Hezký den, potřeboval bych pomoct s PC. Dostal jsem úkol od stréca, že mu to jede pomalu...
Jelo mu to dříve lépe, nějaký rok už to má, ale myslím že by to pořád mohlo jed obstojně...
Dá se říct cokoliv začnu dělat využití CPU razantně stoupá a da se říct i RAMKA jde nahoru.
Z pohledu SW prosím podívejte se mi na to. HW zkontroluji pro jistotu také.
Děkuji
LOGY:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Petřík at 2015-07-12 21:12:15
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 185 GB (61%) free of 305 GB
Total RAM: 2047 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:12:26, on 12.7.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\taskmgr.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Petřík\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable\Hard Disk Sentinel Pro 4.60+portable\Hard Disk Sentinel Pro 4.60-portable\HDSentinel.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Petřík\Downloads\RSIT.exe
C:\Program Files\trend micro\Petřík.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mixidj.delta-search.com/?affID=1 ... 2618322EBC
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (file missing)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: IMPI Helper - {17E113E6-CD0E-4045-B154-65F0E57959EF} - C:\Program Files\IMPI\Extension32.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Převést do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Převést výběr do Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést výběr do existujícího PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: c:\progra~2\bitguard\271832~1.68\{c16c1~1\bitguard.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IMPI Updater - Unknown owner - C:\Program Files\IMPI\ExtensionUpdaterService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
--
End of file - 8367 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... M=false&q="
"{17E113E6-CD0E-4045-B154-65F0E57959EF}"=C:\Program Files\IMPI\Firefox
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.191 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_191.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\
{800b5000-a755-47e1-992b-48a1c1357f07}
{96f454ea-9d38-474f-b504-56193e00c1a5}
C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\
askcom.xml
askcomsearch.xml
babylon.xml
BrowserProtect.xml
icqplugin-1.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin.gif
icqplugin.src
icqplugin.xml
utorrentcontrolv6-customized-web-search.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23 72336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{17E113E6-CD0E-4045-B154-65F0E57959EF}]
IMPI - C:\Program Files\IMPI\Extension32.dll [2013-02-05 167424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-07-12 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
AcroIEToolbarHelper Class - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-12 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-03-19 2029640]
"Acrobat Assistant 7.0"=C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [2004-12-14 483328]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files\Steam\steam.exe [2014-09-23 1938112]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-01-08 18706176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Acrobat Speed Launcher.lnk - C:\Windows\Installer\{AC76BA86-1033-C740-7760-100000000002}\SC_Acrobat.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~2\bitguard\271832~1.68\{c16c1~1\bitguard.dll"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-07-12 21:12:16 ----D---- C:\Program Files\trend micro
2015-07-12 21:12:15 ----D---- C:\rsit
2015-07-12 21:07:48 ----D---- C:\Users\Petřík\AppData\Roaming\Hard Disk Sentinel
2015-07-12 20:58:53 ----A---- C:\Windows\system32\deployJava1.dll
2015-07-12 20:58:52 ----A---- C:\Windows\system32\npDeployJava1.dll
2015-07-12 20:57:51 ----D---- C:\Program Files\Common Files\Java
2015-07-12 20:55:13 ----D---- C:\ProgramData\Oracle
======List of files/folders modified in the last 1 month======
2015-07-12 21:12:18 ----D---- C:\Windows\Temp
2015-07-12 21:12:16 ----RD---- C:\Program Files
2015-07-12 21:05:27 ----D---- C:\Windows\System32
2015-07-12 20:59:32 ----SHD---- C:\Windows\Installer
2015-07-12 20:59:23 ----D---- C:\Program Files\Java
2015-07-12 20:58:05 ----SHD---- C:\System Volume Information
2015-07-12 20:58:04 ----D---- C:\Windows\system32\catroot2
2015-07-12 20:57:51 ----D---- C:\Program Files\Common Files
2015-07-12 20:55:42 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2015-07-12 20:55:13 ----HD---- C:\ProgramData
2015-07-12 20:53:11 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-07-12 20:51:50 ----D---- C:\Windows\system32\appmgmt
2015-07-12 20:49:33 ----D---- C:\Windows\system32\config
2015-07-12 20:49:13 ----D---- C:\Users\Petřík\AppData\Roaming\Skype
2015-07-12 20:49:01 ----D---- C:\Program Files\Steam
2015-07-12 20:47:38 ----D---- C:\ProgramData\NVIDIA
2015-07-04 06:39:01 ----D---- C:\Windows\Logs
2015-06-30 11:03:36 ----D---- C:\Windows\system32\Tasks
2015-06-23 13:27:10 ----N---- C:\Windows\system32\MpSigStub.exe
