Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
zbirka
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 20 pro 2014 18:47

Prosím o kontrolu

#1 Příspěvek od zbirka »

Prosím o kontrolu, děkuji

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jiri at 2014-12-20 18:43:08
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 25 GB (3%) free of 908 GB
Total RAM: 8055 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:43:13, on 20.12.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16476)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
C:\Program Files (x86)\USB Camera\VM331_STI.EXE
C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
C:\PROGRA~2\Lenovo\LENOVO~2\CAPOSD.exe
C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Genius\Manticore\MThid.exe
C:\Windows\syswow64\RunDll32.exe
C:\Users\Jiri\AppData\Local\Akamai\netsession_win.exe
C:\Users\Jiri\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Overwolf\Overwolf.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\TS Notifier\tsnotifier.exe
C:\Users\Jiri\Documents\TS\plugins\ts3overlay\InstallHook.exe
C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Users\Jiri\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
C:\Program Files (x86)\Overwolf\0.81.34.0\OverwolfTSHelper.exe
C:\Program Files (x86)\Common Files\Overwolf\0.81.34.0\OverwolfHelper.exe
C:\Program Files (x86)\Overwolf\0.81.34.0\OverwolfBrowser.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jiri.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Jiri\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BS Player ControlBar B - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Jiri\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: ArcPluginIEBHO - {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} - C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - (no file)
O2 - BHO: (no name) - {C9C42510-9B41-42c1-9DCD-7282A2D07C61}C - (no file)
O3 - Toolbar: BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Jiri\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [MuteSync] C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe
O4 - HKLM\..\Run: [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
O4 - HKLM\..\Run: [Intelligent Touchpad] C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
O4 - HKLM\..\Run: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
O4 - HKLM\..\Run: [CAPOSD] C:\PROGRA~2\Lenovo\LENOVO~2\CAPOSD.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Manticore] C:\Program Files (x86)\Genius\Manticore\MThid.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [ADSKAppManager] "C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun
O4 - HKLM\..\Run: [NI Update Service] "C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe" -startupTask
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Jiri\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [{79BF4901-1EC4-4726-B3C2-A7859706C6E7}] "C:\Users\Jiri\Downloads\LeagueofLegends_EUNE_Installer_06_17_13.exe" /cmdloc "HKCU\Software\Riot Games AiTemp\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}"
O4 - HKCU\..\Run: [Overwolf] C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
O4 - HKCU\..\Run: [SpeedItupFree] "C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe"
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_A458B43CEBC874CB3364B2EF9796C8CA] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [TeamSpeak 3 Client] "C:\Users\Jiri\Documents\TS\ts3client_win64.exe"
O4 - HKCU\..\RunOnce: [Adobe Speed Launcher] 1419095150
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: NI Error Reporting.lnk = C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MIF5BA~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\national instruments\shared\mdns responder\nimdnsnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: Autodesk Application Manager Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Arc Service (ArcService) - Perfect World Entertainment Inc - C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iSafeService - Unknown owner - C:\Program Files (x86)\iSafe\iSafeSvc.exe (file missing)
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NI Citadel 4 Service (LkCitadelServer) - National Instruments, Inc. - C:\Windows\SysWOW64\lkcitdl.exe
O23 - Service: NI PSP Service Locator (lkClassAds) - National Instruments Corporation - C:\Windows\SysWOW64\lkads.exe
O23 - Service: NI Time Synchronization (lkTimeSync) - National Instruments Corporation - C:\Windows\SysWOW64\lktsrv.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Správce úloh aplikace Autodesk Simulation Moldflow MITSI 2014 (mitsijm2014) - Autodesk, Inc. - C:\Users\Jiri\Autocad\Inventor 2014\Moldflow\bin\mitsijm.exe
O23 - Service: Autodesk Simulation Moldflow MITSI 2015 Job Manager (mitsijm2015) - Autodesk, Inc. - C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NI Application Web Server (NIApplicationWebServer) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
O23 - Service: NI Domain Service (NIDomainService) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
O23 - Service: NI mDNS Responder Service (nimDNSResponder) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
O23 - Service: NI Service Locator (NiSvcLoc) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe
O23 - Service: NI System Web Server (NISystemWebServer) - National Instruments Corporation - C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\NLSSRV32.EXE
O23 - Service: Fast boot service of lenovo (NSDSvc) - Unknown owner - C:\Windows\System32\NSDSvc.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Overwolf Updater Windows SCM (OverwolfUpdater) - Overwolf LTD - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Toolbar Service (TBSrv) - ClientConnect Ltd. - C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 19570 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 22276704
\??\C:\Windows\system32\conhost.exe "355477789-1489823948-1603061721-1530252110-1691836303-1010774213-1401031784351646103
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\SysWOW64\lkads.exe
"C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe"
"c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS
C:\Windows\SysWOW64\NLSSRV32.EXE
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\spoolsv.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe"
"C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe" -s
"C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe"
C:\Windows\SysWOW64\lkcitdl.exe
C:\Windows\SysWOW64\lktsrv.exe
"C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe" -system
"C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe" -user
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
WLIDSvcM.exe 3432
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe"
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\USB Camera\VM331_STI.EXE"
"C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
"C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe"
"C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe"
"C:\PROGRA~2\Lenovo\LENOVO~2\CAPOSD.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Genius\Manticore\MThid.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\system32\igfxtray.exe"
"C:\Windows\system32\hkcmd.exe"
"C:\Windows\system32\igfxpers.exe"
"C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
"C:\Windows\syswow64\RunDll32.exe" C:\Windows\Syswow64\cm108.dll,CMICtrlWnd
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Jiri\AppData\Local\Akamai\netsession_win.exe"
"C:/Users/Jiri/AppData/Local/Akamai/netsession_win.exe" --client
"C:\Program Files (x86)\Overwolf\Overwolf.exe" -silent
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6320.0.1832253065\1486554526" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,5,15 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2867 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/ExtensionInstallVerification/Enforce/GoogleNow/Enable/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/SPDY/SpdyDisabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_23/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/ --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6320.1.1683938624\937136935" /prefetch:673131151
"C:\Users\Jiri\Documents\TS\ts3client_win64.exe"
"C:\Program Files (x86)\TS Notifier\tsnotifier.exe"
"C:\Users\Jiri\Documents\TS\plugins\ts3overlay\InstallHook.exe" ts3overlay_hook_win32.dll 10000
"TSNotifier.x64"
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe"
"C:\Windows\SysWOW64\RunDll32.exe" "C:\Program Files\Lenovo\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Users\Jiri\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe" -showminimized -checkautorun
"C:\Program Files (x86)\Overwolf\0.81.34.0\OverwolfTSHelper.exe" -Embedding
"C:\Program Files (x86)\Common Files\Overwolf\0.81.34.0\OverwolfHelper.exe" "path=C:\Program Files (x86)\Overwolf\0.81.34.0" "overwolfprocid=2044"
"C:\Program Files (x86)\Common Files\Overwolf\0.81.34.0\OverwolfHelper64.exe" "path=C:\Program Files (x86)\Overwolf\0.81.34.0\x64\OWExplorerLauncher.dll
"C:\Program Files (x86)\Overwolf\0.81.34.0\OverwolfBrowser.exe" --type=gpu-process --channel="2044.0.1055754556\559277980" --no-sandbox --lang=en-US --log-file="C:\Users\Jiri\AppData\Local\Overwolf\Log\OverwolfBrowser_2044.log" --log-severity=info --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2867 --lang=en-US --log-file="C:\Users\Jiri\AppData\Local\Overwolf\Log\OverwolfBrowser_2044.log" --log-severity=info /prefetch:822062411
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -critical
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/ExtensionInstallVerification/Enforce/GoogleNow/Enable/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/SPDY/SpdyDisabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_23/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/ --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6320.10.174669054\868622743" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/ExtensionInstallVerification/Enforce/GoogleNow/Enable/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/SPDY/SpdyDisabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_23/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/ --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6320.12.1825405974\735911334" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll" --lang=cs --channel="6320.13.864233388\385427345" /prefetch:-390060480
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/ExtensionInstallVerification/Enforce/GoogleNow/Enable/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/SPDY/SpdyDisabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_23/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/ --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6320.15.587511896\1543060610" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/ExtensionInstallVerification/Enforce/GoogleNow/Enable/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/SPDY/SpdyDisabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-1-Percent/group_23/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/ --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6320.19.1172417523\1574319967" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe14_ Global\UsGthrCtrlFltPipeMssGthrPipe14 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Users\Jiri\Downloads\RSITx64.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu

