Problém s viry..

Zpráva

polisak1 · #1 Příspěvek od **polisak1** » 30 čer 2015 17:02

Dobrý den, je to nějaký čas, co jsem se pokoušel si stáhnout hru svého dětství a tak jsem za tím šel až mi to do počítače naházelo různé viry a reklamy do prohlížeče, tak pokud by se to dalo nějak vyčistit..

#2 Příspěvek od **Rudy** » 30 čer 2015 17:04

Zdravím!
Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

polisak1 · #3 Příspěvek od **polisak1** » 30 čer 2015 17:16

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-05-2015 01 (ATTENTION: ====> FRST version is 55 days old and could be outdated)
Ran by polis_000 (administrator) on HP-ONDRA on 30-06-2015 18:14:09
Running from C:\Users\polis_000\Desktop\Antivir, Čištění PC
Loaded Profiles: polis_000 (Available profiles: polis_000)
Platform: Windows 8 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Cinema PlusV29.06) C:\Program Files (x86)\CinemaP-1.9cV29.06\fc4bbdef-3a97-4e60-9669-5136cc6f7185-6.exe
(Cinema PlusV29.06) C:\Program Files (x86)\CinemaP-1.9cV29.06\fc4bbdef-3a97-4e60-9669-5136cc6f7185-10.exe
(arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Hewlett-Packard Company) C:\Windows\SysWOW64\flcdlock.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2014-02-12] (IDT, Inc.)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [4352568 2014-08-21] (SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285832 2013-01-02] (Intel Corporation)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-02-07] (PDF Complete Inc)
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-02-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [CLWCSM] => c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe [249096 2013-02-20] (cyberlink)
HKLM-x32\...\Run: [File Sanitizer] => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [13685464 2013-03-06] (Hewlett-Packard)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [336672 2014-05-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [389368 2014-02-17] (IVT Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
AppInit_DLLs: C:\Program Files C:\Program Files C:\Program Files => C:\Program Files C:\Program Files C:\Program Files File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2014-08-21]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.)
Startup: C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [2014-08-11]
ShortcutTarget: GameRanger.lnk -> C:\Users\polis_000\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies)
Startup: C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2014-02-05]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
Startup: C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk [2014-06-05]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-08-06] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.oursurfing.com/?type=hp&ts=1 ... HSPKJLHSPX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/?type=hp&ts=1 ... HSPKJLHSPX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
SearchScopes: HKLM-x32 -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {0AA0A9DA-B740-44DC-87A9-576ED6597F2D} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {1BBC0180-BA98-45C0-9065-E21549A2CB5C} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {1E69876D-F2DF-48B6-AB96-D302FDD17A7B} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {29465B05-9F06-4613-841F-86B3EF606B98} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {4CBC587C-5D96-4531-BD33-39F8897CC92F} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {6148E3A3-8F2B-4E2F-AEEB-4E5E51B8E93E} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {832BBED3-5E60-44D2-841B-046FB1DFD38B} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {A20D7A9C-B757-4E66-AB0E-CFE2891BD56A} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {C7EB21D9-E46F-413F-9507-CF8F692BA25E} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = http://www.oursurfing.com/web/?utm_sour ... earchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-01-28] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-06] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-28] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25] (Eyeo GmbH)
BHO-x32: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated)
BHO-x32: HP File Sanitizer -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-03-06] (Hewlett-Packard)
BHO-x32: No Name -> {51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-30] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-06] (AVAST Software)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-30] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25] (Eyeo GmbH)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
Toolbar: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-01-28] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\SKYPE4~1.DLL [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.oursurfing.com/?type=sc&ts=1 ... HSPKJLHSPX

FireFox:
========
FF ProfilePath: C:\Users\polis_000\AppData\Roaming\Mozilla\Firefox\Profiles\82q5oqbn.default
FF NewTab: about:newtab
FF DefaultSearchEngine: Google
FF DefaultSearchUrl: https://www.google.com/search
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: about:home
FF Keyword.URL: https://www.google.com/search
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_17_0_0_190.dll [2015-06-23] ()
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_190.dll [2015-06-23] ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-03-05] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-10-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-10-30] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll No File
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll No File
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [2013-12-19] ( Garena)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-19] (Google Inc.)
FF SearchPlugin: C:\Users\polis_000\AppData\Roaming\Mozilla\Firefox\Profiles\82q5oqbn.default\searchplugins\google-avast.xml [2014-11-25]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\oursurfing.xml [2015-06-29]
FF Extension: CinemaP-1.9cV29.06 - C:\Users\polis_000\AppData\Roaming\Mozilla\Firefox\Profiles\82q5oqbn.default\Extensions\AVJYFVOD75109374@HCDE39471360.com [2015-06-30]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-12-25]
FF HKLM-x32\...\Firefox\Extensions: [searchffv2@gmail.com] - C:\Users\polis_000\AppData\Roaming\Mozilla\Firefox\Profiles\82q5oqbn.default\extensions\searchffv2@gmail.com
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.oursurfing.com/?type=sc&ts=1 ... HSPKJLHSPX

Chrome:
=======
CHR Profile: C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-25]
CHR Extension: (Google Drive) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-25]
CHR Extension: (Seznam Lištička - Email) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2013-12-25]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2013-12-25]
CHR Extension: (YouTube) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-25]
CHR Extension: (Google Search) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-25]
CHR Extension: (Facebook Unseen) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmdhkalcecemojegheiohcghkamlipof [2014-09-23]
CHR Extension: (Avast Online Security) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-25]
CHR Extension: (Google Wallet) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-25]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-06-07]
CHR Extension: (Gmail) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-25]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-06]
StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.oursurfing.com/?type=sc&ts=1 ... HSPKJLHSPX