2015-06-14 14:27:24 ----SD---- C:\Users\Petřík\AppData\Roaming\Microsoft
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-12-27 721904]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-03-19 107256]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2009-03-19 93312]
R3 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-03-19 113960]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x86.sys [2009-07-14 47104]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 au15i6c1;au15i6c1; C:\Windows\system32\drivers\au15i6c1.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-10-28 87064]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-10-28 182680]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-12 82112]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-03-19 731840]
R2 IMPI Updater;IMPI Updater; C:\Program Files\IMPI\ExtensionUpdaterService.exe [2013-02-05 185856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-15 634144]
R2 PanService;PandoraService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [2012-09-28 625304]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-03-14 383264]
R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2012-12-14 3467768]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-06 116648]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-15 1266464]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-12 268464]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-03-19 20680]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-06 116648]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-11-06 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-05-23 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-06-04 148080]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2012-11-19 489256]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-28 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
FRST_:_:_:_:_:_:_:_:_:_:_:_:_:_:_:_
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-07-2015
Ran by Petřík (administrator) on PETŘÍK-PC on 12-07-2015 21:22:01
Running from C:\Users\Petřík\Desktop
Loaded Profiles: Petřík (Available Profiles: Petřík & UpdatusUser)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
() C:\Program Files\IMPI\ExtensionUpdaterService.exe
(Pandora.TV) C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
(PandoraTV) C:\Program Files\PANDORA.TV\PanService\PanProcess.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(H.D.S. Hungary) C:\Users\Petřík\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable\Hard Disk Sentinel Pro 4.60+portable\Hard Disk Sentinel Pro 4.60-portable\HDSentinel.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2029640 2009-03-19] (ESET)
HKLM\...\Run: [Acrobat Assistant 7.0] => C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [483328 2004-12-14] (Adobe Systems Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [1938112 2014-09-23] (Valve Corporation)
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [18706176 2013-01-08] (Skype Technologies S.A.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-03-20] (Microsoft Corporation)
AppInit_DLLs: c:\progra~2\bitguard\271832~1.68\{c16c1~1\bitguard.dll => c:\progra~2\bitguard\271832~1.68\{c16c1~1\bitguard.dll File not found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk [2012-12-27]
ShortcutTarget: Adobe Acrobat Speed Launcher.lnk -> C:\Windows\Installer\{AC76BA86-1033-C740-7760-100000000002}\SC_Acrobat.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://mixidj.delta-search.com/?affID=1 ... 2618322EBC
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://search.icq.com/search/results.ph ... &ch_id=osd
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://mixidj.delta-search.com/?affID=1 ... 2618322EBC
URLSearchHook: HKU\S-1-5-21-2528213463-800438733-1852482963-1001 - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll No File
SearchScopes: HKU\S-1-5-21-2528213463-800438733-1852482963-1001 -> DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://mixidj.delta-search.com/?q={sear ... 2618322EBC
SearchScopes: HKU\S-1-5-21-2528213463-800438733-1852482963-1001 -> bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKU\S-1-5-21-2528213463-800438733-1852482963-1001 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://mixidj.delta-search.com/?q={sear ... 2618322EBC
SearchScopes: HKU\S-1-5-21-2528213463-800438733-1852482963-1001 -> {24D9ACCB-29FD-4C6C-9E6D-075F53A9C229} URL = http://www.search.ask.com/web?tpid=ORJ& ... psv=&pt=tb
SearchScopes: HKU\S-1-5-21-2528213463-800438733-1852482963-1001 -> {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://search.icq.com/search/results.ph ... &ch_id=osd
BHO: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: IMPI -> {17E113E6-CD0E-4045-B154-65F0E57959EF} -> C:\Program Files\IMPI\Extension32.dll [2013-02-05] ()
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-07-12] (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08] (Google Inc.)
BHO: AcroIEToolbarHelper Class -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-12] (Oracle Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08] (Google Inc.)
