Prosím kontrolu logu - citelně zpomalený ntb i připojení...

Zpráva

Potvor · #1 Příspěvek od **Potvor** » 17 čer 2015 20:29

Dobrý večer,

prosím o kontrolu logu z důvodu dosti znatelného zpomalení ntb a připojení k wifi...

Předem děkuji, zde je log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Železňátka at 2015-06-17 21:25:56
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 60 GB (14%) free of 431 GB
Total RAM: 2009 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:26:10, on 17.6.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\windows\system32\igfxsrvc.exe
C:\Windows\System32\igfxpers.exe
C:\windows\system32\GWX\GWX.exe
C:\Program Files\Lenovo\Energy Management\utility.exe
C:\Program Files\Lenovo\Energy Management\Energy Management.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\windows\system32\wbem\unsecapp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\SearchFilterHost.exe
C:\Users\Železňátka\Downloads\RSIT.exe
C:\Program Files\trend micro\Železňátka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [EnergyUtility] C:\Program Files\Lenovo\Energy Management\utility.exe
O4 - HKLM\..\Run: [Energy Management] C:\Program Files\Lenovo\Energy Management\Energy Management.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} (20-20 3D Viewer for IKEA) - http://kitchenplanner.ikea.com/CZ/Core/ ... _Win32.cab
O16 - DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} (20-20 3D Viewer) - http://kitchenplanner.ikea.com/CZ/Core/ ... _Win32.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CDMA Device Service - Unknown owner - C:\Program Files\Samsung\USB Drivers\26_VIA_driver2\x86\VIAService.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\windows\system32\SAsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SmartPower - Ignatu Software - C:\Program Files\Ignatu Software\SmartPower\SmartPower.exe
O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe

--
End of file - 6344 bytes

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-06-04 186904]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2009-09-18 141848]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2009-09-18 174104]
"Persistence"=C:\windows\system32\igfxpers.exe [2009-09-18 150552]
"EnergyUtility"=C:\Program Files\Lenovo\Energy Management\utility.exe [2009-09-29 4114288]
"Energy Management"=C:\Program Files\Lenovo\Energy Management\Energy Management.exe [2009-09-29 5064560]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2012-06-28 74752]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-03-15 5227648]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-01-20 5496600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\H2O]
C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe [2005-10-23 385024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileConnect]
C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe [2009-09-18 2412032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VeriFaceManager]
C:\Program Files\Lenovo\VeriFace\PManage.exe [2010-12-02 3122440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2009-07-03 215552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"msacm.vorbis"=vorbis.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"mixer9"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.reg - open - "regedit.exe" "%1"

======List of files/folders created in the last 1 month======

2015-06-10 17:42:30 ----A---- C:\windows\system32\comctl32.dll
2015-06-10 17:42:29 ----A---- C:\windows\system32\win32k.sys
2015-06-10 17:42:28 ----A---- C:\windows\system32\drivers\stream.sys
2015-06-10 17:42:24 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-06-10 17:42:24 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-06-10 17:42:24 ----A---- C:\windows\system32\ieetwcollector.exe
2015-06-10 17:42:22 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-06-10 17:42:22 ----A---- C:\windows\system32\iernonce.dll
2015-06-10 17:42:22 ----A---- C:\windows\system32\iedkcs32.dll
2015-06-10 17:42:22 ----A---- C:\windows\system32\ie4uinit.exe
2015-06-10 17:42:21 ----A---- C:\windows\system32\vbscript.dll
2015-06-10 17:42:21 ----A---- C:\windows\system32\urlmon.dll
2015-06-10 17:42:21 ----A---- C:\windows\system32\jsproxy.dll
2015-06-10 17:42:21 ----A---- C:\windows\system32\ieUnatt.exe
2015-06-10 17:42:20 ----A---- C:\windows\system32\msfeeds.dll
2015-06-10 17:42:20 ----A---- C:\windows\system32\jscript9diag.dll
2015-06-10 17:42:20 ----A---- C:\windows\system32\ieapfltr.dll
2015-06-10 17:42:20 ----A---- C:\windows\system32\dxtmsft.dll
2015-06-10 17:42:18 ----A---- C:\windows\system32\msrating.dll
2015-06-10 17:42:18 ----A---- C:\windows\system32\iesetup.dll
2015-06-10 17:42:17 ----A---- C:\windows\system32\wininet.dll
2015-06-10 17:42:17 ----A---- C:\windows\system32\jscript.dll
2015-06-10 17:42:17 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-06-10 17:42:15 ----A---- C:\windows\system32\dxtrans.dll
2015-06-10 17:42:14 ----A---- C:\windows\system32\ieui.dll
2015-06-10 17:42:13 ----A---- C:\windows\system32\ieframe.dll
2015-06-10 17:42:07 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-06-10 17:42:07 ----A---- C:\windows\system32\mshtmled.dll
2015-06-10 17:42:06 ----A---- C:\windows\system32\MshtmlDac.dll
2015-06-10 17:42:04 ----A---- C:\windows\system32\jscript9.dll
2015-06-10 17:42:03 ----A---- C:\windows\system32\mshtml.dll
2015-06-10 17:42:01 ----A---- C:\windows\system32\iertutil.dll
2015-06-10 17:41:39 ----A---- C:\windows\system32\kerberos.dll
2015-06-10 17:41:39 ----A---- C:\windows\system32\diagtrack.dll
2015-06-10 17:41:37 ----A---- C:\windows\system32\lsasrv.dll
2015-06-10 17:41:36 ----A---- C:\windows\system32\advapi32.dll
2015-06-10 17:41:35 ----A---- C:\windows\system32\ntkrnlpa.exe
2015-06-10 17:41:35 ----A---- C:\windows\system32\ntdll.dll
2015-06-10 17:41:34 ----A---- C:\windows\system32\tracerpt.exe
2015-06-10 17:41:34 ----A---- C:\windows\system32\srcore.dll
2015-06-10 17:41:33 ----A---- C:\windows\system32\rstrui.exe
2015-06-10 17:41:33 ----A---- C:\windows\system32\ntoskrnl.exe
2015-06-10 17:41:32 ----A---- C:\windows\system32\schannel.dll
2015-06-10 17:41:32 ----A---- C:\windows\system32\msv1_0.dll
2015-06-10 17:41:30 ----A---- C:\windows\system32\ncrypt.dll
2015-06-10 17:41:30 ----A---- C:\windows\system32\logman.exe
2015-06-10 17:41:30 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-06-10 17:41:30 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-06-10 17:41:29 ----A---- C:\windows\system32\tdh.dll
2015-06-10 17:41:29 ----A---- C:\windows\system32\sechost.dll
2015-06-10 17:41:28 ----A---- C:\windows\system32\wdigest.dll
2015-06-10 17:41:28 ----A---- C:\windows\system32\typeperf.exe
2015-06-10 17:41:28 ----A---- C:\windows\system32\TSpkg.dll
2015-06-10 17:41:28 ----A---- C:\windows\system32\smss.exe
2015-06-10 17:41:28 ----A---- C:\windows\system32\relog.exe
2015-06-10 17:41:28 ----A---- C:\windows\system32\auditpol.exe
2015-06-10 17:41:27 ----A---- C:\windows\system32\srclient.dll
2015-06-10 17:41:27 ----A---- C:\windows\system32\lsass.exe
2015-06-10 17:41:27 ----A---- C:\windows\system32\csrsrv.dll
2015-06-10 17:41:26 ----A---- C:\windows\system32\sspisrv.dll
2015-06-10 17:41:26 ----A---- C:\windows\system32\sspicli.dll
2015-06-10 17:41:26 ----A---- C:\windows\system32\diskperf.exe
2015-06-10 17:41:26 ----A---- C:\windows\system32\credssp.dll
2015-06-10 17:41:25 ----A---- C:\windows\system32\secur32.dll
2015-06-10 17:41:25 ----A---- C:\windows\system32\apisetschema.dll
2015-06-10 17:41:24 ----A---- C:\windows\system32\msobjs.dll
2015-06-10 17:41:24 ----A---- C:\windows\system32\msaudite.dll
2015-06-10 17:41:24 ----A---- C:\windows\system32\adtschema.dll
2015-06-10 17:41:23 ----A---- C:\windows\system32\UtcResources.dll
2015-06-10 17:41:11 ----A---- C:\windows\system32\wmp.dll
2015-06-10 17:41:08 ----A---- C:\windows\system32\spwmp.dll
2015-06-10 17:41:08 ----A---- C:\windows\system32\dxmasf.dll
2015-06-10 17:41:06 ----A---- C:\windows\system32\wmploc.DLL
2015-06-10 17:41:05 ----A---- C:\windows\system32\KernelBase.dll
2015-06-10 17:41:05 ----A---- C:\windows\system32\kernel32.dll
2015-06-10 17:41:04 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-10 17:41:04 ----A---- C:\windows\system32\winsrv.dll
2015-06-10 17:41:04 ----A---- C:\windows\system32\conhost.exe
2015-06-10 17:41:03 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-06-10 17:41:03 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-10 17:41:03 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-06-10 17:41:03 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-10 17:41:02 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-06-10 17:41:02 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-10 17:41:02 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-06-10 17:41:02 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-10 17:41:02 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-06-10 17:41:02 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-06-10 17:41:01 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-10 17:41:01 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-06-10 17:41:01 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-10 17:41:01 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-06-10 17:41:01 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-10 17:41:00 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-06-10 17:41:00 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-06-10 17:41:00 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-06-10 17:41:00 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-10 17:40:59 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-06-10 17:40:59 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-06-10 17:40:58 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-06-10 17:40:58 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-06-10 17:40:58 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-06-10 17:40:58 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-10 17:40:58 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-06-10 17:40:57 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-06-07 17:24:58 ----A---- C:\windows\system32\generaltel.dll
2015-06-07 17:24:58 ----A---- C:\windows\system32\appraiser.dll
2015-06-07 17:24:57 ----A---- C:\windows\system32\invagent.dll
2015-06-07 17:24:57 ----A---- C:\windows\system32\aepic.dll
2015-06-07 17:24:56 ----A---- C:\windows\system32\devinv.dll
2015-06-07 17:24:56 ----A---- C:\windows\system32\aeinv.dll
2015-06-07 17:24:55 ----A---- C:\windows\system32\acmigration.dll
2015-06-07 17:24:52 ----A---- C:\windows\system32\aepdu.dll

