?trackid=sp-006

[Lonely Girl]

Dobrý den..Pokaždé když chci něco vyhledat,skočí mi za hledaný výraz ?trackid=sp-006 ...Nemůžu se toho zbavit


Logfile of random's system information tool 1.10 (written by random/random)
Run by Monika at 2015-02-02 16:07:54
Microsoft Windows 8.1 s aplikací Bing
System drive C: has 145 GB (76%) free of 191 GB
Total RAM: 3983 MB (36% free)


======Listing Processes======





wininit.exe

winlogon.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 763141960608
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe"
"C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
dashost.exe {004cf042-a74d-4b6d-98d1e1cbebfe668d}
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Windows\system32\mfevtps.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\McAfee\MSC\McAPExe.exe"
"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
C:\Windows\Explorer.EXE
KBFiltr.exe
taskhostex.exe
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Windows\System32\igfxtray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX4
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding

"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
"C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui /runkey
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe"
"C:\Windows\system32\igfxsrvc.exe" -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5852.0.156239294\815140009" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,39 --gpu-vendor-id=0x8086 --gpu-device-id=0x0f31 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3408 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/GoogleNow/Enable/MaterialDesignNTP/Default/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/PasswordGeneration/Disabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_97/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5852.4.1961137137\608348645" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5852.6.1926278187\1684859075" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
/S
taskhost.exe $(Arg0)
"C:\Windows\System32\WWAHost.exe" -ServerName:Windows.Store
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\syswow64\wwahost.exe" -ServerName:App.wwa
"C:\Program Files (x86)\PhotoFiltre 7\PhotoFiltre7.exe"
"C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /Play -Embedding
"c:\PROGRA~1\mcafee\msc\mcupdmgr.exe" /Resume
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/GoogleNow/Enable/MaterialDesignNTP/Default/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_97/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5852.40.1452846122\299164438" /prefetch:673131151
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\Users\Monika\Downloads\RSITx64.exe"
"C:\Program Files\trend micro\Monika.exe" /silentautolog
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Enabled/GoogleNow/Enable/MaterialDesignNTP/Default/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_97/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5852.44.672155502\625721277" /prefetch:673131151
"C:\Users\Monika\Downloads\RSITx64 (1).exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-02-19 391152]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-02-19 771568]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2014-10-01 5595336]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"WebStorage"=C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe [2014-08-20 63296]
"mcpltui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2014-04-25 537992]
"ApnTBMon"=C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2015-01-31 1934744]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-01-16 624640]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-02-02 16:03:50 ----D---- C:\Program Files\trend micro
2015-02-02 16:03:48 ----D---- C:\rsit
2015-02-02 11:45:27 ----A---- C:\Windows\system32\PerfStringBackup.TMP
2015-02-01 19:31:15 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-02-01 19:02:49 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-02-01 19:02:38 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-02-01 19:02:27 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-02-01 19:02:16 ----D---- C:\ProgramData\Malwarebytes
2015-02-01 19:02:16 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-01 17:48:29 ----SHD---- C:\Config.Msi
2015-01-27 10:09:07 ----D---- C:\Users\Monika\AppData\Roaming\ESET
2015-01-27 10:04:41 ----D---- C:\ProgramData\ESET
2015-01-27 10:04:41 ----D---- C:\Program Files\ESET
2015-01-27 09:59:24 ----SD---- C:\Windows\SYSWOW64\Microsoft
2015-01-23 23:02:40 ----D---- C:\Users\Monika\AppData\Roaming\Seznam.cz
2015-01-23 10:59:00 ----A---- C:\autoexec.bat
2015-01-23 10:55:58 ----D---- C:\Program Files\Enigma Software Group
2015-01-23 10:35:09 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-01-23 10:35:09 ----A---- C:\Windows\system32\wuaueng.dll
2015-01-23 10:35:09 ----A---- C:\Windows\system32\wuapi.dll
2015-01-23 10:35:08 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-01-23 10:35:08 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-01-23 10:35:08 ----A---- C:\Windows\system32\wucltux.dll
2015-01-23 10:35:07 ----A---- C:\Windows\system32\wudriver.dll
2015-01-23 10:35:05 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-01-23 10:35:04 ----A---- C:\Windows\system32\wuwebv.dll
2015-01-23 10:35:04 ----A---- C:\Windows\system32\wuauclt.exe
2015-01-23 10:35:02 ----A---- C:\Windows\system32\wups.dll
2015-01-23 10:35:01 ----A---- C:\Windows\system32\wups2.dll
2015-01-23 10:34:59 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-01-23 10:34:58 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-01-23 10:34:57 ----A---- C:\Windows\system32\wuapp.exe
2015-01-23 10:34:56 ----A---- C:\Windows\system32\wuaext.dll
2015-01-21 22:13:54 ----RD---- C:\Program Files (x86)\Skype
2015-01-20 16:26:25 ----D---- C:\Users\Monika\AppData\Roaming\omiga-plus
2015-01-20 15:56:32 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-01-20 15:55:02 ----D---- C:\Users\Monika\AppData\Roaming\Opera Software
2015-01-20 15:54:00 ----D---- C:\Program Files (x86)\Opera
2015-01-20 15:50:11 ----D---- C:\Users\Monika\AppData\Roaming\OnLive App
2015-01-19 12:56:11 ----D---- C:\ProgramData\LogMeIn
2015-01-14 16:46:41 ----A---- C:\Windows\system32\profsvc.dll
2015-01-14 16:46:39 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-14 16:46:39 ----A---- C:\Windows\system32\drivers\ahcache.sys
2015-01-14 16:46:38 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-01-14 16:46:37 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-01-14 16:46:37 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 16:46:37 ----A---- C:\Windows\system32\nlaapi.dll
2015-01-14 16:46:37 ----A---- C:\Windows\system32\ncsi.dll
2015-01-14 16:46:29 ----A---- C:\Windows\SYSWOW64\WerFault.exe
2015-01-14 16:46:29 ----A---- C:\Windows\SYSWOW64\wer.dll
2015-01-14 16:46:29 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2015-01-14 16:46:29 ----A---- C:\Windows\system32\WerFault.exe
2015-01-14 16:46:29 ----A---- C:\Windows\system32\wer.dll
2015-01-14 16:46:29 ----A---- C:\Windows\system32\Faultrep.dll
2015-01-14 16:46:28 ----A---- C:\Windows\SYSWOW64\wermgr.exe
2015-01-14 16:46:28 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2015-01-14 16:46:28 ----A---- C:\Windows\system32\WerFaultSecure.exe
2015-01-14 16:46:28 ----A---- C:\Windows\system32\ci.dll
2015-01-14 16:46:28 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-01-14 16:46:27 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-01-14 16:46:27 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-01-14 16:46:27 ----A---- C:\Windows\system32\wermgr.exe
2015-01-14 16:46:27 ----A---- C:\Windows\system32\EncDump.dll
2015-01-14 16:46:27 ----A---- C:\Windows\system32\AudioSes.dll
2015-01-14 16:46:27 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-01-14 16:46:27 ----A---- C:\Windows\system32\AudioEng.dll
2015-01-14 16:46:26 ----A---- C:\Windows\SYSWOW64\werdiagcontroller.dll
2015-01-14 16:46:26 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-01-14 16:46:26 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-01-14 16:46:26 ----A---- C:\Windows\system32\audiodg.exe
2015-01-14 16:46:25 ----A---- C:\Windows\system32\audiosrv.dll
2015-01-12 20:35:11 ----SD---- C:\Windows\system32\CompatTel
2015-01-12 20:35:10 ----D---- C:\Windows\system32\appraiser
2015-01-06 14:28:56 ----D---- C:\Písma