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1579880 2014-02-17] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [145656 2013-12-16] (IVT Corporation)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.)
R2 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [556856 2013-03-04] (Hewlett-Packard Company)
S3 HotSpotSrv; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [372920 2013-09-18] (Hewlett-Packard Development Company, L.P.)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [683296 2014-05-16] (Hewlett-Packard Company)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2015-02-14] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [130592 2012-10-22] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166432 2012-10-22] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1855064 2012-11-23] (Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2004488 2015-06-29] (Electronic Arts)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [99616 2014-03-05] (Overwolf LTD)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1135752 2013-02-07] (PDF Complete Inc)
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [76888 2015-05-23] ()
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2013-09-13] (arvato digital services llc)
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [4352568 2014-08-21] (SoftEther VPN Project at University of Tsukuba, Japan.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [340480 2014-02-12] (IDT, Inc.) [File not signed]
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [792016 2015-02-09] (Tunngle.net GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16024 2015-01-31] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36520 2012-09-14] (Advanced Micro Devices, Inc.)
S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [36352 2012-07-03] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\system32\DRIVERS\lgandnetndis64.sys [93184 2012-07-04] (LG Electronics Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-06] ()
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [33968 2012-12-19] (IVT Corporation)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthAvrcpTg; No ImagePath
U4 BthHFEnum; No ImagePath
U4 bthhfhid; No ImagePath
S3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [54064 2013-04-26] (Ralink Corporation)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
S3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [51936 2014-01-20] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 clwcsm; C:\Windows\system32\DRIVERS\clwcsm.sys [42944 2013-02-19] (CyberLink Corporation)
R3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [65752 2013-02-18] (Hewlett-Packard Company)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-08-22] (Disc Soft Ltd)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
S3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-06-28] (Malwarebytes Corporation)
R3 Neo_VPN; C:\Windows\system32\DRIVERS\Neo_VPN.sys [28768 2014-08-21] (SoftEther VPN Project at University of Tsukuba, Japan.)
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2525840 2014-12-31] (MediaTek Inc.)
R0 PinFile; C:\Windows\System32\DRIVERS\PinFile.sys [49856 2013-08-22] (WinMagic Inc.)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-23] (Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1210480 2014-12-24] (Ralink Technology, Corp.)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [448072 2013-02-01] (RTS Corporation)
R0 SDDisk2K; C:\Windows\System32\DRIVERS\SDDisk2K.sys [228544 2013-08-22] (WinMagic Inc.)
R0 SDDToki; C:\Windows\System32\DRIVERS\SDDToki.sys [131264 2013-08-22] (WinMagic Inc.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-01-11] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [32496 2013-01-11] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-06-21] (Duplex Secure Ltd.)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1446904 2013-02-22] (Sunplus)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-02-08] (Hewlett-Packard Development Company, L.P.)
U3 axbnhgyu; C:\Windows\System32\Drivers\axbnhgyu.sys [0 ] (Intel Corporation) <==== ATTENTION (zero size file/folder)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [33968 2012-12-19] (IVT Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-06-30 18:11 - 2015-06-30 18:14 - 00000000 ____D () C:\FRST
2015-06-30 09:43 - 2015-06-30 09:43 - 00002150 _____ () C:\windows\PFRO.log
2015-06-30 09:39 - 2015-06-30 09:39 - 00000000 ____D () C:\zoek_backup
2015-06-30 09:31 - 2015-06-30 09:31 - 00003216 _____ () C:\windows\System32\Tasks\avastBCLRestart_chrome.exe
2015-06-29 10:53 - 2015-06-30 17:53 - 00005538 _____ () C:\windows\Tasks\fc4bbdef-3a97-4e60-9669-5136cc6f7185-6.job
2015-06-29 10:53 - 2015-06-30 17:53 - 00002132 _____ () C:\windows\Tasks\fc4bbdef-3a97-4e60-9669-5136cc6f7185-10_user.job
2015-06-29 10:53 - 2015-06-30 16:58 - 00004178 _____ () C:\windows\Tasks\fc4bbdef-3a97-4e60-9669-5136cc6f7185-3.job
2015-06-29 10:53 - 2015-06-30 16:53 - 00005204 _____ () C:\windows\Tasks\fc4bbdef-3a97-4e60-9669-5136cc6f7185-11.job
2015-06-29 10:53 - 2015-06-30 16:53 - 00005202 _____ () C:\windows\Tasks\fc4bbdef-3a97-4e60-9669-5136cc6f7185-7.job
2015-06-29 10:53 - 2015-06-30 16:53 - 00004178 _____ () C:\windows\Tasks\fc4bbdef-3a97-4e60-9669-5136cc6f7185-4.job
2015-06-29 10:53 - 2015-06-30 09:44 - 00000004 _____ () C:\windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-06-29 10:53 - 2015-06-29 10:53 - 00008542 _____ () C:\windows\System32\Tasks\fc4bbdef-3a97-4e60-9669-5136cc6f7185-6
2015-06-29 10:53 - 2015-06-29 10:53 - 00008208 _____ () C:\windows\System32\Tasks\fc4bbdef-3a97-4e60-9669-5136cc6f7185-11
2015-06-29 10:53 - 2015-06-29 10:53 - 00008206 _____ () C:\windows\System32\Tasks\fc4bbdef-3a97-4e60-9669-5136cc6f7185-7
2015-06-29 10:53 - 2015-06-29 10:53 - 00007182 _____ () C:\windows\System32\Tasks\fc4bbdef-3a97-4e60-9669-5136cc6f7185-4
2015-06-29 10:53 - 2015-06-29 10:53 - 00007182 _____ () C:\windows\System32\Tasks\fc4bbdef-3a97-4e60-9669-5136cc6f7185-3
2015-06-29 10:53 - 2015-06-29 10:53 - 00000000 ____D () C:\Users\polis_000\AppData\Local\globalUpdate
2015-06-29 10:53 - 2015-06-29 10:53 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2015-06-29 10:53 - 2015-06-29 10:53 - 00000000 ____D () C:\Program Files (x86)\7678c9b6-f222-4357-8941-6628823ef37c
2015-06-29 10:52 - 2015-06-29 10:53 - 00000000 ____D () C:\Program Files (x86)\CinemaP-1.9cV29.06
2015-06-29 10:52 - 2015-06-29 10:52 - 00000000 ____D () C:\ProgramData\IHProtectUpDate
2015-06-29 10:52 - 2015-06-29 10:52 - 00000000 _____ () C:\windows\prleth.sys
2015-06-29 10:52 - 2015-06-29 10:52 - 00000000 _____ () C:\windows\hgfs.sys
2015-06-28 20:11 - 2015-06-28 20:11 - 00000000 ____D () C:\Users\polis_000\AppData\Roaming\Google
2015-06-28 20:01 - 2015-06-30 09:43 - 00000272 _____ () C:\windows\SysWOW64\LOCALSERVICE.INI
2015-06-28 20:01 - 2015-06-30 09:43 - 00000043 _____ () C:\windows\SysWOW64\LOCALDEVICE.INI
2015-06-24 21:30 - 2015-06-24 21:30 - 00000000 ____D () C:\ProgramData\Synaptics
2015-06-24 21:30 - 2015-06-24 21:29 - 00751344 _____ (Synaptics Incorporated) C:\windows\system32\SynCOM.dll
2015-06-24 21:30 - 2015-06-24 21:29 - 00566512 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\SynTP.sys
2015-06-24 21:30 - 2015-06-24 21:29 - 00408304 _____ (Synaptics Incorporated) C:\windows\SysWOW64\SynCom.dll
2015-06-24 21:30 - 2015-06-24 21:29 - 00255728 _____ (Synaptics Incorporated) C:\windows\system32\SynTPAPI.dll
2015-06-24 21:30 - 2015-06-24 21:29 - 00212208 _____ (Synaptics Incorporated) C:\windows\system32\SynTPCo20.dll
2015-06-24 21:30 - 2015-06-24 21:29 - 00193928 _____ () C:\windows\system32\pca-manta.bin
2015-06-11 13:15 - 2015-06-30 17:19 - 01752486 _____ () C:\windows\WindowsUpdate.log
2015-06-10 15:09 - 2015-05-22 22:46 - 00700416 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2015-06-10 15:09 - 2015-05-22 22:44 - 01020928 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2015-06-10 15:09 - 2015-05-22 22:44 - 00756736 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2015-06-10 15:09 - 2015-05-22 22:44 - 00422912 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2015-06-10 15:09 - 2015-05-22 22:44 - 00227328 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2015-06-10 15:09 - 2015-05-22 22:44 - 00193536 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2015-06-10 15:09 - 2015-05-22 22:44 - 00045568 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2015-06-10 15:09 - 2015-05-21 15:08 - 01119232 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2015-06-10 15:09 - 2015-05-09 01:39 - 00981504 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2015-06-10 15:09 - 2015-05-08 22:05 - 00668160 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2015-06-10 15:09 - 2015-03-27 10:07 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\cryptcatsvc.dll
2015-06-10 15:08 - 2015-05-28 04:03 - 02237440 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-06-10 15:08 - 2015-05-28 04:03 - 01409024 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-06-10 15:08 - 2015-05-28 04:03 - 00915968 _____ (Microsoft Corporation) C:\windows\system32\uxtheme.dll