#2 Příspěvek od vyosek »

Zdravim :)

:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Po spusteni probehne stazeni databaze
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
:arrow: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do okna vlozte skript nize

  • Kód: Vybrat vše

    autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;
  • Nasledne kliknete na Run Script
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
zbirka
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 20 pro 2014 18:47

Re: Prosím o kontrolu

#3 Příspěvek od zbirka »

AdwCleaner log:
# AdwCleaner v4.106 - Report created 21/12/2014 at 18:38:41
# Updated 21/12/2014 by Xplode
# Database : 2014-12-21.4 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Jiri - JIRI-PC
# Running from : C:\Users\Jiri\Downloads\adwcleaner_4.106.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : iSafeKrnlBoot
[#] Service Deleted : iSafeKrnlKit
[#] Service Deleted : iSafeService
Service Deleted : TBSrv

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\Tbccint
Folder Deleted : C:\ProgramData\ytd video downloader
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YAC
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader
Folder Deleted : C:\Program Files (x86)\GreenTree Applications
Folder Deleted : C:\Program Files (x86)\Tbccint
Folder Deleted : C:\Users\Jiri\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Jiri\AppData\Local\Temp\iSafeRightKeyScan
Folder Deleted : C:\Users\Jiri\AppData\Local\Temp\BS_Player_ControlBar_B
Folder Deleted : C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\defaulttab
Folder Deleted : C:\Users\Jiri\AppData\Local\Tbccint
Folder Deleted : C:\Users\Jiri\AppData\LocalLow\Tbccint
Folder Deleted : C:\Users\Jiri\AppData\LocalLow\BS_Player_ControlBar_B
Folder Deleted : C:\Users\Jiri\AppData\Roaming\SmartPCFix
File Deleted : C:\END
File Deleted : C:\Users\Public\Desktop\YAC.lnk
File Deleted : C:\Windows\SpeedItup Free Setup Log.txt
File Deleted : C:\Windows\System32\drivers\iSafeKrnlBoot.sys
File Deleted : C:\Windows\System32\log\iSafeKrnlCall.log
File Deleted : C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_continuetosave.info_0.localstorage
File Deleted : C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
File Deleted : C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal
File Deleted : C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage-journal
File Deleted : C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage
File Deleted : C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.ak.facebook.com_0.localstorage
File Deleted : C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.ak.facebook.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****

Task Deleted : DTReg
Task Deleted : SmartPCFix Task

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [addlyrics@addlyrics.net]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\gpicboiclhmnllnjdcfcffifpoaebgkm
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IECT3329621
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3329621
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5411D116-5A37-47D4-B154-5F7FCD9062F0}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Tbccint
Key Deleted : HKCU\Software\Tbccint_HKLM
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Tbccint
Key Deleted : HKCU\Software\AppDataLow\Software\BS_Player_ControlBar_B
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\iSafe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iSafe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\delta-search.com

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16476


-\\ Mozilla Firefox v23.0.1 (cs)


-\\ Google Chrome v35.0.1916.153


-\\ Chromium v


*************************

AdwCleaner[R0].txt - [10258 octets] - [30/06/2014 17:10:24]
AdwCleaner[R1].txt - [5401 octets] - [21/12/2014 18:36:44]
AdwCleaner[S0].txt - [10068 octets] - [30/06/2014 17:15:37]
AdwCleaner[S1].txt - [5218 octets] - [21/12/2014 18:38:41]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [5278 octets] ##########





Zoek log:

Zoek.exe v5.0.0.0 Updated 21-December-2014
Tool run by Jiri on ne 21.12.2014 at 18:53:15,13.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Jiri\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

21.12.2014 18:57:32 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\Amazon deleted successfully
C:\PROGRA~2\AVS4YOU deleted successfully
C:\PROGRA~2\Benchmarks deleted successfully
C:\PROGRA~2\Movies deleted successfully
C:\PROGRA~2\Mp3 File Editor deleted successfully
C:\PROGRA~2\Screenshots deleted successfully
C:\PROGRA~2\WinRAR deleted successfully
C:\Program Files\Google deleted successfully
C:\PROGRA~3\BioWare deleted successfully
C:\PROGRA~3\dbg deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\Users\Jiri\AppData\Roaming\Publish Providers deleted successfully
C:\Users\Jiri\AppData\Roaming\Solveig Multimedia deleted successfully
C:\Users\Jiri\AppData\Local\Intel WiDi deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2948660152-2728633864-231992396-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C9C42510-9B41-42c1-9DCD-7282A2D07C61} deleted successfully
HKEY_USERS\S-1-5-21-2948660152-2728633864-231992396-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C9C42510-9B41-42c1-9DCD-7282A2D07C61} deleted successfully
HKEY_USERS\S-1-5-21-2948660152-2728633864-231992396-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{465F6338-8D69-4EE3-BD72-6927EB475727} deleted successfully
HKEY_USERS\S-1-5-21-2948660152-2728633864-231992396-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49739F95-411D-4BD7-AAC8-E161D78B15D5} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{C9C42510-9B41-42c1-9DCD-7282A2D07C61} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{31264a33-a653-46c4-af49-1232c59a7da5} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{D19CA586-DD6C-4a0a-96F8-14644F340D60} deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\48eyjpzh.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.search.defaulturl", "https://www.google.com/search");
user_pref("browser.newtab.url", "about:newtab");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "https://www.google.com/search");
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\48eyjpzh.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

Deleted from C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\ngbwu99e.default\prefs.js:

Added to C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\ngbwu99e.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

==== Deleting Files \ Folders ======================

"C:\$Recycle.Bin\S-1-5-18\$ab8b7458f5d2ed8877b9590b4997a5bd" not found
C:\Windows\syswow64\appdata deleted
C:\PROGRA~3\OneKey Recovery deleted
C:\Users\Jiri\AppData\Local\9896 deleted
C:\PROGRA~3\AnyAppSnow deleted
C:\PROGRA~3\DivX deleted
C:\Users\Jiri\AppData\Local\DynamicPricer deleted
C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted
C:\PROGRA~2\COMMON~1\Config deleted
C:\awhFAE3.tmp deleted
C:\install.exe deleted
C:\Users\Jiri\AppData\Roaming\WB.CFG deleted
C:\PROGRA~3\spds90.txt deleted
C:\PROGRA~3\InstallMate deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Jiri\AppData\Local\cache deleted
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847} deleted
C:\Users\Public\AlexaNSISPlugin.4184.dll deleted
C:\Users\Jiri\Downloads\bsplayer267-1076 (1).exe deleted
C:\Users\Jiri\Downloads\bsplayer267-1076.exe deleted
C:\Windows\SpeedItup Free Uninstall Log.txt deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
C:\Windows\Syswow64\hfnapi.dll deleted
C:\Windows\SysWow64\searchplugins deleted
C:\Windows\SysWow64\Extensions deleted
C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\48eyjpzh.default\jetpack deleted
C:\Users\Public\Desktop\YTD Video Downloader.lnk deleted
C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\48eyjpzh.default\extensions\trtv3@trtv.com deleted
"C:\$Recycle.Bin\S-1-5-21-2948660152-2728633864-231992396-1001\$ab8b7458f5d2ed8877b9590b4997a5bd\@" deleted
"C:\$Recycle.Bin\S-1-5-21-2948660152-2728633864-231992396-1001\$ab8b7458f5d2ed8877b9590b4997a5bd" deleted
"C:\$Recycle.Bin\S-1-5-21-2948660152-2728633864-231992396-1001\$ab8b7458f5d2ed8877b9590b4997a5bd\L" deleted
"C:\$Recycle.Bin\S-1-5-21-2948660152-2728633864-231992396-1001\$ab8b7458f5d2ed8877b9590b4997a5bd\U" deleted

==== Registry Search Results for "$ab8b7458f5d2ed8877b9590b4997a5bd" ======================

No instances of string "$ab8b7458f5d2ed8877b9590b4997a5bd" found.

