Ahoj všem, mám tady notebook od kamarádky, donesla mi ho zpomalený a zavirovaný. Pustil jsem Adw cleaner a MBAM a vše jsem vymazal , i po dalším skenu mbam je vše čisté, ale stále zůstal problém. Když chci třeba zjistit verzi systému ve vlastnostech systému, stále chybějí některé knihovny díky za každou radu
# AdwCleaner v4.200 - Log vytvooen 01/04/2015 v 16:01:32
# Aktualizováno 29/03/2015 by Xplode
# Databáze : 2015-03-29.1 [Server]
# Operaení system : Windows 7 Home Premium Service Pack 1 (x86)
# Uživatelské jméno : asus - ASUS-PC
# Spuštino z : C:\Users\asus\Downloads\adwcleaner_4.200.exe
# Nastavení : Eištiní
***** [ Služby ] *****
Služba Smazáno : APNMCP
[#] Služba Smazáno : nvsvc
[#] Služba Smazáno : vToolbarUpdater18.1.10
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\apn
Složka Smazáno : C:\ProgramData\AskPartnerNetwork
Složka Smazáno : C:\ProgramData\AVG Secure Search
Složka Smazáno : C:\ProgramData\AVG Security Toolbar
Složka Smazáno : C:\ProgramData\Tarma Installer
Složka Smazáno : C:\Program Files\AskPartnerNetwork
Složka Smazáno : C:\Program Files\AVG SafeGuard toolbar
Složka Smazáno : C:\Program Files\dll-files.com
Složka Smazáno : C:\Program Files\Common Files\AVG Secure Search
Složka Smazáno : C:\Users\asus\AppData\Local\Temp\apn
Složka Smazáno : C:\Users\asus\AppData\Local\AskPartnerNetwork
Složka Smazáno : C:\Users\asus\AppData\Local\SwvUpdater
Složka Smazáno : C:\Users\asus\AppData\LocalLow\Mysearchdial
Složka Smazáno : C:\Users\asus\AppData\Roaming\Mysearchdial
Složka Smazáno : C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GotClip
Složka Smazáno : C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default\Extensions\Avg@toolbar
Složka Smazáno : C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Soubor Smazáno : C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default\Extensions\toolbar_PTV-RG@apn.ask.com.xpi
Soubor Smazáno : C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pflphaooapbgpeakohlggbpidpppgdff_0.localstorage
Soubor Smazáno : C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pflphaooapbgpeakohlggbpidpppgdff_0.localstorage-journal
Soubor Smazáno : C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pflphaooapbgpeakohlggbpidpppgdff
Soubor Smazáno : C:\windows\system32\roboot.exe
Soubor Smazáno : C:\windows\system32\nvvsvc.exe
Soubor Smazáno : C:\Users\asus\AppData\Local\mysearchdial_speedial_v9.0.2.crx
Soubor Smazáno : C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default\searchplugins\ask-search.xml
Soubor Smazáno : C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default\searchplugins\avg-secure-search.xml
Soubor Smazáno : C:\Program Files\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
Soubor Smazáno : C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage
Soubor Smazáno : C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíe Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Klíe Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\WebCakeIEClient.DLL
Klíe Smazáno : HKLM\SOFTWARE\Classes\escort.escortIEPane
Klíe Smazáno : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Klíe Smazáno : HKLM\SOFTWARE\Classes\esrv.mysearchdialesrvc
Klíe Smazáno : HKLM\SOFTWARE\Classes\esrv.mysearchdialesrvc.1
Klíe Smazáno : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialappCore
Klíe Smazáno : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialappCore.1
Klíe Smazáno : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialdskBnd
Klíe Smazáno : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialdskBnd.1
Klíe Smazáno : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialHlpr
Klíe Smazáno : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialHlpr.1
Klíe Smazáno : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Klíe Smazáno : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Klíe Smazáno : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Klíe Smazáno : HKLM\SOFTWARE\Classes\S
Klíe Smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Klíe Smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Klíe Smazáno : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Klíe Smazáno : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Klíe Smazáno : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Klíe Smazáno : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Klíe Smazáno : HKLM\SOFTWARE\Classes\WebCakeIEClient.Api
Klíe Smazáno : HKLM\SOFTWARE\Classes\WebCakeIEClient.Api.1
Klíe Smazáno : HKLM\SOFTWARE\Classes\WebCakeIEClient.Layers
Klíe Smazáno : HKLM\SOFTWARE\Classes\WebCakeIEClient.Layers.1
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Klíe Smazáno : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\{7169BBB3-3289-4696-B35D-4A88BCF6FB12}
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
Klíe Smazáno : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{44CBC005-6243-4502-8A02-3A096A282664}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4ED063C9-4A0B-4B44-A9DC-23AFF424A0D3}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{82E74373-58AB-47EB-B0F0-A1D82BB8EB5C}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{BB975E58-E769-4E5A-BA12-B765BC559FF3}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C358B3D0-B911-41E3-A276-E7D43A6BA56D}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{D8278076-BC68-4484-9233-6E7F1628B56C}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F297534D-7B06-459D-BC19-2DD8EF69297B}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F511AFDB-726E-4458-90E7-1ECB97406544}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Klíe Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5054562D-5247-006A-76A7-7A786E7484D7}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{0400EBCA-042C-4000-AA89-9713FBEDB671}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{0BD19251-4B4B-4B94-AB16-617106245BB7}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{3281114F-BCAB-45E3-80D9-A6CD64D4E636}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{44533FCB-F9FB-436A-8B6B-CF637B2D465A}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{44B29DDD-CF7A-454A-A275-A322A398D93F}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{A4DE94DB-DF03-45A3-8A5D-D1B7464B242D}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{AA0F50A8-2618-4AE4-A779-9F7378555A8F}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{B2DB115C-8278-4947-9A07-57B53D1C4215}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{B97FC455-DB33-431D-84DB-6F1514110BD5}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{C67281E0-78F5-4E49-9FAE-4B1B2ADAF17B}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{E72E9312-0367-4216-BFC7-21485FA8390B}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{F6CCB6C9-127E-44AE-8552-B94356F39FFE}
Klíe Smazáno : HKLM\SOFTWARE\Classes\Interface\{FFD25630-2734-4AE9-88E6-21BF6525F3FE}
Klíe Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Klíe Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Klíe Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{9945959C-AAD8-4312-8B57-2DE11927E770}
Klíe Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Klíe Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Klíe Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Klíe Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Klíe Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Klíe Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{FBC322D5-407E-4854-8C0B-555B951FD8E3}
Klíe Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{EEA63863-87BC-4DCA-A5B5-EB97E3B04806}
Klíe Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}
Klíe Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5054562D-5247-006A-76A7-7A786E7484D7}
Klíe Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}
Klíe Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5054562D-5247-006A-76A7-7A786E7484D7}
Klíe Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíe Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5054562D-5247-006A-76A7-7A786E7484D7}
Klíe Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{219046AE-358F-4CF1-B1FD-2B4DE83642A8}
Klíe Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
Klíe Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{3004627E-F8E9-4E8B-909D-316753CBA923}]
Hodnota Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{5054562D-5247-006A-76A7-7A786E7484D7}]
Klíe Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\2C23E2B42A1246D5A6585D465C58F120
Klíe Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Klíe Smazáno : HKCU\Software\AskPartnerNetwork
Klíe Smazáno : HKCU\Software\InstallCore
Klíe Smazáno : HKCU\Software\mysearchdial
Klíe Smazáno : HKCU\Software\powerpack
Klíe Smazáno : HKLM\SOFTWARE\AskPartnerNetwork
Klíe Smazáno : HKLM\SOFTWARE\InstallCore
Klíe Smazáno : HKLM\SOFTWARE\mysearchdial
Klíe Smazáno : HKLM\SOFTWARE\Tarma Installer
Klíe Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Klíe Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}
Klíe Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
Klíe Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
***** [ Prohlížeee ] *****
-\\ Internet Explorer v11.0.9600.17689
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
-\\ Mozilla Firefox v36.0.4 (x86 cs)
[0bg7snpz.default\prefs.js] - Oádek Smazáno : user_pref("browser.search.defaultenginename", "AVG Secure Search");
[0bg7snpz.default\prefs.js] - Oádek Smazáno : user_pref("browser.search.selectedEngine", "AVG Secure Search");
[0bg7snpz.default\prefs.js] - Oádek Smazáno : user_pref("extensions.xpiState", "{\"app-profile\":{\"avg@toolbar\":{\"d\":\"C:\\\\Users\\\\asus\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\0bg7snpz.default\\\\extensions\\\\avg@toolba[...]
-\\ Google Chrome v35.0.1916.114
[C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=spubmsd&cd=2XzuyEtN2Y1L1Qzu0EtD0Bzy0AyDtDyE0CzztA0CyC0E0BtDtN0D0Tzu0CyDyCyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1B1E2Y1S1H1B1Q&cr=189240293&ir=
*************************
AdwCleaner[R0].txt - [14505 bytu] - [01/04/2015 15:54:28]
AdwCleaner[S0].txt - [13949 bytu] - [01/04/2015 16:01:32]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [14008 bytu] ##########
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015
Ran by asus (administrator) on ASUS-PC on 04-04-2015 09:40:06
Running from C:\Users\asus\Downloads
Loaded Profiles: UpdatusUser & asus (Available profiles: UpdatusUser & asus)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
() C:\Windows\System32\AsusService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcfgex.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDWare] => %ProgramFiles%\Elantech\ETDCtrl.exe
HKLM\...\Run: [EeeSplendidAgent] => C:\Program Files\ASUS\EPC\EeeSplendid\AsAgent.exe
HKLM\...\Run: [UCam_Menu] => "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
HKLM\...\Run: [HotkeyMon] => AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe
HKLM\...\Run: [HotkeyService] => AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
HKLM\...\Run: [SuperHybridEngine] => AsusSender.exe C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
HKLM\...\Run: [LiveUpdate] => AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
HKLM\...\Run: [CapsHook] => AsusSender.exe C:\Program Files\EeePC\CapsHook\CapsHook.exe
HKLM\...\Run: [GraphicsSwitch] => AsusSender.exe C:\Program Files\Asus\GraphicsSwitch\GPUStatusMonitor.exe
HKLM\...\Run: [ASUSPRP] => C:\Program Files\ASUS\APRP\APRP.EXE
HKLM\...\Run: [GrooveMonitor] => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
HKLM\...\Run: [AsusVibeLuncher] => C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe /start
HKLM\...\Run: [SunJavaUpdateSched] => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3723728 2015-03-25] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\...\Run: [T-Mobile CManager] => "C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\...\Run: [Syncables] => C:\Program Files\syncables\syncables desktop\Syncables.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\asus\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\asus\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\...\Run: [Handy Updater] => "C:\Program Files\HandyUpdater\HandyUpdater.exe"
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22066272 2014-10-01] (Skype Technologies S.A.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\...\RunOnce: [Reboot] => C:\Windows\Reboot.exe [92096 2010-12-13] (AsusTek Computer Inc.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\...\RunOnce: [AskScreensaver] => C:\Program Files\Asus\AsusScreensaver\AsusScreensaver.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\...\MountPoints2: E - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\...\MountPoints2: {52fb677f-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\...\MountPoints2: {52fb67cc-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\...\MountPoints2: {9f5cb8f1-8bba-11e2-b1e0-20cf30686cce} - E:\LaunchU3.exe -a
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Syncables] => C:\Program Files\syncables\syncables desktop\Syncables.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [T-Mobile CManager] => "C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Handy Updater] => "C:\Program Files\HandyUpdater\HandyUpdater.exe"
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22066272 2014-10-01] (Skype Technologies S.A.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5503768 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: E - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {52fb677f-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {52fb67cc-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {9f5cb8f1-8bba-11e2-b1e0-20cf30686cce} - E:\LaunchU3.exe -a
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
CHR HKU\S-1-5-21-2617348160-877986560-2742470243-1001\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://eeepc.asus.com
HKU\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://mysearch.avg.com?cid={CBB5E282-0 ... 2014-06-18 18:59:33&v=18.1.7.598&pid=safeguard&sg=&sap=hp
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
SearchScopes: HKLM -> {77C83C6C-C2F2-3608-EAD6-214F426AE046} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> 2C23E2B42A1246D5A6585D465C58F120 URL = http://start.mysearchdial.com/results.p ... 240293&ir=
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> {1B3A3C45-5DBA-4FD4-9444-7681766F331F} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> {1C0109B9-235F-4D96-8A87-086F2AF3132B} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> {219F7474-B17A-49AF-9BF9-7A8A8112B4B2} URL = http://search.seznam.cz/?q={searchTerms ... arch_16194
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> {39B47046-EFD4-4FDF-8C87-368C053F7424} URL = http://www.search.ask.com/web?p2=%5EADN ... erms}&psv=
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> {4B018360-66A5-41A7-BD57-AC652C66ECD2} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> {72899FB1-D73D-4F44-8D5F-C18E20D77AA7} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> {77C83C6C-C2F2-3608-EAD6-214F426AE046} URL =
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> {A9B782C5-B9AB-4018-A5ED-F677CB9C7FD1} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> {B1F4CC55-A4B1-4D8B-86D7-1EABD2F592F4} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> {D0319AC9-C64A-46B3-9B80-2D5716F355AC} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> {F51F8905-0019-42AA-935F-F1F5E6ADE8DA} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1001 -> {39B47046-EFD4-4FDF-8C87-368C053F7424} URL = http://ask-tb.com/web?tpid=PTV-RG&o=Y10 ... psv=&pt=tb
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1001 -> {77C83C6C-C2F2-3608-EAD6-214F426AE046} URL =
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={B3 ... 2014-11-07 00:59:58&v=4.0.0.19&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1001 -> {F51F8905-0019-42AA-935F-F1F5E6ADE8DA} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll No File
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll No File
BHO: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files\Windows Live\Companion\companioncore.dll No File
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll No File
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll No File
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll No File
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-10-21] (Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-2617348160-877986560-2742470243-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll No File
Toolbar: HKU\S-1-5-21-2617348160-877986560-2742470243-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll No File
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File []
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File []
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll No File []
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll No File []
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll No File []
Winsock: Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL File Not found ()
Winsock: Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL File Not found ()
Tcpip\Parameters: [DhcpNameServer] 192.168.152.1 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default
FF DefaultSearchEngine: Centrum.cz
FF Homepage: https://www.seznam.cz/
FF Keyword.URL:
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-14] ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-2617348160-877986560-2742470243-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\asus\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-02-18] (Unity Technologies ApS)
Chrome:
=======
CHR Profile: C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2013-07-20]
CHR Extension: (Skype Click to Call) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-06-25]
CHR Extension: (Google Wallet) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2013-07-20]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [Not Found]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AsusService; C:\Windows\System32\AsusService.exe [219136 2009-08-19] () [File not signed]
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3416016 2015-03-25] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [309232 2015-03-25] (AVG Technologies CZ, s.r.o.)