2015-06-10 15:08 - 2015-05-28 04:02 - 19291136 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-06-10 15:08 - 2015-05-28 04:01 - 15415808 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-06-10 15:08 - 2015-05-28 04:01 - 03959296 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-06-10 15:08 - 2015-05-28 04:01 - 00949760 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2015-06-10 15:08 - 2015-05-28 04:01 - 00281600 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-06-10 15:08 - 2015-05-28 04:00 - 01509376 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-06-10 15:08 - 2015-05-28 02:45 - 01763328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2015-06-10 15:08 - 2015-05-28 02:45 - 01181696 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2015-06-10 15:08 - 2015-05-28 02:44 - 14383104 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2015-06-10 15:08 - 2015-05-28 02:43 - 13771776 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2015-06-10 15:08 - 2015-05-28 02:43 - 02865152 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2015-06-10 15:08 - 2015-05-28 02:43 - 01441280 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2015-06-10 15:08 - 2015-05-28 02:43 - 00737280 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2015-06-10 15:08 - 2015-05-28 02:43 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2015-06-10 15:07 - 2015-05-28 04:04 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-06-10 15:07 - 2015-05-28 04:03 - 00601600 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-06-10 15:07 - 2015-05-28 04:03 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\UXInit.dll
2015-06-10 15:07 - 2015-05-28 04:02 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-06-10 15:07 - 2015-05-28 04:02 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-06-10 15:07 - 2015-05-28 04:02 - 00097280 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 02656768 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00856064 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00451584 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00255488 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-06-10 15:07 - 2015-05-28 02:45 - 00524288 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2015-06-10 15:07 - 2015-05-28 02:45 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\UXInit.dll
2015-06-10 15:07 - 2015-05-28 02:44 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2015-06-10 15:07 - 2015-05-28 02:44 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2015-06-10 15:07 - 2015-05-28 02:44 - 00080384 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 02055680 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00690176 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00357888 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00226816 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00226816 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00039936 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2015-06-10 15:07 - 2015-05-28 02:24 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-06-10 15:07 - 2015-05-28 02:23 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2015-06-10 15:07 - 2015-05-28 02:22 - 00084480 _____ (Microsoft Corporation) C:\windows\system32\INETRES.dll
2015-06-10 15:07 - 2015-05-28 02:20 - 00084480 _____ (Microsoft Corporation) C:\windows\SysWOW64\INETRES.dll
2015-06-10 15:07 - 2015-05-28 02:00 - 00441856 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2015-06-10 15:07 - 2015-05-28 01:55 - 00361984 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2015-06-10 15:07 - 2015-05-28 00:14 - 00534528 _____ (Microsoft Corporation) C:\windows\SysWOW64\uxtheme.dll
2015-06-10 15:07 - 2015-05-21 20:07 - 04067840 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-06-10 15:07 - 2015-04-25 05:41 - 00541696 _____ (Microsoft Corporation) C:\windows\SysWOW64\comctl32.dll
2015-06-10 15:07 - 2015-04-25 01:13 - 00652288 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2015-06-10 15:07 - 2015-04-09 00:05 - 00410336 _____ () C:\windows\system32\ApnDatabase.xml
2015-06-09 19:58 - 2015-06-30 17:58 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-06-30 18:14 - 2013-12-25 11:24 - 00000000 ____D () C:\Users\polis_000\Desktop\Antivir, Čištění PC
2015-06-30 18:05 - 2013-12-24 21:11 - 00000000 ____D () C:\Users\polis_000\AppData\Roaming\Skype
2015-06-30 18:00 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\system32\sru
2015-06-30 17:59 - 2015-05-19 14:54 - 00000978 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-30 14:59 - 2015-05-19 14:54 - 00000974 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-30 13:14 - 2014-03-16 17:36 - 00000000 ____D () C:\Users\polis_000\AppData\Local\LogMeIn Hamachi
2015-06-30 09:47 - 2014-11-25 15:16 - 00000000 ____D () C:\Users\polis_000\AppData\Roaming\FileAdvisor
2015-06-30 09:44 - 2015-01-05 15:20 - 00001060 _____ () C:\windows\SysWOW64\bscs.ini
2015-06-30 09:44 - 2014-08-21 19:09 - 00000000 ____D () C:\Program Files\SoftEther VPN Client
2015-06-30 09:44 - 2013-04-29 07:58 - 00000000 ____D () C:\ProgramData\PDFC
2015-06-30 09:43 - 2012-07-26 09:22 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-06-30 09:42 - 2012-07-26 07:26 - 00262144 ___SH () C:\windows\system32\config\BBI
2015-06-30 09:31 - 2014-01-19 00:19 - 00001058 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-06-29 21:01 - 2014-11-24 22:01 - 00003518 _____ () C:\windows\System32\Tasks\FileAdvisorCheck
2015-06-29 21:01 - 2014-11-24 22:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Type Advisor
2015-06-29 21:01 - 2014-11-24 22:01 - 00000000 ____D () C:\Program Files (x86)\File Type Advisor
2015-06-29 20:53 - 2014-03-31 19:50 - 00000000 ____D () C:\ProgramData\Origin
2015-06-29 19:32 - 2014-03-31 19:53 - 00000000 ____D () C:\Users\polis_000\AppData\Roaming\Origin
2015-06-29 19:32 - 2014-03-31 19:50 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-06-29 10:53 - 2014-07-26 22:31 - 00000000 ____D () C:\Program Files (x86)\2K Games
2015-06-29 10:51 - 2013-12-24 19:57 - 00001296 _____ () C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-06-28 20:11 - 2013-12-25 11:06 - 00000000 ____D () C:\Users\polis_000\AppData\Local\Google
2015-06-28 20:01 - 2015-05-16 19:36 - 00000366 _____ () C:\windows\Tasks\HPCeeScheduleForpolis_000.job
2015-06-28 19:45 - 2014-02-03 23:20 - 00000000 ___RD () C:\Users\polis_000\Desktop\Písničky
2015-06-28 19:29 - 2014-07-09 17:39 - 00003188 _____ () C:\windows\System32\Tasks\HPCeeScheduleForpolis_000
2015-06-28 19:29 - 2013-12-24 19:55 - 00000000 ____D () C:\Users\polis_000
2015-06-28 12:55 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\system32\NDF
2015-06-28 12:43 - 2014-05-24 09:34 - 00129752 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-28 12:41 - 2013-12-24 21:36 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-06-28 12:34 - 2014-05-15 16:45 - 00000000 ____D () C:\Users\polis_000\Desktop\Práce do školy
2015-06-28 12:33 - 2013-12-24 20:06 - 00000000 ___RD () C:\Users\polis_000\Desktop\Hry
2015-06-24 21:32 - 2013-06-20 12:44 - 00002990 _____ () C:\windows\System32\Tasks\Synaptics TouchPad Enhancements
2015-06-24 21:30 - 2012-10-12 05:24 - 00000000 ____D () C:\SWSETUP
2015-06-24 17:11 - 2012-07-26 09:59 - 00000000 ____D () C:\windows\CbsTemp
2015-06-24 16:45 - 2013-12-25 16:18 - 00000052 _____ () C:\windows\SysWOW64\DOErrors.log
2015-06-23 19:59 - 2013-12-25 20:06 - 00003802 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2015-06-21 18:40 - 2014-01-07 17:10 - 00000000 ____D () C:\Users\polis_000\Desktop\Filmy
2015-06-21 10:58 - 2013-12-25 12:02 - 00000000 ____D () C:\Warcraft III+Frozen Throne
2015-06-20 05:48 - 2014-11-14 15:48 - 00792024 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2015-06-20 05:48 - 2014-11-14 15:48 - 00177624 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-18 20:26 - 2013-12-24 20:13 - 00000000 ___RD () C:\Users\polis_000\Desktop\Různý programy
2015-06-18 17:31 - 2014-03-31 15:17 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2015-06-17 14:02 - 2015-05-24 02:54 - 00000000 ____D () C:\Counter-Strike 1.6
2015-06-14 20:57 - 2013-12-24 21:11 - 00000000 ____D () C:\ProgramData\Skype
2015-06-13 18:55 - 2014-06-14 16:58 - 00000000 ____D () C:\Users\polis_000\Documents\Bus Driver
2015-06-13 18:25 - 2014-07-24 00:18 - 00000000 ____D () C:\Users\polis_000\Documents\Euro Truck Simulator 2
2015-06-11 20:17 - 2015-03-14 15:59 - 00513512 _____ () C:\windows\system32\FNTCACHE.DAT
2015-06-11 20:12 - 2015-04-17 20:16 - 00000000 ___SD () C:\windows\system32\CompatTel
2015-06-11 20:12 - 2015-04-17 20:16 - 00000000 ____D () C:\windows\system32\appraiser
2015-06-11 13:52 - 2014-05-29 14:45 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-06-11 13:48 - 2013-12-31 12:02 - 00000000 ____D () C:\windows\system32\MRT
2015-06-11 13:25 - 2013-12-31 12:02 - 140135120 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-06-11 13:03 - 2014-07-09 17:27 - 00000000 ____D () C:\windows\Minidump
2015-06-10 21:30 - 2014-11-06 18:09 - 00000058 _____ () C:\Users\polis_000\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2015-06-09 07:58 - 2014-11-22 00:02 - 00000000 ___HD () C:\$Windows.~BT
2015-06-09 07:38 - 2014-01-18 10:38 - 00091443 _____ () C:\windows\diagwrn.xml
2015-06-09 07:38 - 2014-01-18 10:38 - 00091443 _____ () C:\windows\diagerr.xml
2015-06-09 07:38 - 2012-07-26 07:26 - 00262144 ___SH () C:\windows\system32\config\ELAM
2015-06-09 07:29 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\Registration
2015-06-02 21:55 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\AUInstallAgent
2015-06-02 21:04 - 2013-12-24 20:04 - 00003600 _____ () C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2428774486-1446802013-3078816245-1002
2015-06-01 21:06 - 2013-12-24 19:56 - 00000000 ____D () C:\Users\polis_000\AppData\Local\Packages