======List of files/folders modified in the last 1 month======

2015-06-17 21:26:08 ----D---- C:\windows\Prefetch
2015-06-17 21:26:03 ----D---- C:\windows\Temp
2015-06-17 21:25:59 ----D---- C:\Program Files\trend micro
2015-06-17 20:56:35 ----A---- C:\windows\system32\FlashPlayerApp.exe
2015-06-17 20:54:19 ----D---- C:\windows\system32\DriverStore
2015-06-17 20:52:13 ----D---- C:\windows\system32\config
2015-06-17 20:51:33 ----D---- C:\Windows
2015-06-17 20:51:33 ----D---- C:\Program Files\Mozilla Firefox
2015-06-17 20:49:57 ----D---- C:\Program Files
2015-06-16 20:59:32 ----D---- C:\windows\inf
2015-06-16 20:56:37 ----D---- C:\AdwCleaner
2015-06-16 19:51:49 ----D---- C:\windows\ModemLogs
2015-06-16 19:51:05 ----D---- C:\windows\debug
2015-06-16 17:21:34 ----D---- C:\Users\Železňátka\AppData\Roaming\XBMC
2015-06-14 19:09:39 ----SHD---- C:\System Volume Information
2015-06-11 19:37:55 ----D---- C:\windows\rescache
2015-06-11 17:52:35 ----D---- C:\windows\System32
2015-06-11 17:52:35 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-06-11 17:45:25 ----D---- C:\windows\winsxs
2015-06-11 17:41:10 ----D---- C:\windows\system32\en-US
2015-06-11 17:41:10 ----D---- C:\windows\system32\drivers
2015-06-11 17:41:10 ----D---- C:\windows\system32\cs-CZ
2015-06-11 17:41:10 ----D---- C:\windows\PolicyDefinitions
2015-06-11 17:41:09 ----D---- C:\Program Files\Internet Explorer
2015-06-11 17:41:06 ----D---- C:\Program Files\Windows Media Player
2015-06-11 17:25:02 ----SHD---- C:\windows\Installer
2015-06-11 17:25:02 ----SHD---- C:\Config.Msi
2015-06-11 17:25:02 ----D---- C:\ProgramData\Microsoft Help
2015-06-11 17:16:52 ----D---- C:\windows\system32\MRT
2015-06-11 16:57:31 ----A---- C:\windows\system32\MRT.exe
2015-06-10 17:40:48 ----D---- C:\windows\system32\catroot2
2015-06-09 21:44:27 ----D---- C:\windows\system32\NDF
2015-06-08 16:45:25 ----SD---- C:\windows\system32\CompatTel
2015-06-08 16:45:24 ----D---- C:\windows\system32\appraiser
2015-06-08 16:45:24 ----D---- C:\windows\AppPatch
2015-05-21 16:45:02 ----SD---- C:\windows\system32\GWX
2015-05-18 21:58:33 ----D---- C:\windows\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2014-11-24 49944]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2014-11-24 206248]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-06-04 330264]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2014-11-24 81768]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2014-11-24 787800]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2014-11-24 423784]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-03-02 218688]
R1 funfrm;funfrm; C:\windows\system32\drivers\funfrm.sys [2010-12-02 54800]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2014-11-24 24184]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2014-11-24 70384]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2014-11-24 91496]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2010-01-20 23136]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\windows\system32\DRIVERS\Apfiltr.sys [2010-04-22 218744]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-05-31 260648]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl6.sys [2009-07-07 2506232]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 CLEDX;Team H2O CLEDX service; C:\windows\system32\DRIVERS\cledx.sys [2005-05-09 33792]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT32.sys [2010-03-31 517688]
R3 huawei_enumerator;huawei_enumerator; C:\windows\system32\DRIVERS\ew_jubusenum.sys [2011-07-12 73344]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-07-03 5922816]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 usbsmi;Lenovo EasyCamera; C:\windows\system32\DRIVERS\SMIksdrv.sys [2009-10-16 171776]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R3 wdmirror;wdmirror; C:\windows\system32\DRIVERS\WDMirror.sys [2009-07-16 11792]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 BEHRINGER_2902;usb-audio.de driver for BEHRINGER USB AUDIO; C:\windows\System32\Drivers\BUSB2902.sys [2009-10-30 384576]
S3 Bridge0;Bridge0; C:\windows\system32\drivers\WDBridge.sys [2009-07-28 63240]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BUSB_AUDIO_WDM;BEHRINGER USB WDM AUDIO; C:\windows\system32\drivers\busbwdm.sys [2009-10-30 39488]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys [2011-07-12 102784]
S3 ewusbnet;HUAWEI USB-NDIS miniport; C:\windows\system32\DRIVERS\ewusbnet.sys [2011-07-12 349184]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2011-07-12 192768]
S3 hwusbfake;Huawei DataCard USB Fake; C:\windows\system32\DRIVERS\ewusbfake.sys [2009-07-23 100736]
S3 k57nd60x;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60x.sys [2009-07-14 229888]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\windows\system32\DRIVERS\netw5v32.sys [2009-07-14 4231168]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmb.sys [2011-05-18 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbo.sys [2011-05-18 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 PcdrNdisuio;PCDRNDISUIO Usermode I/O Protocol; C:\windows\system32\DRIVERS\pcdrndisuio.sys [2009-12-17 13440]
S3 PCDSRVC{42C9C29B-0B422D30-06000000}_0;PCDSRVC{42C9C29B-0B422D30-06000000}_0 - PCDR Kernel Mode Service Helper Driver; \??\f:\golden key lenovo diagtools\pcdoctor\pcdsrvc.pkms []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 pwdrvio;pwdrvio; \??\C:\windows\system32\pwdrvio.sys [2010-04-09 16472]
S3 pwdspio;pwdspio; \??\C:\windows\system32\pwdspio.sys [2010-04-09 11104]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys []
S3 RtsUIR;Realtek IR Driver; C:\windows\system32\DRIVERS\Rts516xIR.sys []
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2009-07-14 15872]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\windows\system32\DRIVERS\RtsUCcid.sys []
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys [2008-08-06 128104]
S3 WinUsb;WinUsb; C:\windows\system32\drivers\WinUsb.sys [2010-11-20 35968]
S4 RsFx0105;RsFx0105 Driver; C:\windows\system32\DRIVERS\RsFx0105.sys [2011-09-22 238696]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-24 50344]
R2 CDMA Device Service;CDMA Device Service; C:\Program Files\Samsung\USB Drivers\26_VIA_driver2\x86\VIAService.exe [2011-08-02 63488]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 20992]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-04 354840]
R2 MSSQL$BVRDEMO;SQL Server (BVRDEMO); c:\Program Files\Microsoft SQL Server\MSSQL10.BVRDEMO\MSSQL\Binn\sqlservr.exe [2014-07-12 43044512]
R2 ReadyComm.DirectRouter;ReadyComm.DirectRouter; C:\windows\System32\IgrsSvcs.exe [2009-07-14 20992]
R2 SAService;Conexant SmartAudio service; C:\windows\system32\SAsrv.exe [2010-03-25 445496]
R2 SmartPower;SmartPower; C:\Program Files\Ignatu Software\SmartPower\SmartPower.exe [2011-07-30 22528]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2011-09-22 255336]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2011-09-22 97640]
R2 VMCService;Vodafone Mobile Connect Service; C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2009-09-18 9216]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-03-11 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-17 268976]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-01-12 1044816]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-03-11 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-05-23 102912]
S3 IGRS;IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [2009-07-14 38152]
S3 Lenovo ReadyComm AppSvc;Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [2009-08-14 509192]
S3 Lenovo ReadyComm ConnSvc;Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [2009-09-22 579400]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2009-11-19 4640000]
S3 PS_MDP;ReadyComm Presentation Space Helper Service; C:\windows\System32\IgrsSvcs.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-12-17 1343400]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-03-31 47128]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 SQLAgent$BVRDEMO;SQL Server Agent (BVRDEMO); c:\Program Files\Microsoft SQL Server\MSSQL10.BVRDEMO\MSSQL\Binn\SQLAGENT.EXE [2014-07-12 380064]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------