R2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [243880 2015-01-26] (Foxit Software Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\windows\system32\HPZinw12.dll [44032 2009-05-15] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\windows\system32\HPZipm12.dll [53760 2009-05-15] (Hewlett-Packard) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [X]
S2 c2cautoupdatesvc; "C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service [X]
S2 c2cpnrsvc; "C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service [X]
S3 fsssvc; "C:\Program Files\Windows Live\Family Safety\fsssvc.exe" [X]
S2 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [X]
S3 gusvc; "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe" [X]
S2 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [X]
S4 wlcrasvc; "C:\Program Files\Windows Live\Mesh\wlcrasvc.exe" [X]
S2 wlidsvc; "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 AsUpIO; C:\windows\System32\drivers\AsUpIO.sys [11520 2010-03-31] ()
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-04-29] ()
R0 aswKbd; C:\windows\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-04-29] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [81768 2014-04-29] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-04-29] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [777488 2014-05-16] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [411680 2014-05-16] (AVAST Software)
R2 aswStm; C:\windows\system32\drivers\aswStm.sys [68312 2014-05-16] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [180632 2014-04-29] ()
R1 Avgdiskx; C:\windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\windows\System32\DRIVERS\avgidsdriverx.sys [224736 2015-03-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\windows\System32\DRIVERS\avgidshx.sys [154904 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\windows\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\windows\System32\DRIVERS\avglogx.sys [265184 2015-02-03] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\windows\System32\DRIVERS\avgmfx86.sys [107488 2015-02-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\windows\System32\DRIVERS\avgtdix.sys [210912 2015-02-25] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\windows\system32\drivers\avgtpx86.sys [42784 2014-11-07] (AVG Technologies)
R3 ETD; C:\windows\System32\DRIVERS\ETD.sys [102912 2010-07-21] (ELAN Microelectronic Corp.)
R3 kbfiltr; C:\windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [23256 2015-03-17] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [51928 2015-03-17] (Malwarebytes Corporation)
R0 nvpciflt; C:\windows\System32\DRIVERS\nvpciflt.sys [19656 2010-07-27] (NVIDIA Corporation)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-04 09:40 - 2015-04-04 09:42 - 00023589 _____ () C:\Users\asus\Downloads\FRST.txt
2015-04-04 09:38 - 2015-04-04 09:40 - 00000000 ____D () C:\FRST
2015-04-04 09:37 - 2015-04-04 09:38 - 01135104 _____ (Farbar) C:\Users\asus\Downloads\FRST.exe
2015-04-01 18:37 - 2015-04-01 19:08 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-04-01 18:33 - 2015-04-01 19:08 - 00000000 ____D () C:\Users\asus\Desktop\mbar
2015-04-01 18:29 - 2015-04-01 18:32 - 16502728 _____ (Malwarebytes Corp.) C:\Users\asus\Downloads\mbar-1.09.1.1004.exe
2015-04-01 18:19 - 2015-04-04 09:33 - 00000168 _____ () C:\windows\setupact.log
2015-04-01 18:19 - 2015-04-01 18:19 - 00000350 _____ () C:\windows\PFRO.log
2015-04-01 18:19 - 2015-04-01 18:19 - 00000000 _____ () C:\windows\setuperr.log
2015-04-01 17:58 - 2015-04-01 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-04-01 17:58 - 2015-04-01 17:58 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-01 17:49 - 2015-04-01 17:52 - 12667027 _____ () C:\Users\asus\Downloads\cc-setup.exe
2015-04-01 16:25 - 2015-04-02 18:28 - 00119512 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-01 16:24 - 2015-04-01 18:34 - 00092888 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2015-04-01 16:24 - 2015-04-01 16:24 - 00001020 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-04-01 16:24 - 2015-04-01 16:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-04-01 16:24 - 2015-04-01 16:24 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-01 16:24 - 2015-04-01 16:24 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-04-01 16:24 - 2015-03-17 06:15 - 00051928 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2015-04-01 16:24 - 2015-03-17 06:15 - 00023256 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2015-04-01 16:13 - 2015-04-01 16:22 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\asus\Downloads\mbam-setup-2.1.4.1018.exe
2015-04-01 16:05 - 2015-04-01 16:05 - 00014088 _____ () C:\Users\asus\Desktop\AdwCleaner[S0].txt
2015-03-26 12:33 - 2015-03-26 12:33 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_ccdcmb_01009.Wdf
2015-03-25 11:23 - 2015-03-25 11:23 - 00224736 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgidsdriverx.sys
2015-03-22 20:49 - 2015-03-22 20:49 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-03-18 18:09 - 2015-03-25 21:14 - 00000000 ____D () C:\Users\asus\AppData\Roaming\Foxit Software
2015-03-18 18:09 - 2015-03-18 18:09 - 00000000 ____D () C:\Users\Public\Foxit Software
2015-03-18 18:08 - 2015-03-18 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2015-03-18 18:08 - 2015-03-18 18:08 - 00000000 ____D () C:\Program Files\Foxit Software
2015-03-17 18:03 - 2015-03-17 18:03 - 00000000 ____D () C:\Users\asus\AppData\Local\Adobe
2015-03-17 18:01 - 2015-03-18 17:43 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-03-14 15:02 - 2015-03-14 15:02 - 05399808 _____ (Dll-Files.com ) C:\windows\system32\dffsetup_2.exe
2015-03-14 04:12 - 2015-03-14 04:13 - 00889756 _____ () C:\Users\asus\Downloads\atheros_ar5xxx_770396_vista.zip
2015-03-14 04:10 - 2015-03-14 04:10 - 00000000 __SHD () C:\Users\asus\AppData\Local\EmieBrowserModeList
2015-03-12 16:36 - 2015-02-26 05:11 - 02381312 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-03-12 16:36 - 2015-02-24 04:32 - 00342696 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-03-12 16:36 - 2015-02-20 04:08 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2015-03-12 16:36 - 2015-02-20 04:00 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-03-12 16:36 - 2015-02-20 03:56 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2015-03-12 16:36 - 2015-02-20 03:50 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2015-03-12 16:36 - 2015-02-20 03:41 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2015-03-12 16:36 - 2015-02-20 03:24 - 00684544 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-03-12 16:36 - 2015-02-20 02:57 - 01311232 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-03-12 16:36 - 2015-02-13 07:26 - 12875264 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2015-03-12 16:36 - 2015-02-03 05:12 - 01230848 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2015-03-12 16:36 - 2015-01-17 04:30 - 00828928 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2015-03-12 16:35 - 2015-02-21 02:41 - 12827648 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-03-12 16:35 - 2015-02-21 02:27 - 00418304 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-03-12 16:35 - 2015-02-21 02:27 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-03-12 16:35 - 2015-02-21 02:25 - 19720192 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-03-12 16:35 - 2015-02-21 01:32 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-03-12 16:35 - 2015-02-20 04:22 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-03-12 16:35 - 2015-02-20 04:22 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2015-03-12 16:35 - 2015-02-20 04:09 - 00503296 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-03-12 16:35 - 2015-02-20 04:08 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-03-12 16:35 - 2015-02-20 04:06 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-03-12 16:35 - 2015-02-20 04:03 - 02278400 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-03-12 16:35 - 2015-02-20 04:01 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-03-12 16:35 - 2015-02-20 03:58 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-03-12 16:35 - 2015-02-20 03:56 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-03-12 16:35 - 2015-02-20 03:56 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2015-03-12 16:35 - 2015-02-20 03:37 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-03-12 16:35 - 2015-02-20 03:30 - 04300288 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-03-12 16:35 - 2015-02-20 03:24 - 02052608 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-03-12 16:35 - 2015-02-20 03:24 - 00689152 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-03-12 16:35 - 2015-02-20 03:23 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2015-03-12 16:35 - 2015-02-20 03:01 - 01888256 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-03-12 16:35 - 2015-02-20 02:55 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-03-12 16:34 - 2015-03-06 07:15 - 00137656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-03-12 16:34 - 2015-03-06 07:15 - 00067512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2015-03-12 16:34 - 2015-03-06 07:10 - 01061376 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00550912 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2015-03-12 16:34 - 2015-03-06 07:09 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2015-03-12 16:34 - 2015-03-06 07:09 - 00022528 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2015-03-12 16:34 - 2015-03-06 07:07 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-03-12 16:34 - 2015-03-06 07:07 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2015-03-12 16:34 - 2015-03-06 07:06 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-03-12 16:34 - 2015-02-20 06:13 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2015-03-12 16:34 - 2015-02-20 06:13 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2015-03-12 16:34 - 2015-02-20 06:13 - 00026624 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2015-03-12 16:34 - 2015-02-20 06:13 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2015-03-12 16:34 - 2015-02-20 05:09 - 00299008 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2015-03-12 16:34 - 2015-02-04 04:54 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2015-03-12 16:34 - 2015-02-03 05:12 - 00171520 _____ (Microsoft Corporation) C:\windows\system32\ubpm.dll
2015-03-12 16:33 - 2015-02-03 05:16 - 03973048 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2015-03-12 16:33 - 2015-02-03 05:16 - 03917760 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-03-12 16:33 - 2015-02-03 05:16 - 00078784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2015-03-12 16:33 - 2015-02-03 05:12 - 11411968 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 03209728 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 01329664 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 01174528 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 01005056 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00988160 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00744960 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00617984 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00519680 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00489984 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00475136 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00442880 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00406016 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00354816 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00265216 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00179200 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00157184 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00103936 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00103424 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2015-03-12 16:33 - 2015-02-03 05:12 - 00050688 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00027648 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00010752 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2015-03-12 16:33 - 2015-02-03 05:12 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2015-03-12 16:33 - 2015-02-03 05:11 - 12625408 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2015-03-12 16:33 - 2015-02-03 05:11 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00023040 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00016896 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2015-03-12 16:33 - 2015-02-03 05:10 - 00008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2015-03-12 16:33 - 2015-02-03 05:09 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2015-03-12 16:33 - 2015-02-03 05:08 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2015-03-12 16:33 - 2015-02-03 05:00 - 00593920 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2015-03-12 16:33 - 2015-02-03 04:26 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2015-03-12 16:33 - 2015-01-31 01:56 - 00370488 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2015-03-12 16:33 - 2014-11-01 00:22 - 00521384 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2015-03-12 16:33 - 2014-06-28 02:21 - 00455752 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2015-03-12 16:33 - 2014-06-28 02:21 - 00409272 _____ (Microsoft Corporation) C:\windows\system32\ci.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-04 09:42 - 2012-12-20 01:33 - 01392966 _____ () C:\windows\WindowsUpdate.log
2015-04-04 09:42 - 2009-07-14 06:34 - 00020432 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-04 09:42 - 2009-07-14 06:34 - 00020432 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-04 09:41 - 2014-05-27 13:04 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-04-04 09:39 - 2010-11-19 01:33 - 01584118 _____ () C:\windows\system32\PerfStringBackup.INI