==================== Files in the root of some directories =======

2014-12-18 16:09 - 2014-12-18 16:09 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\022E937.html
2014-12-12 22:56 - 2014-12-12 22:56 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\0566ECC.html
2014-12-18 17:16 - 2014-12-18 17:16 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\3A9A31C.html
2014-12-28 13:16 - 2014-12-28 13:16 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\7430B90.html
2014-12-28 22:21 - 2014-12-28 22:21 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\956E5A2.html
2014-12-29 20:31 - 2014-12-29 20:31 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\ABF3BD4.html
2014-12-28 23:38 - 2014-12-28 23:38 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\DAE9927.html
2014-12-30 00:01 - 2014-12-30 00:01 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\ED43F31.html
2013-12-25 15:39 - 2014-03-12 20:16 - 0045270 _____ () C:\Users\polis_000\AppData\Roaming\room_v3.dat
2014-03-30 16:16 - 2014-03-30 16:16 - 0003584 _____ () C:\Users\polis_000\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-06 18:09 - 2015-06-10 21:30 - 0000058 _____ () C:\Users\polis_000\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat

Some content of TEMP:
====================
C:\Users\polis_000\AppData\Local\Temp\Call Of Duty Finest Hour Pc Download__10924_i1545050862_il52661.exe
C:\Users\polis_000\AppData\Local\Temp\Call Of Duty Finest Hour Pc Download__10924_i1545050863_il52661.exe
C:\Users\polis_000\AppData\Local\Temp\Call Of Duty Finest Hour Pc Download__10924_i1545050864_il52661.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-06-28 13:11

==================== End Of Log ============================

#4 Příspěvek od **Rudy** » 30 čer 2015 19:33

Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

polisak1 · #5 Příspěvek od **polisak1** » 01 črc 2015 16:53

# AdwCleaner v4.203 - Log vytvořen 01/07/2015 v 17:44:55
# Aktualizováno 30/04/2015 by Xplode
# Databáze : 2015-06-29.1 [Server]
# Operační system : Windows 8 (x64)
# Uživatelské jméno : polis_000 - HP-ONDRA
# Spuštěno z : C:\Users\polis_000\Desktop\Antivir, Čištění PC\adwcleaner_4.203.exe
# Nastavení : Čištění

***** [ Služby ] *****

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\IHProtectUpDate
Složka Smazáno : C:\Program Files (x86)\globalUpdate
Složka Smazáno : C:\Program Files (x86)\CinemaP-1.9cV29.06
Složka Smazáno : C:\Users\polis_000\AppData\Local\globalUpdate
Soubor Smazáno : C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fjpdnoojnohifgekbkmnfbiobhcbedka
Soubor Smazáno : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\oursurfing.xml

***** [ Naplánované úlohy ] *****

Úloha Smazáno : fc4bbdef-3a97-4e60-9669-5136cc6f7185-10_user
Úloha Smazáno : fc4bbdef-3a97-4e60-9669-5136cc6f7185-11
Úloha Smazáno : fc4bbdef-3a97-4e60-9669-5136cc6f7185-3
Úloha Smazáno : fc4bbdef-3a97-4e60-9669-5136cc6f7185-4
Úloha Smazáno : fc4bbdef-3a97-4e60-9669-5136cc6f7185-6
Úloha Smazáno : fc4bbdef-3a97-4e60-9669-5136cc6f7185-7

***** [ Zástupci ] *****

Zástupce Vyléčeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TopCD\Bus Driver\Spustit Bus Driver.lnk
Zástupce Vyléčeno : C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Zástupce Vyléčeno : C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Imperia Online\Imperia Online.lnk
Zástupce Vyléčeno : C:\Users\polis_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Zástupce Vyléčeno : C:\Users\polis_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Imperia Online.lnk
Zástupce Vyléčeno : C:\Users\polis_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