======List of files/folders modified in the last 1 month======

2015-02-02 16:08:06 ----D---- C:\Windows\Prefetch
2015-02-02 16:07:00 ----AD---- C:\Windows\Temp
2015-02-02 16:03:50 ----RD---- C:\Program Files
2015-02-02 16:00:00 ----D---- C:\Windows\system32\sru
2015-02-02 14:27:07 ----D---- C:\Windows\Inf
2015-02-02 13:58:26 ----D---- C:\Windows\Microsoft.NET
2015-02-02 13:58:24 ----D---- C:\Windows\WinSxS
2015-02-02 13:58:11 ----D---- C:\Windows\System32
2015-02-02 13:58:01 ----D---- C:\Windows\system32\config
2015-02-02 13:57:47 ----D---- C:\Program Files\Windows Photo Viewer
2015-02-02 13:57:47 ----D---- C:\Program Files\Windows Media Player
2015-02-02 13:57:47 ----D---- C:\Program Files\Windows Mail
2015-02-02 13:57:47 ----D---- C:\Program Files\Windows Journal
2015-02-02 13:57:47 ----D---- C:\Program Files\Windows Defender
2015-02-02 13:57:47 ----D---- C:\Program Files\Internet Explorer
2015-02-02 13:57:47 ----D---- C:\Program Files\Common Files\System
2015-02-02 13:57:47 ----D---- C:\Program Files (x86)\Windows Mail
2015-02-02 13:57:47 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-02 13:57:46 ----D---- C:\Windows\WinStore
2015-02-02 13:57:46 ----D---- C:\Windows\servicing
2015-02-02 13:57:46 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-02-02 13:57:46 ----D---- C:\Program Files (x86)\Windows Media Player
2015-02-02 13:57:46 ----D---- C:\Program Files (x86)\Windows Defender
2015-02-02 13:57:40 ----D---- C:\Windows\SYSWOW64\WCN
2015-02-02 13:57:40 ----D---- C:\Windows\SYSWOW64\pl-PL
2015-02-02 13:57:40 ----D---- C:\Windows\SYSWOW64\oobe
2015-02-02 13:57:40 ----D---- C:\Windows\SYSWOW64\migration
2015-02-02 13:57:40 ----D---- C:\Windows\SYSWOW64\drivers
2015-02-02 13:57:40 ----D---- C:\Windows\SYSWOW64\Dism
2015-02-02 13:57:35 ----RD---- C:\Windows\ImmersiveControlPanel
2015-02-02 13:57:35 ----D---- C:\Windows\SYSWOW64\wbem
2015-02-02 13:57:35 ----D---- C:\Windows\SYSWOW64\Com
2015-02-02 13:57:35 ----D---- C:\Windows\SysWOW64
2015-02-02 13:57:35 ----D---- C:\Windows\PolicyDefinitions
2015-02-02 13:57:35 ----D---- C:\Windows\IME
2015-02-02 13:57:35 ----AD---- C:\Windows
2015-02-02 13:57:34 ----D---- C:\Windows\system32\WCN
2015-02-02 13:57:34 ----D---- C:\Windows\system32\Sysprep
2015-02-02 13:57:34 ----D---- C:\Windows\system32\pl-PL
2015-02-02 13:57:34 ----D---- C:\Windows\system32\oobe
2015-02-02 13:57:34 ----D---- C:\Windows\system32\migwiz
2015-02-02 13:57:34 ----D---- C:\Windows\system32\migration
2015-02-02 13:57:34 ----D---- C:\Windows\system32\drivers\UMDF
2015-02-02 13:57:34 ----D---- C:\Windows\system32\drivers
2015-02-02 13:57:34 ----D---- C:\Windows\system32\Dism
2015-02-02 13:57:34 ----D---- C:\Windows\system32\Boot
2015-02-02 13:57:23 ----D---- C:\Windows\system32\DriverStore
2015-02-02 13:57:18 ----D---- C:\Windows\system32\wbem
2015-02-02 13:57:16 ----D---- C:\Windows\system32\SystemResetPlatform
2015-02-02 13:57:16 ----D---- C:\Windows\system32\Com
2015-02-02 13:57:16 ----D---- C:\Windows\Help
2015-02-02 13:57:16 ----D---- C:\Windows\apppatch
2015-02-02 13:47:45 ----D---- C:\Windows\CbsTemp
2015-02-02 13:27:59 ----SHD---- C:\System Volume Information
2015-02-02 13:25:43 ----D---- C:\Windows\Logs
2015-02-02 10:40:24 ----D---- C:\Windows\SYSWOW64\winrm
2015-02-02 10:40:24 ----D---- C:\Windows\SYSWOW64\slmgr
2015-02-02 10:40:24 ----D---- C:\Windows\SYSWOW64\sk-SK
2015-02-02 10:40:24 ----D---- C:\Windows\SYSWOW64\en
2015-02-02 10:40:22 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2015-02-02 10:40:21 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2015-02-02 10:40:21 ----D---- C:\Windows\en-US
2015-02-02 10:40:20 ----D---- C:\Windows\system32\winrm
2015-02-02 10:40:20 ----D---- C:\Windows\system32\slmgr
2015-02-02 10:40:20 ----D---- C:\Windows\system32\sk-SK
2015-02-02 10:40:20 ----D---- C:\Windows\system32\en
2015-02-02 10:40:10 ----D---- C:\Windows\system32\drivers\en-US
2015-02-02 10:40:09 ----D---- C:\Windows\system32\en-US
2015-02-02 10:39:56 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2015-02-02 10:02:40 ----D---- C:\Windows\SYSWOW64\XPSViewer
2015-02-02 10:02:40 ----D---- C:\Windows\SYSWOW64\MUI
2015-02-02 10:02:40 ----D---- C:\Windows\SYSWOW64\hu-HU
2015-02-02 10:02:31 ----D---- C:\Windows\system32\MUI
2015-02-02 10:02:23 ----D---- C:\Windows\system32\hu-HU
2015-02-02 09:27:15 ----D---- C:\Windows\SYSWOW64\en-GB
2015-02-02 09:27:12 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-02 09:27:11 ----D---- C:\Windows\system32\en-GB
2015-02-01 20:53:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-01 20:49:10 ----D---- C:\Windows\system32\wdi
2015-02-01 20:46:18 ----D---- C:\Program Files (x86)\McAfee
2015-02-01 20:45:42 ----D---- C:\Windows\TAPI
2015-02-01 20:04:20 ----RD---- C:\Program Files (x86)
2015-02-01 20:04:20 ----HD---- C:\ProgramData
2015-02-01 17:48:43 ----SHD---- C:\Windows\Installer
2015-02-01 17:48:34 ----D---- C:\Windows\AppReadiness
2015-01-31 12:42:07 ----HD---- C:\Program Files\WindowsApps
2015-01-27 12:45:57 ----D---- C:\ProgramData\AVAST Software
2015-01-27 10:01:20 ----D---- C:\Windows\system32\Tasks
2015-01-26 14:01:33 ----RSD---- C:\Windows\assembly
2015-01-25 19:39:38 ----SD---- C:\Users\Monika\AppData\Roaming\Microsoft
2015-01-24 21:20:40 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-01-23 23:10:09 ----D---- C:\Windows\Tasks
2015-01-23 23:07:24 ----A---- C:\Windows\win.ini
2015-01-23 22:50:28 ----D---- C:\Windows\system32\cs-CZ
2015-01-23 22:48:56 ----D---- C:\Users\Monika\AppData\Roaming\Skype
2015-01-23 10:31:16 ----D---- C:\Program Files (x86)\Common Files
2015-01-21 22:14:03 ----D---- C:\ProgramData\Skype
2015-01-20 17:10:34 ----D---- C:\Windows\system32\GroupPolicy
2015-01-20 15:57:26 ----SD---- C:\ProgramData\Microsoft
2015-01-19 13:54:31 ----SHD---- C:\$Recycle.Bin
2015-01-19 12:29:21 ----D---- C:\Windows\system32\catroot
2015-01-17 22:22:54 ----D---- C:\Windows\system32\CodeIntegrity
2015-01-17 22:16:09 ----D---- C:\Windows\system32\MRT
2015-01-17 22:16:03 ----A---- C:\Windows\system32\MRT.exe
2015-01-12 20:35:11 ----D---- C:\Windows\AppCompat
2015-01-12 20:35:08 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-01-12 20:34:42 ----D---- C:\Windows\system32\sr-Latn-RS
2015-01-12 20:34:42 ----D---- C:\Windows\system32\sr-Latn-CS
2015-01-06 14:40:57 ----RSD---- C:\Windows\Fonts