2015-04-04 09:38 - 2014-05-27 21:34 - 00000000 ____D () C:\ProgramData\MFAData
2015-04-04 09:33 - 2013-04-04 16:28 - 00000000 ____D () C:\Users\asus\AppData\Roaming\Skype
2015-04-04 09:33 - 2012-12-31 14:56 - 00000932 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-04 09:33 - 2009-07-14 06:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-04-03 04:05 - 2012-12-31 14:56 - 00000936 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-02 22:14 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\rescache
2015-04-02 18:32 - 2014-09-12 08:19 - 00000907 _____ () C:\Users\Public\Desktop\AVG 2015.lnk
2015-04-02 18:32 - 2014-07-16 22:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-04-01 18:13 - 2013-02-23 13:43 - 00000000 ____D () C:\windows\Minidump
2015-04-01 18:13 - 2009-07-26 23:40 - 00000000 ____D () C:\windows\panther
2015-04-01 16:25 - 2013-07-19 19:54 - 00000000 ____D () C:\Users\asus\AppData\Roaming\Seznam.cz
2015-03-24 09:54 - 2014-05-27 12:59 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-03-18 18:09 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2015-03-18 18:04 - 2014-09-12 08:18 - 00000000 ____D () C:\ProgramData\AVG2015
2015-03-18 17:43 - 2010-11-19 01:43 - 00000000 ____D () C:\ProgramData\Adobe
2015-03-18 17:39 - 2010-11-19 01:41 - 00000000 ____D () C:\ProgramData\Temp
2015-03-17 18:03 - 2012-12-19 16:43 - 00000000 ____D () C:\Users\asus\AppData\Roaming\Adobe
2015-03-14 04:37 - 2014-05-27 13:04 - 00778928 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2015-03-14 04:37 - 2014-05-27 13:04 - 00142512 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2015-03-13 22:48 - 2009-07-14 06:33 - 00443848 _____ () C:\windows\system32\FNTCACHE.DAT
2015-03-13 21:55 - 2013-01-06 19:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-13 21:51 - 2013-08-07 20:42 - 00000000 ____D () C:\windows\system32\MRT
2015-03-13 21:38 - 2013-01-09 18:11 - 119837696 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-03-13 21:22 - 2012-12-19 16:43 - 00000000 ____D () C:\Users\asus
2015-03-08 12:06 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\NDF
==================== Files in the root of some directories =======
2013-09-14 12:29 - 2014-02-13 06:30 - 0000146 _____ () C:\Users\asus\AppData\Roaming\WB.CFG
2010-11-19 01:41 - 2010-03-03 01:59 - 0131984 _____ () C:\ProgramData\FullRemove.exe
Files to move or delete:
====================
C:\Users\asus\instmsia.exe
C:\Users\asus\instmsiw.exe
C:\Users\asus\setup.exe
Some content of TEMP:
====================
C:\Users\asus\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-02 22:07
==================== End Of Log ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
chybějící dll a zpomalený noťas
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: chybějící dll a zpomalený noťas
Zdravim 
Log z MBAMu byste nasel??
Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
Log z MBAMu byste nasel?? Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
- Do okna vlozte skript nize
Kód: Vybrat vše
autoclean; resethosts; emptyclsid; IEdefaults; FFdefaults; CHRdefaults; emptyIEcache; emptyFFcache; emptyCHRcache; emptyalltemp; emptyflash; emptyjava; emptyrecycle.bin;- Nasledne kliknete na Run Script
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: chybějící dll a zpomalený noťas
Tady se najde vše posílám log z krátkého testu , dal jsem běžet i dlouhý přes noc ale ten už pak nic nenašel. Nikdy mě nenapadlo, že zoek je na 2 hoďky , přitom skript vypadá jednoduše
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 1.4.2015
Čas skenování: 16:25:48
Protokol: mbam.txt
Správce: Ano
Verze: 2.01.4.1018
Databáze malwaru: v2015.03.09.05
Databáze rootkitů: v2015.03.31.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: asus
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 364052
Uplynulý čas: 35 min, 33 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 4
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-2617348160-877986560-2742470243-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{3004627E-F8E9-4E8B-909D-316753CBA923}, Do karantény, [bcbd58ebc7c3af87a8707ed7a95a2ad6],
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-2617348160-877986560-2742470243-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3004627E-F8E9-4E8B-909D-316753CBA923}, Do karantény, [bcbd58ebc7c3af87a8707ed7a95a2ad6],
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-2617348160-877986560-2742470243-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}, Do karantény, [5623a0a3c4c610260a0d63f2d42fc63a],
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-2617348160-877986560-2742470243-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}, Do karantény, [5623a0a3c4c610260a0d63f2d42fc63a],
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 1
PUP.Optional.MySpeedDial.A, C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pflphaooapbgpeakohlggbpidpppgdff, Do karantény, [fc7d142f0f7ba3939968abcbe0232cd4],
Soubory: 3
PUP.Optional.Bitcoin, C:\Windows\System32\acumnccurf.exe, Do karantény, [6b0eea59f9912a0cdf3888c27a88966a],
Trojan.BitMiner, C:\Windows\System32\dcgmnccurf.exe, Do karantény, [91e87bc8e3a7ce6813ff3b2033cfb44c],
PUP.BitCoinMiner, C:\Windows\System32\lcpmnccurf.exe, Do karantény, [d6a37dc6ec9ea195cb1bf642a0611ce4],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Zoek.exe v5.0.0.0 Updated 02-April-2015
Tool run by asus on so 04.04.2015 at 10:01:04,38.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\asus\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
4.4.2015 10:03:31 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\EBI deleted successfully
C:\PROGRA~2\Malwarebytes' Anti-Malware (portable) deleted successfully
C:\PROGRA~2\Oracle deleted successfully
C:\PROGRA~2\RSMR deleted successfully
C:\Users\asus\AppData\Roaming\Windows Live Writer deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\SearchScopes\{39B47046-EFD4-4FDF-8C87-368C053F7424} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\SearchScopes\{39B47046-EFD4-4FDF-8C87-368C053F7424} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{3004627E-F8E9-4E8B-909D-316753CBA923} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\c2cautoupdatesvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\c2cautoupdatesvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\c2cpnrsvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\c2cpnrsvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gupdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\gupdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\nvUpdatusService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\nvUpdatusService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wlidsvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\wlidsvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\fsssvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\fsssvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\fsssvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\fsssvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gupdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\gupdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gusvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\gusvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wlcrasvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\wlcrasvc deleted successfully
==== FireFox Fix ======================
Deleted from C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default\prefs.js:
user_pref("browser.startup.homepage", "https://www.seznam.cz/");
user_pref("browser.search.defaultEngineName", "Centrum.cz");
user_pref("extensions.APN_TB.first-previous-keyword-url", "");
user_pref("extensions.PTV-RG.my-keyword-url", "\"\"");
user_pref("extensions.PTV-RG.previous-keyword-url", "\"\"");
user_pref("keyword.URL", "");
Added to C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
C:\PROGRA~2\Malwarebytes' Anti-Malware (portable) not found
C:\Users\asus\AppData\Local\AVG Web TuneUp deleted
C:\Users\asus\AppData\Roaming\WB.CFG deleted
C:\PROGRA~2\AVG Web TuneUp deleted
C:\PROGRA~2\Avg_Update_1214tb deleted
C:\Users\asus\AppData\LocalLow\AVG Web TuneUp deleted
C:\windows\system32\config\systemprofile\AppData\LocalLow\AVG SafeGuard toolbar deleted
C:\windows\system32\config\systemprofile\AppData\LocalLow\AVG Web TuneUp deleted
C:\Users\asus\instmsia.exe deleted
C:\Users\asus\instmsiw.exe deleted
C:\Users\asus\setup.exe deleted
"C:\Program Files\AVG Web TuneUp\TBAPI.dll" deleted
"C:\Program Files\AVG Web TuneUp\TBAPI.dll" deleted
"C:\Program Files\AVG Web TuneUp" not deleted
"C:\Program Files\AVG Web TuneUp" not deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
user_pref("extensions.APN_TB.first-previous-keyword-url", "");
user_pref("extensions.PTV-RG.my-keyword-url", "\"\"");
user_pref("extensions.PTV-RG.previous-keyword-url", "\"\"");
==== Firefox Extensions ======================
AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default
893BF7D2261C56C24F813405D9D018E0 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In
43583AB4DFD406F4C188342F41B1F91C - C:\windows\system32\Macromed\Flash\NPSWF32_17_0_0_134.dll - Shockwave Flash
E59F2C1BBB20E70419A33CCAA727B747 - C:\Users\asus\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
1AF58C92FD9F3F07C6E4D18599B34FAC - C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll - Foxit Reader Plugin for Mozilla
8DA2ED6B04EA33F2EAE8BA883F903729 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[]
Seznam Li\u0161ti\u010Dka - Slovn\u00EDk - asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd
Skype Click to Call - asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Seznam Lištička - Rychlá volba - asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak
==== Chromium Startpages ======================
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.google.com/",
"startup_urls": [ "http://www.google.com/" ],
C:\windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.google.com",
"urls_to_restore_on_startup": [ "http://www.google.com" ]
==== Chromium Fix ======================
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://mysearch.avg.com?cid={CBB5E282-0 ... 2014-06-18 18:59:33&v=18.1.7.598&pid=safeguard&sg=&sap=hp"
"Search Bar"="http://www.bing.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.google.com"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{77C83C6C-C2F2-3608-EAD6-214F426AE046} Unknown Url="Not_Found"
{F51F8905-0019-42AA-935F-F1F5E6ADE8DA} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_16194"
==== Reset Google Chrome ======================
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Preferences.bak was reset successfully
C:\windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\SearchScopes\{77C83C6C-C2F2-3608-EAD6-214F426AE046} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\SearchScopes\{77C83C6C-C2F2-3608-EAD6-214F426AE046} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77C83C6C-C2F2-3608-EAD6-214F426AE046} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Registry Keys ======================
HKEY_CURRENT_USER\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp deleted successfully
==== Empty IE Cache ======================
C:\Users\asus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\asus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E5CD2ZDZ will be deleted at reboot
==== Empty FireFox Cache ======================
C:\Users\asus\AppData\Local\Mozilla\Firefox\Profiles\0bg7snpz.default\cache2 emptied successfully
==== Empty Chrome Cache ======================
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=335 folders=87 95553568 bytes)
==== Empty Temp Folders ======================
C:\Users\asus\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\windows\Temp successfully emptied
C:\Users\asus\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Program Files\AVG Web TuneUp" not found
"C:\Program Files\AVG Web TuneUp" not found
"C:\Users\asus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E5CD2ZDZ" not found
==== EOF on so 04.04.2015 at 11:49:48,65 ======================
posílám log z krátkého testu , dal jsem běžet i dlouhý přes noc ale ten už pak nic nenašel. Nikdy mě nenapadlo, že zoek je na 2 hoďky , přitom skript vypadá jednoduše Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 1.4.2015
Čas skenování: 16:25:48
Protokol: mbam.txt
Správce: Ano
Verze: 2.01.4.1018
Databáze malwaru: v2015.03.09.05
Databáze rootkitů: v2015.03.31.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: asus
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 364052
Uplynulý čas: 35 min, 33 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 4
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-2617348160-877986560-2742470243-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{3004627E-F8E9-4E8B-909D-316753CBA923}, Do karantény, [bcbd58ebc7c3af87a8707ed7a95a2ad6],
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-2617348160-877986560-2742470243-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3004627E-F8E9-4E8B-909D-316753CBA923}, Do karantény, [bcbd58ebc7c3af87a8707ed7a95a2ad6],
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-2617348160-877986560-2742470243-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}, Do karantény, [5623a0a3c4c610260a0d63f2d42fc63a],
PUP.Optional.MySearchDial.A, HKU\S-1-5-21-2617348160-877986560-2742470243-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}, Do karantény, [5623a0a3c4c610260a0d63f2d42fc63a],
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 1
PUP.Optional.MySpeedDial.A, C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pflphaooapbgpeakohlggbpidpppgdff, Do karantény, [fc7d142f0f7ba3939968abcbe0232cd4],
Soubory: 3
PUP.Optional.Bitcoin, C:\Windows\System32\acumnccurf.exe, Do karantény, [6b0eea59f9912a0cdf3888c27a88966a],