***** [ Registry ] *****

Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [searchffv2@gmail.com]
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Klíč Smazáno : HKCU\Software\Mozilla\Extends
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
Klíč Smazáno : HKLM\SOFTWARE\4a10006d-ea5f-45cf-9294-2fc798caa635
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Klíč Smazáno : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Data Obnoveno : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0AA0A9DA-B740-44DC-87A9-576ED6597F2D}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1BBC0180-BA98-45C0-9065-E21549A2CB5C}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1E69876D-F2DF-48B6-AB96-D302FDD17A7B}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{29465B05-9F06-4613-841F-86B3EF606B98}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4CBC587C-5D96-4531-BD33-39F8897CC92F}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6148E3A3-8F2B-4E2F-AEEB-4E5E51B8E93E}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{832BBED3-5E60-44D2-841B-046FB1DFD38B}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A20D7A9C-B757-4E66-AB0E-CFE2891BD56A}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C7EB21D9-E46F-413F-9507-CF8F692BA25E}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
Klíč Smazáno : HKCU\Software\APN PIP
Klíč Smazáno : HKCU\Software\AskPartnerNetwork
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\GlobalUpdate
Klíč Smazáno : HKCU\Software\simplytech
Klíč Smazáno : HKCU\Software\TNT2
Klíč Smazáno : HKCU\Software\CinemaP-1.9cV29.06
Klíč Smazáno : HKCU\Software\CinemaP-1.9cV29.06-nv
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Crossrider
Klíč Smazáno : HKLM\SOFTWARE\AskPartnerNetwork
Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\SupDp
Klíč Smazáno : HKLM\SOFTWARE\SupTab
Klíč Smazáno : HKLM\SOFTWARE\supWindowsMangerProtect
Klíč Smazáno : HKLM\SOFTWARE\IHProtect
Klíč Smazáno : HKLM\SOFTWARE\oursurfingSoftware
Klíč Smazáno : HKLM\SOFTWARE\searchult
Klíč Smazáno : HKLM\SOFTWARE\CinemaP-1.9cV29.06
Klíč Smazáno : HKLM\SOFTWARE\CinemaP-1.9cV29.06-nv
Klíč Smazáno : HKU\.DEFAULT\Software\CinemaP-1.9cV29.06-nv
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CinemaP-1.9cV29.06
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\globalupdate.exe

***** [ Prohlížeče ] *****

-\\ Internet Explorer v10.0.9200.17377

Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Nastavení Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v26.0 (cs)

-\\ Google Chrome v43.0.2357.130

[C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://www.oursurfing.com/web/?type=ds&ts=1435 ... earchTerms}

-\\ Comodo Dragon v33.1.0.1

-\\ Chrome Canary v

*************************

AdwCleaner[R0].txt - [12507 bytů] - [01/07/2015 17:42:44]
AdwCleaner[S0].txt - [9213 bytů] - [01/07/2015 17:44:55]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9271 bytů] ##########

#6 Příspěvek od **Rudy** » 01 črc 2015 17:41

Dejte nový log FRST.

polisak1 · #7 Příspěvek od **polisak1** » 01 črc 2015 18:47

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:28-06-2015 01
Ran by polis_000 (administrator) on HP-ONDRA on 01-07-2015 19:45:36
Running from C:\Users\polis_000\Desktop\Antivir, Čištění PC
Loaded Profiles: polis_000 (Available Profiles: polis_000)
Platform: Windows 8 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Hewlett-Packard Company) C:\Windows\SysWOW64\flcdlock.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2014-02-12] (IDT, Inc.)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [4352568 2014-08-21] (SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285832 2013-01-02] (Intel Corporation)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-02-07] (PDF Complete Inc)
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-02-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [CLWCSM] => c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe [249096 2013-02-20] (cyberlink)
HKLM-x32\...\Run: [File Sanitizer] => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [13685464 2013-03-06] (Hewlett-Packard)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-07-01] (Avast Software s.r.o.)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [336672 2014-05-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [389368 2014-02-17] (IVT Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
AppInit_DLLs: C:\Program Files C:\Program Files C:\Program Files => C:\Program Files C:\Program Files C:\Program Files File not found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2014-08-21]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.)
Startup: C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [2014-08-11]
ShortcutTarget: GameRanger.lnk -> C:\Users\polis_000\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies)
Startup: C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2014-02-05]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
Startup: C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk [2014-06-05]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-01] (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-01-28] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-01] (Avast Software s.r.o.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-28] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25] (Eyeo GmbH)
BHO-x32: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated)
BHO-x32: HP File Sanitizer -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-03-06] (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-30] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-01] (Avast Software s.r.o.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-30] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25] (Eyeo GmbH)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
Toolbar: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-01-28] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\SKYPE4~1.DLL [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{73B97BF5-754A-4CE1-8940-0612BB632EE6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7942DDC4-97AF-4CA9-9B31-5B35902F9F76}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{E880B2E5-3A5B-4C07-A509-33E32657337E}: [DhcpNameServer] 7.254.254.254

FireFox:
========
FF ProfilePath: C:\Users\polis_000\AppData\Roaming\Mozilla\Firefox\Profiles\82q5oqbn.default
FF NewTab: about:newtab
FF DefaultSearchEngine: Google
FF DefaultSearchUrl: https://www.google.com/search
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: about:home
FF Keyword.URL: https://www.google.com/search
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_17_0_0_190.dll [2015-06-23] ()
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_190.dll [2015-06-23] ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-03-05] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-10-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-10-30] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [2013-12-19] ( Garena)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-19] (Google Inc.)
FF SearchPlugin: C:\Users\polis_000\AppData\Roaming\Mozilla\Firefox\Profiles\82q5oqbn.default\searchplugins\google-avast.xml [2014-11-25]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-12-25]