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2014-10-10 241368]
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2014-10-10 63160]
R0 MBI;@oem8.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\Windows\System32\drivers\MBI.sys [2013-10-28 29464]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2014-06-20 786296]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2014-06-20 348552]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2013-07-02 19768]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2014-10-10 243440]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2014-10-10 169280]
R1 EpfwLWF;@oem32.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2014-10-10 44632]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2014-10-10 222280]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2014-03-27 17152]
R3 ATP;@oem17.inf,%PS2.DeviceDesc%;ASUS Input Device; C:\Windows\System32\drivers\AsusTP.sys [2014-03-31 71952]
R3 bcbtums;@oem25.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2013-11-14 170712]
R3 BCM43XX;@oem20.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl63a.sys [2014-12-01 7546544]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2014-10-28 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-03-18 81920]
R3 btwampfl;@oem25.inf,%btwampfl.ServiceName%;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2014-02-03 166616]
R3 btwaudio;@oem21.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2014-03-19 190168]
R3 btwavdt;@oem21.inf,%btwavdt.SvcDesc%;Bluetooth AVDT; C:\Windows\System32\drivers\btwavdt.sys [2014-03-19 229080]
R3 btwl2cap;@oem24.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2012-07-27 40248]
R3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2014-06-20 72128]
R3 GPIO;@oem10.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\Windows\System32\drivers\iaiogpioe.sys [2013-11-11 31232]
R3 HIDSwitch;@oem28.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\Windows\System32\drivers\AsHIDSwitch64.sys [2013-10-08 20280]
R3 iaioi2c;@oem9.inf,%Driver_Service.Desc%;I2C Controller Service; C:\Windows\System32\drivers\iaioi2ce.sys [2013-11-11 67584]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-01-16 4222976]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-07-01 4002008]
R3 IntcDAud;@oem12.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-01-16 450520]
R3 iwdbus;@oem15.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2013-12-27 27032]
R3 kbfiltr;@oem27.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\Windows\System32\drivers\kbfiltr.sys [2012-08-06 17280]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-11-21 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-02-02 129752]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-11-21 64216]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2014-06-20 181704]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2014-06-20 313544]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2014-06-20 523792]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [2014-08-20 445512]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2014-03-18 167424]
R3 RSBASTOR;@oem19.inf,%Rts5208%;Realtek PCIE CardReader Driver - BA; C:\Windows\system32\DRIVERS\RtsBaStor.sys [2013-07-12 309976]
R3 RTL8168;@oem18.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2014-01-08 848088]
R3 TXEIx64;@oem11.inf,%TEE_SvcDesc%;Intel(R) Trusted Execution Engine Interface ; C:\Windows\System32\drivers\TXEIx64.sys [2014-01-15 88592]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2014-06-26 670056]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\Windows\system32\drivers\mfeelamk.sys [2014-06-20 70600]
S2 sbapifs;sbapifs; C:\Windows\system32\DRIVERS\sbapifs.sys []
S3 AgereSoftModem;@mdmags64.inf,%FullProductName%;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2013-06-18 1146880]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2014-10-28 1200640]
S3 btwrchid;btwrchid; C:\Windows\System32\drivers\btwrchid.sys [2014-03-19 38616]
S3 dg_ssudbus;@oem33.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\Windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\Windows\system32\drivers\HipShieldK.sys [2013-09-23 197704]
S3 intaud_WaveExtensible;@oem14.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-12-27 38296]
S3 mfencrk;McAfee Inc. mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [2014-08-20 96592]
S3 NETwNs64;@netwsw00.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2013-06-18 11518976]
S3 ssudmdm;@oem34.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 APNMCP;Ask Update Service; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [2015-01-31 177560]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [2014-03-26 115512]
R2 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe [2014-08-20 71168]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2014-03-18 976600]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2014-10-01 1349576]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-24 227904]
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-01 733696]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-11-21 969016]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-11-21 1871160]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2014-04-25 178528]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [2013-07-30 328928]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [2013-07-30 328928]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [2013-07-30 328928]
R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2014-08-20 1041192]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2014-06-20 219752]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2014-06-20 189912]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]
S2 BcmBtRSupport;@oem25.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\Windows\system32\BtwRSupportService.exe [2013-11-14 2251992]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-25 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-02-19 279024]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-04-24 203344]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-25 107912]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-01 822232]
S3 McAWFwk;McAfee Activation Service; c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe [2013-07-29 334608]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2014-09-04 603424]
S4 McOobeSv2;McAfee OOBE Service2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [2013-07-30 328928]