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"DynamicPricer@dynamic-pricer.com"="C:\Users\Jiri\AppData\Local\DynamicPricer\Firefox\DynamicPricer.xpi" []

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================


==== Fake Chromium Profiles Check ======================

Fake profile C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome deleted

==== Chromium Look ======================

Google Chrome Version: 35.0.1916.153 (Could not determine latest Stable Version)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[05.08.2014 11:56]

Shakes & Fidget - The Game - Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\bedbefcclknjiaehimbfbihichjdojhj
AdBlock - Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom

==== Chromium Fix ======================

C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_lyrics.profitux.cz_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_lyrics.profitux.cz_0.localstorage-journal deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_websearch.fastsearchings.info_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_websearch.fastsearchings.info_0.localstorage-journal deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.devfinder.net_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.devfinder.net_0.localstorage-journal deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.devfinder.net_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.devfinder.net_0.localstorage-journal deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_safesaver.net_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_safesaver.net_0.localstorage-journal deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.tanzuki.net_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.tanzuki.net_0.localstorage-journal deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.woolik.com_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.woolik.com_0.localstorage-journal deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.gw2services.com_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.gw2services.com_0.localstorage-journal deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mydeals.cz_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mydeals.cz_0.localstorage-journal deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_company-of-heroes-2.en.softonic.com_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_company-of-heroes-2.en.softonic.com_0.localstorage-journal deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_cyberlink-power2go.en.softonic.com_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_cyberlink-power2go.en.softonic.com_0.localstorage-journal deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_spider-player.en.softonic.com_0.localstorage deleted successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_spider-player.en.softonic.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="http://www.bing.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0191A6B0-1154-4C22-9182-23A95BBE92D9} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{9050FFD3-6DE6-44A3-9BE2-F08EF83990C5} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_13415"
{932E9A08-6AC6-4513-AEAF-B213F2E9D7D0} Seznam Url="http://search.seznam.cz/?q={searchTerms ... arch_13415"

==== Reset Google Chrome ======================

C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\DynamicPricer@dynamic-pricer.com deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\788801e6-1709-43e6-aec5-3d67ad741d5b deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D3FFD23E-01C9-BDAE-2D1E-93D3597B2891} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA2309AA-D069-1F3E-5F2C-BB0B23939FF2} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F648C273-E454-C92D-85BC-2F5555A506A4} deleted successfully
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jiri\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Jiri\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jiri\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jiri\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Jiri\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\Jiri\AppData\Local\Mozilla\Firefox\Profiles\48eyjpzh.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=937 folders=122 92096205 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Jiri\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Jiri\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Jiri\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

==== EOF on ne 21.12.2014 at 19:27:40,85 ======================
Naposledy upravil(a) vyosek dne 21 pro 2014 23:05, celkem upraveno 1 x.
Důvod: log odstranen z code
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu

#4 Příspěvek od vyosek »

:arrow: Heeezky procisteno :arcisit:

:arrow: Tak mrknem na zbytecky, dejte log z FRST http://forum.viry.cz/viewtopic.php?f=30&t=133101
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
zbirka
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 20 pro 2014 18:47

Re: Prosím o kontrolu

#5 Příspěvek od zbirka »

Je možné že při předešlém číštění došlu k nějakým změnám nebo smazání configu u myši a klávesnice?

Zde je FRST log:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-12-2014 01
Ran by Jiri (administrator) on JIRI-PC on 22-12-2014 17:07:02
Running from C:\Users\Jiri\Downloads
Loaded Profile: Jiri (Available profiles: UpdatusUser & Jiri)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 9
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(National Instruments, Inc.) C:\Windows\SysWOW64\lkcitdl.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331_STI.EXE
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\smdmf\SmdmFService.exe
() C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\smdmf\SmdmFService.exe
(Lenovo) C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\smdmf\smdmfu.exe
(LENOVO) C:\Program Files (x86)\Lenovo\Lenovo CAPOSD\CAPOSD.exe
(Autodesk, Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(KYE) C:\Program Files (x86)\Genius\Manticore\MTHid.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Akamai Technologies, Inc.) C:\Users\Jiri\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Jiri\AppData\Local\Akamai\netsession_win.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(TeamSpeak Systems GmbH) C:\Users\Jiri\Documents\TS\ts3client_win64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(http://cfxxl.de) C:\Program Files (x86)\TS Notifier\TSNotifier.exe
() C:\Users\Jiri\Documents\TS\plugins\ts3overlay\InstallHook.exe
(http://cfxxl.de) C:\Program Files (x86)\TS Notifier\TSNotifier.x64
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Autodesk Inc.) C:\Users\Jiri\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.81.34.0\OverwolfHelper.exe
() C:\Program Files (x86)\Overwolf\0.81.34.0\OverwolfBrowser.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.81.34.0\OverwolfTSHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.81.34.0\OverwolfHelper64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
(OSD) C:\Program Files (x86)\Genius\Manticore\OSD.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\htcnat.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2847016 2011-11-10] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13774552 2014-11-19] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1391472 2014-12-02] (Realtek Semiconductor)
HKLM\...\Run: [SynLenovoGestureMgr] => C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [408872 2011-11-10] (Synaptics)
HKLM\...\Run: [OnekeyStudio] => C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [789856 2012-08-02] (Lenovo)
HKLM\...\Run: [UpdatePRCShortCut] => C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-14] (CyberLink Corp.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [8079408 2012-08-02] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [6202416 2012-08-02] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo EE Boot Optimizer] => C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [206176 2012-08-02] (Lenovo)
HKLM\...\Run: [IntelliType Pro] => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1464944 2012-11-02] (Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2076272 2012-11-02] (Microsoft Corporation)
HKLM\...\Run: [Cm108Sound] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm108.dll,CMICtrlWnd
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1391472 2014-12-02] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1391472 2014-12-02] (Realtek Semiconductor)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-21] (Intel Corporation)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331_STI.EXE [548864 2011-11-24] (Vimicro)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [MuteSync] => C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe [343040 2012-02-04] (Lenovo)
HKLM-x32\...\Run: [Lenovo Registration] => C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [4351712 2012-01-26] (Lenovo, Inc.)
HKLM-x32\...\Run: [Intelligent Touchpad] => C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe [291272 2011-12-08] ()
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2011-01-29] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [228448 2011-01-29] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2010-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [VeriFaceManager] => C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [329056 2012-08-02] (Lenovo)
HKLM-x32\...\Run: [UpdatePRCShortCut] => C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-14] (CyberLink Corp.)
HKLM-x32\...\Run: [CAPOSD] => C:\Program Files (x86)\Lenovo\Lenovo CAPOSD\CAPOSD.exe [1876992 2012-02-09] (LENOVO)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1632216 2012-07-23] (Autodesk, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-05] (AVAST Software)
HKLM-x32\...\Run: [Manticore] => C:\Program Files (x86)\Genius\Manticore\MThid.exe [293376 2013-10-29] (KYE)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [488328 2014-09-04] (Autodesk Inc.)
HKLM-x32\...\Run: [NI Update Service] => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [857888 2013-05-28] (National Instruments)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox] C:\$Recycle.Bin\S-1-5-18\$ab8b7458f5d2ed8877b9590b4997a5bd\n. ATTENTION! ====> ZeroAccess?
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Jiri\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-29] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [Pando Media Booster] => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624 2012-12-05] ()
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [{79BF4901-1EC4-4726-B3C2-A7859706C6E7}] => "C:\Users\Jiri\Downloads\LeagueofLegends_EUNE_Installer_06_17_13.exe" /cmdloc "HKCU\Software\Riot Games AiTemp\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}"
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [39712 2014-10-22] (Overwolf LTD)
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [SpeedItupFree] => "C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe"
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3618648 2014-12-20] (Electronic Arts)
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [GoogleChromeAutoLaunch_A458B43CEBC874CB3364B2EF9796C8CA] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [856904 2014-12-06] (Google Inc.)
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [TeamSpeak 3 Client] => C:\Users\Jiri\Documents\TS\ts3client_win64.exe [10725320 2014-08-06] (TeamSpeak Systems GmbH)
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [DrvUpdater] => C:\Users\Jiri\AppData\Roaming\DRPSu\DrvUpdater.exe [195256 2014-08-23] ()
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\RunOnce: [Adobe Speed Launcher] => 1419260909
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: G - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: H - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: {0bf0812a-a4d0-11e2-bb6e-089e01113630} - E:\autorun.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: {3c340e78-2c20-11e2-bcf0-446d57bede7c} - E:\setup.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: {8105bf91-ade5-11e3-a469-089e01113630} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: {9f5e2791-b1f8-11e3-933a-089e01113630} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: {9f5e279d-b1f8-11e3-933a-089e01113630} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...409d6c4515e9\InprocServer32: [Default-shell32] C:\$Recycle.Bin\S-1-5-21-2948660152-2728633864-231992396-1001\$ab8b7458f5d2ed8877b9590b4997a5bd\n. ATTENTION! ====> ZeroAccess?
AppInit_DLLs: C:\Users\Jiri\AppData\Local\Linkey\IEEXTE~1\iedll64.dll => C:\Users\Jiri\AppData\Local\Linkey\IEExtension\iedll64.dll [202256 2014-08-31] (Aztec Media Inc)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174856 2014-11-13] (NVIDIA Corporation)
AppInit_DLLs: C:\Program Files => C:\Program Files [0 2014-12-22] ()
AppInit_DLLs-x32: C:\Users\Jiri\AppData\Local\Linkey\IEEXTE~1\iedll.dll => C:\Users\Jiri\AppData\Local\Linkey\IEExtension\iedll.dll [175632 2014-08-31] (Aztec Media Inc)
AppInit_DLLs-x32: ,C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [156840 2014-11-13] (NVIDIA Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Settings Manager\smdmf\sysapcrt.dll [488464 2014-09-22] ()
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Settings Manager\smdmf\x64\sysapcrt.dll [662032 2014-09-22] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [VeriFace Enc] -> {771C7324-DA80-49D3-8017-753B0AF60951} => C:\Windows\system32\IcnOvrly.dll ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.google.com/ig/redirectdomain ... &bmod=KMOH
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.default-search.net?sid=503&a ... 69&src=hmp
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
StartMenuInternet: IEXPLORE.EXE - c:\program files (x86)\internet explorer\iexplore.exe
SearchScopes: HKLM -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-search.net/search?si ... earchTerms}
SearchScopes: HKLM-x32 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-search.net/search?si ... earchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2948660152-2728633864-231992396-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2948660152-2728633864-231992396-1001 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2948660152-2728633864-231992396-1001 -> {9050FFD3-6DE6-44A3-9BE2-F08EF83990C5} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
SearchScopes: HKU\S-1-5-21-2948660152-2728633864-231992396-1001 -> {932E9A08-6AC6-4513-AEAF-B213F2E9D7D0} URL = http://search.seznam.cz/?q={searchTerms ... arch_13415
SearchScopes: HKU\S-1-5-21-2948660152-2728633864-231992396-1001 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-search.net/search?si ... earchTerms}
BHO: Linkey -> {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} -> C:\Users\Jiri\AppData\Local\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Linkey -> {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} -> C:\Users\Jiri\AppData\Local\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll (Perfect World Entertainment Inc)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: No Name -> {C9C42510-9B41-42c1-9DCD-7282A2D07C61}C -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 10 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [26512] (National Instruments Corporation)
Winsock: Catalog5-x64 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5-x64 10 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [28560] (National Instruments Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\48eyjpzh.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchEngine: default-search.net
FF DefaultSearchUrl: hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: default-search.net
FF SelectedSearchEngine: default-search.net
FF Homepage: hxxp://www.default-search.net?sid=503&aid=112& ... 69&src=hmp
FF Keyword.URL: hxxp://www.default-search.net/search?sid=503&a ... &src=ds&p=
FF NetworkProxy: "type",
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @java.com/DTPlugin,version=10.17.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\npArcPluginFF.dll (Perfect World Entertainment Inc)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @wolfram.com/Mathematica -> C:\Program Files (x86)\Common Files\Wolfram Research\Browser\9.0.1.4055459\npmathplugin.dll (Wolfram Research, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2948660152-2728633864-231992396-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Jiri\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2948660152-2728633864-231992396-1001: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nplv2012win32.dll (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nplv2013win32.dll (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPLV82Win32.dll (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nplv86win32.dll (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nplv90win32.dll (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF SearchPlugin: C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\48eyjpzh.default\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF Extension: Linkey for Firefox - C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\48eyjpzh.default\Extensions\extension@linkeyproject.com [2014-12-22]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-11-01]