Chrome:
=======
CHR Profile: C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-25]
CHR Extension: (Google Drive) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-25]
CHR Extension: (Seznam Lištička - Email) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2013-12-25]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2013-12-25]
CHR Extension: (YouTube) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-25]
CHR Extension: (Google Search) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-25]
CHR Extension: (Facebook Unseen) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmdhkalcecemojegheiohcghkamlipof [2014-09-23]
CHR Extension: (Avast Online Security) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-25]
CHR Extension: (Google Wallet) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-25]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-06-07]
CHR Extension: (Gmail) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-25]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-01]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-07-01] (Avast Software s.r.o.)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4034896 2015-07-01] (Avast Software)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1579880 2014-02-17] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [145656 2013-12-16] (IVT Corporation)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.)
R2 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [556856 2013-03-04] (Hewlett-Packard Company)
S3 HotSpotSrv; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [372920 2013-09-18] (Hewlett-Packard Development Company, L.P.)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [683296 2014-05-16] (Hewlett-Packard Company)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2015-02-14] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [130592 2012-10-22] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166432 2012-10-22] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1855064 2012-11-23] (Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2004488 2015-06-29] (Electronic Arts)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [99616 2014-03-05] (Overwolf LTD)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1135752 2013-02-07] (PDF Complete Inc)
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [76888 2015-05-23] ()
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2013-09-13] (arvato digital services llc)
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [4352568 2014-08-21] (SoftEther VPN Project at University of Tsukuba, Japan.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [340480 2014-02-12] (IDT, Inc.) [File not signed]
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [792016 2015-02-09] (Tunngle.net GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16024 2015-01-31] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36520 2012-09-14] (Advanced Micro Devices, Inc.)
S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [36352 2012-07-03] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\system32\DRIVERS\lgandnetndis64.sys [93184 2012-07-04] (LG Electronics Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-07-01] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-07-01] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-07-01] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-07-01] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-07-01] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-07-01] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-07-01] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-07-01] ()
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [33968 2012-12-19] (IVT Corporation)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthAvrcpTg; No ImagePath
U4 BthHFEnum; No ImagePath
U4 bthhfhid; No ImagePath
S3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [54064 2013-04-26] (Ralink Corporation)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
S3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [51936 2014-01-20] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 clwcsm; C:\Windows\system32\DRIVERS\clwcsm.sys [42944 2013-02-19] (CyberLink Corporation)
R3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [65752 2013-02-18] (Hewlett-Packard Company)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-08-22] (Disc Soft Ltd)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
S3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-06-28] (Malwarebytes Corporation)
R3 Neo_VPN; C:\Windows\system32\DRIVERS\Neo_VPN.sys [28768 2014-08-21] (SoftEther VPN Project at University of Tsukuba, Japan.)
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2525840 2014-12-31] (MediaTek Inc.)
R0 PinFile; C:\Windows\System32\DRIVERS\PinFile.sys [49856 2013-08-22] (WinMagic Inc.)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-23] (Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1210480 2014-12-24] (Ralink Technology, Corp.)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [448072 2013-02-01] (RTS Corporation)
R0 SDDisk2K; C:\Windows\System32\DRIVERS\SDDisk2K.sys [228544 2013-08-22] (WinMagic Inc.)
R0 SDDToki; C:\Windows\System32\DRIVERS\SDDToki.sys [131264 2013-08-22] (WinMagic Inc.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-01-11] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [32496 2013-01-11] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-06-21] (Duplex Secure Ltd.)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1446904 2013-02-22] (Sunplus)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-07-01] (Avast Software)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-02-08] (Hewlett-Packard Development Company, L.P.)
U3 a9398lvr; C:\Windows\System32\Drivers\a9398lvr.sys [0 ] (Intel Corporation) <==== ATTENTION (zero byte File/Folder)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [33968 2012-12-19] (IVT Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-01 17:52 - 2015-07-01 17:53 - 00000000 ____D C:\windows\SysWOW64\vbox
2015-07-01 17:52 - 2015-07-01 17:53 - 00000000 ____D C:\windows\system32\vbox
2015-07-01 17:45 - 2015-07-01 17:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-07-01 17:44 - 2015-07-01 17:44 - 00364472 _____ (Avast Software s.r.o.) C:\windows\system32\aswBoot.exe
2015-07-01 17:44 - 2015-07-01 17:44 - 00043112 _____ (Avast Software s.r.o.) C:\windows\avastSS.scr
2015-07-01 17:42 - 2015-07-01 17:45 - 00000000 ____D C:\AdwCleaner
2015-06-30 18:11 - 2015-07-01 19:45 - 00000000 ____D C:\FRST
2015-06-30 09:43 - 2015-07-01 17:47 - 00003976 _____ C:\windows\PFRO.log
2015-06-30 09:39 - 2015-06-30 09:39 - 00000000 ____D C:\zoek_backup
2015-06-30 09:31 - 2015-07-01 17:38 - 00003216 _____ C:\windows\System32\Tasks\avastBCLRestart_chrome.exe
2015-06-29 10:53 - 2015-07-01 17:34 - 00000004 _____ C:\windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-06-29 10:53 - 2015-06-29 10:53 - 00000000 ____D C:\Program Files (x86)\7678c9b6-f222-4357-8941-6628823ef37c
2015-06-29 10:52 - 2015-06-29 10:52 - 00000000 _____ C:\windows\prleth.sys
2015-06-29 10:52 - 2015-06-29 10:52 - 00000000 _____ C:\windows\hgfs.sys
2015-06-28 20:11 - 2015-06-28 20:11 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\Google
2015-06-28 20:01 - 2015-07-01 17:48 - 00000272 _____ C:\windows\SysWOW64\LOCALSERVICE.INI
2015-06-28 20:01 - 2015-07-01 17:48 - 00000043 _____ C:\windows\SysWOW64\LOCALDEVICE.INI
2015-06-24 21:30 - 2015-06-24 21:30 - 00000000 ____D C:\ProgramData\Synaptics
2015-06-24 21:30 - 2015-06-24 21:29 - 00751344 _____ (Synaptics Incorporated) C:\windows\system32\SynCOM.dll
2015-06-24 21:30 - 2015-06-24 21:29 - 00566512 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\SynTP.sys
2015-06-24 21:30 - 2015-06-24 21:29 - 00408304 _____ (Synaptics Incorporated) C:\windows\SysWOW64\SynCom.dll
2015-06-24 21:30 - 2015-06-24 21:29 - 00255728 _____ (Synaptics Incorporated) C:\windows\system32\SynTPAPI.dll
2015-06-24 21:30 - 2015-06-24 21:29 - 00212208 _____ (Synaptics Incorporated) C:\windows\system32\SynTPCo20.dll
2015-06-24 21:30 - 2015-06-24 21:29 - 00193928 _____ C:\windows\system32\pca-manta.bin
2015-06-11 13:15 - 2015-07-01 19:01 - 01850480 _____ C:\windows\WindowsUpdate.log
2015-06-10 15:09 - 2015-05-22 22:46 - 00700416 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2015-06-10 15:09 - 2015-05-22 22:44 - 01020928 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2015-06-10 15:09 - 2015-05-22 22:44 - 00756736 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2015-06-10 15:09 - 2015-05-22 22:44 - 00422912 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2015-06-10 15:09 - 2015-05-22 22:44 - 00227328 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2015-06-10 15:09 - 2015-05-22 22:44 - 00193536 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2015-06-10 15:09 - 2015-05-22 22:44 - 00045568 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2015-06-10 15:09 - 2015-05-21 15:08 - 01119232 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2015-06-10 15:09 - 2015-05-09 01:39 - 00981504 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2015-06-10 15:09 - 2015-05-08 22:05 - 00668160 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2015-06-10 15:09 - 2015-03-27 10:07 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\cryptcatsvc.dll
2015-06-10 15:08 - 2015-05-28 04:03 - 02237440 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-06-10 15:08 - 2015-05-28 04:03 - 01409024 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-06-10 15:08 - 2015-05-28 04:03 - 00915968 _____ (Microsoft Corporation) C:\windows\system32\uxtheme.dll