Trojan.BitMiner, C:\Windows\System32\dcgmnccurf.exe, Do karantény, [91e87bc8e3a7ce6813ff3b2033cfb44c],
PUP.BitCoinMiner, C:\Windows\System32\lcpmnccurf.exe, Do karantény, [d6a37dc6ec9ea195cb1bf642a0611ce4],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Zoek.exe v5.0.0.0 Updated 02-April-2015
Tool run by asus on so 04.04.2015 at 10:01:04,38.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\asus\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
4.4.2015 10:03:31 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Empty Folders Check ======================
C:\PROGRA~2\EBI deleted successfully
C:\PROGRA~2\Malwarebytes' Anti-Malware (portable) deleted successfully
C:\PROGRA~2\Oracle deleted successfully
C:\PROGRA~2\RSMR deleted successfully
C:\Users\asus\AppData\Roaming\Windows Live Writer deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\SearchScopes\{39B47046-EFD4-4FDF-8C87-368C053F7424} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\SearchScopes\{39B47046-EFD4-4FDF-8C87-368C053F7424} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{9030D464-4C02-4ABF-8ECC-5164760863C6} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{DBC80044-A445-435B-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{AA58ED58-01DD-4d91-8333-CF10577473F7} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{3004627E-F8E9-4E8B-909D-316753CBA923} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\Approved Extensions\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\c2cautoupdatesvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\c2cautoupdatesvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\c2cpnrsvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\c2cpnrsvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gupdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\gupdate deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\nvUpdatusService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\nvUpdatusService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wlidsvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\wlidsvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\fsssvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\fsssvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\fsssvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\fsssvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gupdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\gupdatem deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\gusvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\gusvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wlcrasvc deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\wlcrasvc deleted successfully
==== FireFox Fix ======================
Deleted from C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default\prefs.js:
user_pref("browser.startup.homepage", "https://www.seznam.cz/");
user_pref("browser.search.defaultEngineName", "Centrum.cz");
user_pref("extensions.APN_TB.first-previous-keyword-url", "");
user_pref("extensions.PTV-RG.my-keyword-url", "\"\"");
user_pref("extensions.PTV-RG.previous-keyword-url", "\"\"");
user_pref("keyword.URL", "");
Added to C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
C:\PROGRA~2\Malwarebytes' Anti-Malware (portable) not found
C:\Users\asus\AppData\Local\AVG Web TuneUp deleted
C:\Users\asus\AppData\Roaming\WB.CFG deleted
C:\PROGRA~2\AVG Web TuneUp deleted
C:\PROGRA~2\Avg_Update_1214tb deleted
C:\Users\asus\AppData\LocalLow\AVG Web TuneUp deleted
C:\windows\system32\config\systemprofile\AppData\LocalLow\AVG SafeGuard toolbar deleted
C:\windows\system32\config\systemprofile\AppData\LocalLow\AVG Web TuneUp deleted
C:\Users\asus\instmsia.exe deleted
C:\Users\asus\instmsiw.exe deleted
C:\Users\asus\setup.exe deleted
"C:\Program Files\AVG Web TuneUp\TBAPI.dll" deleted
"C:\Program Files\AVG Web TuneUp\TBAPI.dll" deleted
"C:\Program Files\AVG Web TuneUp" not deleted
"C:\Program Files\AVG Web TuneUp" not deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
user_pref("extensions.APN_TB.first-previous-keyword-url", "");
user_pref("extensions.PTV-RG.my-keyword-url", "\"\"");
user_pref("extensions.PTV-RG.previous-keyword-url", "\"\"");
==== Firefox Extensions ======================
AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default
893BF7D2261C56C24F813405D9D018E0 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll - Silverlight Plug-In
43583AB4DFD406F4C188342F41B1F91C - C:\windows\system32\Macromed\Flash\NPSWF32_17_0_0_134.dll - Shockwave Flash
E59F2C1BBB20E70419A33CCAA727B747 - C:\Users\asus\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
1AF58C92FD9F3F07C6E4D18599B34FAC - C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll - Foxit Reader Plugin for Mozilla
8DA2ED6B04EA33F2EAE8BA883F903729 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrlui.dll - Microsoft® Silverlight
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[]
Seznam Li\u0161ti\u010Dka - Slovn\u00EDk - asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd
Skype Click to Call - asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Seznam Lištička - Rychlá volba - asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak
==== Chromium Startpages ======================
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.google.com/",
"startup_urls": [ "http://www.google.com/" ],
C:\windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.google.com",
"urls_to_restore_on_startup": [ "http://www.google.com" ]
==== Chromium Fix ======================
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://mysearch.avg.com?cid={CBB5E282-0 ... 2014-06-18 18:59:33&v=18.1.7.598&pid=safeguard&sg=&sap=hp"
"Search Bar"="http://www.bing.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.google.com"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{77C83C6C-C2F2-3608-EAD6-214F426AE046} Unknown Url="Not_Found"
{F51F8905-0019-42AA-935F-F1F5E6ADE8DA} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_16194"
==== Reset Google Chrome ======================
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Preferences.bak was reset successfully
C:\windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1000\Software\Microsoft\Internet Explorer\SearchScopes\{77C83C6C-C2F2-3608-EAD6-214F426AE046} deleted successfully
HKEY_USERS\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\SearchScopes\{77C83C6C-C2F2-3608-EAD6-214F426AE046} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77C83C6C-C2F2-3608-EAD6-214F426AE046} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Registry Keys ======================
HKEY_CURRENT_USER\Software\Policies\Google deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp deleted successfully
==== Empty IE Cache ======================
C:\Users\asus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\asus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E5CD2ZDZ will be deleted at reboot
==== Empty FireFox Cache ======================
C:\Users\asus\AppData\Local\Mozilla\Firefox\Profiles\0bg7snpz.default\cache2 emptied successfully
==== Empty Chrome Cache ======================
C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=335 folders=87 95553568 bytes)
==== Empty Temp Folders ======================
C:\Users\asus\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\windows\Temp successfully emptied
C:\Users\asus\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
"C:\Program Files\AVG Web TuneUp" not found
"C:\Program Files\AVG Web TuneUp" not found
"C:\Users\asus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E5CD2ZDZ" not found
==== EOF on so 04.04.2015 at 11:49:48,65 ======================
Re: chybějící dll a zpomalený noťas
V programech je nějaký crack na diablo 3 což je stará hra a nikdy jsem nemusel instalovat na ni crack, ale radši ho neodinstaluju, pravděbodobně to bude crack s kterým se nainstaloval ten bitcoin miner, tak ať ho tam zas nehodím z5. Jinak můžete se do mě rádcové pustit všichni jestli chcete nějaké logy tento noťas mám bohužel jen do zítřka do večera v pondělí ji jdu naplácat a pak jí ten noťas vrátím 
Re: chybějící dll a zpomalený noťas
Dejte novy log z FRST, ja tu jsme online cely den a nakukuju
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: chybějící dll a zpomalený noťas
Zde to je
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015
Ran by asus (administrator) on ASUS-PC on 04-04-2015 12:31:32
Running from C:\Users\asus\Desktop
Loaded Profiles: asus (Available profiles: UpdatusUser & asus)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
() C:\Windows\System32\AsusService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDWare] => %ProgramFiles%\Elantech\ETDCtrl.exe
HKLM\...\Run: [EeeSplendidAgent] => C:\Program Files\ASUS\EPC\EeeSplendid\AsAgent.exe
HKLM\...\Run: [UCam_Menu] => "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
HKLM\...\Run: [HotkeyMon] => AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe
HKLM\...\Run: [HotkeyService] => AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
HKLM\...\Run: [SuperHybridEngine] => AsusSender.exe C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
HKLM\...\Run: [LiveUpdate] => AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
HKLM\...\Run: [CapsHook] => AsusSender.exe C:\Program Files\EeePC\CapsHook\CapsHook.exe
HKLM\...\Run: [GraphicsSwitch] => AsusSender.exe C:\Program Files\Asus\GraphicsSwitch\GPUStatusMonitor.exe
HKLM\...\Run: [ASUSPRP] => C:\Program Files\ASUS\APRP\APRP.EXE
HKLM\...\Run: [GrooveMonitor] => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
HKLM\...\Run: [AsusVibeLuncher] => C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe /start
HKLM\...\Run: [SunJavaUpdateSched] => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3723728 2015-03-25] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Syncables] => C:\Program Files\syncables\syncables desktop\Syncables.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [T-Mobile CManager] => "C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Handy Updater] => "C:\Program Files\HandyUpdater\HandyUpdater.exe"
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22066272 2014-10-01] (Skype Technologies S.A.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5503768 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: E - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {52fb677f-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {52fb67cc-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {9f5cb8f1-8bba-11e2-b1e0-20cf30686cce} - E:\LaunchU3.exe -a
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1001 -> {F51F8905-0019-42AA-935F-F1F5E6ADE8DA} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File []
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File []
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll No File []
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll No File []
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll No File []
Winsock: Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL File Not found ()
Winsock: Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL File Not found ()
Tcpip\Parameters: [DhcpNameServer] 192.168.152.1 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-14] ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-2617348160-877986560-2742470243-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\asus\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-02-18] (Unity Technologies ApS)
Chrome:
=======
CHR Profile: C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2013-07-20]
CHR Extension: (Google Wallet) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2013-07-20]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AsusService; C:\Windows\System32\AsusService.exe [219136 2009-08-19] () [File not signed]
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3416016 2015-03-25] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [309232 2015-03-25] (AVG Technologies CZ, s.r.o.)
R2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [243880 2015-01-26] (Foxit Software Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\windows\system32\HPZinw12.dll [44032 2009-05-15] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\windows\system32\HPZipm12.dll [53760 2009-05-15] (Hewlett-Packard) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 AsUpIO; C:\windows\System32\drivers\AsUpIO.sys [11520 2010-03-31] ()
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-04-29] ()
R0 aswKbd; C:\windows\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-04-29] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [81768 2014-04-29] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-04-29] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [777488 2014-05-16] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [411680 2014-05-16] (AVAST Software)
R2 aswStm; C:\windows\system32\drivers\aswStm.sys [68312 2014-05-16] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [180632 2014-04-29] ()
R1 Avgdiskx; C:\windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\windows\System32\DRIVERS\avgidsdriverx.sys [224736 2015-03-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\windows\System32\DRIVERS\avgidshx.sys [154904 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\windows\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\windows\System32\DRIVERS\avglogx.sys [265184 2015-02-03] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\windows\System32\DRIVERS\avgmfx86.sys [107488 2015-02-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\windows\System32\DRIVERS\avgtdix.sys [210912 2015-02-25] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\windows\system32\drivers\avgtpx86.sys [42784 2014-11-07] (AVG Technologies)
R3 ETD; C:\windows\System32\DRIVERS\ETD.sys [102912 2010-07-21] (ELAN Microelectronic Corp.)