Chrome:
=======
CHR Profile: C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Linkey) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpmeembnagmagppkgghhfjfdfajdfcah [2014-12-22]
CHR Extension: (Avast Online Security) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-12-21]
CHR Extension: (Peněženka Google) - C:\Users\Jiri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR HKLM-x32\...\Chrome\Extension: [fpmeembnagmagppkgghhfjfdfajdfcah] - C:\Users\Jiri\AppData\Local\Linkey\ChromeExtension\ChromeExtension.crx [2014-12-22]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-05]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [597896 2014-09-04] (Autodesk Inc.)
S3 ArcService; C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe [88424 2013-08-15] (Perfect World Entertainment Inc)
S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-05] (AVAST Software)
S2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [945440 2012-02-02] (Broadcom Corporation.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2000-01-01] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-08] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-08] (Intel Corporation)
R2 LkCitadelServer; C:\Windows\SysWOW64\lkcitdl.exe [695136 2010-10-27] (National Instruments, Inc.)
R2 lkClassAds; C:\Windows\SysWOW64\lkads.exe [53544 2013-06-12] (National Instruments Corporation)
R2 lkTimeSync; C:\Windows\SysWOW64\lktsrv.exe [63792 2013-06-12] (National Instruments Corporation)
S2 mitsijm2014; C:\Users\Jiri\Autocad\Inventor 2014\Moldflow\bin\mitsijm.exe [952608 2013-01-25] (Autodesk, Inc.)
R2 mitsijm2015; C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe [968480 2013-10-11] (Autodesk, Inc.)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [57696 2013-06-08] (National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [81248 2013-06-08] (National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [380720 2013-06-12] (National Instruments Corporation)
S4 NILM License Manager; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1427688 2010-08-02] (Macrovision Corporation)
R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [260976 2013-05-11] (National Instruments Corporation)
R2 NiSvcLoc; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [90440 2013-06-07] (National Instruments Corporation)
R2 NISystemWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [57680 2013-06-08] (National Instruments Corporation)
S2 NSDSvc; C:\Windows\System32\NSDSvc.exe [120160 2011-12-24] (Lenovo)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [997664 2014-10-22] (Overwolf LTD)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-09-09] ()
R2 SmdmFService; C:\Program Files (x86)\Settings Manager\smdmf\SmdmFService.exe [3572240 2014-09-22] (Aztec Media Inc)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-05] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-05] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-05] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-05] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-05] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-01-10] ()
S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [134696 2012-02-02] (Broadcom Corporation.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-04-14] (DT Soft Ltd)
R1 F06DEFF2-5B9C-490D-910F-35D3A9119622; C:\Program Files (x86)\Settings Manager\smdmf\x64\smdmfmgrc2.cfg [41872 2014-09-22] (Aztec Media Inc)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-24] (Intel Corporation)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-01-10] ()
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R0 NSD; C:\Windows\System32\drivers\nsd.sys [24160 2011-12-24] (Lenovo Corporation")
R1 Nsdfltr; C:\Windows\System32\drivers\Nsdfltr.sys [59488 2011-12-22] (Lenovo Corporation)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-01-14] (Anchorfree Inc.)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [952832 2011-12-06] (Vimicro Corporation)
U3 BcmSqlStartupSvc; No ImagePath
U2 CLKMSVC10_3A60B698; No ImagePath
U2 CLKMSVC10_C3B3B687; No ImagePath
S3 cpuz135; \??\C:\Program Files (x86)\CPUID\PC Wizard 2012\pcwiz_x64.sys [X]
U2 DriverService; No ImagePath
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
U2 IAStorDataMgrSvc; No ImagePath
U2 iATAgentService; No ImagePath
U2 idealife Update Service; No ImagePath
U3 IGRS; No ImagePath
U2 iphlpsvc; No ImagePath
U2 IviRegMgr; No ImagePath
U2 Oasis2Service; No ImagePath
U2 PCCarerService; No ImagePath
U2 ReadyComm.DirectRouter; No ImagePath
U2 RichVideo; No ImagePath
U2 RtLedService; No ImagePath
U2 SeaPort; No ImagePath
U2 SoftwareService; No ImagePath
S3 XFDriver64; \??\C:\Program Files (x86)\Xfire2\XFDriver64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-22 17:07 - 2014-12-22 17:07 - 00037112 _____ () C:\Users\Jiri\Downloads\FRST.txt
2014-12-22 17:06 - 2014-12-22 17:07 - 00000000 ____D () C:\FRST
2014-12-22 17:06 - 2014-12-22 17:06 - 02122240 _____ (Farbar) C:\Users\Jiri\Downloads\FRST64.exe
2014-12-22 15:02 - 2014-12-22 15:02 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2014-12-22 15:01 - 2014-12-22 15:01 - 00000000 ____D () C:\ProgramData\Intel.sav
2014-12-22 14:48 - 2014-12-22 14:48 - 00000700 _____ () C:\Users\Public\Desktop\Intel(R) HD Graphics Control Panel.lnk
2014-12-22 14:45 - 2000-01-01 01:00 - 23048704 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 18033152 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 12145224 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 11758968 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 10943704 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 10462176 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 08387072 _____ (Intel Corporation) C:\Windows\system32\ig7icd64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 06542336 _____ (Intel Corporation) C:\Windows\SysWOW64\ig7icd32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 04595808 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 03824272 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2014-12-22 14:45 - 2000-01-01 01:00 - 03663152 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 02023936 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 01756160 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 01677824 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 01555456 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 01137080 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 01132960 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00734720 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00656896 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00453872 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2014-12-22 14:45 - 2000-01-01 01:00 - 00445432 _____ (Intel Corporation) C:\Windows\system32\igdmd64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00372736 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00358912 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00352744 _____ (Intel Corporation) C:\Windows\SysWOW64\igdmd32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00330240 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00294912 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00291328 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00271872 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00250368 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00223744 _____ () C:\Windows\system32\igdde64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00218808 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00214016 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00188456 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00184320 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00183808 _____ () C:\Windows\SysWOW64\igdde32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00183800 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00182784 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3910.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00160256 _____ () C:\Windows\system32\igdail64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00159056 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00154624 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00143360 _____ () C:\Windows\SysWOW64\igdail32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00070144 _____ () C:\Windows\system32\igfxCUIServicePS.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00069632 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00058368 _____ ( ) C:\Windows\system32\igfxDHLib.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00031408 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00030720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00010752 _____ ( ) C:\Windows\system32\igfxDILib.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLib.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00010240 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll
2014-12-22 14:45 - 2000-01-01 01:00 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLib.dll
2014-12-22 14:44 - 2000-01-01 01:00 - 04350056 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 04346472 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 02813952 _____ () C:\Windows\system32\iglhxa64.cpa