2015-06-10 15:08 - 2015-05-28 04:02 - 19291136 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-06-10 15:08 - 2015-05-28 04:01 - 15415808 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-06-10 15:08 - 2015-05-28 04:01 - 03959296 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-06-10 15:08 - 2015-05-28 04:01 - 00949760 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2015-06-10 15:08 - 2015-05-28 04:01 - 00281600 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-06-10 15:08 - 2015-05-28 04:00 - 01509376 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-06-10 15:08 - 2015-05-28 02:45 - 01763328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2015-06-10 15:08 - 2015-05-28 02:45 - 01181696 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2015-06-10 15:08 - 2015-05-28 02:44 - 14383104 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2015-06-10 15:08 - 2015-05-28 02:43 - 13771776 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2015-06-10 15:08 - 2015-05-28 02:43 - 02865152 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2015-06-10 15:08 - 2015-05-28 02:43 - 01441280 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2015-06-10 15:08 - 2015-05-28 02:43 - 00737280 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2015-06-10 15:08 - 2015-05-28 02:43 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2015-06-10 15:07 - 2015-05-28 04:04 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-06-10 15:07 - 2015-05-28 04:03 - 00601600 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-06-10 15:07 - 2015-05-28 04:03 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\UXInit.dll
2015-06-10 15:07 - 2015-05-28 04:02 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-06-10 15:07 - 2015-05-28 04:02 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-06-10 15:07 - 2015-05-28 04:02 - 00097280 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 02656768 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00856064 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00451584 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00255488 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-06-10 15:07 - 2015-05-28 04:01 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-06-10 15:07 - 2015-05-28 02:45 - 00524288 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2015-06-10 15:07 - 2015-05-28 02:45 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\UXInit.dll
2015-06-10 15:07 - 2015-05-28 02:44 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2015-06-10 15:07 - 2015-05-28 02:44 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2015-06-10 15:07 - 2015-05-28 02:44 - 00080384 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 02055680 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00690176 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00357888 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00226816 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00226816 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00039936 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2015-06-10 15:07 - 2015-05-28 02:43 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2015-06-10 15:07 - 2015-05-28 02:24 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-06-10 15:07 - 2015-05-28 02:23 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2015-06-10 15:07 - 2015-05-28 02:22 - 00084480 _____ (Microsoft Corporation) C:\windows\system32\INETRES.dll
2015-06-10 15:07 - 2015-05-28 02:20 - 00084480 _____ (Microsoft Corporation) C:\windows\SysWOW64\INETRES.dll
2015-06-10 15:07 - 2015-05-28 02:00 - 00441856 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2015-06-10 15:07 - 2015-05-28 01:55 - 00361984 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2015-06-10 15:07 - 2015-05-28 00:14 - 00534528 _____ (Microsoft Corporation) C:\windows\SysWOW64\uxtheme.dll
2015-06-10 15:07 - 2015-05-21 20:07 - 04067840 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-06-10 15:07 - 2015-04-25 05:41 - 00541696 _____ (Microsoft Corporation) C:\windows\SysWOW64\comctl32.dll
2015-06-10 15:07 - 2015-04-25 01:13 - 00652288 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2015-06-10 15:07 - 2015-04-09 00:05 - 00410336 _____ C:\windows\system32\ApnDatabase.xml
2015-06-09 19:58 - 2015-07-01 18:58 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-01 19:45 - 2013-12-25 11:24 - 00000000 ____D C:\Users\polis_000\Desktop\Antivir, Čištění PC
2015-07-01 19:31 - 2013-12-24 21:11 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\Skype
2015-07-01 19:25 - 2014-03-31 19:50 - 00000000 ____D C:\ProgramData\Origin
2015-07-01 19:02 - 2012-07-26 10:12 - 00000000 ____D C:\windows\system32\sru
2015-07-01 18:59 - 2015-05-19 14:54 - 00000978 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-01 17:55 - 2014-11-25 15:16 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\FileAdvisor
2015-07-01 17:51 - 2015-05-19 14:54 - 00000974 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-01 17:49 - 2014-08-21 19:09 - 00000000 ____D C:\Program Files\SoftEther VPN Client
2015-07-01 17:48 - 2015-01-05 15:20 - 00001060 _____ C:\windows\SysWOW64\bscs.ini
2015-07-01 17:48 - 2013-12-25 11:14 - 00003924 _____ C:\windows\System32\Tasks\avast! Emergency Update
2015-07-01 17:48 - 2013-12-25 11:06 - 00442264 _____ (Avast Software s.r.o.) C:\windows\system32\Drivers\aswsp.sys
2015-07-01 17:48 - 2013-04-29 07:58 - 00000000 ____D C:\ProgramData\PDFC
2015-07-01 17:48 - 2012-07-26 09:22 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-07-01 17:45 - 2014-07-10 17:29 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Imperia Online
2015-07-01 17:45 - 2013-12-24 19:57 - 00000956 _____ C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-07-01 17:45 - 2012-07-26 07:26 - 00262144 ___SH C:\windows\system32\config\BBI
2015-07-01 17:44 - 2014-08-06 16:13 - 00029168 _____ C:\windows\system32\Drivers\aswHwid.sys
2015-07-01 17:44 - 2013-12-25 11:06 - 00272248 _____ C:\windows\system32\Drivers\aswVmm.sys
2015-07-01 17:44 - 2013-12-25 11:06 - 00137288 _____ (Avast Software s.r.o.) C:\windows\system32\Drivers\aswStm.sys
2015-07-01 17:44 - 2013-12-25 11:06 - 00093528 _____ (Avast Software s.r.o.) C:\windows\system32\Drivers\aswRdr2.sys
2015-07-01 17:44 - 2013-12-25 11:06 - 00089944 _____ (Avast Software s.r.o.) C:\windows\system32\Drivers\aswMonFlt.sys
2015-07-01 17:44 - 2013-12-25 11:06 - 00065736 _____ C:\windows\system32\Drivers\aswRvrt.sys
2015-07-01 17:43 - 2013-12-25 11:06 - 01047320 _____ (Avast Software s.r.o.) C:\windows\system32\Drivers\aswSnx.sys
2015-07-01 17:39 - 2013-12-25 16:18 - 00000052 _____ C:\windows\SysWOW64\DOErrors.log
2015-06-30 13:14 - 2014-03-16 17:36 - 00000000 ____D C:\Users\polis_000\AppData\Local\LogMeIn Hamachi
2015-06-30 09:31 - 2014-01-19 00:19 - 00001058 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-06-29 21:01 - 2014-11-24 22:01 - 00003518 _____ C:\windows\System32\Tasks\FileAdvisorCheck
2015-06-29 21:01 - 2014-11-24 22:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Type Advisor
2015-06-29 21:01 - 2014-11-24 22:01 - 00000000 ____D C:\Program Files (x86)\File Type Advisor
2015-06-29 19:32 - 2014-03-31 19:53 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\Origin
2015-06-29 19:32 - 2014-03-31 19:50 - 00000000 ____D C:\Program Files (x86)\Origin
2015-06-29 10:53 - 2014-07-26 22:31 - 00000000 ____D C:\Program Files (x86)\2K Games
2015-06-28 20:11 - 2013-12-25 11:06 - 00000000 ____D C:\Users\polis_000\AppData\Local\Google
2015-06-28 20:01 - 2015-05-16 19:36 - 00000366 _____ C:\windows\Tasks\HPCeeScheduleForpolis_000.job
2015-06-28 19:45 - 2014-02-03 23:20 - 00000000 ___RD C:\Users\polis_000\Desktop\Písničky
2015-06-28 19:29 - 2014-07-09 17:39 - 00003188 _____ C:\windows\System32\Tasks\HPCeeScheduleForpolis_000
2015-06-28 19:29 - 2013-12-24 19:55 - 00000000 ____D C:\Users\polis_000
2015-06-28 12:55 - 2012-07-26 10:12 - 00000000 ____D C:\windows\system32\NDF
2015-06-28 12:43 - 2014-05-24 09:34 - 00129752 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-28 12:41 - 2013-12-24 21:36 - 00000000 ____D C:\Program Files (x86)\Steam
2015-06-28 12:34 - 2014-05-15 16:45 - 00000000 ____D C:\Users\polis_000\Desktop\Práce do školy
2015-06-28 12:33 - 2013-12-24 20:06 - 00000000 ___RD C:\Users\polis_000\Desktop\Hry
2015-06-24 21:32 - 2013-06-20 12:44 - 00002990 _____ C:\windows\System32\Tasks\Synaptics TouchPad Enhancements
2015-06-24 21:30 - 2012-10-12 05:24 - 00000000 ____D C:\SWSETUP
2015-06-24 17:11 - 2012-07-26 09:59 - 00000000 ____D C:\windows\CbsTemp
2015-06-23 19:59 - 2013-12-25 20:06 - 00003802 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2015-06-21 18:40 - 2014-01-07 17:10 - 00000000 ____D C:\Users\polis_000\Desktop\Filmy
2015-06-21 10:58 - 2013-12-25 12:02 - 00000000 ____D C:\Warcraft III+Frozen Throne
2015-06-20 05:48 - 2014-11-14 15:48 - 00792024 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2015-06-20 05:48 - 2014-11-14 15:48 - 00177624 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-18 20:26 - 2013-12-24 20:13 - 00000000 ___RD C:\Users\polis_000\Desktop\Různý programy
2015-06-18 17:31 - 2014-03-31 15:17 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-06-17 14:02 - 2015-05-24 02:54 - 00000000 ____D C:\Counter-Strike 1.6
2015-06-14 20:57 - 2013-12-24 21:11 - 00000000 ____D C:\ProgramData\Skype
2015-06-13 18:55 - 2014-06-14 16:58 - 00000000 ____D C:\Users\polis_000\Documents\Bus Driver
2015-06-13 18:25 - 2014-07-24 00:18 - 00000000 ____D C:\Users\polis_000\Documents\Euro Truck Simulator 2
2015-06-11 20:17 - 2015-03-14 15:59 - 00513512 _____ C:\windows\system32\FNTCACHE.DAT
2015-06-11 20:12 - 2015-04-17 20:16 - 00000000 ___SD C:\windows\system32\CompatTel
2015-06-11 20:12 - 2015-04-17 20:16 - 00000000 ____D C:\windows\system32\appraiser
2015-06-11 13:52 - 2014-05-29 14:45 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-11 13:48 - 2013-12-31 12:02 - 00000000 ____D C:\windows\system32\MRT
2015-06-11 13:25 - 2013-12-31 12:02 - 140135120 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-06-11 13:03 - 2014-07-09 17:27 - 00000000 ____D C:\windows\Minidump
2015-06-10 21:30 - 2014-11-06 18:09 - 00000058 _____ C:\Users\polis_000\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2015-06-09 07:58 - 2014-11-22 00:02 - 00000000 ___HD C:\$Windows.~BT
2015-06-09 07:38 - 2014-01-18 10:38 - 00091443 _____ C:\windows\diagwrn.xml
2015-06-09 07:38 - 2014-01-18 10:38 - 00091443 _____ C:\windows\diagerr.xml
2015-06-09 07:38 - 2012-07-26 07:26 - 00262144 ___SH C:\windows\system32\config\ELAM
2015-06-09 07:29 - 2012-07-26 10:12 - 00000000 ____D C:\windows\Registration
2015-06-02 21:55 - 2012-07-26 10:12 - 00000000 ____D C:\windows\AUInstallAgent
2015-06-02 21:04 - 2013-12-24 20:04 - 00003600 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2428774486-1446802013-3078816245-1002
2015-06-01 21:06 - 2013-12-24 19:56 - 00000000 ____D C:\Users\polis_000\AppData\Local\Packages

