Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

PC lze spustit pouze v nouzovém režimu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Lukyn2
Návštěvník
Návštěvník
Příspěvky: 14
Registrován: 17 bře 2007 15:49

PC lze spustit pouze v nouzovém režimu

#1 Příspěvek od Lukyn2 »

Počítač nelze spustit (pouze v nouzovém režimu). V něm lze spustit jedině Internet explorer. Předem děkuji za pomoc

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 05-02-2015
Ran by Lukáš (administrator) on LUKÁŠ-PC on 06-02-2015 10:53:55
Running from C:\Users\Lukáš\Desktop
Loaded Profiles: Lukáš (Available profiles: Lukáš)
Platform: Microsoft® Windows Vista™ Home Premium  Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 7 (Default browser: Chrome)
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(forum.viry.cz) C:\Users\Lukáš\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Corporation) C:\Windows\System32\PING.EXE


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-02-12] (Intel Corporation)
HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-09-13] (Google)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-06-14] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7399968 2009-04-11] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-04-11] (Realtek Semiconductor Corp.)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2009-10-14] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1430824 2009-02-06] (Synaptics Incorporated)
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [1071624 2009-04-09] (Dritek System Inc.)
HKLM\...\Run: [BackupManagerTray] => C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [253696 2009-05-26] (NewTech Infosystems, Inc.)
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [440864 2009-05-15] (Acer Incorporated)
HKLM\...\Run: [ODDPwr] => C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe [176128 2009-04-29] (Acer Incorporated)
HKLM\...\Run: [mwlDaemon] => C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [345384 2009-05-14] (Egis Technology Inc.)
HKLM\...\Run: [ArcSoft Connection Service] => C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [702768 2014-12-11] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [126200 2014-11-20] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM\...\Run: [ApnTBMon] => C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1934744 2015-01-31] (APN)
HKLM\...\RunOnce: [{2c18809c-4097-4b51-a4d0-3deade730ef3}] => C:\ProgramData\Package Cache\{2c18809c-4097-4b51-a4d0-3deade730ef3}\Avira.OE.Setup.Bundle.exe [780168 2015-02-06] (Avira Operations & Co. KG) <===== ATTENTION
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\...\Run: [ProductReg] => C:\Program Files\Acer\WR_PopUp\ProductReg.exe [135168 2008-11-17] (Acer)
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\...\Run: [EPSON Stylus DX4400 Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE [180736 2007-03-01] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2009-10-14] (Google Inc.)
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\...\Run: [Google Update] => C:\Users\Lukáš\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-07-30] (Google Inc.)
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\...\Run: [KiesPDLR] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [20880 2011-06-24] ()
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30879328 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\...\MountPoints2: D - WDSetup.exe
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\...\MountPoints2: {7f3f53ed-4865-11e3-b157-e0697f1178ca} - D:\Setup.exe
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\...\MountPoints2: {c59109d1-a189-11df-93cf-001f16b3239f} - WDSetup.exe
AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL => C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [123392 2010-09-13] (Google)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk
ShortcutTarget: Acer VCM.lnk -> C:\Program Files\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
Startup: C:\Users\Lukáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files\EgisTec\MyWinLocker 3\x86\psdprotect.dll (Egis Technology Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-2188341030-456360985-3123226338-1000\Software\Microsoft\Internet Explorer\Main,Start Page = 
SearchScopes: HKLM -> DefaultScope value is missing.
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: BrowserPlugin -> {C2C174C4-0CCA-BC04-157E-BDAF73460396} -> C:\Users\Lukáš\AppData\Local\GamePlayLabs Plugin\BHO.dll No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-2188341030-456360985-3123226338-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {F7EDBBEA-1AD2-4EBF-AA07-D453CC29EE65} https://plugins.valueactive.eu/flashax/iefax.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF ProfilePath: C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\a4n4ndzw.default
FF Homepage: hxxp://www.seznam.cz/