-----------------EOF-----------------


Zatím s ničím takovým nemám zkušenosti takže ani nevím jestli sem napsala všechno co jsem měla

[vyosek]

Zdravim

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Po spusteni probehne stazeni databaze
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  resethosts;
  emptyclsid;
  IEdefaults;
  FFdefaults;
  CHRdefaults;
  emptyIEcache;
  emptyFFcache;
  emptyCHRcache;
  emptyalltemp;
  emptyflash;
  emptyjava;
  emptyrecycle.bin;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[Lonely Girl]

Tak AdwCleaner sem stáhla a po restartování tam bylo :

# AdwCleaner v4.109 - Report created 02/02/2015 at 16:32:31
# Updated 24/01/2015 by Xplode
# Database : 2015-01-26.1 [Live]
# Operating System : Windows 8.1 Connected (64 bits)
# Username : Monika - CHICKY
# Running from : C:\Users\Monika\Downloads\adwcleaner_4.109.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : APNMCP

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
Folder Deleted : C:\Users\Monika\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Monika\AppData\Local\AskPartnerNetwork
Folder Deleted : C:\Users\Monika\AppData\Roaming\omiga-plus
File Deleted : C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKCU\Software\AskPartnerNetwork
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKLM\SOFTWARE\AskPartnerNetwork
Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : HKLM\SOFTWARE\SoftwareUpdater
Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Google Chrome v40.0.2214.93

[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

-\\ Opera v0.0.0.0

[C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

*************************

AdwCleaner[R0].txt - [2550 octets] - [02/02/2015 16:26:57]
AdwCleaner[S0].txt - [2533 octets] - [02/02/2015 16:32:31]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2593 octets] ##########

[vyosek]

Supr, pokracujte Zoek-em

[Lonely Girl]

Mám v noťasu stáhlý McAFree,a při každém pokusu o stažení zoeku mi hlásil že byl zjištěný Trojský kůň a že je třeba noťas restartovat.. (nikdy předtím se mi to nestalo) Takže Zoek mi stáhnout nejde

[vyosek]

McAfee odinstalujte, je to nekvalitni zabezpeceni a navic mate ESET se kterym se dostava do kolize

[Lonely Girl]

Tak fajn,McAfree sem odinstalovala..


Zoek.exe v5.0.0.0 Updated 27-01-2015
Tool run by Monika on po 02. 02. 2015 at 19:52:01,77.
Microsoft Windows 8.1 s aplikací Bing 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Monika\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

2. 2. 2015 19:53:15 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~3\Package Cache deleted successfully
C:\Users\Monika\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~3\SetStretch.VBS deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\machine deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
"C:\Windows\Installer\40a8bdf.msi" deleted

==== Chromium Look ======================

Google Chrome Version: 40.0.2214.94 (Possible outdated, latest Stable version: 40.0.2214.93)


Star Stable Online - Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnlmdkpemkkigkgelegknllpmfclakkk

==== Chromium Fix ======================

C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_searches.omiga-plus.com_0.localstorage deleted successfully
C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_searches.omiga-plus.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="https://www.google.com/search?trackid=s ... earchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="https://www.google.com/search?trackid=s ... earchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="https://www.google.com/search?trackid=s ... earchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"CustomizeSearch"="http://www.bing.com/search?q={searchTerms}"
"SearchAssistant"="http://www.bing.com/search?q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Search]
"CustomizeSearch"="http://www.bing.com/search?q={searchTerms}"
"SearchAssistant"="http://www.bing.com/search?q={searchTerms}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"CustomizeSearch"="http://ie.search.msn.com/{SUB_RFC1766}/ ... chcust.htm"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Search]
"CustomizeSearch"="http://ie.search.msn.com/{SUB_RFC1766}/ ... chcust.htm"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} Google Url="https://www.google.com/search?trackid=s ... earchTerms}"

==== Reset Google Chrome ======================

C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Monika\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Monika\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D2A425F405350054677A7A857BC08110 deleted successfully
HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A2D-5350-4500-76A7-A758B70C1801} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D2A425F405350054677A7A857BC08110 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Monika\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Monika\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Monika\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Monika\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=9 folders=2 520908 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Monika\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Monika\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on po 02. 02. 2015 at 20:25:43,93 ======================

[vyosek]

Pekne procisteno

Dejte FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100 a docistime zbytecky

[Lonely Girl]

A ještě sem se chtěla zeptat..poslední dobou mám ntb trochu pomalej (cca stějně dlouho,jako mám ten problém u vyhledávání)..To se vyřeší společně s tím,nebo může být problém i někde jinde?