Potvor · #2 Příspěvek od **Potvor** » 17 čer 2015 20:41

Připojuji rovnou log z AdwCleneru:

# AdwCleaner v4.206 - Log vytvořen 17/06/2015 v 21:36:11
# Aktualizováno 01/06/2015 by Xplode
# Databáze : 2015-06-17.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x86)
# Uživatelské jméno : Železňátka - LENOVO
# Spuštěno z : C:\Users\Železňátka\Desktop\adwcleaner_4.206.exe
# Nastavení : Čištění

***** [ Služby ] *****

***** [ Soubory / Složky ] *****

***** [ Naplánované úlohy ] *****

***** [ Zástupci ] *****

***** [ Registry ] *****

Klíč Smazáno : HKCU\Software\Conduit

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17840

-\\ Mozilla Firefox v

-\\ Google Chrome v43.0.2357.124

*************************

AdwCleaner[R0].txt - [4488 bytů] - [25/02/2015 21:17:35]
AdwCleaner[R1].txt - [4140 bytů] - [16/06/2015 20:53:54]
AdwCleaner[R2].txt - [1066 bytů] - [17/06/2015 21:34:02]
AdwCleaner[S0].txt - [4433 bytů] - [25/02/2015 21:22:02]
AdwCleaner[S1].txt - [3363 bytů] - [16/06/2015 20:56:30]
AdwCleaner[S2].txt - [992 bytů] - [17/06/2015 21:36:11]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1049 bytů] ##########

#3 Příspěvek od **altrok** » 17 čer 2015 21:22

Zdravim

Stahnete Crystal Disk Info (CDI) http://sourceforge.jp/frs/redir.php?m=j ... o6_2_2.zip
archiv extrahujte a spustte vyextrahovany soubor DiskInfo.exe
ve spustenem programu kliknete nahore na Upravy -> Kopirovat (log mate nyni zkopirovany ve schrance)
log vlozte do dalsi odpovedi (Ctrl + V)

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Nainstalujte MBAM a udelejte vlastni sken vsech disku - http://forum.viry.cz/viewtopic.php?f=29&t=137928

Upozorneni: tento sken zabere od 30 minut po nekolik hodin

Potvor · #4 Příspěvek od **Potvor** » 18 čer 2015 18:11

Zdravím,

CDI provedeno - VIZ log níže, nyní jdu na ten MBAM...

----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x86)
Date : 2015/06/18 19:10:36

-- Controller Map ----------------------------------------------------------
+ Intel(R) ICH9M-E/M SATA AHCI Controller [ATA]
- WDC WD5000BEVT-00A0RT0
- HL-DT-ST DVDRAM GT30N

-- Disk List ---------------------------------------------------------------
(1) WDC WD5000BEVT-00A0RT0 : 500,1 GB [0/0/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD5000BEVT-00A0RT0
----------------------------------------------------------------------------
Model : WDC WD5000BEVT-00A0RT0
Firmware : 01.01A01
Serial Number : WD-WXG1C3032937
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : ---- | SATA/300
Power On Hours : 6976 hod.
Power On Count : 2662 krát
Temperature : 39 C (102 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0080h [ON]
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 185 181 _21 0000000006B4 Čas na roztočení ploten
04 _98 _98 __0 000000000A79 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 100 253 __0 000000000000 Počet chybných hledání
09 _91 _91 __0 000000001B40 Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _98 _98 __0 000000000A66 Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000018 Počet vypnutí disku
C1 171 171 __0 00000001581E Počet cyklů načítání/vymazání
C2 108 _79 __0 000000000027 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 _51 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 4731 4333 3033 3239 3337
020: 0000 4000 0032 3031 2E30 3141 3031 5744 4320 5744
030: 3530 3030 4245 5654 2D30 3041 3052 5430 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1F06 0000 004C 004C
080: 01FE 0000 746B 7F09 6163 7469 BC09 6163 407F 003F
090: 003F 0080 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 0000 0000 5001 4EE6
110: AACA 225B 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16D3 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 7037 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 98A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 B9 B5 B4 06 00 00 00 00 00 04 32 00 62 62 79
020: 0A 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 64 FD 00 00 00 00 00 00 00 09 32
040: 00 5B 5B 40 1B 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 62 62 66 0A 00 00 00 00 00 C0 32
070: 00 C8 C8 18 00 00 00 00 00 00 C1 32 00 AB AB 1E
080: 58 01 00 00 00 00 C2 22 00 6C 4F 27 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 64 FD 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 64 FD 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 48 30 01 7B
170: 03 00 01 00 02 91 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 04 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 69

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 C8 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 64 64 64 64 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 33 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 33 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 A7

#5 Příspěvek od **altrok** » 19 čer 2015 11:04

Potvor píše:nyní jdu na ten MBAM...

OK, jak bude doskenovano, dejte log a budeme pokracovat.

Potvor · #6 Příspěvek od **Potvor** » 23 čer 2015 20:55

Zdravím, tak konečně ten log...

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 23.6.2015
Čas skenování: 16:20:08
Protokol: mbam_log.txt
Správce: Ano

Verze: 2.01.6.1022
Databáze malwaru: v2015.06.23.04
Databáze rootkitů: v2015.06.22.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: A1elezAA!tka

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 755310
Uplynulý čas: 5 hod, 29 min, 48 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 2
PUP.Optional.MultiPlug, HKU\S-1-5-21-1304007989-1646877027-1789285458-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}, , [b46c912d8a007eb8561dbaf9b84b3bc5],
PUP.Optional.Spigot.A, HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{86168C67-DBC6-4B63-A722-8B523BC13B3C}, , [47d9813dbad085b191b50cefdc27ba46],

Hodnoty registru: 1
PUP.Optional.Spigot.A, HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{86168C67-DBC6-4B63-A722-8B523BC13B3C}|URL, https://search.yahoo.com/search?fr=chr- ... earchTerms}, , [47d9813dbad085b191b50cefdc27ba46]

Data registru: 1
Broken.OpenCommand, HKCR\regfile\shell\open\command, "regedit.exe" "Dobré: (regedit.exe "Špatné: ("regedit.exe" "%1"),,[ffffffffffffffffffffffffffffffff]")", %4, %5