FF NetworkProxy: "autoconfig_url", "http://ezdroje.muni.cz/proxy/libproxy.pac"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1165635.dll (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @veetle.com/veetleCorePlugin,version=0.9.18 -> C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin: @veetle.com/veetlePlayerPlugin,version=0.9.18 -> C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2188341030-456360985-3123226338-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Lukáš\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKU\S-1-5-21-2188341030-456360985-3123226338-1000: @talk.google.com/O1DPlugin -> C:\Users\Lukáš\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKU\S-1-5-21-2188341030-456360985-3123226338-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Lukáš\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-2188341030-456360985-3123226338-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Lukáš\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-2188341030-456360985-3123226338-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Lukáš\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll (BitComet)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Lukáš\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Lukáš\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF Extension: Avira Browser Safety - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\a4n4ndzw.default\Extensions\abs@avira.com [2014-12-15]
FF Extension: Flash AX Control - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\a4n4ndzw.default\Extensions\npfax@microgaming.co.uk [2010-01-02]
FF Extension: GamePlayLabs Plugin - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\a4n4ndzw.default\Extensions\plugin@gameplaylabs.com [2011-03-22]
FF Extension: BitComet Video Downloader - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\a4n4ndzw.default\Extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} [2010-04-13]
FF Extension: Adblock Plus - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\a4n4ndzw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-03-12]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-12-15]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-12-15]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-12-15]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-10-18]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome: 
=======
CHR DefaultSuggestURL: Default -> http://ssmsp.ask.com/query?sstype=prefix&li=ff&q={searchTerms}
CHR Profile: C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Ask Search) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf [2015-01-10]
CHR Extension: (Prezentace Google) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-24]
CHR Extension: (Dokumenty Google) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-16]
CHR Extension: (Disk Google) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-16]
CHR Extension: (YouTube) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-16]
CHR Extension: (Vyhledávání Google) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-16]
CHR Extension: (Tabulky Google) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-24]
CHR Extension: (Avira Browser Safety) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2014-08-13]
CHR Extension: (Skype Click to Call) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-02-23]
CHR Extension: (Peněženka Google) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (Gmail) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-16]
CHR HKLM\...\Chrome\Extension: [aaaaaiabcopkplhgaedhbloeejhhankf] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaaiabcopkplhgaedhbloeejhhankf.crx [2015-01-31]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - No Path
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [431920 2014-12-11] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [431920 2014-12-11] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [992560 2014-12-11] (Avira Operations GmbH & Co. KG)
S2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [177560 2015-01-31] (APN LLC.)
S2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [166192 2014-11-20] (Avira Operations GmbH & Co. KG)
S2 ePowerSvc; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [703008 2009-05-15] (Acer Incorporated)
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-09-13] (Google)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S2 MWLService; C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe [305448 2009-05-14] (Egis Technology Inc.)
S2 NTI IScheduleSvc; C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [62208 2009-05-26] (NewTech Infosystems, Inc.)
S2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144632 2008-09-23] (NewTech Infosystems, Inc.)
S2 ODDPwrSvc; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [118784 2009-04-29] (Acer Incorporated) [File not signed]
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [14848 2011-12-15] () [File not signed]
S2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [237568 2009-02-05] (Acer Incorporated) [File not signed]
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 amdkmdag; C:\Windows\System32\DRIVERS\atipmdag.sys [4989952 2009-06-15] (ATI Technologies Inc.)
S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [98160 2014-10-09] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2014-10-09] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-10-01] (Avira Operations GmbH & Co. KG)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [192056 2008-01-21] (Společnost Microsoft)