R3 kbfiltr; C:\windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [23256 2015-03-17] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [119512 2015-04-04] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [51928 2015-03-17] (Malwarebytes Corporation)
R0 nvpciflt; C:\windows\System32\DRIVERS\nvpciflt.sys [19656 2010-07-27] (NVIDIA Corporation)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-04 12:14 - 2015-04-04 12:14 - 00000466 _____ () C:\Users\asus\Desktop\Addition.txt
2015-04-04 12:12 - 2015-04-04 12:31 - 00014250 _____ () C:\Users\asus\Desktop\FRST.txt
2015-04-04 12:11 - 2015-04-04 09:38 - 01135104 _____ (Farbar) C:\Users\asus\Desktop\FRST.exe
2015-04-04 11:44 - 2015-04-04 10:00 - 00024064 _____ () C:\windows\zoek-delete.exe
2015-04-04 10:02 - 2015-04-04 11:49 - 00024331 _____ () C:\zoek-results.log
2015-04-04 09:59 - 2015-04-04 09:59 - 00002458 _____ () C:\Users\asus\Desktop\mbam.txt
2015-04-04 09:58 - 2015-04-04 11:29 - 00000000 ____D () C:\zoek_backup
2015-04-04 09:57 - 2015-04-04 09:57 - 01305600 _____ () C:\Users\asus\Downloads\zoek.exe
2015-04-04 09:44 - 2015-04-04 09:45 - 00021352 _____ () C:\Users\asus\Downloads\Addition.txt
2015-04-04 09:40 - 2015-04-04 09:45 - 00044524 _____ () C:\Users\asus\Downloads\FRST.txt
2015-04-04 09:38 - 2015-04-04 12:31 - 00000000 ____D () C:\FRST
2015-04-04 09:37 - 2015-04-04 09:38 - 01135104 _____ (Farbar) C:\Users\asus\Downloads\FRST.exe
2015-04-01 18:33 - 2015-04-01 19:08 - 00000000 ____D () C:\Users\asus\Desktop\mbar
2015-04-01 18:29 - 2015-04-01 18:32 - 16502728 _____ (Malwarebytes Corp.) C:\Users\asus\Downloads\mbar-1.09.1.1004.exe
2015-04-01 18:19 - 2015-04-04 12:29 - 00000280 _____ () C:\windows\setupact.log
2015-04-01 18:19 - 2015-04-04 11:49 - 00001176 _____ () C:\windows\PFRO.log
2015-04-01 18:19 - 2015-04-01 18:19 - 00000000 _____ () C:\windows\setuperr.log
2015-04-01 17:58 - 2015-04-01 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-04-01 17:58 - 2015-04-01 17:58 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-01 17:49 - 2015-04-01 17:52 - 12667027 _____ () C:\Users\asus\Downloads\cc-setup.exe
2015-04-01 16:25 - 2015-04-04 09:58 - 00119512 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-01 16:24 - 2015-04-01 18:34 - 00092888 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2015-04-01 16:24 - 2015-04-01 16:24 - 00001020 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-04-01 16:24 - 2015-04-01 16:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-04-01 16:24 - 2015-04-01 16:24 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-01 16:24 - 2015-04-01 16:24 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-04-01 16:24 - 2015-03-17 06:15 - 00051928 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2015-04-01 16:24 - 2015-03-17 06:15 - 00023256 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2015-04-01 16:13 - 2015-04-01 16:22 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\asus\Downloads\mbam-setup-2.1.4.1018.exe
2015-04-01 16:05 - 2015-04-01 16:05 - 00014088 _____ () C:\Users\asus\Desktop\AdwCleaner[S0].txt
2015-03-26 12:33 - 2015-03-26 12:33 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_ccdcmb_01009.Wdf
2015-03-25 11:23 - 2015-03-25 11:23 - 00224736 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgidsdriverx.sys
2015-03-22 20:49 - 2015-03-22 20:49 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-03-18 18:09 - 2015-03-25 21:14 - 00000000 ____D () C:\Users\asus\AppData\Roaming\Foxit Software
2015-03-18 18:09 - 2015-03-18 18:09 - 00000000 ____D () C:\Users\Public\Foxit Software
2015-03-18 18:08 - 2015-03-18 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2015-03-18 18:08 - 2015-03-18 18:08 - 00000000 ____D () C:\Program Files\Foxit Software
2015-03-17 18:03 - 2015-03-17 18:03 - 00000000 ____D () C:\Users\asus\AppData\Local\Adobe
2015-03-17 18:01 - 2015-03-18 17:43 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-03-14 15:02 - 2015-03-14 15:02 - 05399808 _____ (Dll-Files.com ) C:\windows\system32\dffsetup_2.exe
2015-03-14 04:12 - 2015-03-14 04:13 - 00889756 _____ () C:\Users\asus\Downloads\atheros_ar5xxx_770396_vista.zip
2015-03-14 04:10 - 2015-03-14 04:10 - 00000000 __SHD () C:\Users\asus\AppData\Local\EmieBrowserModeList
2015-03-12 16:36 - 2015-02-26 05:11 - 02381312 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-03-12 16:36 - 2015-02-24 04:32 - 00342696 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-03-12 16:36 - 2015-02-20 04:08 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2015-03-12 16:36 - 2015-02-20 04:00 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-03-12 16:36 - 2015-02-20 03:56 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2015-03-12 16:36 - 2015-02-20 03:50 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2015-03-12 16:36 - 2015-02-20 03:41 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2015-03-12 16:36 - 2015-02-20 03:24 - 00684544 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-03-12 16:36 - 2015-02-20 02:57 - 01311232 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-03-12 16:36 - 2015-02-13 07:26 - 12875264 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2015-03-12 16:36 - 2015-02-03 05:12 - 01230848 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2015-03-12 16:36 - 2015-01-17 04:30 - 00828928 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2015-03-12 16:35 - 2015-02-21 02:41 - 12827648 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-03-12 16:35 - 2015-02-21 02:27 - 00418304 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-03-12 16:35 - 2015-02-21 02:27 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-03-12 16:35 - 2015-02-21 02:25 - 19720192 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-03-12 16:35 - 2015-02-21 01:32 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-03-12 16:35 - 2015-02-20 04:22 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-03-12 16:35 - 2015-02-20 04:22 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2015-03-12 16:35 - 2015-02-20 04:09 - 00503296 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-03-12 16:35 - 2015-02-20 04:08 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-03-12 16:35 - 2015-02-20 04:06 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-03-12 16:35 - 2015-02-20 04:03 - 02278400 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-03-12 16:35 - 2015-02-20 04:01 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-03-12 16:35 - 2015-02-20 03:58 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-03-12 16:35 - 2015-02-20 03:56 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-03-12 16:35 - 2015-02-20 03:56 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2015-03-12 16:35 - 2015-02-20 03:37 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-03-12 16:35 - 2015-02-20 03:30 - 04300288 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-03-12 16:35 - 2015-02-20 03:24 - 02052608 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-03-12 16:35 - 2015-02-20 03:24 - 00689152 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-03-12 16:35 - 2015-02-20 03:23 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2015-03-12 16:35 - 2015-02-20 03:01 - 01888256 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-03-12 16:35 - 2015-02-20 02:55 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-03-12 16:34 - 2015-03-06 07:15 - 00137656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-03-12 16:34 - 2015-03-06 07:15 - 00067512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2015-03-12 16:34 - 2015-03-06 07:10 - 01061376 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00550912 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2015-03-12 16:34 - 2015-03-06 07:09 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2015-03-12 16:34 - 2015-03-06 07:09 - 00022528 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2015-03-12 16:34 - 2015-03-06 07:07 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-03-12 16:34 - 2015-03-06 07:07 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2015-03-12 16:34 - 2015-03-06 07:06 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-03-12 16:34 - 2015-02-20 06:13 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2015-03-12 16:34 - 2015-02-20 06:13 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2015-03-12 16:34 - 2015-02-20 06:13 - 00026624 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2015-03-12 16:34 - 2015-02-20 06:13 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2015-03-12 16:34 - 2015-02-20 05:09 - 00299008 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2015-03-12 16:34 - 2015-02-04 04:54 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2015-03-12 16:34 - 2015-02-03 05:12 - 00171520 _____ (Microsoft Corporation) C:\windows\system32\ubpm.dll
2015-03-12 16:33 - 2015-02-03 05:16 - 03973048 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2015-03-12 16:33 - 2015-02-03 05:16 - 03917760 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-03-12 16:33 - 2015-02-03 05:16 - 00078784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2015-03-12 16:33 - 2015-02-03 05:12 - 11411968 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 03209728 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 01329664 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 01174528 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 01005056 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00988160 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00744960 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00617984 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00519680 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00489984 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00475136 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00442880 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00406016 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00354816 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00265216 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00179200 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00157184 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00103936 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00103424 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2015-03-12 16:33 - 2015-02-03 05:12 - 00050688 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00027648 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00010752 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2015-03-12 16:33 - 2015-02-03 05:12 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2015-03-12 16:33 - 2015-02-03 05:11 - 12625408 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2015-03-12 16:33 - 2015-02-03 05:11 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00023040 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00016896 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2015-03-12 16:33 - 2015-02-03 05:10 - 00008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2015-03-12 16:33 - 2015-02-03 05:09 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2015-03-12 16:33 - 2015-02-03 05:08 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2015-03-12 16:33 - 2015-02-03 05:00 - 00593920 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2015-03-12 16:33 - 2015-02-03 04:26 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2015-03-12 16:33 - 2015-01-31 01:56 - 00370488 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2015-03-12 16:33 - 2014-11-01 00:22 - 00521384 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2015-03-12 16:33 - 2014-06-28 02:21 - 00455752 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2015-03-12 16:33 - 2014-06-28 02:21 - 00409272 _____ (Microsoft Corporation) C:\windows\system32\ci.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-04 12:30 - 2012-12-31 14:56 - 00000932 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-04 12:29 - 2009-07-14 06:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-04-04 12:28 - 2012-12-20 01:33 - 01408044 _____ () C:\windows\WindowsUpdate.log
2015-04-04 12:05 - 2012-12-31 14:56 - 00000936 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-04 11:56 - 2009-07-14 06:34 - 00020432 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-04 11:56 - 2009-07-14 06:34 - 00020432 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-04 11:53 - 2010-11-19 01:33 - 01584118 _____ () C:\windows\system32\PerfStringBackup.INI
2015-04-04 11:41 - 2014-05-27 13:04 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-04-04 11:21 - 2012-12-19 16:43 - 00000000 ____D () C:\Users\asus
2015-04-04 09:38 - 2014-05-27 21:34 - 00000000 ____D () C:\ProgramData\MFAData
2015-04-04 09:33 - 2013-04-04 16:28 - 00000000 ____D () C:\Users\asus\AppData\Roaming\Skype
2015-04-02 22:14 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\rescache
2015-04-02 18:32 - 2014-09-12 08:19 - 00000907 _____ () C:\Users\Public\Desktop\AVG 2015.lnk
2015-04-02 18:32 - 2014-07-16 22:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-04-01 18:13 - 2013-02-23 13:43 - 00000000 ____D () C:\windows\Minidump
2015-04-01 18:13 - 2009-07-26 23:40 - 00000000 ____D () C:\windows\panther
2015-04-01 16:25 - 2013-07-19 19:54 - 00000000 ____D () C:\Users\asus\AppData\Roaming\Seznam.cz
2015-03-24 09:54 - 2014-05-27 12:59 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-03-18 18:09 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2015-03-18 18:04 - 2014-09-12 08:18 - 00000000 ____D () C:\ProgramData\AVG2015
2015-03-18 17:43 - 2010-11-19 01:43 - 00000000 ____D () C:\ProgramData\Adobe
2015-03-18 17:39 - 2010-11-19 01:41 - 00000000 ____D () C:\ProgramData\Temp
2015-03-17 18:03 - 2012-12-19 16:43 - 00000000 ____D () C:\Users\asus\AppData\Roaming\Adobe
2015-03-14 04:37 - 2014-05-27 13:04 - 00778928 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2015-03-14 04:37 - 2014-05-27 13:04 - 00142512 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2015-03-13 22:48 - 2009-07-14 06:33 - 00443848 _____ () C:\windows\system32\FNTCACHE.DAT
2015-03-13 21:55 - 2013-01-06 19:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-13 21:51 - 2013-08-07 20:42 - 00000000 ____D () C:\windows\system32\MRT
2015-03-13 21:38 - 2013-01-09 18:11 - 119837696 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-03-08 12:06 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\NDF