2014-12-22 14:44 - 2000-01-01 01:00 - 00931944 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 00545896 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 00545384 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 00503400 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 00398952 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 00398440 _____ (Intel Corporation) C:\Windows\system32\CustomModeAppv2_0.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 00318568 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 00280680 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 00254976 _____ () C:\Windows\system32\igfxCPL.cpl
2014-12-22 14:44 - 2000-01-01 01:00 - 00245864 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 00193128 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 00187508 _____ () C:\Windows\system32\resTHA.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00180324 _____ () C:\Windows\system32\resELL.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00176180 _____ () C:\Windows\system32\resRUS.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00162036 _____ () C:\Windows\system32\resARA.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00161492 _____ () C:\Windows\system32\resHEB.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00161428 _____ () C:\Windows\system32\resJPN.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00156852 _____ () C:\Windows\system32\resFRA.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00156836 _____ () C:\Windows\system32\resHUN.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00155140 _____ () C:\Windows\system32\resKOR.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00155044 _____ () C:\Windows\system32\resITA.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00155044 _____ () C:\Windows\system32\resDEU.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00154884 _____ () C:\Windows\system32\resROM.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00154772 _____ () C:\Windows\system32\resESN.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00154728 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2014-12-22 14:44 - 2000-01-01 01:00 - 00154340 _____ () C:\Windows\system32\resPLK.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00154196 _____ () C:\Windows\system32\resSKY.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00154004 _____ () C:\Windows\system32\resNLD.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00153444 _____ () C:\Windows\system32\resPTB.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00153300 _____ () C:\Windows\system32\resTRK.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00153268 _____ () C:\Windows\system32\resCSY.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00153140 _____ () C:\Windows\system32\resPTG.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00152724 _____ () C:\Windows\system32\resFIN.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00152292 _____ () C:\Windows\system32\resHRV.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00151844 _____ () C:\Windows\system32\resSVE.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00151668 _____ () C:\Windows\system32\resSLV.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00150740 _____ () C:\Windows\system32\resNOR.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00150228 _____ () C:\Windows\system32\resDAN.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00148916 _____ () C:\Windows\system32\resENU.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00147140 _____ () C:\Windows\system32\resCHT.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00146308 _____ () C:\Windows\system32\resCHS.cui
2014-12-22 14:44 - 2000-01-01 01:00 - 00044025 _____ () C:\Windows\system32\iglhxo64.vp
2014-12-22 14:44 - 2000-01-01 01:00 - 00043816 _____ () C:\Windows\system32\iglhxc64_dev.vp
2014-12-22 14:44 - 2000-01-01 01:00 - 00043494 _____ () C:\Windows\system32\iglhxc64.vp
2014-12-22 14:44 - 2000-01-01 01:00 - 00043298 _____ () C:\Windows\system32\iglhxg64_dev.vp
2014-12-22 14:44 - 2000-01-01 01:00 - 00043256 _____ () C:\Windows\system32\iglhxg64.vp
2014-12-22 14:44 - 2000-01-01 01:00 - 00042079 _____ () C:\Windows\system32\iglhxo64_dev.vp
2014-12-22 14:44 - 2000-01-01 01:00 - 00002532 _____ () C:\Windows\system32\iglhxs64.vp
2014-12-22 14:44 - 2000-01-01 01:00 - 00001125 _____ () C:\Windows\system32\iglhxa64.vp
2014-12-22 13:38 - 2014-12-22 16:38 - 00000408 _____ () C:\Windows\Tasks\SlimDrivers Startup.job
2014-12-22 13:38 - 2014-12-22 16:09 - 00002832 _____ () C:\Windows\System32\Tasks\SlimDrivers Startup
2014-12-22 13:37 - 2014-12-22 13:37 - 00858432 _____ (SlimWare Utilities, Inc.) C:\Users\Jiri\Downloads\slimdrivers-setup.exe
2014-12-22 13:37 - 2014-12-22 13:37 - 00002467 _____ () C:\Users\Public\Desktop\SlimDrivers.lnk
2014-12-22 13:37 - 2014-12-22 13:37 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-12-22 13:37 - 2014-12-22 13:37 - 00000000 ____D () C:\Users\Jiri\AppData\Local\SlimWare Utilities Inc
2014-12-22 13:32 - 2014-12-22 13:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-12-22 13:31 - 2014-12-22 13:31 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-12-22 13:31 - 2014-12-22 13:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-12-22 13:30 - 2014-12-22 13:30 - 13087456 _____ (Microsoft Corporation) C:\Users\Jiri\Downloads\Silverlight_x64.exe
2014-12-22 12:09 - 2014-12-22 15:05 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-12-22 12:09 - 2014-12-22 15:05 - 00000000 ____D () C:\Windows\system32\NV
2014-12-22 12:05 - 2014-12-22 12:05 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2014-12-22 12:05 - 2014-12-22 12:05 - 00000776 _____ () C:\Windows\LkmdfCoInst.log
2014-12-22 12:03 - 2014-12-22 12:03 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-12-22 11:57 - 2014-12-03 16:51 - 00960728 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-12-22 11:57 - 2014-12-03 14:41 - 04290520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-12-22 11:57 - 2014-12-03 13:15 - 01485163 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-12-22 11:57 - 2014-12-02 14:42 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-12-22 11:57 - 2014-11-27 13:06 - 72823296 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-12-22 11:57 - 2014-11-27 11:31 - 02823024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-12-22 11:57 - 2014-11-19 11:42 - 01289944 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-12-22 11:57 - 2014-11-11 09:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-12-22 11:57 - 2014-08-27 15:10 - 00942808 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-12-22 11:57 - 2014-08-27 15:10 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-12-22 11:57 - 2014-08-14 15:16 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-12-22 11:57 - 2014-08-06 09:43 - 02860760 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-12-22 11:57 - 2014-07-11 16:02 - 11527888 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETwsw00.sys
2014-12-22 11:57 - 2014-04-24 18:34 - 00633704 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2014-12-22 11:57 - 2014-04-24 18:34 - 00028008 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2014-12-22 11:57 - 2014-04-10 08:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-12-22 11:57 - 2014-03-19 04:24 - 01843992 _____ (Logitech, Inc.) C:\Windows\system32\LkmdfCoInst.dll
2014-12-22 11:57 - 2014-03-19 04:24 - 00076568 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LHidFilt.Sys
2014-12-22 11:57 - 2014-03-19 04:24 - 00059160 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LMouFilt.Sys
2014-12-22 11:57 - 2014-03-19 04:24 - 00053016 _____ (Logitech, Inc.) C:\Windows\system32\LMouFiltCoInst.dll
2014-12-22 11:57 - 2014-03-19 04:24 - 00040728 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LUsbFilt.sys
2014-12-22 11:57 - 2014-03-06 12:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-12-22 11:57 - 2013-12-10 16:15 - 00795632 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2014-12-22 11:57 - 2013-10-11 07:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-12-22 11:57 - 2013-08-14 11:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-12-22 11:57 - 2013-08-14 11:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-12-22 11:57 - 2012-08-31 15:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-12-22 11:57 - 2012-08-31 15:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-12-22 11:57 - 2012-08-31 15:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-12-22 11:57 - 2012-08-31 15:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-12-22 11:57 - 2012-08-31 15:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 31893136 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 24557712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 20986592 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 20922512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 19966344 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 18514616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 17259664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 16884632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 14032984 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 13944952 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 13213512 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-12-22 11:56 - 2014-11-13 04:20 - 11397744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 11336432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 04292416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 04011208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 02874456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 01876296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434475.