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 14
PUP.Optional.APNToolBar.A, C:\AdwCleaner\Quarantine\C\ProgramData\ytd video downloader\ytd_installer.exe.vir, , [2ff1932bb8d28aac32452d39c93958a8],
PUP.Optional.Spigot.SID, C:\AdwCleaner\Quarantine\C\Users\A1elezAA!tka\AppData\Roaming\Search Protection\SP.exe.vir, , [19075668424848ee0bb594f4db2b6898],
Hacktool, C:\Users\A1elezAA!tka\Zaloha FLASHGORDON_9.10.2012\programy\Programy\WINDOWS Activatory\Windows Activation Crack\wep\Crypt.dll, , [869ae9d514765fd75dd144874db51be5],
RiskWare.Tool.CK, C:\Users\A1elezAA!tka\Zaloha FLASHGORDON_9.10.2012\programy\Programy\WINDOWS Activatory\Windows XP SP2 Pro & Home Activation Crack_www.technospace.info\Win XP SP2 Activator.exe, , [e53b1ca2f892ac8ab214737559a9dc24],
Trojan.Dropped, C:\Users\A1elezAA!tka\PLOCHA 24.2.2015\Windows XP SP3 CZ 10.4.2011 pro NB (SATA driver)\WinXPSP3-NB-SATA\I386\SVCPACK\.NET.EXE, , [b66a5e60d3b71e18a626b3e94bb7dc24],
PUP.Optional.OpenCandy, C:\Users\A1elezAA!tka\Flash\programy\winamp56_full_emusic-7plus_all.exe, , [f729546a622848eeeecde58e6d9938c8],
PUP.Optional.Conduit, C:\Users\A1elezAA!tka\Programy\bsplayer-setup.exe, , [24fc4b73fd8dee482642e99033d36799],
PUP.Optional.OpenCandy, C:\Users\A1elezAA!tka\Programy\MyPhoneExplorer_Setup_1.8.1.exe, , [1d03f0ce7d0d57df0bb085eeda2ca25e],
PUP.Optional.OpenCandy, C:\Users\A1elezAA!tka\Programy\winamp563_full_emusic-7plus_en-us.exe, , [ca56aa14ccbec4729a2133406f979967],
PUP.Optional.APNToolBar.A, C:\Users\A1elezAA!tka\Programy\YTDSetup.exe, , [8e92516da5e569cd41360b5bd92945bb],
Hacktool, C:\Users\A1elezAA!tka\Programy\WINDOWS Activatory\Windows Activation Crack\wep\Crypt.dll, , [70b07846d5b5ca6c46e8a823ee1411ef],
Keylogger.PerfectKeylogger, C:\Users\A1elezAA!tka\Programy\WINDOWS Activatory\Windows Activation Crack\wep\wepi.dll, , [65bb5b63f09aed49d1cee3e82bd7a060],
RiskWare.Tool.CK, C:\Users\A1elezAA!tka\Programy\WINDOWS Activatory\Windows XP SP2 Pro & Home Activation Crack_www.technospace.info\Win XP SP2 Activator.exe, , [42defbc36822f93d4581de0a3bc733cd],
PUP.Optional.APNToolBar.A, C:\Users\A1elezAA!tka\Downloads\YTDSetup.exe, , [5cc4f8c6b0daa78fc5b2d49225ddc23e],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

#7 Příspěvek od **altrok** » 23 čer 2015 21:39

Je tento operacni system legalni?

Potvor · #8 Příspěvek od **Potvor** » 24 čer 2015 06:47

Ano, je. Ntb byl kupovaný již s nainstalovaným OS W7. Koukal jsem, že to našlo nějaké W-cracky - to bude asi práce mého švagra, který měl ntb půjčený kvůli zprovoznění svého PC...

#9 Příspěvek od **altrok** » 24 čer 2015 08:31

Nalezy MBAMu smazte a dejte pak log FRST (i Addition.txt).

Potvor · #10 Příspěvek od **Potvor** » 24 čer 2015 17:20

FRST zde, Addition v příloze...

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 21-06-2015 01
Ran by Železňátka (administrator) on LENOVO on 24-06-2015 18:14:12
Running from C:\Users\Železňátka\Desktop
Loaded Profiles: Železňátka (Available Profiles: Železňátka)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\Samsung\USB Drivers\26_VIA_driver2\x86\VIAService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.BVRDEMO\MSSQL\Binn\sqlservr.exe
(Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Ignatu Software) C:\Program Files\Ignatu Software\SmartPower\SmartPower.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winampa.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Železňátka\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [EnergyUtility] => C:\Program Files\Lenovo\Energy Management\utility.exe [4114288 2009-09-29] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] => C:\Program Files\Lenovo\Energy Management\Energy Management.exe [5064560 2009-09-29] (Lenovo (Beijing) Limited)
HKLM\...\Run: [WinampAgent] => C:\Program Files\Winamp\winampa.exe [74752 2012-06-28] (Nullsoft, Inc.)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227648 2015-03-15] (AVAST Software)
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5496600 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: F - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {4a149d6a-09f6-11e0-a561-506313dd2c15} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {984cc656-015f-11e0-bcf1-506313dd2c15} - G:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {984cc65f-015f-11e0-bcf1-506313dd2c15} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {be3d2fa5-15ba-11e0-aa7c-88ae1d3c35ff} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {c3eb3487-4504-11e0-820c-001e101f2c0e} - I:\SETUP.EXE
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {fc8b2696-5282-11e2-beef-506313dd2c15} - F:\setup_vmc_lite.exe /checkApplicationPresence
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2014-11-24] (AVAST Software)
ShellIconOverlayIdentifiers: [VeriFace Enc] -> {771C7324-DA80-49D3-8017-753B0AF60951} => C:\windows\system32\IcnOvrly.dll [2010-12-02] ()
CHR HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/search?q={searchT ... d=ie7&rlz=
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1304007989-1646877027-1789285458-1000 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
SearchScopes: HKU\S-1-5-21-1304007989-1646877027-1789285458-1000 -> {86168C67-DBC6-4B63-A722-8B523BC13B3C} URL = https://search.yahoo.com/search?fr=chr- ... earchTerms}
Toolbar: HKU\S-1-5-21-1304007989-1646877027-1789285458-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} http://kitchenplanner.ikea.com/CZ/Core/ ... _Win32.cab
DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} http://kitchenplanner.ikea.com/CZ/Core/ ... _Win32.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Železňátka\AppData\Roaming\Mozilla\Firefox\Profiles\4xuzaas7.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_18_0_0_194.dll [2015-06-23] ()
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-04] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-04] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @parallelgraphics.com/Cortona -> C:\Program Files\Common Files\ParallelGraphics\Cortona\npCortona.dll [2010-08-09] (ParallelGraphics)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL [2007-03-22] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2011-11-22] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2011-11-22] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2011-11-22] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2011-11-22] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2011-11-22] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2011-11-22] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2011-11-22] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll [2012-06-28] (Nullsoft, Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-12-19]
FF HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\Firefox\Extensions: [hideip@hide-ip-soft.com] - C:\windows\vf_hip
FF Extension: HideIP - C:\windows\vf_hip [2012-05-18]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]