==================== Files in the root of some directories =======
2010-11-19 01:41 - 2010-03-03 01:59 - 0131984 _____ () C:\ProgramData\FullRemove.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-02 22:07
==================== End Of Log ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015
Ran by asus (administrator) on ASUS-PC on 04-04-2015 12:31:32
Running from C:\Users\asus\Desktop
Loaded Profiles: asus (Available profiles: UpdatusUser & asus)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
() C:\Windows\System32\AsusService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDWare] => %ProgramFiles%\Elantech\ETDCtrl.exe
HKLM\...\Run: [EeeSplendidAgent] => C:\Program Files\ASUS\EPC\EeeSplendid\AsAgent.exe
HKLM\...\Run: [UCam_Menu] => "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
HKLM\...\Run: [HotkeyMon] => AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe
HKLM\...\Run: [HotkeyService] => AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
HKLM\...\Run: [SuperHybridEngine] => AsusSender.exe C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
HKLM\...\Run: [LiveUpdate] => AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
HKLM\...\Run: [CapsHook] => AsusSender.exe C:\Program Files\EeePC\CapsHook\CapsHook.exe
HKLM\...\Run: [GraphicsSwitch] => AsusSender.exe C:\Program Files\Asus\GraphicsSwitch\GPUStatusMonitor.exe
HKLM\...\Run: [ASUSPRP] => C:\Program Files\ASUS\APRP\APRP.EXE
HKLM\...\Run: [GrooveMonitor] => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
HKLM\...\Run: [AsusVibeLuncher] => C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe /start
HKLM\...\Run: [SunJavaUpdateSched] => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3723728 2015-03-25] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Syncables] => C:\Program Files\syncables\syncables desktop\Syncables.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [T-Mobile CManager] => "C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Handy Updater] => "C:\Program Files\HandyUpdater\HandyUpdater.exe"
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22066272 2014-10-01] (Skype Technologies S.A.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5503768 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: E - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {52fb677f-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {52fb67cc-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {9f5cb8f1-8bba-11e2-b1e0-20cf30686cce} - E:\LaunchU3.exe -a
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2617348160-877986560-2742470243-1001 -> {F51F8905-0019-42AA-935F-F1F5E6ADE8DA} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File []
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File []
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll No File []
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll No File []
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll No File []
Winsock: Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL File Not found ()
Winsock: Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL File Not found ()
Tcpip\Parameters: [DhcpNameServer] 192.168.152.1 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\0bg7snpz.default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-14] ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin HKU\S-1-5-21-2617348160-877986560-2742470243-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\asus\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-02-18] (Unity Technologies ApS)
Chrome:
=======
CHR Profile: C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2013-07-20]
CHR Extension: (Google Wallet) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2013-07-20]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AsusService; C:\Windows\System32\AsusService.exe [219136 2009-08-19] () [File not signed]
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3416016 2015-03-25] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [309232 2015-03-25] (AVG Technologies CZ, s.r.o.)
R2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [243880 2015-01-26] (Foxit Software Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\windows\system32\HPZinw12.dll [44032 2009-05-15] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\windows\system32\HPZipm12.dll [53760 2009-05-15] (Hewlett-Packard) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 AsUpIO; C:\windows\System32\drivers\AsUpIO.sys [11520 2010-03-31] ()
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-04-29] ()
R0 aswKbd; C:\windows\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [67824 2014-04-29] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [81768 2014-04-29] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-04-29] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [777488 2014-05-16] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [411680 2014-05-16] (AVAST Software)
R2 aswStm; C:\windows\system32\drivers\aswStm.sys [68312 2014-05-16] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [180632 2014-04-29] ()
R1 Avgdiskx; C:\windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\windows\System32\DRIVERS\avgidsdriverx.sys [224736 2015-03-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\windows\System32\DRIVERS\avgidshx.sys [154904 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\windows\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\windows\System32\DRIVERS\avglogx.sys [265184 2015-02-03] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\windows\System32\DRIVERS\avgmfx86.sys [107488 2015-02-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\windows\System32\DRIVERS\avgtdix.sys [210912 2015-02-25] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\windows\system32\drivers\avgtpx86.sys [42784 2014-11-07] (AVG Technologies)
R3 ETD; C:\windows\System32\DRIVERS\ETD.sys [102912 2010-07-21] (ELAN Microelectronic Corp.)
R3 kbfiltr; C:\windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [23256 2015-03-17] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [119512 2015-04-04] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [51928 2015-03-17] (Malwarebytes Corporation)
R0 nvpciflt; C:\windows\System32\DRIVERS\nvpciflt.sys [19656 2010-07-27] (NVIDIA Corporation)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-04 12:14 - 2015-04-04 12:14 - 00000466 _____ () C:\Users\asus\Desktop\Addition.txt
2015-04-04 12:12 - 2015-04-04 12:31 - 00014250 _____ () C:\Users\asus\Desktop\FRST.txt
2015-04-04 12:11 - 2015-04-04 09:38 - 01135104 _____ (Farbar) C:\Users\asus\Desktop\FRST.exe
2015-04-04 11:44 - 2015-04-04 10:00 - 00024064 _____ () C:\windows\zoek-delete.exe
2015-04-04 10:02 - 2015-04-04 11:49 - 00024331 _____ () C:\zoek-results.log
2015-04-04 09:59 - 2015-04-04 09:59 - 00002458 _____ () C:\Users\asus\Desktop\mbam.txt
2015-04-04 09:58 - 2015-04-04 11:29 - 00000000 ____D () C:\zoek_backup
2015-04-04 09:57 - 2015-04-04 09:57 - 01305600 _____ () C:\Users\asus\Downloads\zoek.exe
2015-04-04 09:44 - 2015-04-04 09:45 - 00021352 _____ () C:\Users\asus\Downloads\Addition.txt
2015-04-04 09:40 - 2015-04-04 09:45 - 00044524 _____ () C:\Users\asus\Downloads\FRST.txt
2015-04-04 09:38 - 2015-04-04 12:31 - 00000000 ____D () C:\FRST
2015-04-04 09:37 - 2015-04-04 09:38 - 01135104 _____ (Farbar) C:\Users\asus\Downloads\FRST.exe
2015-04-01 18:33 - 2015-04-01 19:08 - 00000000 ____D () C:\Users\asus\Desktop\mbar
2015-04-01 18:29 - 2015-04-01 18:32 - 16502728 _____ (Malwarebytes Corp.) C:\Users\asus\Downloads\mbar-1.09.1.1004.exe
2015-04-01 18:19 - 2015-04-04 12:29 - 00000280 _____ () C:\windows\setupact.log
2015-04-01 18:19 - 2015-04-04 11:49 - 00001176 _____ () C:\windows\PFRO.log
2015-04-01 18:19 - 2015-04-01 18:19 - 00000000 _____ () C:\windows\setuperr.log
2015-04-01 17:58 - 2015-04-01 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-04-01 17:58 - 2015-04-01 17:58 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-01 17:49 - 2015-04-01 17:52 - 12667027 _____ () C:\Users\asus\Downloads\cc-setup.exe
2015-04-01 16:25 - 2015-04-04 09:58 - 00119512 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-01 16:24 - 2015-04-01 18:34 - 00092888 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2015-04-01 16:24 - 2015-04-01 16:24 - 00001020 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-04-01 16:24 - 2015-04-01 16:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-04-01 16:24 - 2015-04-01 16:24 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-01 16:24 - 2015-04-01 16:24 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-04-01 16:24 - 2015-03-17 06:15 - 00051928 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2015-04-01 16:24 - 2015-03-17 06:15 - 00023256 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2015-04-01 16:13 - 2015-04-01 16:22 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\asus\Downloads\mbam-setup-2.1.4.1018.exe
2015-04-01 16:05 - 2015-04-01 16:05 - 00014088 _____ () C:\Users\asus\Desktop\AdwCleaner[S0].txt
2015-03-26 12:33 - 2015-03-26 12:33 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_ccdcmb_01009.Wdf
2015-03-25 11:23 - 2015-03-25 11:23 - 00224736 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgidsdriverx.sys
2015-03-22 20:49 - 2015-03-22 20:49 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-03-18 18:09 - 2015-03-25 21:14 - 00000000 ____D () C:\Users\asus\AppData\Roaming\Foxit Software
2015-03-18 18:09 - 2015-03-18 18:09 - 00000000 ____D () C:\Users\Public\Foxit Software
2015-03-18 18:08 - 2015-03-18 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2015-03-18 18:08 - 2015-03-18 18:08 - 00000000 ____D () C:\Program Files\Foxit Software
2015-03-17 18:03 - 2015-03-17 18:03 - 00000000 ____D () C:\Users\asus\AppData\Local\Adobe
2015-03-17 18:01 - 2015-03-18 17:43 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-03-14 15:02 - 2015-03-14 15:02 - 05399808 _____ (Dll-Files.com ) C:\windows\system32\dffsetup_2.exe
2015-03-14 04:12 - 2015-03-14 04:13 - 00889756 _____ () C:\Users\asus\Downloads\atheros_ar5xxx_770396_vista.zip
2015-03-14 04:10 - 2015-03-14 04:10 - 00000000 __SHD () C:\Users\asus\AppData\Local\EmieBrowserModeList
2015-03-12 16:36 - 2015-02-26 05:11 - 02381312 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-03-12 16:36 - 2015-02-24 04:32 - 00342696 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-03-12 16:36 - 2015-02-20 04:08 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2015-03-12 16:36 - 2015-02-20 04:00 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-03-12 16:36 - 2015-02-20 03:56 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2015-03-12 16:36 - 2015-02-20 03:50 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2015-03-12 16:36 - 2015-02-20 03:41 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2015-03-12 16:36 - 2015-02-20 03:24 - 00684544 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-03-12 16:36 - 2015-02-20 02:57 - 01311232 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-03-12 16:36 - 2015-02-13 07:26 - 12875264 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2015-03-12 16:36 - 2015-02-03 05:12 - 01230848 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2015-03-12 16:36 - 2015-01-17 04:30 - 00828928 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2015-03-12 16:35 - 2015-02-21 02:41 - 12827648 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-03-12 16:35 - 2015-02-21 02:27 - 00418304 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-03-12 16:35 - 2015-02-21 02:27 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-03-12 16:35 - 2015-02-21 02:25 - 19720192 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-03-12 16:35 - 2015-02-21 01:32 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-03-12 16:35 - 2015-02-20 04:22 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-03-12 16:35 - 2015-02-20 04:22 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2015-03-12 16:35 - 2015-02-20 04:09 - 00503296 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-03-12 16:35 - 2015-02-20 04:08 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-03-12 16:35 - 2015-02-20 04:06 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-03-12 16:35 - 2015-02-20 04:03 - 02278400 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-03-12 16:35 - 2015-02-20 04:01 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-03-12 16:35 - 2015-02-20 03:58 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-03-12 16:35 - 2015-02-20 03:56 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-03-12 16:35 - 2015-02-20 03:56 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2015-03-12 16:35 - 2015-02-20 03:37 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-03-12 16:35 - 2015-02-20 03:30 - 04300288 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-03-12 16:35 - 2015-02-20 03:24 - 02052608 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-03-12 16:35 - 2015-02-20 03:24 - 00689152 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-03-12 16:35 - 2015-02-20 03:23 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2015-03-12 16:35 - 2015-02-20 03:01 - 01888256 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-03-12 16:35 - 2015-02-20 02:55 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-03-12 16:34 - 2015-03-06 07:15 - 00137656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-03-12 16:34 - 2015-03-06 07:15 - 00067512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2015-03-12 16:34 - 2015-03-06 07:10 - 01061376 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00550912 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2015-03-12 16:34 - 2015-03-06 07:10 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2015-03-12 16:34 - 2015-03-06 07:09 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2015-03-12 16:34 - 2015-03-06 07:09 - 00022528 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2015-03-12 16:34 - 2015-03-06 07:07 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-03-12 16:34 - 2015-03-06 07:07 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2015-03-12 16:34 - 2015-03-06 07:06 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-03-12 16:34 - 2015-02-20 06:13 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2015-03-12 16:34 - 2015-02-20 06:13 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2015-03-12 16:34 - 2015-02-20 06:13 - 00026624 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2015-03-12 16:34 - 2015-02-20 06:13 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2015-03-12 16:34 - 2015-02-20 05:09 - 00299008 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2015-03-12 16:34 - 2015-02-04 04:54 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2015-03-12 16:34 - 2015-02-03 05:12 - 00171520 _____ (Microsoft Corporation) C:\windows\system32\ubpm.dll