S3 intelkmd; C:\Windows\System32\DRIVERS\igdpmd32.sys [4740096 2009-06-15] (Intel Corporation)
R3 L1C; C:\Windows\System32\DRIVERS\L1C60x86.sys [50176 2009-04-01] (Atheros Communications, Inc.)
S1 mwlPSDFilter; C:\Windows\System32\DRIVERS\mwlPSDFilter.sys [19504 2008-12-04] (Egis Incorporated.)
S1 mwlPSDNServ; C:\Windows\System32\DRIVERS\mwlPSDNServ.sys [16432 2008-12-04] (Egis Incorporated.)
S1 mwlPSDVDisk; C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys [59952 2008-12-04] (Egis Incorporated.)
R3 NETw1v32; C:\Windows\System32\DRIVERS\NETw1v32.sys [5958144 2009-06-19] (Intel Corporation)
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1081912 2008-01-21] (Společnost Microsoft)
S3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMIV.sys [153952 2009-02-21] (Realtek Semiconductor Corp.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [324096 2013-11-08] (Duplex Secure Ltd.)
S1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-02-22] (Avira GmbH)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [26624 2011-12-15] (The OpenVPN Project)
S3 ALSysIO; \??\C:\Users\LUK~1\AppData\Local\Temp\ALSysIO.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-06 10:53 - 2015-02-06 10:54 - 00023375 _____ () C:\Users\Lukáš\Desktop\FRST.txt
2015-02-06 10:52 - 2015-02-06 10:54 - 00000000 ____D () C:\FRST
2015-02-06 10:50 - 2015-02-06 10:50 - 00029696 _____ () C:\Users\Lukáš\AppData\Local\MSGBOX.EXE
2015-02-06 10:50 - 2015-02-06 10:50 - 00015327 _____ () C:\Users\Lukáš\Desktop\LM.bat
2015-02-06 10:49 - 2015-02-06 10:49 - 00112640 _____ (forum.viry.cz) C:\Users\Lukáš\Desktop\FRSTLauncher.exe
2015-02-06 10:46 - 2015-02-06 10:47 - 01123328 _____ (Farbar) C:\Users\Lukáš\Desktop\FRST.exe
2015-02-06 10:38 - 2015-02-06 10:38 - 00139208 _____ () C:\Windows\Minidump\Mini020615-02.dmp
2015-02-06 10:31 - 2015-02-06 10:31 - 00139208 _____ () C:\Windows\Minidump\Mini020615-01.dmp
2015-02-03 22:19 - 2015-02-03 22:20 - 00000000 ____D () C:\Users\Lukáš\Documents\the race white house
2015-02-03 22:18 - 2015-02-03 22:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid
2015-02-03 22:18 - 2015-02-03 22:18 - 00000000 ____D () C:\Program Files\Xvid
2015-02-03 22:10 - 2015-02-03 22:20 - 00000000 ____D () C:\the race white house
2015-02-03 21:22 - 2015-02-03 22:05 - 765818809 _____ () C:\Users\Lukáš\Downloads\The°°Race°°for°°the°°White°°House°°(2012).rar
2015-01-29 12:46 - 2015-01-29 14:06 - 734924800 _____ () C:\Users\Lukáš\Downloads\Vykoupení-z-věznice-Shawshank-Shawshank-Redemption,-The---(CZ-Dabing,-BEZ-tit,-Drama-Krimi,-USA,-1994).avi
2015-01-28 14:21 - 2015-02-05 12:25 - 00000000 ____D () C:\Users\Lukáš\AppData\Roaming\Spotify
2015-01-28 14:21 - 2015-02-04 18:17 - 00000000 ____D () C:\Users\Lukáš\AppData\Local\Spotify
2015-01-28 00:00 - 2015-01-28 00:00 - 00014461 _____ () C:\Users\Lukáš\Downloads\American_Sniper_2014_720p_BRRip_XviD_AC3_SANTii.torrent
2015-01-27 19:25 - 2015-01-27 19:25 - 00253284 _____ () C:\Users\Lukáš\Downloads\Formular+zadosti+o+dotaci+Rozvoj+MTZ+2015.fo
2015-01-26 16:59 - 2015-01-26 16:59 - 00000000 ____D () C:\Users\Lukáš\AppData\Local\Opera Software
2015-01-26 16:58 - 2015-02-03 17:02 - 00000000 ____D () C:\Program Files\Opera
2015-01-26 16:58 - 2015-01-26 16:58 - 00000000 ____D () C:\Users\Lukáš\AppData\Roaming\Opera Software
2015-01-26 16:23 - 2015-01-26 17:22 - 1034900251 _____ () C:\Users\Lukáš\Downloads\PilotsEYE-TV-München-La-Palma-1280x720.zip
2015-01-26 12:27 - 2015-01-26 23:33 - 00000000 ____D () C:\Users\Lukáš\Desktop\diplomka
2015-01-25 23:07 - 2015-01-25 23:07 - 00000000 ____D () C:\Program Files\Mozilla Firefox(63)
2015-01-24 13:41 - 2015-01-24 13:41 - 00000000 ____D () C:\Users\Lukáš\AppData\Local\Presentable_Liberty
2015-01-24 11:50 - 2015-01-24 11:51 - 175381154 _____ () C:\Users\Lukáš\Downloads\Presentable_Liberty.zip
2015-01-16 07:40 - 2015-01-16 07:40 - 00139208 _____ () C:\Windows\Minidump\Mini011615-01.dmp
2015-01-13 22:01 - 2015-01-29 08:12 - 00000000 ____D () C:\Users\Lukáš\Desktop\zuzanka
2015-01-11 22:38 - 2015-01-11 22:38 - 00348160 _____ () C:\Users\Lukáš\Downloads\IKF ECup Final form 2015 KK BRNO.xls
2015-01-11 22:35 - 2015-01-11 22:35 - 00058880 _____ () C:\Users\Lukáš\Downloads\Long List IKF form - clubs v 2015- Europa Cup Final.xls
2015-01-10 17:54 - 2015-01-10 17:54 - 00000000 ____D () C:\Users\Lukáš\AppData\Local\AskPartnerNetwork
2015-01-10 17:53 - 2015-01-10 17:53 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2015-01-10 17:53 - 2015-01-10 17:53 - 00000000 ____D () C:\ProgramData\APN
2015-01-10 17:53 - 2015-01-10 17:53 - 00000000 ____D () C:\Program Files\AskPartnerNetwork
2015-01-10 17:51 - 2015-01-10 17:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-01-10 17:51 - 2015-01-10 17:51 - 00000000 ____D () C:\Program Files\Common Files\Java
2015-01-10 17:50 - 2015-01-10 17:50 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-10 17:47 - 2015-01-10 17:47 - 00638888 _____ (Oracle Corporation) C:\Users\Lukáš\Downloads\chromeinstall-8u25.exe
2015-01-10 17:46 - 2015-01-10 17:54 - 00000000 ____D () C:\Users\Lukáš\Desktop\carcasone
2015-01-10 17:45 - 2015-01-10 17:45 - 17664259 _____ () C:\Users\Lukáš\Downloads\JCloisterZone-3.0.2.zip
2015-01-07 17:06 - 2015-01-07 17:15 - 00000000 ____D () C:\Users\Lukáš\Desktop\fotCV

