> Spustit -> cmd
  • vepiste chkdsk /r
  • enter a restartujte PC
  • tato kontrola a opravovani probihaji pred nactenim OS a trvaji az nekolik hodin, takze doporucuji pustit napr. pres noc
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
spendlik.spidy

Re: Nežádoucí reklama v prohlížeči

#10 Příspěvek od spendlik.spidy »

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-12-2014 01
Ran by Petr at 2014-12-12 06:48:52 Run:1
Running from C:\Users\Petr\Desktop
Loaded Profile: Petr (Available profiles: Petr)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-1320987048-3415038541-2125130481-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-23] (Piriform Ltd)
HKU\S-1-5-21-1320987048-3415038541-2125130481-1001\...\Policies\Explorer: [NoSecurityTab] 0
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

2014-12-11 06:35 - 2014-12-11 06:28 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-12-11 06:29 - 2014-12-11 06:38 - 00013171 _____ () C:\zoek-results.log
2014-12-11 06:28 - 2014-12-11 06:35 - 00000000 ____D () C:\zoek_backup
2014-12-11 06:27 - 2014-12-11 06:27 - 01295360 _____ () C:\Users\Petr\Desktop\zoek.exe
2014-12-09 21:14 - 2014-12-09 21:14 - 02166272 _____ () C:\Users\Petr\Desktop\adwcleaner_4.105.exe
2014-12-09 20:41 - 2014-12-09 20:41 - 01222144 _____ () C:\Users\Petr\Downloads\RSITx64.exe
2014-12-09 20:41 - 2014-12-09 20:41 - 00000000 ____D () C:\rsit
2014-12-09 20:41 - 2014-12-09 20:41 - 00000000 ____D () C:\Program Files\trend micro
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879
C:\Program Files (x86)\globalUpdate
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value deleted successfully.
HKU\S-1-5-21-1320987048-3415038541-2125130481-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoSecurityTab => value deleted successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Petr\Desktop\zoek.exe => Moved successfully.
C:\Users\Petr\Desktop\adwcleaner_4.105.exe => Moved successfully.
C:\Users\Petr\Downloads\RSITx64.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\ProgramData\TEMP => ":56E2E879" ADS removed successfully.
"C:\Program Files (x86)\globalUpdate" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 8.5 MB temporary data.


The system needed a reboot.

==== End of Fixlog ====
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7321
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Nežádoucí reklama v prohlížeči

#11 Příspěvek od altrok »

Takze jeste uklidime.
A pokud nejsou dotazy ci jine problemy, je to ode mne vse.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
spendlik.spidy

Re: Nežádoucí reklama v prohlížeči

#12 Příspěvek od spendlik.spidy »

Dotazy nejsou. Vše je ok.
Mockrát děkuji za pomoc.
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7321
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Nežádoucí reklama v prohlížeči

#13 Příspěvek od altrok »

Nemate zac, rad jsem pomohl :worship:


Preju Vam prijemny vikend... mejte se a treba zase nekdy :bye:
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“