==================== Files in the root of some directories =======

2014-12-18 16:09 - 2014-12-18 16:09 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\022E937.html
2014-12-12 22:56 - 2014-12-12 22:56 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\0566ECC.html
2014-12-18 17:16 - 2014-12-18 17:16 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\3A9A31C.html
2014-12-28 13:16 - 2014-12-28 13:16 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\7430B90.html
2014-12-28 22:21 - 2014-12-28 22:21 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\956E5A2.html
2014-12-29 20:31 - 2014-12-29 20:31 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\ABF3BD4.html
2014-12-28 23:38 - 2014-12-28 23:38 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\DAE9927.html
2014-12-30 00:01 - 2014-12-30 00:01 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\ED43F31.html
2013-12-25 15:39 - 2014-03-12 20:16 - 0045270 _____ () C:\Users\polis_000\AppData\Roaming\room_v3.dat
2014-03-30 16:16 - 2014-03-30 16:16 - 0003584 _____ () C:\Users\polis_000\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-06 18:09 - 2015-06-10 21:30 - 0000058 _____ () C:\Users\polis_000\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat

Some files in TEMP:
====================
C:\Users\polis_000\AppData\Local\Temp\Call Of Duty Finest Hour Pc Download__10924_i1545050862_il52661.exe
C:\Users\polis_000\AppData\Local\Temp\Call Of Duty Finest Hour Pc Download__10924_i1545050863_il52661.exe
C:\Users\polis_000\AppData\Local\Temp\Call Of Duty Finest Hour Pc Download__10924_i1545050864_il52661.exe
C:\Users\polis_000\AppData\Local\Temp\Quarantine.exe
C:\Users\polis_000\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-06-28 13:11

==================== End of log ===========================

#8 Příspěvek od **Rudy** » 01 črc 2015 19:41

Otevřte poznámkový blok a zkopírujte do něj:

Start
AppInit_DLLs: C:\Program Files C:\Program Files C:\Program Files => C:\Program Files C:\Program Files C:\Program Files File not found
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
Toolbar: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
CHR Extension: (Facebook Unseen) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmdhkalcecemojegheiohcghkamlipof [2014-09-23]
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\polis_000\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

polisak1 · #9 Příspěvek od **polisak1** » 02 črc 2015 10:46

Fix result of Farbar Recovery Scan Tool (x64) Version:28-06-2015 01
Ran by polis_000 at 2015-07-02 11:44:48 Run:1
Running from C:\Users\polis_000\Desktop\Antivir, Čištění PC
Loaded Profiles: polis_000 (Available Profiles: polis_000)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
AppInit_DLLs: C:\Program Files C:\Program Files C:\Program Files => C:\Program Files C:\Program Files C:\Program Files File not found
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
Toolbar: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
CHR Extension: (Facebook Unseen) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmdhkalcecemojegheiohcghkamlipof [2014-09-23]
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\polis_000\AppData\Local\Temp
End
*****************

"C:\Program Files C:\Program Files C:\Program Files" => value data not found.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => key removed successfully
HKCR\Wow6432Node\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} => key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => key removed successfully
HKCR\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} => key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
"HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
C:\Program Files (x86)\Google\Google Toolbar => moved successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmdhkalcecemojegheiohcghkamlipof => moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
C:\Users\polis_000\AppData\Local\Temp => moved successfully.

==== End of Fixlog 11:44:50 ====

#10 Příspěvek od **Rudy** » 02 črc 2015 11:21

Smazáno. Nastala nějaká změna?

polisak1 · #11 Příspěvek od **polisak1** » 05 črc 2015 15:38

Ano, reklamy se nezobrazují a počítač je rychlejší

#12 Příspěvek od **Rudy** » 05 črc 2015 15:54

Tak to jsem rád!

polisak1 · #13 Příspěvek od **polisak1** » 05 črc 2015 15:56

Díky

#14 Příspěvek od **Rudy** » 05 črc 2015 15:59

Rádo se stalo!

VIRY.CZ

Problém s viry..

Problém s viry..

Re: Problém s viry..

Re: Problém s viry..

Re: Problém s viry..

Re: Problém s viry..

Re: Problém s viry..

Re: Problém s viry..

Re: Problém s viry..

Re: Problém s viry..

Re: Problém s viry..

Re: Problém s viry..

Re: Problém s viry..

Re: Problém s viry..

Re: Problém s viry..