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-06 10:46 - 2009-10-15 14:13 - 00212480 _____ () C:\Users\Lukáš\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-06 10:39 - 2009-10-21 13:18 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2015-02-06 10:38 - 2010-10-12 11:15 - 305627459 _____ () C:\Windows\MEMORY.DMP
2015-02-06 10:38 - 2010-10-12 11:15 - 00000000 ____D () C:\Windows\Minidump
2015-02-06 10:34 - 2009-10-14 21:27 - 01587723 _____ () C:\Windows\WindowsUpdate.log
2015-02-06 10:33 - 2014-08-13 08:21 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-06 10:33 - 2013-05-10 13:38 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-06 10:32 - 2014-07-05 12:58 - 00000392 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-02-06 10:31 - 2013-02-27 18:08 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-02-06 10:31 - 2006-11-02 14:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-06 10:31 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-06 10:31 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-06 02:02 - 2014-12-15 22:20 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-02-06 02:02 - 2013-02-22 18:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-02-06 02:02 - 2013-02-22 18:32 - 00000000 ____D () C:\Program Files\Avira
2015-02-06 02:02 - 2012-05-04 01:28 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-02-06 02:02 - 2010-07-01 17:24 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2015-02-06 02:02 - 2010-04-12 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-02-06 02:02 - 2009-10-15 18:45 - 00000000 ____D () C:\Users\Public\Documents\Acer
2015-02-06 02:02 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\spool
2015-02-06 02:02 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\Msdtc
2015-02-06 02:02 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\registration
2015-02-06 02:02 - 2006-11-02 11:22 - 52166656 _____ () C:\Windows\system32\config\software_previous
2015-02-06 02:02 - 2006-11-02 11:22 - 30932992 _____ () C:\Windows\system32\config\system_previous
2015-02-06 01:56 - 2006-11-02 11:22 - 38797312 _____ () C:\Windows\system32\config\components_previous
2015-02-06 01:56 - 2006-11-02 11:22 - 00262144 _____ () C:\Windows\system32\config\sam_previous
2015-02-05 18:08 - 2012-05-10 15:04 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-02-05 18:08 - 2011-10-10 14:00 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-02-05 18:06 - 2009-10-17 21:38 - 00000000 ____D () C:\Users\Lukáš\AppData\Roaming\Skype
2015-02-05 17:49 - 2013-05-10 13:38 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-05 17:22 - 2014-07-30 19:05 - 00000962 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2188341030-456360985-3123226338-1000UA.job
2015-02-05 17:07 - 2009-10-16 22:31 - 00000000 ____D () C:\Users\Lukáš\AppData\Roaming\Mozilla
2015-02-05 17:05 - 2013-02-25 12:06 - 00000392 ____H () C:\Windows\Tasks\User_Feed_Synchronization-{5593EC4F-AF4C-413E-A869-2CFFC2E2DFB6}.job
2015-02-05 17:04 - 2009-10-14 15:40 - 00000000 ____D () C:\Users\Lukáš
2015-02-05 17:04 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\tracing
2015-02-05 16:53 - 2008-01-21 03:47 - 00784348 _____ () C:\Windows\PFRO.log
2015-02-05 12:55 - 2006-11-02 11:22 - 00262144 _____ () C:\Windows\system32\config\security_previous
2015-02-05 12:55 - 2006-11-02 11:22 - 00262144 _____ () C:\Windows\system32\config\default_previous
2015-02-05 12:54 - 2010-01-04 12:33 - 00000000 ____D () C:\Users\Lukáš\AppData\Roaming\ICQ
2015-01-28 00:10 - 2010-04-13 19:23 - 00000000 ____D () C:\Users\Lukáš\AppData\Roaming\BitComet
2015-01-26 00:35 - 2014-10-13 14:56 - 00000000 ____D () C:\Users\Lukáš\Desktop\mobil foto
2015-01-25 20:32 - 2009-10-21 10:01 - 00000000 ____D () C:\Users\Lukáš\Desktop\korfbal
2015-01-17 09:04 - 2006-11-02 13:52 - 00158305 _____ () C:\Windows\setupact.log
2015-01-16 08:14 - 2013-08-19 08:08 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-14 02:59 - 2006-11-02 11:33 - 01430532 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-13 20:48 - 2012-10-01 23:42 - 00000000 ____D () C:\Users\Lukáš\AppData\Roaming\BSplayer
2015-01-13 18:22 - 2014-07-30 19:05 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2188341030-456360985-3123226338-1000Core.job
2015-01-10 17:51 - 2011-11-03 12:25 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-01-10 17:49 - 2012-10-30 12:19 - 00000000 ____D () C:\Program Files\Java
2015-01-10 13:08 - 2006-11-02 14:01 - 00032580 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-01-10 13:06 - 2009-10-14 15:42 - 00000012 _____ () C:\Windows\bthservsdp.dat
2015-01-07 23:09 - 2014-11-05 11:26 - 00000000 ____D () C:\Users\Lukáš\Desktop\Porto
2015-01-07 22:48 - 2014-02-05 03:10 - 00000000 ____D () C:\Users\Lukáš\Desktop\KSČM
2015-01-07 13:49 - 2009-10-17 21:37 - 00000000 ___RD () C:\Program Files\Skype
2015-01-07 13:49 - 2009-10-17 21:37 - 00000000 ____D () C:\ProgramData\Skype