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 01540424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434475.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 00964928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 00935240 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 00923792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 00900928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 00871648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 00352016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 00303600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 00156840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-12-22 11:56 - 2014-11-13 04:20 - 00031560 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-12-22 11:56 - 2014-11-04 09:42 - 06242576 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2014-12-22 11:56 - 2014-11-04 09:42 - 01933584 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2014-12-22 11:56 - 2014-11-04 09:42 - 00336144 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2014-12-22 11:56 - 2014-11-04 09:42 - 00284944 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2014-12-22 11:56 - 2014-06-09 06:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-12-22 11:56 - 2014-04-07 12:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-12-22 11:56 - 2014-04-07 12:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-12-22 11:56 - 2014-04-07 12:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-12-22 11:56 - 2014-04-07 12:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-12-22 11:56 - 2014-02-18 13:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-12-22 11:56 - 2013-10-11 08:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-12-22 11:56 - 2012-03-08 07:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-12-22 11:49 - 2014-12-22 17:07 - 00000000 ____D () C:\ProgramData\smdmf
2014-12-22 11:49 - 2014-12-22 11:49 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\FirefoxToolbar
2014-12-22 11:49 - 2014-12-22 11:49 - 00000000 ____D () C:\Users\Jiri\AppData\Local\Linkey
2014-12-22 11:49 - 2014-12-22 11:49 - 00000000 ____D () C:\Program Files (x86)\Settings Manager
2014-12-22 11:48 - 2014-12-22 11:48 - 00001275 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverPack Solution.lnk
2014-12-22 11:48 - 2014-12-22 11:48 - 00001263 _____ () C:\Users\UpdatusUser\Desktop\DriverPack Solution.lnk
2014-12-22 11:48 - 2014-12-22 11:48 - 00001263 _____ () C:\Users\Jiri\Desktop\DriverPack Solution.lnk
2014-12-22 11:48 - 2014-12-22 11:48 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\DRPSu
2014-12-22 11:48 - 2014-12-22 11:48 - 00000000 ____D () C:\Program Files (x86)\DriverPackSolution
2014-12-22 11:47 - 2014-12-22 11:48 - 14624536 _____ () C:\Users\Jiri\Downloads\DriverPack-Online.exe
2014-12-22 11:46 - 2014-12-22 11:46 - 00000936 _____ () C:\Users\Public\Desktop\DriverPack Solution Lite.lnk
2014-12-22 11:46 - 2014-12-22 11:46 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\OpenCandy
2014-12-22 11:46 - 2014-12-22 11:46 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\IHlpr
2014-12-22 11:46 - 2014-12-22 11:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverPack Solution Lite
2014-12-22 11:46 - 2014-12-22 11:46 - 00000000 ____D () C:\Program Files\DriverPack Solution Lite 13
2014-12-22 11:45 - 2014-12-22 11:45 - 10534760 _____ (Kuzyakov Artur ) C:\Users\Jiri\Downloads\DRPSu13-Lite.exe
2014-12-21 22:49 - 2014-12-21 22:49 - 00001200 _____ () C:\Users\Public\Desktop\Heroes of the Storm.lnk
2014-12-21 22:49 - 2014-12-21 22:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2014-12-21 22:37 - 2014-12-21 22:42 - 00000000 ____D () C:\Users\Jiri\Downloads\The.100.S02E08.HDTV.x264-LOL[ettv]
2014-12-21 22:37 - 2014-12-21 22:37 - 00028909 _____ () C:\Users\Jiri\Downloads\[kickass.so]the.100.s02e08.hdtv.x264.lol.ettv.torrent
2014-12-21 19:20 - 2014-12-21 18:52 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-12-21 18:57 - 2014-12-21 19:27 - 00017747 _____ () C:\zoek-results.log
2014-12-21 18:52 - 2014-12-21 19:15 - 00000000 ____D () C:\zoek_backup
2014-12-21 18:52 - 2014-12-21 18:52 - 01295360 _____ () C:\Users\Jiri\Desktop\zoek.exe
2014-12-21 18:35 - 2014-12-21 18:35 - 02173952 _____ () C:\Users\Jiri\Downloads\adwcleaner_4.106.exe
2014-12-21 17:33 - 2014-12-21 17:33 - 00000000 ____D () C:\Users\Jiri\Documents\Heroes of the Storm
2014-12-21 15:48 - 2014-12-22 16:37 - 00000000 ____D () C:\Program Files (x86)\Heroes of the Storm
2014-12-20 18:41 - 2014-12-20 18:41 - 00001139 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player FREE.lnk
2014-12-20 18:41 - 2014-12-20 18:41 - 00001133 _____ () C:\Users\Public\Desktop\BS.Player FREE.lnk
2014-12-20 18:41 - 2014-12-20 18:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2014-12-20 18:29 - 2014-12-21 23:21 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\BSplayer
2014-12-20 17:19 - 2014-12-20 17:21 - 364333692 ____R () C:\Users\Jiri\Downloads\The.100.S02E05.HDTV.x264-KILLERS.mp4
2014-12-20 17:18 - 2014-12-20 17:18 - 00014438 _____ () C:\Users\Jiri\Downloads\[kickass.so]the.100.s02e05.hdtv.x264.killers.eztv.torrent
2014-12-20 16:49 - 2014-12-21 01:13 - 00000000 ____D () C:\Users\Jiri\Downloads\The.100.S02E05.HDTV.x264-ChameE
2014-12-20 16:49 - 2014-12-20 17:15 - 1841630831 ____R () C:\Users\Jiri\Downloads\The.100.S02E06.720p.HDTV.x264-KILLERS.mkv
2014-12-20 16:49 - 2014-12-20 16:57 - 194429177 ____R () C:\Users\Jiri\Downloads\The.100.S02E08.720p.WEB-DL.2CH.x265.HEVC-PSA.mkv
2014-12-20 16:48 - 2014-12-21 17:39 - 00000000 ____D () C:\Users\Jiri\Downloads\The.100.S02E07.720p.HDTV.x264-KILLERS[rarbg]
2014-12-20 16:47 - 2014-12-20 16:47 - 00144675 _____ () C:\Users\Jiri\Downloads\[kickass.so]the.100.s02e07.720p.hdtv.x264.killers.rarbg.torrent
2014-12-20 16:47 - 2014-12-20 16:47 - 00070804 _____ () C:\Users\Jiri\Downloads\[kickass.so]the.100.s02e06.720p.hdtv.x264.killers.eztv.torrent
2014-12-20 16:47 - 2014-12-20 16:47 - 00004261 _____ () C:\Users\Jiri\Downloads\[kickass.so]the.100.s02e08.spacewalker.720p.web.dl.2ch.x265.hevc.psa.torrent
2014-12-20 16:46 - 2014-12-20 16:46 - 00011205 _____ () C:\Users\Jiri\Downloads\[kickass.so]the.100.s02e05.hdtv.x264.chamee.torrent
2014-12-20 16:40 - 2014-12-20 18:43 - 00000000 ____D () C:\rsit
2014-12-20 16:40 - 2014-12-20 18:43 - 00000000 ____D () C:\Program Files\trend micro
2014-12-20 16:40 - 2014-12-20 16:40 - 01222144 _____ () C:\Users\Jiri\Downloads\RSITx64.exe
2014-12-19 18:43 - 2014-12-19 18:58 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\TSNotifier
2014-12-19 18:40 - 2014-12-19 18:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TSNotifier
2014-12-19 18:39 - 2014-12-19 18:40 - 00000000 ____D () C:\Program Files (x86)\TS Notifier
2014-12-19 18:21 - 2014-12-19 18:22 - 23063552 _____ () C:\Users\Jiri\Downloads\SetupTSNotifierV1.5.5c.msi
2014-12-17 18:26 - 2014-12-17 18:37 - 00000000 ____D () C:\Users\Jiri\Downloads\The Hobbit The Battle of the Five Armies (2014) 720p BrRip x264 YIFY
2014-12-17 18:24 - 2014-12-17 18:24 - 00033616 _____ () C:\Users\Jiri\Downloads\The Hobbit The Battle of the Five Armies (2014) 720p BrRip x264 YIFY.torrent
2014-12-14 18:45 - 2014-12-15 20:18 - 00000000 ____D () C:\Users\Jiri\Downloads\The.Flash.2014.S01E09.The.Man.in.the.Yellow.Suit.WEB-DL.x264.AAC
2014-12-14 18:45 - 2014-12-14 19:30 - 00000000 ____D () C:\Users\Jiri\Downloads\Arrow.S03E09.The.Climb.1080p.WEB-DL.DD5.1.H.264-YFN
2014-12-14 18:44 - 2014-12-14 18:44 - 00021593 _____ () C:\Users\Jiri\Downloads\[kickass.so]the.flash.2014.s01e09.the.man.in.the.yellow.suit.web.dl.x264.aac.torrent
2014-12-14 18:43 - 2014-12-14 18:43 - 00129058 _____ () C:\Users\Jiri\Downloads\[kickass.so]arrow.s03e09.the.climb.1080p.web.dl.dd5.1.h.264.yfn.torrent
2014-12-10 13:52 - 2014-12-11 16:01 - 00000000 ____D () C:\Users\Jiri\Downloads\Arrow.S03E08.The.Brave.and.the.Bold.WEB-DL.x264.AAC
2014-12-10 13:51 - 2014-12-10 13:57 - 00000000 ____D () C:\Users\Jiri\Downloads\The.Flash.2014.S01E08.Flash.vs.Arrow.WEB-DL.x264.AAC
2014-12-10 13:51 - 2014-12-10 13:51 - 00024357 _____ () C:\Users\Jiri\Downloads\[kickass.so]arrow.s03e08.the.brave.and.the.bold.web.dl.x264.aac.torrent
2014-12-10 13:50 - 2014-12-10 13:50 - 00024360 _____ () C:\Users\Jiri\Downloads\[kickass.so]the.flash.2014.s01e08.flash.vs.arrow.web.dl.x264.aac.torrent
2014-11-30 14:24 - 2014-11-30 15:10 - 00000000 ____D () C:\Users\Jiri\Downloads\Obsluhoval jsem anglickeho krale (eng subs) [2006] Jiri Menzel
2014-11-30 14:23 - 2014-11-30 14:23 - 00019651 _____ () C:\Users\Jiri\Downloads\[kickass.so]obsluhoval.jsem.anglickeho.krale.eng.subs.2006.jiri.menzel.torrent
2014-11-28 23:17 - 2014-11-28 23:17 - 82741915 _____ () C:\Users\Jiri\Downloads\Guild Wars 2 11-28-2014 23-08-12.wmv
2014-11-28 20:14 - 2014-11-28 20:14 - 00031722 _____ () C:\Users\Jiri\Downloads\[CzT]Obsluhoval_jsem_anglickeho_krale_2006_1080p_ (1).torrent
2014-11-28 20:13 - 2014-11-28 20:13 - 00031722 _____ () C:\Users\Jiri\Downloads\[CzT]Obsluhoval_jsem_anglickeho_krale_2006_1080p_.torrent
2014-11-27 17:43 - 2014-12-03 15:14 - 00000000 ____D () C:\Users\Jiri\Downloads\The.Flash.2014.S01E07.Power.Outage.1080p.WEB-DL.DD5.1.H.264-NTb[rarbg]
2014-11-27 17:37 - 2014-11-27 17:37 - 00128106 _____ () C:\Users\Jiri\Downloads\[kickass.so]the.flash.2014.s01e07.power.outage.1080p.web.dl.dd5.1.h.264.ntb (1).torrent
2014-11-27 17:36 - 2014-11-27 17:37 - 00128106 _____ () C:\Users\Jiri\Downloads\[kickass.so]the.flash.2014.s01e07.power.outage.1080p.web.dl.dd5.1.h.264.ntb.torrent