2015-03-12 16:33 - 2015-02-03 05:16 - 03973048 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2015-03-12 16:33 - 2015-02-03 05:16 - 03917760 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-03-12 16:33 - 2015-02-03 05:16 - 00078784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2015-03-12 16:33 - 2015-02-03 05:12 - 11411968 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 03209728 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 01329664 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 01174528 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 01005056 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00988160 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00744960 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00617984 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00519680 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00489984 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00475136 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00442880 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00406016 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00354816 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00265216 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00179200 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00157184 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00103936 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00103424 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2015-03-12 16:33 - 2015-02-03 05:12 - 00050688 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00027648 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00010752 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2015-03-12 16:33 - 2015-02-03 05:12 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2015-03-12 16:33 - 2015-02-03 05:12 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2015-03-12 16:33 - 2015-02-03 05:11 - 12625408 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2015-03-12 16:33 - 2015-02-03 05:11 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00023040 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00016896 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2015-03-12 16:33 - 2015-02-03 05:11 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2015-03-12 16:33 - 2015-02-03 05:10 - 00008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2015-03-12 16:33 - 2015-02-03 05:09 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2015-03-12 16:33 - 2015-02-03 05:08 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2015-03-12 16:33 - 2015-02-03 05:00 - 00593920 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2015-03-12 16:33 - 2015-02-03 04:26 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2015-03-12 16:33 - 2015-01-31 01:56 - 00370488 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2015-03-12 16:33 - 2014-11-01 00:22 - 00521384 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2015-03-12 16:33 - 2014-06-28 02:21 - 00455752 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2015-03-12 16:33 - 2014-06-28 02:21 - 00409272 _____ (Microsoft Corporation) C:\windows\system32\ci.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-04 12:30 - 2012-12-31 14:56 - 00000932 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-04 12:29 - 2009-07-14 06:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-04-04 12:28 - 2012-12-20 01:33 - 01408044 _____ () C:\windows\WindowsUpdate.log
2015-04-04 12:05 - 2012-12-31 14:56 - 00000936 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-04 11:56 - 2009-07-14 06:34 - 00020432 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-04 11:56 - 2009-07-14 06:34 - 00020432 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-04 11:53 - 2010-11-19 01:33 - 01584118 _____ () C:\windows\system32\PerfStringBackup.INI
2015-04-04 11:41 - 2014-05-27 13:04 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-04-04 11:21 - 2012-12-19 16:43 - 00000000 ____D () C:\Users\asus
2015-04-04 09:38 - 2014-05-27 21:34 - 00000000 ____D () C:\ProgramData\MFAData
2015-04-04 09:33 - 2013-04-04 16:28 - 00000000 ____D () C:\Users\asus\AppData\Roaming\Skype
2015-04-02 22:14 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\rescache
2015-04-02 18:32 - 2014-09-12 08:19 - 00000907 _____ () C:\Users\Public\Desktop\AVG 2015.lnk
2015-04-02 18:32 - 2014-07-16 22:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-04-01 18:13 - 2013-02-23 13:43 - 00000000 ____D () C:\windows\Minidump
2015-04-01 18:13 - 2009-07-26 23:40 - 00000000 ____D () C:\windows\panther
2015-04-01 16:25 - 2013-07-19 19:54 - 00000000 ____D () C:\Users\asus\AppData\Roaming\Seznam.cz
2015-03-24 09:54 - 2014-05-27 12:59 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-03-18 18:09 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2015-03-18 18:04 - 2014-09-12 08:18 - 00000000 ____D () C:\ProgramData\AVG2015
2015-03-18 17:43 - 2010-11-19 01:43 - 00000000 ____D () C:\ProgramData\Adobe
2015-03-18 17:39 - 2010-11-19 01:41 - 00000000 ____D () C:\ProgramData\Temp
2015-03-17 18:03 - 2012-12-19 16:43 - 00000000 ____D () C:\Users\asus\AppData\Roaming\Adobe
2015-03-14 04:37 - 2014-05-27 13:04 - 00778928 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2015-03-14 04:37 - 2014-05-27 13:04 - 00142512 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2015-03-13 22:48 - 2009-07-14 06:33 - 00443848 _____ () C:\windows\system32\FNTCACHE.DAT
2015-03-13 21:55 - 2013-01-06 19:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-13 21:51 - 2013-08-07 20:42 - 00000000 ____D () C:\windows\system32\MRT
2015-03-13 21:38 - 2013-01-09 18:11 - 119837696 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-03-08 12:06 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\NDF
==================== Files in the root of some directories =======
2010-11-19 01:41 - 2010-03-03 01:59 - 0131984 _____ () C:\ProgramData\FullRemove.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-04-02 22:07
==================== End Of Log ============================
Re: chybějící dll a zpomalený noťas
Jen pro informaci co mi to vyhodí když dám vlastnosti počítače
- Přílohy
-
- chyba.jpg (26.35 KiB) Zobrazeno 1337 x
Re: chybějící dll a zpomalený noťas
Ahoj Vyosku, nezapadl jsem? nemám moc času moc dík
Re: chybějící dll a zpomalený noťas
Je tam nejaky neporadek s antiviry
- Vycistete zbytky Avastu timto https://www.avast.com/cs-cz/uninstall-utility
- Vycistete zbytky AVG timto http://download.avg.com/filedir/util/su ... 5_5501.exe
Nainstalujte Avast Free https://www.avast.com/cs-cz/index Tvorba fixlistu pro FRST
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
Start CloseProcesses: CreateRestorePoint: HKLM\...\Run: [UCam_Menu] => "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" HKLM\...\Run: [LiveUpdate] => AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto HKLM\...\Run: [GrooveMonitor] => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" HKLM\...\Run: [SunJavaUpdateSched] => "C:\Program Files\Common Files\Java\Java Update\jusched.exe" HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3723728 2015-03-25] (AVG Technologies CZ, s.r.o.) HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Handy Updater] => "C:\Program Files\HandyUpdater\HandyUpdater.exe" HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22066272 2014-10-01] (Skype Technologies S.A.) HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5503768 2015-02-19] (Piriform Ltd) HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: E - E:\Autorun.exe HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {52fb677f-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {52fb67cc-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {9f5cb8f1-8bba-11e2-b1e0-20cf30686cce} - E:\LaunchU3.exe -a ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File [] Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File [] Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll No File [] Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll No File [] Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll No File [] Winsock: Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL File Not found () Winsock: Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL File Not found () FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll No File FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X] S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X] S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X] S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X] S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X] S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [X] 2015-04-04 12:14 - 2015-04-04 12:14 - 00000466 _____ () C:\Users\asus\Desktop\Addition.txt 2015-04-04 12:12 - 2015-04-04 12:31 - 00014250 _____ () C:\Users\asus\Desktop\FRST.txt 2015-04-04 11:44 - 2015-04-04 10:00 - 00024064 _____ () C:\windows\zoek-delete.exe 2015-04-04 10:02 - 2015-04-04 11:49 - 00024331 _____ () C:\zoek-results.log 2015-04-04 09:59 - 2015-04-04 09:59 - 00002458 _____ () C:\Users\asus\Desktop\mbam.txt 2015-04-04 09:58 - 2015-04-04 11:29 - 00000000 ____D () C:\zoek_backup 2015-04-04 09:57 - 2015-04-04 09:57 - 01305600 _____ () C:\Users\asus\Downloads\zoek.exe 2015-04-04 09:44 - 2015-04-04 09:45 - 00021352 _____ () C:\Users\asus\Downloads\Addition.txt 2015-04-04 09:40 - 2015-04-04 09:45 - 00044524 _____ () C:\Users\asus\Downloads\FRST.txt 2015-04-01 18:33 - 2015-04-01 19:08 - 00000000 ____D () C:\Users\asus\Desktop\mbar 2015-04-01 18:29 - 2015-04-01 18:32 - 16502728 _____ (Malwarebytes Corp.) C:\Users\asus\Downloads\mbar-1.09.1.1004.exe 2015-04-01 18:19 - 2015-04-04 12:29 - 00000280 _____ () C:\windows\setupact.log 2015-04-01 18:19 - 2015-04-04 11:49 - 00001176 _____ () C:\windows\PFRO.log 2015-04-01 18:19 - 2015-04-01 18:19 - 00000000 _____ () C:\windows\setuperr.log 2015-04-01 17:49 - 2015-04-01 17:52 - 12667027 _____ () C:\Users\asus\Downloads\cc-setup.exe 2015-04-01 16:13 - 2015-04-01 16:22 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\asus\Downloads\mbam-setup-2.1.4.1018.exe 2015-04-01 16:05 - 2015-04-01 16:05 - 00014088 _____ () C:\Users\asus\Desktop\AdwCleaner[S0].txt Hosts: EmptyTemp: Reboot: End- Ulozte vytvoreny TXT jako fixlist.txt
- Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
- Kliknete na Fix
- Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: chybějící dll a zpomalený noťas
Zde to je pane
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 11-03-2015
Ran by asus at 2015-04-05 09:50:44 Run:1
Running from C:\Users\asus\Desktop
Loaded Profiles: asus (Available profiles: UpdatusUser & asus)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [UCam_Menu] => "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
HKLM\...\Run: [LiveUpdate] => AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
HKLM\...\Run: [GrooveMonitor] => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
HKLM\...\Run: [SunJavaUpdateSched] => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3723728 2015-03-25] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Handy Updater] => "C:\Program Files\HandyUpdater\HandyUpdater.exe"
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22066272 2014-10-01] (Skype Technologies S.A.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5503768 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: E - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {52fb677f-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {52fb67cc-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {9f5cb8f1-8bba-11e2-b1e0-20cf30686cce} - E:\LaunchU3.exe -a
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File []
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File []
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll No File []
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll No File []
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll No File []
Winsock: Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL File Not found ()
Winsock: Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL File Not found ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [X]
2015-04-04 12:14 - 2015-04-04 12:14 - 00000466 _____ () C:\Users\asus\Desktop\Addition.txt
2015-04-04 12:12 - 2015-04-04 12:31 - 00014250 _____ () C:\Users\asus\Desktop\FRST.txt
2015-04-04 11:44 - 2015-04-04 10:00 - 00024064 _____ () C:\windows\zoek-delete.exe
2015-04-04 10:02 - 2015-04-04 11:49 - 00024331 _____ () C:\zoek-results.log
2015-04-04 09:59 - 2015-04-04 09:59 - 00002458 _____ () C:\Users\asus\Desktop\mbam.txt
2015-04-04 09:58 - 2015-04-04 11:29 - 00000000 ____D () C:\zoek_backup
2015-04-04 09:57 - 2015-04-04 09:57 - 01305600 _____ () C:\Users\asus\Downloads\zoek.exe
2015-04-04 09:44 - 2015-04-04 09:45 - 00021352 _____ () C:\Users\asus\Downloads\Addition.txt
2015-04-04 09:40 - 2015-04-04 09:45 - 00044524 _____ () C:\Users\asus\Downloads\FRST.txt
2015-04-01 18:33 - 2015-04-01 19:08 - 00000000 ____D () C:\Users\asus\Desktop\mbar
2015-04-01 18:29 - 2015-04-01 18:32 - 16502728 _____ (Malwarebytes Corp.) C:\Users\asus\Downloads\mbar-1.09.1.1004.exe
2015-04-01 18:19 - 2015-04-04 12:29 - 00000280 _____ () C:\windows\setupact.log
2015-04-01 18:19 - 2015-04-04 11:49 - 00001176 _____ () C:\windows\PFRO.log
2015-04-01 18:19 - 2015-04-01 18:19 - 00000000 _____ () C:\windows\setuperr.log
2015-04-01 17:49 - 2015-04-01 17:52 - 12667027 _____ () C:\Users\asus\Downloads\cc-setup.exe
2015-04-01 16:13 - 2015-04-01 16:22 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\asus\Downloads\mbam-setup-2.1.4.1018.exe
2015-04-01 16:05 - 2015-04-01 16:05 - 00014088 _____ () C:\Users\asus\Desktop\AdwCleaner[S0].txt
Hosts:
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\UCam_Menu => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\LiveUpdate => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AVG_UI => Value not found.