==================== Files in the root of some directories =======

2010-12-15 09:28 - 2010-12-15 09:28 - 0000268 ___RH () C:\Users\Lukáš\AppData\Roaming\Applications
2010-12-15 09:32 - 2010-12-15 09:32 - 0000268 ___RH () C:\Users\Lukáš\AppData\Roaming\Audio Unit Effect
2010-04-14 13:15 - 2014-03-05 08:11 - 0007584 _____ () C:\Users\Lukáš\AppData\Roaming\wklnhst.dat
2012-11-05 15:33 - 2013-12-14 22:40 - 0001356 _____ () C:\Users\Lukáš\AppData\Local\d3d9caps.dat
2009-10-15 14:13 - 2015-02-06 10:46 - 0212480 _____ () C:\Users\Lukáš\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-06 10:50 - 2015-02-06 10:50 - 0029696 _____ () C:\Users\Lukáš\AppData\Local\MSGBOX.EXE
2009-10-14 16:03 - 2009-10-14 16:03 - 0003276 _____ () C:\Users\Lukáš\AppData\Local\MyWinLockerInstaller.txt-20091014.log
2010-12-15 09:28 - 2010-12-15 09:28 - 0000268 ___RH () C:\ProgramData\Authentication
2010-12-15 09:32 - 2010-12-15 09:32 - 0000268 ___RH () C:\ProgramData\Automator
2009-10-17 21:41 - 2009-10-17 21:41 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2010-12-15 09:28 - 2014-08-14 07:41 - 0000020 ____H () C:\ProgramData\PKP_DLdu.DAT
2010-12-15 09:32 - 2010-12-15 09:32 - 0000020 ____H () C:\ProgramData\PKP_DLdw.DAT