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-22 16:55 - 2012-08-02 12:16 - 01209589 _____ () C:\Windows\WindowsUpdate.log
2014-12-22 16:55 - 2009-07-14 05:51 - 00166982 _____ () C:\Windows\setupact.log
2014-12-22 16:39 - 2012-12-05 17:08 - 00000000 ____D () C:\Users\Jiri\AppData\Local\PMB Files
2014-12-22 16:37 - 2013-11-23 13:38 - 00000000 ____D () C:\Users\Jiri\AppData\Local\Battle.net
2014-12-22 16:32 - 2012-08-02 13:01 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-22 16:22 - 2012-11-16 15:20 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-12-22 16:17 - 2009-07-14 05:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-22 16:17 - 2009-07-14 05:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-22 16:15 - 2014-05-29 17:31 - 00000000 ____D () C:\ProgramData\Origin
2014-12-22 16:15 - 2012-11-12 15:23 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\TS3Client
2014-12-22 16:12 - 2013-09-09 16:01 - 00000000 ____D () C:\Users\Jiri\AppData\Local\Overwolf
2014-12-22 16:09 - 2014-05-29 17:31 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-12-22 16:09 - 2012-08-02 13:03 - 00318604 _____ () C:\Windows\system32\fastboot.set
2014-12-22 16:08 - 2012-08-02 13:01 - 00000000 ____D () C:\ProgramData\VeriFace
2014-12-22 16:04 - 2012-11-11 17:52 - 01924209 _____ () C:\FaceProv.log
2014-12-22 16:04 - 2012-08-02 13:01 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-22 16:03 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-22 15:03 - 2012-08-02 12:34 - 00000000 ____D () C:\Program Files\Intel
2014-12-22 15:03 - 2012-08-02 12:19 - 00383082 _____ () C:\Windows\DPINST.LOG
2014-12-22 15:02 - 2012-08-02 12:34 - 00000000 ____D () C:\ProgramData\Intel
2014-12-22 15:02 - 2012-08-02 12:28 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-12-22 15:02 - 2012-08-02 12:23 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-12-22 14:48 - 2012-11-11 17:54 - 00000000 ____D () C:\Users\Jiri
2014-12-22 14:40 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-12-22 12:09 - 2012-08-02 12:31 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-12-22 12:08 - 2014-03-26 15:00 - 00000000 ____D () C:\Temp
2014-12-22 12:08 - 2010-11-21 04:47 - 00454158 _____ () C:\Windows\PFRO.log
2014-12-22 12:05 - 2012-08-02 12:30 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-12-22 12:03 - 2012-08-02 12:44 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-12-22 11:38 - 2009-07-14 06:13 - 00874132 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-22 11:35 - 2013-11-16 15:39 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-12-21 22:41 - 2013-04-25 21:32 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\uTorrent
2014-12-21 19:35 - 2014-06-30 17:25 - 00002194 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-21 19:27 - 2012-08-02 13:01 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-12-21 19:26 - 2012-08-02 13:01 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-12-21 19:23 - 2013-11-18 18:47 - 00000008 __RSH () C:\Users\Jiri\ntuser.pol
2014-12-21 19:13 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-12-21 19:13 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-12-21 18:38 - 2014-06-30 17:09 - 00000000 ____D () C:\AdwCleaner
2014-12-21 18:38 - 2014-06-30 16:42 - 00000000 ____D () C:\Windows\system32\log
2014-12-21 18:35 - 2014-07-04 14:10 - 00004668 _____ () C:\Users\Jiri\Desktop\New Text Document.txt
2014-12-21 17:33 - 2013-05-30 15:47 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2014-12-21 13:25 - 2013-11-23 13:39 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-12-21 13:14 - 2013-11-23 13:38 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-12-21 13:09 - 2012-11-12 15:39 - 00000000 ____D () C:\Users\Jiri\AppData\Roaming\vlc
2014-12-21 01:19 - 2013-10-10 16:07 - 00000000 ____D () C:\Users\Jiri\Downloads\Subs
2014-12-21 01:12 - 2014-08-11 09:27 - 00000000 ____D () C:\Users\Jiri\AppData\Local\Windows Live
2014-12-12 13:48 - 2014-11-18 17:13 - 00003204 _____ () C:\Windows\System32\Tasks\NIUpdateServiceCheckTask
2014-12-12 13:42 - 2013-11-18 18:46 - 00000000 ____D () C:\ProgramData\National Instruments
2014-12-10 20:42 - 2012-11-12 18:00 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-10 20:22 - 2012-11-16 15:20 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-10 20:22 - 2012-11-16 15:20 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-10 20:22 - 2012-11-16 15:20 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-12-10 15:02 - 2014-09-24 18:02 - 00000000 ____D () C:\Users\Jiri\Documents\Inventor
2014-12-03 21:15 - 2012-11-19 14:47 - 00000000 ____D () C:\Users\Jiri\Documents\01Panska
2014-11-28 20:26 - 2014-10-29 20:27 - 1207277460 ____R () C:\Users\Jiri\Downloads\Neuvěřitelný Hulk.avi
2014-11-26 18:50 - 2012-11-27 18:18 - 00000000 ____D () C:\Users\Jiri\AppData\Local\Microsoft Help
2014-11-24 20:24 - 2014-11-18 18:31 - 00011016 _____ () C:\Users\Jiri\Desktop\TQ WURM.xlsx