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2015
Ran by Monika (administrator) on CHICKY on 02-02-2015 20:43:05
Running from C:\Users\Monika\Desktop
Loaded Profiles: Monika (Available profiles: Monika)
Platform: Windows 8.1 Connected (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSPanel.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Monika\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595336 2014-10-01] (ESET)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe [63296 2014-08-20] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-966723520-4047170767-1171137047-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-966723520-4047170767-1171137047-1001\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
HKU\S-1-5-21-966723520-4047170767-1171137047-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=s ... earchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-966723520-4047170767-1171137047-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-966723520-4047170767-1171137047-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=s ... earchTerms}
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1 8.8.8.8
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin HKU\S-1-5-21-966723520-4047170767-1171137047-1001: @onlive.com/OnLiveGameClientDetector,version=1.0.0 -> C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll No File

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.cz/
CHR DefaultSearchKeyword: Default -> google
CHR DefaultSearchURL: Default -> https://www.google.de/search?q={searchT ... kid=sp-006
CHR DefaultSuggestURL: Default -> https://www.google.com/complete/search? ... earchTerms}
CHR Profile: C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-25]
CHR Extension: (Dokumenty Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-12-25]
CHR Extension: (Disk Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-25]
CHR Extension: (YouTube) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-25]
CHR Extension: (Tabulky Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-25]
CHR Extension: (Star Stable Online) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnlmdkpemkkigkgelegknllpmfclakkk [2014-12-26]
CHR Extension: (Peněženka Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-25]
CHR Extension: (Gmail) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-25]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe [71168 2014-08-20] (ASUS Cloud Corporation) [File not signed]
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2013-11-14] (Broadcom Corporation.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
S2 0269971422900679mcinstcleanup; C:\Users\Monika\AppData\Local\Temp\026997~1.EXE -cleanup -nolog [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [71952 2014-03-31] (ASUS Corporation)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-14] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7546544 2014-12-01] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfw; C:\Windows\system32\DRIVERS\epfw.sys [222280 2014-10-10] (ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [44632 2014-10-10] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [63160 2014-10-10] (ESET)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Intel Corporation)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-02-02] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-10-28] (Intel Corporation)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
U0 msahci; system32\drivers\msahci.sys
S2 sbapifs; system32\DRIVERS\sbapifs.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-02 20:43 - 2015-02-02 20:43 - 00014331 _____ () C:\Users\Monika\Desktop\FRST.txt
2015-02-02 20:42 - 2015-02-02 20:43 - 00000000 ____D () C:\FRST
2015-02-02 20:37 - 2015-02-02 20:40 - 00112640 _____ (forum.viry.cz) C:\Users\Monika\Desktop\FRSTLauncher.exe
2015-02-02 20:33 - 2015-02-02 20:33 - 02131456 _____ (Farbar) C:\Users\Monika\Desktop\FRST64.exe
2015-02-02 20:19 - 2015-02-02 19:51 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-02-02 19:53 - 2015-02-02 20:25 - 00008915 _____ () C:\zoek-results.log
2015-02-02 19:51 - 2015-02-02 20:16 - 00000000 ____D () C:\zoek_backup
2015-02-02 19:51 - 2015-02-02 19:51 - 01295360 _____ () C:\Users\Monika\Desktop\zoek.exe
2015-02-02 16:26 - 2015-02-02 16:40 - 00000000 ____D () C:\AdwCleaner
2015-02-02 16:24 - 2015-02-02 16:24 - 02194432 _____ () C:\Users\Monika\Downloads\adwcleaner_4.109 (1).exe
2015-02-02 16:23 - 2015-02-02 16:24 - 02194432 _____ () C:\Users\Monika\Downloads\adwcleaner_4.109.exe
2015-02-02 16:03 - 2015-02-02 16:08 - 00000000 ____D () C:\rsit
2015-02-02 16:03 - 2015-02-02 16:07 - 00000000 ____D () C:\Program Files\trend micro
2015-02-02 16:02 - 2015-02-02 16:03 - 01222144 _____ () C:\Users\Monika\Downloads\RSITx64 (1).exe
2015-02-02 16:02 - 2015-02-02 16:02 - 01222144 _____ () C:\Users\Monika\Downloads\RSITx64.exe
2015-02-02 12:35 - 2015-02-02 12:57 - 199304942 _____ () C:\Users\Monika\Downloads\Tokyo-Ghoul-√A-03-(CZ).mp4
2015-02-01 19:31 - 2015-02-02 20:25 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-02-01 19:09 - 2015-02-01 19:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-02-01 19:02 - 2015-02-01 19:06 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-01 19:02 - 2015-02-01 19:02 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-01 19:02 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-02-01 19:02 - 2014-11-21 06:14 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-02-01 19:02 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-02-01 18:57 - 2015-02-01 18:57 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Monika\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-30 16:36 - 2015-01-30 18:20 - 00000000 ____D () C:\Users\Monika\Desktop\Štěňata
2015-01-27 13:00 - 2015-01-27 13:00 - 00001142 _____ () C:\Users\Monika\Desktop\Vítejte u registrace produktu ASUS.lnk
2015-01-27 10:09 - 2015-01-27 10:09 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\ESET
2015-01-27 10:09 - 2015-01-27 10:09 - 00000000 ____D () C:\Users\Monika\AppData\Local\ESET
2015-01-27 10:04 - 2015-01-27 10:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-01-27 10:04 - 2015-01-27 10:04 - 00000000 ____D () C:\ProgramData\ESET
2015-01-27 10:04 - 2015-01-27 10:04 - 00000000 ____D () C:\Program Files\ESET
2015-01-27 09:54 - 2015-01-27 09:54 - 01582904 _____ (ESET) C:\Users\Monika\Downloads\eset_smart_security_live_installer.exe
2015-01-23 23:24 - 2015-01-23 23:25 - 00001544 _____ () C:\Windows\system32\Drivers\kgpcpy.cfg
2015-01-23 23:24 - 2015-01-23 23:25 - 00000197 _____ () C:\Windows\system32\2015-01-23-22-24-19.042-AvastVBoxSVC.exe-1688.log
2015-01-23 23:13 - 2015-01-23 23:13 - 02998656 _____ (Enigma Software Group USA, LLC.) C:\Users\Monika\Downloads\SpyHunter-Installer.exe
2015-01-23 23:10 - 2015-01-23 23:15 - 00004712 _____ () C:\Windows\SysWOW64\Drivers\kgpfr2.cfg
2015-01-23 23:07 - 2015-01-23 23:07 - 00000197 _____ () C:\Windows\system32\2015-01-23-22-07-06.054-AvastVBoxSVC.exe-1812.log
2015-01-23 23:02 - 2015-01-23 23:13 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Seznam.cz
2015-01-23 22:56 - 2015-01-23 22:57 - 00000197 _____ () C:\Windows\system32\2015-01-23-21-56-10.059-AvastVBoxSVC.exe-3268.log