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Handy Updater => value deleted successfully.
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => value deleted successfully.
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value deleted successfully.
"HKU\S-1-5-21-2617348160-877986560-2742470243-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E" => Key deleted successfully.
"HKU\S-1-5-21-2617348160-877986560-2742470243-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{52fb677f-baf0-11e2-8dca-20cf30686cce}" => Key deleted successfully.
HKCR\CLSID\{52fb677f-baf0-11e2-8dca-20cf30686cce} => Key not found.
"HKU\S-1-5-21-2617348160-877986560-2742470243-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{52fb67cc-baf0-11e2-8dca-20cf30686cce}" => Key deleted successfully.
HKCR\CLSID\{52fb67cc-baf0-11e2-8dca-20cf30686cce} => Key not found.
"HKU\S-1-5-21-2617348160-877986560-2742470243-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9f5cb8f1-8bba-11e2-b1e0-20cf30686cce}" => Key deleted successfully.
HKCR\CLSID\{9f5cb8f1-8bba-11e2-b1e0-20cf30686cce} => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => Key deleted successfully.
"HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}" => Key deleted successfully.
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKCR\PROTOCOLS\Handler\livecall" => Key deleted successfully.
"HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\msnim" => Key deleted successfully.
HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => Key not found.
"HKCR\PROTOCOLS\Handler\skype-ie-addon-data" => Key deleted successfully.
"HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\skype4com" => Key deleted successfully.
"HKCR\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\wlmailhtml" => Key deleted successfully.
"HKCR\CLSID\{03C514A3-1EFB-4856-9F99-10D7BE1653C0}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\wlpg" => Key deleted successfully.
"HKCR\CLSID\{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324}" => Key deleted successfully.
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005" => Key deleted successfully.
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9" => Key deleted successfully.
ew_hwusbdev => Service deleted successfully.
ew_usbenumfilter => Service deleted successfully.
huawei_cdcacm => Service deleted successfully.
huawei_enumerator => Service deleted successfully.
huawei_ext_ctrl => Service deleted successfully.
huawei_wwanecm => Service deleted successfully.
IntcAzAudAddService => Service deleted successfully.
C:\Users\asus\Desktop\Addition.txt => Moved successfully.
C:\Users\asus\Desktop\FRST.txt => Moved successfully.
C:\windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\Users\asus\Desktop\mbam.txt => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\asus\Downloads\zoek.exe => Moved successfully.
C:\Users\asus\Downloads\Addition.txt => Moved successfully.
C:\Users\asus\Downloads\FRST.txt => Moved successfully.
C:\Users\asus\Desktop\mbar => Moved successfully.
C:\Users\asus\Downloads\mbar-1.09.1.1004.exe => Moved successfully.
C:\windows\setupact.log => Moved successfully.
C:\windows\PFRO.log => Moved successfully.
C:\windows\setuperr.log => Moved successfully.
C:\Users\asus\Downloads\cc-setup.exe => Moved successfully.
C:\Users\asus\Downloads\mbam-setup-2.1.4.1018.exe => Moved successfully.
C:\Users\asus\Desktop\AdwCleaner[S0].txt => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 40.4 MB temporary data.
The system needed a reboot.
==== End of Fixlog 09:52:21 ====
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 11-03-2015
Ran by asus at 2015-04-05 09:50:44 Run:1
Running from C:\Users\asus\Desktop
Loaded Profiles: asus (Available profiles: UpdatusUser & asus)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [UCam_Menu] => "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
HKLM\...\Run: [LiveUpdate] => AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
HKLM\...\Run: [GrooveMonitor] => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
HKLM\...\Run: [SunJavaUpdateSched] => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3723728 2015-03-25] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Handy Updater] => "C:\Program Files\HandyUpdater\HandyUpdater.exe"
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22066272 2014-10-01] (Skype Technologies S.A.)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5503768 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: E - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {52fb677f-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {52fb67cc-baf0-11e2-8dca-20cf30686cce} - E:\Autorun.exe
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\...\MountPoints2: {9f5cb8f1-8bba-11e2-b1e0-20cf30686cce} - E:\LaunchU3.exe -a
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File []
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File []
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll No File []
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll No File []
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll No File []
Winsock: Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL File Not found ()
Winsock: Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL File Not found ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [X]
2015-04-04 12:14 - 2015-04-04 12:14 - 00000466 _____ () C:\Users\asus\Desktop\Addition.txt
2015-04-04 12:12 - 2015-04-04 12:31 - 00014250 _____ () C:\Users\asus\Desktop\FRST.txt
2015-04-04 11:44 - 2015-04-04 10:00 - 00024064 _____ () C:\windows\zoek-delete.exe
2015-04-04 10:02 - 2015-04-04 11:49 - 00024331 _____ () C:\zoek-results.log
2015-04-04 09:59 - 2015-04-04 09:59 - 00002458 _____ () C:\Users\asus\Desktop\mbam.txt
2015-04-04 09:58 - 2015-04-04 11:29 - 00000000 ____D () C:\zoek_backup
2015-04-04 09:57 - 2015-04-04 09:57 - 01305600 _____ () C:\Users\asus\Downloads\zoek.exe
2015-04-04 09:44 - 2015-04-04 09:45 - 00021352 _____ () C:\Users\asus\Downloads\Addition.txt
2015-04-04 09:40 - 2015-04-04 09:45 - 00044524 _____ () C:\Users\asus\Downloads\FRST.txt
2015-04-01 18:33 - 2015-04-01 19:08 - 00000000 ____D () C:\Users\asus\Desktop\mbar
2015-04-01 18:29 - 2015-04-01 18:32 - 16502728 _____ (Malwarebytes Corp.) C:\Users\asus\Downloads\mbar-1.09.1.1004.exe
2015-04-01 18:19 - 2015-04-04 12:29 - 00000280 _____ () C:\windows\setupact.log
2015-04-01 18:19 - 2015-04-04 11:49 - 00001176 _____ () C:\windows\PFRO.log
2015-04-01 18:19 - 2015-04-01 18:19 - 00000000 _____ () C:\windows\setuperr.log
2015-04-01 17:49 - 2015-04-01 17:52 - 12667027 _____ () C:\Users\asus\Downloads\cc-setup.exe
2015-04-01 16:13 - 2015-04-01 16:22 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\asus\Downloads\mbam-setup-2.1.4.1018.exe
2015-04-01 16:05 - 2015-04-01 16:05 - 00014088 _____ () C:\Users\asus\Desktop\AdwCleaner[S0].txt
Hosts:
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\UCam_Menu => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\LiveUpdate => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AVG_UI => Value not found.
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Handy Updater => value deleted successfully.
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => value deleted successfully.
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value deleted successfully.
"HKU\S-1-5-21-2617348160-877986560-2742470243-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E" => Key deleted successfully.
"HKU\S-1-5-21-2617348160-877986560-2742470243-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{52fb677f-baf0-11e2-8dca-20cf30686cce}" => Key deleted successfully.
HKCR\CLSID\{52fb677f-baf0-11e2-8dca-20cf30686cce} => Key not found.
"HKU\S-1-5-21-2617348160-877986560-2742470243-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{52fb67cc-baf0-11e2-8dca-20cf30686cce}" => Key deleted successfully.
HKCR\CLSID\{52fb67cc-baf0-11e2-8dca-20cf30686cce} => Key not found.
"HKU\S-1-5-21-2617348160-877986560-2742470243-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9f5cb8f1-8bba-11e2-b1e0-20cf30686cce}" => Key deleted successfully.
HKCR\CLSID\{9f5cb8f1-8bba-11e2-b1e0-20cf30686cce} => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => Key deleted successfully.
"HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}" => Key deleted successfully.
HKU\S-1-5-21-2617348160-877986560-2742470243-1001\Software\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKCR\PROTOCOLS\Handler\livecall" => Key deleted successfully.
"HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\msnim" => Key deleted successfully.
HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => Key not found.
"HKCR\PROTOCOLS\Handler\skype-ie-addon-data" => Key deleted successfully.
"HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\skype4com" => Key deleted successfully.
"HKCR\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\wlmailhtml" => Key deleted successfully.
"HKCR\CLSID\{03C514A3-1EFB-4856-9F99-10D7BE1653C0}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\wlpg" => Key deleted successfully.
"HKCR\CLSID\{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324}" => Key deleted successfully.
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000005" => Key deleted successfully.
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000006" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9" => Key deleted successfully.
ew_hwusbdev => Service deleted successfully.
ew_usbenumfilter => Service deleted successfully.
huawei_cdcacm => Service deleted successfully.
huawei_enumerator => Service deleted successfully.
huawei_ext_ctrl => Service deleted successfully.
huawei_wwanecm => Service deleted successfully.
IntcAzAudAddService => Service deleted successfully.
C:\Users\asus\Desktop\Addition.txt => Moved successfully.
C:\Users\asus\Desktop\FRST.txt => Moved successfully.
C:\windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\Users\asus\Desktop\mbam.txt => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\asus\Downloads\zoek.exe => Moved successfully.
C:\Users\asus\Downloads\Addition.txt => Moved successfully.
C:\Users\asus\Downloads\FRST.txt => Moved successfully.
C:\Users\asus\Desktop\mbar => Moved successfully.
C:\Users\asus\Downloads\mbar-1.09.1.1004.exe => Moved successfully.
C:\windows\setupact.log => Moved successfully.
C:\windows\PFRO.log => Moved successfully.
C:\windows\setuperr.log => Moved successfully.
C:\Users\asus\Downloads\cc-setup.exe => Moved successfully.
C:\Users\asus\Downloads\mbam-setup-2.1.4.1018.exe => Moved successfully.
C:\Users\asus\Desktop\AdwCleaner[S0].txt => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 40.4 MB temporary data.
The system needed a reboot.
==== End of Fixlog 09:52:21 ====
Re: chybějící dll a zpomalený noťas
Jak se chova ntb??
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: chybějící dll a zpomalený noťas
stále stejná chyba s chybějícím dll viz obrázek výše, předtím mi to dělal i obyčejný notepad, ten už je ale vklidu
Re: chybějící dll a zpomalený noťas
Zkuste jeste vycistit CCleanerem
Je to nejaka soucast MS Office, mozna by pomohla jejich oprava\reinstal
Je to nejaka soucast MS Office, mozna by pomohla jejich oprava\reinstal
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: chybějící dll a zpomalený noťas
CCleaner jsem samozřejmě zkoušel a nepomohl mno zkusím google protože nemám instalačku office, pokud to je tedy čisté, prosím o vyčištění a bude to vše
Re: chybějící dll a zpomalený noťas
DelFix https://toolslib.net/downloads/finish/2/
- Stahnete a spustte
- Ponechte zatrzitkou pouze u volby Remove disinfection tools
- Kliknete na Run
Jinak by melo byt na havet cisto"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?