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-21 13:47

==================== End Of Log ============================
Naposledy upravil(a) cernohous13 dne 22 pro 2014 17:50, celkem upraveno 1 x.
Důvod: Nedávej logy do [code]- upraveno
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu

#6 Příspěvek od vyosek »

:arrow: Nevim o tom, ze by se neco takoveho mazalo :?:

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [NI Update Service] => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [857888 2013-05-28] (National Instruments)
HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox] C:\$Recycle.Bin\S-1-5-18\$ab8b7458f5d2ed8877b9590b4997a5bd\n. ATTENTION! ====> ZeroAccess?
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Jiri\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-29] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [Pando Media Booster] => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624 2012-12-05] ()
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [{79BF4901-1EC4-4726-B3C2-A7859706C6E7}] => "C:\Users\Jiri\Downloads\LeagueofLegends_EUNE_Installer_06_17_13.exe" /cmdloc "HKCU\Software\Riot Games AiTemp\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}"
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [SpeedItupFree] => "C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe"
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [GoogleChromeAutoLaunch_A458B43CEBC874CB3364B2EF9796C8CA] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [856904 2014-12-06] (Google Inc.)
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [TeamSpeak 3 Client] => C:\Users\Jiri\Documents\TS\ts3client_win64.exe [10725320 2014-08-06] (TeamSpeak Systems GmbH)
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\Run: [DrvUpdater] => C:\Users\Jiri\AppData\Roaming\DRPSu\DrvUpdater.exe [195256 2014-08-23] ()
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\RunOnce: [Adobe Speed Launcher] => 1419260909
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: G - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: H - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: {0bf0812a-a4d0-11e2-bb6e-089e01113630} - E:\autorun.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: {3c340e78-2c20-11e2-bcf0-446d57bede7c} - E:\setup.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: {8105bf91-ade5-11e3-a469-089e01113630} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: {9f5e2791-b1f8-11e3-933a-089e01113630} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...\MountPoints2: {9f5e279d-b1f8-11e3-933a-089e01113630} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2948660152-2728633864-231992396-1001\...409d6c4515e9\InprocServer32: [Default-shell32] C:\$Recycle.Bin\S-1-5-21-2948660152-2728633864-231992396-1001\$ab8b7458f5d2ed8877b9590b4997a5bd\n. ATTENTION! ====> ZeroAccess?

SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO-x32: No Name -> {C9C42510-9B41-42c1-9DCD-7282A2D07C61}C -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File

Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 10 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [26512] (National Instruments Corporation)
Winsock: Catalog5-x64 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
CMD: netsh winsock reset

FF DefaultSearchEngine: default-search.net
FF SearchEngineOrder.1: default-search.net
FF SelectedSearchEngine: default-search.net
FF Homepage: hxxp://www.default-search.net?sid=503&a ... 69&src=hmp
FF Keyword.URL: hxxp://www.default-search.net/search?si ... &src=ds&p=
FF NetworkProxy: "type", 
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF SearchPlugin: C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\48eyjpzh.default\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml

U3 BcmSqlStartupSvc; No ImagePath
U2 CLKMSVC10_3A60B698; No ImagePath
U2 CLKMSVC10_C3B3B687; No ImagePath
S3 cpuz135; \??\C:\Program Files (x86)\CPUID\PC Wizard 2012\pcwiz_x64.sys [X]
U2 DriverService; No ImagePath
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
U2 IAStorDataMgrSvc; No ImagePath
U2 iATAgentService; No ImagePath
U2 idealife Update Service; No ImagePath
U3 IGRS; No ImagePath
U2 iphlpsvc; No ImagePath
U2 IviRegMgr; No ImagePath
U2 Oasis2Service; No ImagePath
U2 PCCarerService; No ImagePath
U2 ReadyComm.DirectRouter; No ImagePath
U2 RichVideo; No ImagePath
U2 RtLedService; No ImagePath
U2 SeaPort; No ImagePath
U2 SoftwareService; No ImagePath
S3 XFDriver64; \??\C:\Program Files (x86)\Xfire2\XFDriver64.sys [X]

c:\$Recycle.Bin\S-1-5-18
C:\$Recycle.Bin\S-1-5-21-2948660152-2728633864-231992396-1001
C:\Program Files (x86)\SpeedItup
2014-12-22 17:07 - 2014-12-22 17:07 - 00037112 _____ () C:\Users\Jiri\Downloads\FRST.txt
2014-12-21 19:20 - 2014-12-21 18:52 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-12-21 18:57 - 2014-12-21 19:27 - 00017747 _____ () C:\zoek-results.log
2014-12-21 18:52 - 2014-12-21 19:15 - 00000000 ____D () C:\zoek_backup
2014-12-21 18:52 - 2014-12-21 18:52 - 01295360 _____ () C:\Users\Jiri\Desktop\zoek.exe
2014-12-21 18:35 - 2014-12-21 18:35 - 02173952 _____ () C:\Users\Jiri\Downloads\adwcleaner_4.106.exe
2014-12-20 16:40 - 2014-12-20 18:43 - 00000000 ____D () C:\rsit
2014-12-20 16:40 - 2014-12-20 18:43 - 00000000 ____D () C:\Program Files\trend micro
2014-12-20 16:40 - 2014-12-20 16:40 - 01222144 _____ () C:\Users\Jiri\Downloads\RSITx64.exe

2014-12-22 13:38 - 2014-12-22 16:38 - 00000408 _____ () C:\Windows\Tasks\SlimDrivers Startup.job
2014-12-22 16:32 - 2012-08-02 13:01 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-22 16:22 - 2012-11-16 15:20 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-12-22 16:04 - 2012-08-02 13:01 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

Hosts:
EmptyTemp:
Reboot:
End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Odpovědět

Zpět na „Preventivní kontroly logů“