2015-01-23 22:54 - 2015-02-02 20:24 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-01-23 22:41 - 2015-01-23 22:41 - 00003146 _____ () C:\Windows\System32\Tasks\{BBAD4EFB-5520-4EC1-ACB0-47A6976B12C6}
2015-01-23 10:59 - 2015-01-23 10:59 - 00000000 _____ () C:\autoexec.bat
2015-01-23 10:55 - 2015-01-23 10:55 - 00707664 _____ (iS3, Inc.) C:\Users\Monika\Downloads\SZSetup_AID10121_AV.exe
2015-01-23 10:55 - 2015-01-23 10:55 - 00000000 ____D () C:\Program Files\Enigma Software Group
2015-01-23 10:35 - 2014-10-18 10:55 - 00055776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-01-23 10:35 - 2014-10-18 09:09 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-01-23 10:35 - 2014-10-18 09:09 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-01-23 10:35 - 2014-10-18 07:38 - 03557376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-01-23 10:35 - 2014-10-18 07:26 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-01-23 10:35 - 2014-10-18 07:23 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-01-23 10:35 - 2014-10-18 07:23 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-01-23 10:35 - 2014-10-18 07:21 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-01-23 10:35 - 2014-10-18 07:20 - 01714176 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-01-23 10:35 - 2014-10-18 07:14 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-01-23 10:35 - 2014-10-18 07:12 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-01-23 10:35 - 2014-10-18 07:11 - 00723968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-01-23 10:34 - 2014-10-18 08:25 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-01-23 10:34 - 2014-10-18 07:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2015-01-23 10:34 - 2014-10-18 07:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-01-23 10:34 - 2014-10-18 07:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-01-21 22:13 - 2015-01-21 22:13 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-01-21 22:13 - 2015-01-21 22:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-01-20 22:26 - 2015-01-20 22:26 - 00003274 _____ () C:\Windows\System32\Tasks\avastBCLRestartS-1-5-21-966723520-4047170767-1171137047-1001
2015-01-20 15:57 - 2015-01-20 15:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-01-20 15:56 - 2015-01-20 15:56 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2015-01-20 15:55 - 2015-01-20 15:55 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Opera Software
2015-01-20 15:55 - 2015-01-20 15:55 - 00000000 ____D () C:\Users\Monika\AppData\Local\Opera Software
2015-01-20 15:54 - 2015-01-23 22:45 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-01-20 15:50 - 2015-01-23 22:44 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\OnLive App
2015-01-19 13:58 - 2015-01-19 13:58 - 00001077 _____ () C:\Users\Monika\Desktop\join.me.lnk
2015-01-19 13:58 - 2015-01-19 13:58 - 00001077 _____ () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\join.me.lnk
2015-01-19 12:56 - 2015-01-19 12:56 - 00000000 ____D () C:\Users\Monika\AppData\Local\LogMeIn
2015-01-19 12:56 - 2015-01-19 12:56 - 00000000 ____D () C:\ProgramData\LogMeIn
2015-01-19 12:55 - 2015-01-19 13:57 - 00000000 ____D () C:\Users\Monika\AppData\Local\join.me
2015-01-17 22:31 - 2015-01-17 22:32 - 00000197 _____ () C:\Windows\system32\2015-01-17-21-31-39.057-AvastVBoxSVC.exe-3652.log
2015-01-17 18:21 - 2015-01-17 18:21 - 00057617 _____ () C:\Users\Monika\Downloads\IMG_65156654906374.jpeg
2015-01-14 16:46 - 2014-12-19 07:26 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 16:46 - 2014-12-12 03:04 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 16:46 - 2014-12-12 01:51 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-01-14 16:46 - 2014-12-09 02:50 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 16:46 - 2014-12-08 20:42 - 00535640 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-01-14 16:46 - 2014-12-08 20:42 - 00531616 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-01-14 16:46 - 2014-12-08 20:42 - 00448792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-01-14 16:46 - 2014-12-08 20:42 - 00413248 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-01-14 16:46 - 2014-12-08 20:42 - 00372408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-01-14 16:46 - 2014-12-08 20:42 - 00108944 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-01-14 16:46 - 2014-12-08 20:42 - 00038264 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-01-14 16:46 - 2014-12-08 20:42 - 00033584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-01-14 16:46 - 2014-12-06 04:17 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-01-14 16:46 - 2014-12-06 02:41 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 16:46 - 2014-12-06 02:35 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-01-14 16:46 - 2014-10-29 05:00 - 00465320 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2015-01-14 16:46 - 2014-10-29 05:00 - 00139984 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2015-01-14 16:46 - 2014-10-29 04:52 - 00500016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-01-14 16:46 - 2014-10-29 04:52 - 00482872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-01-14 16:46 - 2014-10-29 04:52 - 00394120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-01-14 16:46 - 2014-10-29 04:52 - 00272248 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-01-14 16:46 - 2014-10-29 04:12 - 00413136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2015-01-14 16:46 - 2014-10-29 04:12 - 00136296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2015-01-14 16:46 - 2014-10-29 04:07 - 00424544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-01-14 16:46 - 2014-10-29 04:07 - 00370424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-01-14 16:46 - 2014-10-29 04:07 - 00344536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-01-14 16:46 - 2014-10-29 03:44 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2015-01-14 16:46 - 2014-10-29 02:59 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2015-01-14 16:46 - 2014-10-29 02:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-01-14 16:46 - 2014-10-29 02:02 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-01-14 16:46 - 2014-10-29 02:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-12 20:42 - 2015-01-12 20:42 - 00000197 _____ () C:\Windows\system32\2015-01-12-19-42-46.012-AvastVBoxSVC.exe-2044.log
2015-01-12 20:35 - 2015-01-12 20:35 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-01-12 20:35 - 2015-01-12 20:35 - 00000000 ____D () C:\Windows\system32\appraiser
2015-01-06 14:37 - 2015-01-06 14:37 - 00262876 _____ () C:\Users\Monika\Downloads\bad_gong.zip
2015-01-06 14:37 - 2015-01-06 14:37 - 00123241 _____ () C:\Users\Monika\Downloads\graphic_cat.zip
2015-01-06 14:36 - 2015-01-06 14:37 - 00072986 _____ () C:\Users\Monika\Downloads\disguise_sans.zip
2015-01-06 14:36 - 2015-01-06 14:36 - 00062014 _____ () C:\Users\Monika\Downloads\modeschrift.zip
2015-01-06 14:35 - 2015-01-06 14:35 - 00086493 _____ () C:\Users\Monika\Downloads\vengeance2.zip
2015-01-06 14:33 - 2015-01-06 14:33 - 00187881 _____ () C:\Users\Monika\Downloads\just_a_kid.zip
2015-01-06 14:28 - 2015-02-02 18:59 - 00000000 ____D () C:\Písma
2015-01-06 14:25 - 2015-01-06 14:25 - 00025646 _____ () C:\Users\Monika\Downloads\luis_augusto_durango.zip
2015-01-06 14:19 - 2015-01-06 14:19 - 00017628 _____ () C:\Users\Monika\Downloads\angelface.zip