Chrome:
=======
CHR Profile: C:\Users\Železňátka\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Železňátka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-11]
CHR Extension: (Google Docs) - C:\Users\Železňátka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-11]
CHR Extension: (Google Drive) - C:\Users\Železňátka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-11]
CHR Extension: (YouTube) - C:\Users\Železňátka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-11]
CHR Extension: (uBlock Origin) - C:\Users\Železňátka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-04-28]
CHR Extension: (Google Search) - C:\Users\Železňátka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-11]
CHR Extension: (Google Sheets) - C:\Users\Železňátka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-11]
CHR Extension: (Avast Online Security) - C:\Users\Železňátka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-03-11]
CHR Extension: (Google Wallet) - C:\Users\Železňátka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-11]
CHR Extension: (Gmail) - C:\Users\Železňátka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-11]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-24]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-24] (AVAST Software)
R2 CDMA Device Service; C:\Program Files\Samsung\USB Drivers\26_VIA_driver2\x86\VIAService.exe [63488 2011-08-02] () [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2012-01-12] (Flexera Software, Inc.)
S3 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [509192 2009-08-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [579400 2009-09-22] (Lenovo Group Limited)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 MSSQL$BVRDEMO; c:\Program Files\Microsoft SQL Server\MSSQL10.BVRDEMO\MSSQL\Binn\sqlservr.exe [43044512 2014-07-12] (Microsoft Corporation)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-14] (Lenovo Group Limited)
R2 SAService; C:\windows\system32\SAsrv.exe [445496 2010-03-25] (Conexant Systems, Inc.)
R2 SmartPower; C:\Program Files\Ignatu Software\SmartPower\SmartPower.exe [22528 2011-07-30] (Ignatu Software) [File not signed]
S4 SQLAgent$BVRDEMO; c:\Program Files\Microsoft SQL Server\MSSQL10.BVRDEMO\MSSQL\Binn\SQLAGENT.EXE [380064 2014-07-12] (Microsoft Corporation)
R2 VMCService; C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [9216 2009-09-18] (Vodafone) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ACPIVPC; C:\windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2014-11-24] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [70384 2014-11-24] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [81768 2014-11-24] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2014-11-24] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [787800 2014-11-24] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [423784 2014-11-24] (AVAST Software)
S2 aswStm; C:\windows\system32\drivers\aswStm.sys [91496 2014-11-24] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [206248 2014-11-24] ()
S3 BEHRINGER_2902; C:\windows\System32\Drivers\BUSB2902.sys [384576 2009-10-30] (BEHRINGER)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
S3 BUSB_AUDIO_WDM; C:\windows\System32\drivers\busbwdm.sys [39488 2009-10-30] (BEHRINGER)
R3 CLEDX; C:\windows\System32\DRIVERS\cledx.sys [33792 2005-05-09] (Team H2O) [File not signed]
R1 dtsoftbus01; C:\windows\System32\DRIVERS\dtsoftbus01.sys [218688 2011-03-02] (DT Soft Ltd)
R1 funfrm; C:\windows\system32\Drivers\funfrm.sys [54800 2010-12-02] ()
S3 hwusbfake; C:\windows\System32\DRIVERS\ewusbfake.sys [100736 2009-07-23] (Huawei Technologies Co., Ltd.)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [23256 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [51928 2015-04-14] (Malwarebytes Corporation)
S3 PcdrNdisuio; C:\windows\System32\DRIVERS\pcdrndisuio.sys [13440 2009-12-17] (Windows (R) Codename Longhorn DDK provider)
S3 pwdrvio; C:\windows\system32\pwdrvio.sys [16472 2010-04-09] ()
S3 pwdspio; C:\windows\system32\pwdspio.sys [11104 2010-04-09] ()
S4 RsFx0105; C:\windows\System32\DRIVERS\RsFx0105.sys [238696 2011-09-22] (Microsoft Corporation)
R3 usbsmi; C:\windows\System32\DRIVERS\SMIksdrv.sys [171776 2009-10-16] (SMI)
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)
U3 BcmSqlStartupSvc; No ImagePath
U2 IAStorDataMgrSvc; No ImagePath
U2 IviRegMgr; No ImagePath
S3 PCDSRVC{42C9C29B-0B422D30-06000000}_0; \??\f:\golden key lenovo diagtools\pcdoctor\pcdsrvc.pkms [X]
U2 RichVideo; No ImagePath
S3 RSUSBSTOR; System32\Drivers\RtsUStor.sys [X]
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-24 18:14 - 2015-06-24 18:14 - 00018234 _____ C:\Users\Železňátka\Desktop\FRST.txt
2015-06-24 18:13 - 2015-06-24 18:14 - 00000000 ____D C:\FRST
2015-06-24 18:12 - 2015-06-24 18:13 - 00112640 _____ (forum.viry.cz) C:\Users\Železňátka\Desktop\FRSTLauncher.exe
2015-06-24 17:55 - 2015-06-24 17:56 - 01148928 _____ (Farbar) C:\Users\Železňátka\Desktop\FRST.exe
2015-06-20 09:19 - 2013-03-08 23:42 - 00000000 ____D C:\Users\Železňátka\Downloads\In Vain - Ænigma (2013)
2015-06-20 08:44 - 2015-06-20 08:52 - 130596730 _____ C:\Users\Železňátka\Downloads\In-Vain---Aenigma-(2013).rar
2015-06-18 19:21 - 2015-06-24 15:25 - 00119512 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-18 19:19 - 2015-06-18 19:19 - 00001024 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-18 19:19 - 2015-06-18 19:19 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-06-18 19:19 - 2015-06-18 19:19 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-06-18 19:19 - 2015-04-14 09:37 - 00092888 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2015-06-18 19:19 - 2015-04-14 09:37 - 00051928 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2015-06-18 19:19 - 2015-04-14 09:37 - 00023256 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2015-06-18 19:12 - 2015-06-18 19:16 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Železňátka\Downloads\mbam-setup-2.1.6.1022.exe
2015-06-18 19:10 - 2015-06-21 21:30 - 00000292 _____ C:\Users\Železňátka\Downloads\DiskInfo.ini
2015-06-18 19:10 - 2015-06-18 19:10 - 00000000 ____D C:\Users\Železňátka\Downloads\Smart
2015-06-18 19:08 - 2014-12-05 22:41 - 02385016 _____ (Crystal Dew World) C:\Users\Železňátka\Downloads\DiskInfo.exe
2015-06-18 19:08 - 2014-12-05 10:23 - 00000000 ____D C:\Users\Železňátka\Downloads\CdiResource
2015-06-18 19:08 - 2014-01-27 21:18 - 00000000 ____D C:\Users\Železňátka\Downloads\License
2015-06-18 19:06 - 2015-06-18 19:08 - 02817875 _____ C:\Users\Železňátka\Downloads\CrystalDiskInfo6_2_2.zip
2015-06-17 21:25 - 2015-06-17 21:25 - 01107968 _____ C:\Users\Železňátka\Downloads\RSIT.exe
2015-06-17 20:51 - 2015-06-23 22:12 - 00003618 _____ C:\windows\PFRO.log
2015-06-16 20:58 - 2015-06-24 15:15 - 00000616 _____ C:\windows\setupact.log
2015-06-16 20:58 - 2015-06-16 20:58 - 00000000 _____ C:\windows\setuperr.log
2015-06-16 20:52 - 2015-06-16 20:52 - 02231296 _____ C:\Users\Železňátka\Desktop\adwcleaner_4.206.exe
2015-06-16 19:55 - 2015-06-16 19:55 - 00026182 _____ C:\Users\Železňátka\Documents\cc_20150616_195536.reg
2015-06-10 17:42 - 2015-06-02 21:35 - 00342728 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-06-10 17:42 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-06-10 17:42 - 2015-05-25 19:00 - 02384384 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-06-10 17:42 - 2015-05-23 05:28 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-06-10 17:42 - 2015-05-23 05:28 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2015-06-10 17:42 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-06-10 17:42 - 2015-05-23 05:15 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-06-10 17:42 - 2015-05-23 05:15 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2015-06-10 17:42 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2015-06-10 17:42 - 2015-05-23 05:13 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-06-10 17:42 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-06-10 17:42 - 2015-05-23 05:09 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-06-10 17:42 - 2015-05-23 05:08 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-06-10 17:42 - 2015-05-23 05:06 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-06-10 17:42 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2015-06-10 17:42 - 2015-05-23 05:05 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2015-06-10 17:42 - 2015-05-23 05:05 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2015-06-10 17:42 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-06-10 17:42 - 2015-05-23 05:00 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2015-06-10 17:42 - 2015-05-23 04:57 - 00418304 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-06-10 17:42 - 2015-05-23 04:52 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2015-06-10 17:42 - 2015-05-23 04:49 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-06-10 17:42 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-06-10 17:42 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-06-10 17:42 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-06-10 17:42 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-06-10 17:42 - 2015-05-23 04:38 - 00685568 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-06-10 17:42 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-06-10 17:42 - 2015-05-23 04:37 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2015-06-10 17:42 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-06-10 17:42 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-06-10 17:42 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-06-10 17:42 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-06-10 17:42 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2015-06-10 17:42 - 2015-04-11 05:07 - 00054656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\stream.sys
2015-06-10 17:41 - 2015-05-25 20:07 - 03989440 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2015-06-10 17:41 - 2015-05-25 20:07 - 03934144 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-06-10 17:41 - 2015-05-25 20:07 - 00137664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-06-10 17:41 - 2015-05-25 20:07 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2015-06-10 17:41 - 2015-05-25 20:04 - 01307648 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 01061376 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00853504 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00641536 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00635392 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00551424 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\sechost.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2015-06-10 17:41 - 2015-05-25 20:01 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2015-06-10 17:41 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\windows\system32\tracerpt.exe
2015-06-10 17:41 - 2015-05-25 20:00 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-06-10 17:41 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\windows\system32\logman.exe
2015-06-10 17:41 - 2015-05-25 20:00 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2015-06-10 17:41 - 2015-05-25 20:00 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2015-06-10 17:41 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\typeperf.exe
2015-06-10 17:41 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\windows\system32\relog.exe
2015-06-10 17:41 - 2015-05-25 20:00 - 00022528 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2015-06-10 17:41 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\diskperf.exe
2015-06-10 17:41 - 2015-05-25 19:57 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-06-10 17:41 - 2015-05-25 19:57 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2015-06-10 17:41 - 2015-05-25 19:55 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-06-10 17:41 - 2015-05-25 19:55 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2015-06-10 17:41 - 2015-05-25 18:53 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll
2015-06-10 17:41 - 2015-05-09 05:14 - 00169984 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2015-06-10 17:41 - 2015-05-09 05:13 - 00868352 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2015-06-10 17:41 - 2015-05-09 05:13 - 00293376 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2015-06-10 17:41 - 2015-05-09 05:12 - 00271360 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2015-06-10 17:41 - 2015-05-09 05:08 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-10 17:41 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-06-10 17:41 - 2015-04-29 20:07 - 11411456 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2015-06-10 17:41 - 2015-04-29 20:07 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2015-06-10 17:41 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2015-06-10 17:41 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2015-06-10 17:41 - 2015-04-29 20:05 - 12625408 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2015-06-10 17:40 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-06-10 17:40 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-06-10 17:40 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-06-10 17:40 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-06-10 17:40 - 2015-05-09 03:59 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-06-10 17:40 - 2015-05-09 03:59 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-10 17:40 - 2015-05-09 03:59 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-06-10 17:40 - 2015-05-09 03:59 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-06-07 17:24 - 2015-05-22 20:03 - 00571392 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2015-06-07 17:24 - 2015-05-22 20:02 - 00879104 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2015-06-07 17:24 - 2015-05-22 20:02 - 00621568 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2015-06-07 17:24 - 2015-05-22 20:02 - 00333824 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2015-06-07 17:24 - 2015-05-22 20:02 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2015-06-07 17:24 - 2015-05-22 20:02 - 00037888 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2015-06-07 17:24 - 2015-05-22 19:58 - 00901120 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2015-06-07 17:24 - 2015-05-21 15:20 - 00163840 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2015-06-04 19:47 - 2015-06-04 20:20 - 492807630 _____ C:\Users\Železňátka\Downloads\Backman-F.---Muž-jménem-Ove-(audiokniha).zip
2015-06-04 16:43 - 2015-06-04 16:43 - 00000000 ____D C:\Users\Železňátka\AppData\Local\GWX
2015-06-01 22:40 - 2015-03-14 11:06 - 00000000 ____D C:\Users\Železňátka\Downloads\Collinsová S. - Hunger games 1. část - Aréna smrti
2015-06-01 21:42 - 2015-06-01 22:28 - 643570760 _____ C:\Users\Železňátka\Downloads\Collinsová-J.---Hunger-Games-1---Aréna-smrti-(audiokniha).rar
2015-05-25 20:56 - 2015-05-25 20:56 - 00000000 ____D C:\Users\Železňátka\Downloads\fot