Files to move or delete:
====================
C:\ProgramData\Package Cache\{2c18809c-4097-4b51-a4d0-3deade730ef3}\Avira.OE.Setup.Bundle.exe
C:\Users\Lukáš\DRVMGT.DLL
C:\Users\Lukáš\EBUEULA.DLL
C:\Users\Lukáš\MGSPID.DLL
C:\Users\Lukáš\NATIONS.EXE
C:\Users\Lukáš\PIDGEN.DLL
C:\Users\Lukáš\RISE.EXE
C:\Users\Lukáš\RONSETUP.EXE
C:\Users\Lukáš\SETUPENU.DLL


Some content of TEMP:
====================
C:\Users\Lukáš\AppData\Local\Temp\APNSetup.exe
C:\Users\Lukáš\AppData\Local\Temp\avgnt.exe
C:\Users\Lukáš\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
C:\Users\Lukáš\AppData\Local\Temp\Quarantine.exe
C:\Users\Lukáš\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Lukáš\AppData\Local\Temp\vcheck12.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-06 10:54

==================== End Of Log ============================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119678
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: PC lze spustit pouze v nouzovém režimu

#2 Příspěvek od Rudy »

Zdravím!
Nejprve spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Lukyn2
Návštěvník
Návštěvník
Příspěvky: 14
Registrován: 17 bře 2007 15:49

Re: PC lze spustit pouze v nouzovém režimu

#3 Příspěvek od Lukyn2 »

Kód: Vybrat vše

# AdwCleaner v4.110 - Logfile created 09/02/2015 at 11:57:13
# Updated 05/02/2015 by Xplode
# Database : 2015-02-05.2 [Local]
# Operating system : Windows Vista (TM) Home Premium Service Pack 1 (x86)
# Username : Lukáš - LUKÁŠ-PC
# Running from : C:\Users\Lukáš\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3GPSQGJQ\adwcleaner_4.110[1].exe
# Option : Cleaning

***** [ Services ] *****

Service Deleted : APNMCP

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AskPartnerNetwork
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\Program Files\AskPartnerNetwork
Folder Deleted : C:\Users\LUK~1\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Lukáš\AppData\Local\AskPartnerNetwork
Folder Deleted : C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{744E0E81-BC79-4719-A58B-C98F7E78EE5D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{92780B25-18CC-41C8-B9BE-3C9C571A8263}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{92780B25-18CC-41C8-B9BE-3C9C571A8263}
Key Deleted : HKCU\Software\AskPartnerNetwork
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKLM\SOFTWARE\AskPartnerNetwork
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF

***** [ Web browsers ] *****

-\\ Internet Explorer v7.0.6001.18639


-\\ Mozilla Firefox v34.0.5 (x86 cs)

[a4n4ndzw.default\prefs.js] - Line Deleted : user_pref("extensions.enabledAddons", "plugin%40gameplaylabs.com:1.0,%7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:34.0.5");
[a4n4ndzw.default\prefs.js] - Line Deleted : user_pref("extensions.plugin@gameplaylabs.com.fr", "1399324639");
[a4n4ndzw.default\prefs.js] - Line Deleted : user_pref("extensions.plugin@gameplaylabs.com.rule_/", "1399324663");

-\\ Google Chrome v39.0.2171.95


-\\ Opera v0.0.0.0


*************************

AdwCleaner[R0].txt - [5877 bytes] - [29/11/2013 12:19:12]
AdwCleaner[R1].txt - [3119 bytes] - [04/05/2014 23:27:19]
AdwCleaner[R2].txt - [2634 bytes] - [09/02/2015 11:49:14]
AdwCleaner[S0].txt - [5956 bytes] - [29/11/2013 12:22:09]
AdwCleaner[S1].txt - [3228 bytes] - [04/05/2014 23:31:45]
AdwCleaner[S2].txt - [2628 bytes] - [09/02/2015 11:57:13]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [2687  bytes] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119678
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: PC lze spustit pouze v nouzovém režimu

#4 Příspěvek od Rudy »

Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“