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-02 20:32 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2015-02-02 20:30 - 2014-10-28 21:53 - 00739924 _____ () C:\Windows\system32\perfh005.dat
2015-02-02 20:30 - 2014-10-28 21:53 - 00151610 _____ () C:\Windows\system32\perfc005.dat
2015-02-02 20:30 - 2014-03-18 16:25 - 01745984 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-02 20:28 - 2014-12-25 19:04 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{738EB149-6514-430E-8079-79747476E659}
2015-02-02 20:25 - 2014-12-25 19:07 - 00000962 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-02 20:25 - 2014-12-25 19:03 - 00000000 ____D () C:\Users\Monika\OneDrive
2015-02-02 20:25 - 2014-12-25 18:57 - 00000093 _____ () C:\Users\Monika\AppData\Roaming\sp_data.sys
2015-02-02 20:23 - 2014-12-01 21:33 - 00000000 ____D () C:\Program Files\Common Files\mcafee
2015-02-02 20:23 - 2014-03-18 09:13 - 00433192 _____ () C:\Windows\PFRO.log
2015-02-02 20:23 - 2013-08-22 15:46 - 00023971 _____ () C:\Windows\setupact.log
2015-02-02 20:23 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-02 20:23 - 2013-08-22 15:44 - 00346672 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-02 20:15 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\GroupPolicy
2015-02-02 20:12 - 2014-12-25 19:07 - 00000966 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-02 19:36 - 2014-12-25 19:00 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-966723520-4047170767-1171137047-1001
2015-02-02 19:33 - 2014-12-25 18:42 - 01531458 _____ () C:\Windows\WindowsUpdate.log
2015-02-02 19:33 - 2013-08-22 16:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-02-02 18:31 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-02-02 14:17 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-02-02 13:57 - 2014-10-28 21:42 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2015-02-02 13:57 - 2014-03-18 16:03 - 00000000 ____D () C:\Program Files\Windows Journal
2015-02-02 13:57 - 2014-03-18 16:00 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2015-02-02 13:57 - 2014-03-18 16:00 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2015-02-02 13:57 - 2014-03-18 16:00 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2015-02-02 13:57 - 2014-03-18 16:00 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2015-02-02 13:57 - 2014-03-18 16:00 - 00000000 ____D () C:\Windows\system32\winrm
2015-02-02 13:57 - 2014-03-18 16:00 - 00000000 ____D () C:\Windows\system32\WCN
2015-02-02 13:57 - 2014-03-18 16:00 - 00000000 ____D () C:\Windows\system32\slmgr
2015-02-02 13:57 - 2014-03-18 16:00 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\WinStore
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\Com
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\SystemResetPlatform
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\MUI
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\migwiz
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\Com
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\IME
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\Help
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\System
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-02-02 13:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-02-02 13:57 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2015-02-02 13:57 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-02-02 13:57 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\system32\Sysprep
2015-02-02 13:57 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\system32\oobe
2015-02-02 13:57 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\system32\Dism
2015-02-02 13:57 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\servicing
2015-02-02 10:52 - 2014-12-25 18:52 - 00000000 ____D () C:\Users\Monika
2015-02-02 10:40 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2015-02-02 10:40 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sk-SK
2015-02-02 09:27 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\en-GB
2015-02-02 09:27 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\en-GB
2015-02-01 20:45 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\TAPI
2015-02-01 17:48 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-01-31 22:59 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-01-27 12:45 - 2014-12-25 21:32 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-01-27 09:16 - 2014-12-25 19:08 - 00002165 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-26 09:24 - 2014-12-25 18:54 - 00000000 ____D () C:\Users\Monika\AppData\Local\Packages
2015-01-24 21:20 - 2014-12-30 22:20 - 00714720 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-24 21:20 - 2014-12-30 22:20 - 00106976 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-23 23:30 - 2014-12-25 18:54 - 00001424 _____ () C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-23 23:07 - 2013-08-22 14:25 - 00000226 _____ () C:\Windows\win.ini
2015-01-23 22:48 - 2015-01-01 21:27 - 00000000 ____D () C:\Users\Monika\AppData\Roaming\Skype
2015-01-21 22:14 - 2014-10-28 16:01 - 00000000 ____D () C:\ProgramData\Skype
2015-01-17 22:16 - 2014-12-31 12:34 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-17 22:16 - 2014-12-31 12:34 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-12 20:35 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppCompat
2015-01-12 20:34 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-01-12 20:34 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-01-12 20:34 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-RS
2015-01-12 20:34 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS

==================== Files in the root of some directories =======

2014-12-25 18:57 - 2015-02-02 20:25 - 0000093 _____ () C:\Users\Monika\AppData\Roaming\sp_data.sys
2014-12-01 21:15 - 2014-12-01 21:15 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-10-28 16:00 - 2012-09-07 12:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2014-10-28 16:00 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe

Files to move or delete:
====================
C:\ProgramData\SetStretch.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-27 14:12




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:141.79 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Data) (Fixed) (Total:258.35 GB) (Free:257.89 GB) NTFS

Available physical RAM: 2468.29 MB
Total physical RAM: 3982.62 MB
Percentage of memory in use: 38%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 465.8 GB) (Disk ID: 7295BF4D)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\Monika\OneDrive:ms-properties

==================== Security Center ==================

AV: ESET Smart Security 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Monika\Desktop" je 74 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[vyosek]

vycistime a uvidime

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  U0 msahci; system32\drivers\msahci.sys
  S2 sbapifs; system32\DRIVERS\sbapifs.sys [X]
  S2 0269971422900679mcinstcleanup; C:\Users\Monika\AppData\Local\Temp\026997~1.EXE -cleanup -nolog [X]
  
  SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
  HKU\S-1-5-21-966723520-4047170767-1171137047-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
  
  HKLM\...\Policies\Explorer: [NoFolderOptions] 0
  HKLM\...\Policies\Explorer: [NoControlPanel] 0
  