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-24 18:07 - 2010-12-02 17:32 - 01530437 _____ C:\windows\WindowsUpdate.log
2015-06-24 18:06 - 2009-07-14 04:37 - 00000000 ____D C:\windows\system32\NDF
2015-06-24 18:05 - 2015-02-25 20:20 - 00000000 __SHD C:\Users\Železňátka\AppData\Local\EmieBrowserModeList
2015-06-24 18:05 - 2014-10-03 18:19 - 00000000 __SHD C:\Users\Železňátka\AppData\Local\EmieUserList
2015-06-24 18:05 - 2014-10-03 18:19 - 00000000 __SHD C:\Users\Železňátka\AppData\Local\EmieSiteList
2015-06-24 18:03 - 2015-03-11 21:51 - 00000940 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-24 18:02 - 2012-12-23 15:16 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-06-24 15:39 - 2009-07-14 06:34 - 00018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-06-24 15:39 - 2009-07-14 06:34 - 00018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-06-24 15:26 - 2014-01-09 19:15 - 00000000 ____D C:\Users\Železňátka\AppData\Roaming\XBMC
2015-06-24 15:20 - 2010-12-02 17:42 - 18527229 _____ C:\FaceProv.log
2015-06-24 15:19 - 2015-03-11 21:51 - 00000936 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-24 15:15 - 2009-07-14 06:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-06-23 22:12 - 2009-07-14 04:37 - 00000000 ____D C:\windows\LiveKernelReports
2015-06-23 20:05 - 2012-05-18 18:44 - 00778416 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2015-06-23 20:05 - 2011-05-20 16:32 - 00142512 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2015-06-23 17:06 - 2015-03-11 21:56 - 00002089 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-06-20 09:19 - 2010-08-04 18:37 - 01770788 _____ C:\windows\system32\PerfStringBackup.INI
2015-06-17 21:36 - 2015-02-25 21:17 - 00000000 ____D C:\AdwCleaner
2015-06-17 21:25 - 2015-02-25 20:46 - 00000000 ____D C:\Program Files\trend micro
2015-06-17 20:57 - 2011-01-26 19:14 - 00000000 ____D C:\Users\Železňátka\AppData\Local\Adobe
2015-06-17 20:51 - 2015-05-02 00:18 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-06-11 19:37 - 2009-07-14 04:37 - 00000000 ____D C:\windows\rescache
2015-06-11 17:44 - 2009-07-14 06:33 - 00338416 _____ C:\windows\system32\FNTCACHE.DAT
2015-06-11 17:25 - 2011-02-02 11:52 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-11 17:16 - 2014-04-15 10:36 - 00000000 ____D C:\windows\system32\MRT
2015-06-11 16:57 - 2010-12-17 22:22 - 136900096 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-06-08 16:45 - 2015-01-03 20:37 - 00000000 ____D C:\windows\system32\appraiser
2015-06-08 16:45 - 2014-08-07 18:40 - 00000000 ___SD C:\windows\system32\CompatTel
2015-05-25 20:57 - 2011-02-10 10:13 - 00005015 _____ C:\Users\Železňátka\AppData\Roaming\mainhst.zgh

==================== Files in the root of some directories =======

2011-02-10 10:13 - 2015-05-25 20:57 - 0005015 _____ () C:\Users\Železňátka\AppData\Roaming\mainhst.zgh
2011-07-12 18:31 - 2011-11-04 19:09 - 0007680 _____ () C:\Users\Železňátka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-07-08 14:49 - 2011-08-24 16:35 - 0214699 _____ () C:\Users\Železňátka\AppData\Local\SRDownloader.err
2011-07-08 13:56 - 2014-02-13 10:40 - 0001880 _____ () C:\Users\Železňátka\AppData\Local\SRDownloader.nast
2009-08-28 15:16 - 2009-08-28 15:16 - 0130238 ____R () C:\ProgramData\DeviceManager.xml.rc4
2011-01-28 18:29 - 2011-01-28 18:29 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2013-11-28 22:55 - 2013-11-28 22:55 - 0000088 _____ () C:\ProgramData\profile.xml

Some files in TEMP:
====================
C:\Users\Železňátka\AppData\Local\Temp\Quarantine.exe
C:\Users\Železňátka\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\�elez�tka\Desktop" je 48 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\H2O
C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileConnect
%programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce
"C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VeriFaceManager
C:\Program Files\Lenovo\VeriFace\PManage.exe

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#11 Příspěvek od **altrok** » 24 čer 2015 17:37

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu bude na plose ulozen fixlog, jehoz obsah mi vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:
File: C:\Users\Železňátka\AppData\Roaming\mainhst.zgh
Folder: C:\windows\vf_hip
File: C:\windows\vf_hip
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5496600 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: F - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {4a149d6a-09f6-11e0-a561-506313dd2c15} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {984cc656-015f-11e0-bcf1-506313dd2c15} - G:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {984cc65f-015f-11e0-bcf1-506313dd2c15} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {be3d2fa5-15ba-11e0-aa7c-88ae1d3c35ff} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {c3eb3487-4504-11e0-820c-001e101f2c0e} - I:\SETUP.EXE
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {fc8b2696-5282-11e2-beef-506313dd2c15} - F:\setup_vmc_lite.exe /checkApplicationPresence
CHR HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1304007989-1646877027-1789285458-1000 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
SearchScopes: HKU\S-1-5-21-1304007989-1646877027-1789285458-1000 -> {86168C67-DBC6-4B63-A722-8B523BC13B3C} URL = https://search.yahoo.com/search?fr=chr- ... &type=0&p={searchTerms}