  2015-01-23 23:13 - 2015-01-23 23:13 - 02998656 _____ (Enigma Software Group USA, LLC.) C:\Users\Monika\Downloads\SpyHunter-Installer.exe
  2015-01-27 09:54 - 2015-01-27 09:54 - 01582904 _____ (ESET) C:\Users\Monika\Downloads\eset_smart_security_live_installer.exe
  2015-02-01 18:57 - 2015-02-01 18:57 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Monika\Downloads\mbam-setup-2.0.4.1028.exe
  2015-02-02 20:19 - 2015-02-02 19:51 - 00024064 _____ () C:\Windows\zoek-delete.exe
  2015-02-02 19:53 - 2015-02-02 20:25 - 00008915 _____ () C:\zoek-results.log
  2015-02-02 19:51 - 2015-02-02 20:16 - 00000000 ____D () C:\zoek_backup
  2015-02-02 19:51 - 2015-02-02 19:51 - 01295360 _____ () C:\Users\Monika\Desktop\zoek.exe
  2015-02-02 16:26 - 2015-02-02 16:40 - 00000000 ____D () C:\AdwCleaner
  2015-02-02 16:24 - 2015-02-02 16:24 - 02194432 _____ () C:\Users\Monika\Downloads\adwcleaner_4.109 (1).exe
  2015-02-02 16:23 - 2015-02-02 16:24 - 02194432 _____ () C:\Users\Monika\Downloads\adwcleaner_4.109.exe
  2015-02-02 16:03 - 2015-02-02 16:08 - 00000000 ____D () C:\rsit
  2015-02-02 16:03 - 2015-02-02 16:07 - 00000000 ____D () C:\Program Files\trend micro
  2015-02-02 16:02 - 2015-02-02 16:03 - 01222144 _____ () C:\Users\Monika\Downloads\RSITx64 (1).exe
  2015-02-02 16:02 - 2015-02-02 16:02 - 01222144 _____ () C:\Users\Monika\Downloads\RSITx64.exe
  2015-02-02 20:37 - 2015-02-02 20:40 - 00112640 _____ (forum.viry.cz) C:\Users\Monika\Desktop\FRSTLauncher.exe
  2015-02-02 20:43 - 2015-02-02 20:43 - 00014331 _____ () C:\Users\Monika\Desktop\FRST.txt
  
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  
  Hosts:
  EmptyTemp:
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[Lonely Girl]

Tak tady to je..Chtěla sem to dát jako přílohu,ale prý přípona txt není povolená

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-02-2015
Ran by Monika at 2015-02-02 21:05:51 Run:1
Running from C:\Users\Monika\Desktop
Loaded Profiles: Monika (Available profiles: Monika)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:

U0 msahci; system32\drivers\msahci.sys
S2 sbapifs; system32\DRIVERS\sbapifs.sys [X]
S2 0269971422900679mcinstcleanup; C:\Users\Monika\AppData\Local\Temp\026997~1.EXE -cleanup -nolog [X]

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-966723520-4047170767-1171137047-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION

HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0

2015-01-23 23:13 - 2015-01-23 23:13 - 02998656 _____ (Enigma Software Group USA, LLC.) C:\Users\Monika\Downloads\SpyHunter-Installer.exe
2015-01-27 09:54 - 2015-01-27 09:54 - 01582904 _____ (ESET) C:\Users\Monika\Downloads\eset_smart_security_live_installer.exe
2015-02-01 18:57 - 2015-02-01 18:57 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Monika\Downloads\mbam-setup-2.0.4.1028.exe
2015-02-02 20:19 - 2015-02-02 19:51 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-02-02 19:53 - 2015-02-02 20:25 - 00008915 _____ () C:\zoek-results.log
2015-02-02 19:51 - 2015-02-02 20:16 - 00000000 ____D () C:\zoek_backup
2015-02-02 19:51 - 2015-02-02 19:51 - 01295360 _____ () C:\Users\Monika\Desktop\zoek.exe
2015-02-02 16:26 - 2015-02-02 16:40 - 00000000 ____D () C:\AdwCleaner
2015-02-02 16:24 - 2015-02-02 16:24 - 02194432 _____ () C:\Users\Monika\Downloads\adwcleaner_4.109 (1).exe
2015-02-02 16:23 - 2015-02-02 16:24 - 02194432 _____ () C:\Users\Monika\Downloads\adwcleaner_4.109.exe
2015-02-02 16:03 - 2015-02-02 16:08 - 00000000 ____D () C:\rsit
2015-02-02 16:03 - 2015-02-02 16:07 - 00000000 ____D () C:\Program Files\trend micro
2015-02-02 16:02 - 2015-02-02 16:03 - 01222144 _____ () C:\Users\Monika\Downloads\RSITx64 (1).exe
2015-02-02 16:02 - 2015-02-02 16:02 - 01222144 _____ () C:\Users\Monika\Downloads\RSITx64.exe
2015-02-02 20:37 - 2015-02-02 20:40 - 00112640 _____ (forum.viry.cz) C:\Users\Monika\Desktop\FRSTLauncher.exe
2015-02-02 20:43 - 2015-02-02 20:43 - 00014331 _____ () C:\Users\Monika\Desktop\FRST.txt

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
msahci => Service deleted successfully.
sbapifs => Service deleted successfully.
0269971422900679mcinstcleanup => Service deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-966723520-4047170767-1171137047-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoFolderOptions => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoControlPanel => value deleted successfully.
C:\Users\Monika\Downloads\SpyHunter-Installer.exe => Moved successfully.
C:\Users\Monika\Downloads\eset_smart_security_live_installer.exe => Moved successfully.
C:\Users\Monika\Downloads\mbam-setup-2.0.4.1028.exe => Moved successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Monika\Desktop\zoek.exe => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Monika\Downloads\adwcleaner_4.109 (1).exe => Moved successfully.
C:\Users\Monika\Downloads\adwcleaner_4.109.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Users\Monika\Downloads\RSITx64 (1).exe => Moved successfully.
C:\Users\Monika\Downloads\RSITx64.exe => Moved successfully.
C:\Users\Monika\Desktop\FRSTLauncher.exe => Moved successfully.
C:\Users\Monika\Desktop\FRST.txt => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 378.9 MB temporary data.


The system needed a reboot.

==== End of Fixlog 21:06:50 ====

[vyosek]

Takhle je to v poradku a prehlednejsi

Jak se chova nas pacient

[Lonely Girl]

Sice se už přestal sekat,ale když zadám něco do vyhledavače,pořád tam za to naskakuje ?trackid=sp-006 :/

[vyosek]

Jeste jeden fixlist tedy, postup stejny

Kód: Vybrat vše

Start
CHR DefaultSearchURL: Default -> https://www.google.de/search?q={searchTerms}?trackid=sp-006
CHR DefaultSuggestURL: Default -> https://www.google.com/complete/search?client=chrome&q={searchTerms}
End

Napiste co PC

[Lonely Girl]

Tak super,už je to ok..Vyhledávání funguje jak má,ntb se neseká a běží rychle jako dřív