FF Plugin: @microsoft.com/GENUINE -> disabled No File

U3 BcmSqlStartupSvc; No ImagePath
U2 IviRegMgr; No ImagePath
S3 PCDSRVC{42C9C29B-0B422D30-06000000}_0; \??\f:\golden key lenovo diagtools\pcdoctor\pcdsrvc.pkms [X]
U2 RichVideo; No ImagePath
S3 RSUSBSTOR; System32\Drivers\RtsUStor.sys [X]
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]

2015-06-24 18:12 - 2015-06-24 18:13 - 00112640 _____ (forum.viry.cz) C:\Users\Železňátka\Desktop\FRSTLauncher.exe
2015-06-18 19:12 - 2015-06-18 19:16 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Železňátka\Downloads\mbam-setup-2.1.6.1022.exe
2015-06-18 19:10 - 2015-06-21 21:30 - 00000292 _____ C:\Users\Železňátka\Downloads\DiskInfo.ini
2015-06-18 19:10 - 2015-06-18 19:10 - 00000000 ____D C:\Users\Železňátka\Downloads\Smart
2015-06-18 19:08 - 2014-12-05 22:41 - 02385016 _____ (Crystal Dew World) C:\Users\Železňátka\Downloads\DiskInfo.exe
2015-06-18 19:08 - 2014-12-05 10:23 - 00000000 ____D C:\Users\Železňátka\Downloads\CdiResource
2015-06-18 19:08 - 2014-01-27 21:18 - 00000000 ____D C:\Users\Železňátka\Downloads\License
2015-06-18 19:06 - 2015-06-18 19:08 - 02817875 _____ C:\Users\Železňátka\Downloads\CrystalDiskInfo6_2_2.zip
2015-06-17 21:25 - 2015-06-17 21:25 - 01107968 _____ C:\Users\Železňátka\Downloads\RSIT.exe
2015-06-16 20:52 - 2015-06-16 20:52 - 02231296 _____ C:\Users\Železňátka\Desktop\adwcleaner_4.206.exe
2015-06-17 21:36 - 2015-02-25 21:17 - 00000000 ____D C:\AdwCleaner
2015-06-17 21:25 - 2015-02-25 20:46 - 00000000 ____D C:\Program Files\trend micro
2011-01-28 18:29 - 2011-01-28 18:29 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce

Task: {2982394C-9A17-4EB1-9C6E-7581BA41EBB7} - System32\Tasks\{1F979E82-BC81-4640-BF24-8D52A64E3635} => C:\Users\Železňátka\Downloads\pdfcreator-setup.exe [2015-01-29] ()
Task: {31F0BEAD-32E3-40C1-8F5B-534DC0E26284} - System32\Tasks\{BBE730D3-F937-4964-B4A9-2FC19FDA494B} => pcalua.exe -a C:\Users\Železňátka\Downloads\gspot221.exe -d C:\Users\Železňátka\Downloads
Task: {4C5BED29-94BA-4DC3-8AD3-3B8F6046CAB0} - System32\Tasks\AutoKMS => C:\windows\AutoKMS\AutoKMS.exe
Task: {5F93CAF2-E672-4893-80FF-957FE037AB13} - System32\Tasks\{3780F80A-272C-4598-8FDA-A9EDE43DACCB} => C:\Users\Železňátka\Downloads\pdfcreator-setup.exe [2015-01-29] ()
Task: {AC4F9C05-7B1C-4E7D-B996-D31233BFFA64} - System32\Tasks\{3A6740A6-1D38-47CB-9B8A-C9F1157100EF} => pcalua.exe -a C:\Users\Železňátka\Downloads\Vic\setup.exe -d C:\Users\Železňátka\Downloads\Vic
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End

Potvor · #12 Příspěvek od **Potvor** » 24 čer 2015 17:51

Fix result of Farbar Recovery Scan Tool (x86) Version: 21-06-2015 01
Ran by Železňátka at 2015-06-24 18:42:22 Run:1
Running from C:\Users\Železňátka\Desktop
Loaded Profiles: Železňátka (Available Profiles: Železňátka)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
File: C:\Users\Železňátka\AppData\Roaming\mainhst.zgh
Folder: C:\windows\vf_hip
File: C:\windows\vf_hip
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5496600 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: F - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {4a149d6a-09f6-11e0-a561-506313dd2c15} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {984cc656-015f-11e0-bcf1-506313dd2c15} - G:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {984cc65f-015f-11e0-bcf1-506313dd2c15} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {be3d2fa5-15ba-11e0-aa7c-88ae1d3c35ff} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {c3eb3487-4504-11e0-820c-001e101f2c0e} - I:\SETUP.EXE
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\...\MountPoints2: {fc8b2696-5282-11e2-beef-506313dd2c15} - F:\setup_vmc_lite.exe /checkApplicationPresence
CHR HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1304007989-1646877027-1789285458-1000 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
SearchScopes: HKU\S-1-5-21-1304007989-1646877027-1789285458-1000 -> {86168C67-DBC6-4B63-A722-8B523BC13B3C} URL = https://search.yahoo.com/search?fr=chr- ... &type=0&p={searchTerms}

FF Plugin: @microsoft.com/GENUINE -> disabled No File

U3 BcmSqlStartupSvc; No ImagePath
U2 IviRegMgr; No ImagePath
S3 PCDSRVC{42C9C29B-0B422D30-06000000}_0; \??\f:\golden key lenovo diagtools\pcdoctor\pcdsrvc.pkms [X]
U2 RichVideo; No ImagePath
S3 RSUSBSTOR; System32\Drivers\RtsUStor.sys [X]
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]

2015-06-24 18:12 - 2015-06-24 18:13 - 00112640 _____ (forum.viry.cz) C:\Users\Železňátka\Desktop\FRSTLauncher.exe
2015-06-18 19:12 - 2015-06-18 19:16 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Železňátka\Downloads\mbam-setup-2.1.6.1022.exe
2015-06-18 19:10 - 2015-06-21 21:30 - 00000292 _____ C:\Users\Železňátka\Downloads\DiskInfo.ini
2015-06-18 19:10 - 2015-06-18 19:10 - 00000000 ____D C:\Users\Železňátka\Downloads\Smart
2015-06-18 19:08 - 2014-12-05 22:41 - 02385016 _____ (Crystal Dew World) C:\Users\Železňátka\Downloads\DiskInfo.exe
2015-06-18 19:08 - 2014-12-05 10:23 - 00000000 ____D C:\Users\Železňátka\Downloads\CdiResource
2015-06-18 19:08 - 2014-01-27 21:18 - 00000000 ____D C:\Users\Železňátka\Downloads\License
2015-06-18 19:06 - 2015-06-18 19:08 - 02817875 _____ C:\Users\Železňátka\Downloads\CrystalDiskInfo6_2_2.zip
2015-06-17 21:25 - 2015-06-17 21:25 - 01107968 _____ C:\Users\Železňátka\Downloads\RSIT.exe
2015-06-16 20:52 - 2015-06-16 20:52 - 02231296 _____ C:\Users\Železňátka\Desktop\adwcleaner_4.206.exe
2015-06-17 21:36 - 2015-02-25 21:17 - 00000000 ____D C:\AdwCleaner
2015-06-17 21:25 - 2015-02-25 20:46 - 00000000 ____D C:\Program Files\trend micro
2011-01-28 18:29 - 2011-01-28 18:29 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce

Task: {2982394C-9A17-4EB1-9C6E-7581BA41EBB7} - System32\Tasks\{1F979E82-BC81-4640-BF24-8D52A64E3635} => C:\Users\Železňátka\Downloads\pdfcreator-setup.exe [2015-01-29] ()
Task: {31F0BEAD-32E3-40C1-8F5B-534DC0E26284} - System32\Tasks\{BBE730D3-F937-4964-B4A9-2FC19FDA494B} => pcalua.exe -a C:\Users\Železňátka\Downloads\gspot221.exe -d C:\Users\Železňátka\Downloads
Task: {4C5BED29-94BA-4DC3-8AD3-3B8F6046CAB0} - System32\Tasks\AutoKMS => C:\windows\AutoKMS\AutoKMS.exe
Task: {5F93CAF2-E672-4893-80FF-957FE037AB13} - System32\Tasks\{3780F80A-272C-4598-8FDA-A9EDE43DACCB} => C:\Users\Železňátka\Downloads\pdfcreator-setup.exe [2015-01-29] ()
Task: {AC4F9C05-7B1C-4E7D-B996-D31233BFFA64} - System32\Tasks\{3A6740A6-1D38-47CB-9B8A-C9F1157100EF} => pcalua.exe -a C:\Users\Železňátka\Downloads\Vic\setup.exe -d C:\Users\Železňátka\Downloads\Vic
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========================= File: C:\Users\Železňátka\AppData\Roaming\mainhst.zgh ========================

MD5: 37C7B8DFD4BEB5A0C02AE3D367EBF38D
Creation and modification date: 2011-02-10 10:13 - 2015-05-25 20:57
Size: 0005015
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright$creamod:

====== End of File: ======

========================= Folder: C:\windows\vf_hip ========================

2012-05-18 00:02 - 2006-08-30 16:28 - 0000231 _____ () C:\windows\vf_hip\chrome.manifest
2012-05-18 00:02 - 2006-10-13 11:33 - 0000960 _____ () C:\windows\vf_hip\install.rdf
2012-05-18 00:02 - 2012-05-18 00:02 - 0000000 ____D () C:\windows\vf_hip\chrome
2012-05-18 00:02 - 2012-05-18 00:02 - 0000000 ____D () C:\windows\vf_hip\chrome\content
2012-05-18 00:02 - 2007-11-03 17:35 - 0002172 _____ () C:\windows\vf_hip\chrome\content\hideip.js
2012-05-18 00:02 - 2006-09-01 15:02 - 0001178 _____ () C:\windows\vf_hip\chrome\content\hideip.xul
2012-05-18 00:02 - 2012-05-18 00:02 - 0000000 ____D () C:\windows\vf_hip\chrome\skin
2012-05-18 00:02 - 2006-08-30 15:13 - 0000079 _____ () C:\windows\vf_hip\chrome\skin\hideip.css
2012-05-18 00:02 - 2006-08-30 15:12 - 0002247 _____ () C:\windows\vf_hip\chrome\skin\hideip.png

====== End of Folder: ======

========================= File: C:\windows\vf_hip ========================

MD5:
Creation and modification date: 2012-05-18 00:02 - 2012-05-18 00:02
Size: 0000000
Attributes: ----D
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright$creamod:

====== End of File: ======

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\BCSSync => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value removed successfully.
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value removed successfully.
"HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F" => key removed successfully.
"HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4a149d6a-09f6-11e0-a561-506313dd2c15}" => key removed successfully.
HKCR\CLSID\{4a149d6a-09f6-11e0-a561-506313dd2c15} => key not found.
"HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{984cc656-015f-11e0-bcf1-506313dd2c15}" => key removed successfully.
HKCR\CLSID\{984cc656-015f-11e0-bcf1-506313dd2c15} => key not found.
"HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{984cc65f-015f-11e0-bcf1-506313dd2c15}" => key removed successfully.
HKCR\CLSID\{984cc65f-015f-11e0-bcf1-506313dd2c15} => key not found.
"HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{be3d2fa5-15ba-11e0-aa7c-88ae1d3c35ff}" => key removed successfully.
HKCR\CLSID\{be3d2fa5-15ba-11e0-aa7c-88ae1d3c35ff} => key not found.
"HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c3eb3487-4504-11e0-820c-001e101f2c0e}" => key removed successfully.
HKCR\CLSID\{c3eb3487-4504-11e0-820c-001e101f2c0e} => key not found.
"HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fc8b2696-5282-11e2-beef-506313dd2c15}" => key removed successfully.
HKCR\CLSID\{fc8b2696-5282-11e2-beef-506313dd2c15} => key not found.
"HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Policies\Google" => key removed successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\ToolbarSearchProviderProgress => value removed successfully.
"HKU\S-1-5-21-1304007989-1646877027-1789285458-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{86168C67-DBC6-4B63-A722-8B523BC13B3C}" => key removed successfully.
HKCR\CLSID\{86168C67-DBC6-4B63-A722-8B523BC13B3C} => key not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully.
BcmSqlStartupSvc => Service removed successfully.
IviRegMgr => Service removed successfully.
PCDSRVC{42C9C29B-0B422D30-06000000}_0 => Service removed successfully.
RichVideo => Service removed successfully.
RSUSBSTOR => Service removed successfully.
RtsUIR => Service removed successfully.
USBCCID => Service removed successfully.
C:\Users\Železňátka\Desktop\FRSTLauncher.exe => moved successfully.
C:\Users\Železňátka\Downloads\mbam-setup-2.1.6.1022.exe => moved successfully.
C:\Users\Železňátka\Downloads\DiskInfo.ini => moved successfully.
C:\Users\Železňátka\Downloads\Smart => moved successfully.
C:\Users\Železňátka\Downloads\DiskInfo.exe => moved successfully.
C:\Users\Železňátka\Downloads\CdiResource => moved successfully.
C:\Users\Železňátka\Downloads\License => moved successfully.
C:\Users\Železňátka\Downloads\CrystalDiskInfo6_2_2.zip => moved successfully.
C:\Users\Železňátka\Downloads\RSIT.exe => moved successfully.
C:\Users\Železňátka\Desktop\adwcleaner_4.206.exe => moved successfully.
C:\AdwCleaner => moved successfully.
C:\Program Files\trend micro => moved successfully.
C:\ProgramData\ezsidmv.dat => moved successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite => key removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2982394C-9A17-4EB1-9C6E-7581BA41EBB7}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2982394C-9A17-4EB1-9C6E-7581BA41EBB7}" => key removed successfully.
C:\Windows\System32\Tasks\{1F979E82-BC81-4640-BF24-8D52A64E3635} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1F979E82-BC81-4640-BF24-8D52A64E3635}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{31F0BEAD-32E3-40C1-8F5B-534DC0E26284}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{31F0BEAD-32E3-40C1-8F5B-534DC0E26284}" => key removed successfully.
C:\Windows\System32\Tasks\{BBE730D3-F937-4964-B4A9-2FC19FDA494B} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BBE730D3-F937-4964-B4A9-2FC19FDA494B}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{4C5BED29-94BA-4DC3-8AD3-3B8F6046CAB0}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C5BED29-94BA-4DC3-8AD3-3B8F6046CAB0}" => key removed successfully.
C:\Windows\System32\Tasks\AutoKMS => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5F93CAF2-E672-4893-80FF-957FE037AB13}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5F93CAF2-E672-4893-80FF-957FE037AB13}" => key removed successfully.
C:\Windows\System32\Tasks\{3780F80A-272C-4598-8FDA-A9EDE43DACCB} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3780F80A-272C-4598-8FDA-A9EDE43DACCB}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC4F9C05-7B1C-4E7D-B996-D31233BFFA64}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC4F9C05-7B1C-4E7D-B996-D31233BFFA64}" => key removed successfully.
C:\Windows\System32\Tasks\{3A6740A6-1D38-47CB-9B8A-C9F1157100EF} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3A6740A6-1D38-47CB-9B8A-C9F1157100EF}" => key removed successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully.
Hosts restored successfully.
EmptyTemp: => 549.5 MB temporary data Removed.

The system needed a reboot.

==== End of Fixlog 18:44:28 ====

#13 Příspěvek od **altrok** » 24 čer 2015 17:58

Log je ted cisty. Zlepsily se uvodni problemy a zacneme uklizet?

Potvor · #14 Příspěvek od **Potvor** » 24 čer 2015 18:09

Děkuji, zatím to vypadá, že nějaké zlepšení se konalo, ještě prověřím detailněji, ale myslím, že můžeme uklidit

#15 Příspěvek od **altrok** » 24 čer 2015 18:14

Takze jeste uklidime.

Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
Oznacte jen moznost "Remove disinfection tools"
kliknete na Run

Urcite jeste sledujte stav a testujte, pripadne se ozvete.

VIRY.CZ

Prosím kontrolu logu - citelně zpomalený ntb i připojení...

Prosím kontrolu logu - citelně zpomalený ntb i připojení...

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení

Re: Prosím kontrolu logu - citelně zpomalený ntb i připojení