Toolbar: HKU\S-1-5-21-2528213463-800438733-1852482963-1001 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2528213463-800438733-1852482963-1001 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2011-11-03] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CB700AFB-7B73-489D-BE8D-0020B6D22EA8}: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default
FF NewTab: hxxp://mixidj.delta-search.com/?affID=121125&babsrc=NT_ss&mntrId=A665002618322EBC
FF DefaultSearchUrl: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289075&CUI=UN34394566821209751&UM=1&SearchSource=3&q={searchTerms}
FF SearchEngineOrder.1: Mixi.DJ Search
FF SelectedSearchEngine:
FF Homepage: hxxp://www.seznam.cz/
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289075&SearchSource=2&CUI=UN34394566821209751&UM=false&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_191.dll [2015-07-12] ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll [2013-07-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-12] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-03-14] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-03-14] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-09-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\user.js [2013-01-27]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\askcom.xml [2014-02-15]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\askcomsearch.xml [2013-04-19]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\babylon.xml [2013-05-01]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\BrowserProtect.xml [2013-05-01]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-1.xml [2015-06-30]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-2.xml [2013-02-07]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-3.xml [2013-03-01]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-4.xml [2013-03-11]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-5.xml [2013-04-16]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-6.xml [2013-05-30]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-7.xml [2013-07-30]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-8.xml [2013-08-21]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin.gif [2012-07-24]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin.src [2012-07-24]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin.xml [2011-03-30]
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\utorrentcontrolv6-customized-web-search.xml [2013-07-27]
FF Extension: ICQ Toolbar - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2013-01-27]
FF Extension: uTorrentControl_v6 - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} [2013-12-06]
FF HKLM\...\Firefox\Extensions: [{17E113E6-CD0E-4045-B154-65F0E57959EF}] - C:\Program Files\IMPI\Firefox
FF Extension: IMPI - C:\Program Files\IMPI\Firefox [2013-03-18]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: Eset Plugin - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-12-27]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\toolbar@ask.com.xpi [not found]
Chrome:
=======
CHR Profile: C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-06]
CHR Extension: (Google Drive) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-06]
CHR Extension: (YouTube) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-06]
CHR Extension: (MixiDJ Toolbar) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\boipimhfjpakfgckhbljjengakjhkcbp [2014-11-06]
CHR Extension: (Google Search) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-06]
CHR Extension: (Google Wallet) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-26]
CHR Extension: (Gmail) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-06]
CHR HKLM\...\Chrome\Extension: [boipimhfjpakfgckhbljjengakjhkcbp] - C:\Users\Petřík\AppData\Roaming\CRMixiDJTB\mixiDJ.crx [2013-02-05]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [20680 2009-03-19] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [731840 2009-03-19] (ESET)
R2 IMPI Updater; C:\Program Files\IMPI\ExtensionUpdaterService.exe [185856 2013-02-05] () [File not signed]
R2 PanService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [625304 2012-09-28] (Pandora.TV)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 eamon; C:\Windows\System32\DRIVERS\eamon.sys [113960 2009-03-19] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [107256 2009-03-19] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [93312 2009-03-19] (ESET)
R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [47104 2009-07-14] (Atheros Communications, Inc.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [721904 2012-12-27] () [File not signed]
U3 au15i6c1; C:\Windows\system32\Drivers\au15i6c1.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-12 21:22 - 2015-07-12 21:23 - 00015778 _____ C:\Users\Petřík\Desktop\FRST.txt
2015-07-12 21:21 - 2015-07-12 21:11 - 01636864 _____ (Farbar) C:\Users\Petřík\Desktop\FRST.exe
2015-07-12 21:20 - 2015-07-12 21:22 - 00000000 ____D C:\FRST
2015-07-12 21:12 - 2015-07-12 21:12 - 00000000 ____D C:\rsit
2015-07-12 21:12 - 2015-07-12 21:12 - 00000000 ____D C:\Program Files\trend micro
2015-07-12 21:11 - 2015-07-12 21:11 - 01636864 _____ (Farbar) C:\Users\Petřík\Downloads\FRST.exe
2015-07-12 21:10 - 2015-07-12 21:11 - 01107968 _____ C:\Users\Petřík\Downloads\RSIT.exe
2015-07-12 21:07 - 2015-07-12 21:07 - 00000000 ____D C:\Users\Petřík\AppData\Roaming\Hard Disk Sentinel
2015-07-12 21:06 - 2015-07-12 21:06 - 00000000 ____D C:\Users\Petřík\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable
2015-07-12 20:58 - 2015-07-12 21:02 - 51503116 _____ C:\Users\Petřík\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable.rar
2015-07-12 20:58 - 2013-07-12 18:04 - 00867240 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2015-07-12 20:58 - 2013-07-12 18:04 - 00789416 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2015-07-12 20:57 - 2015-07-12 20:57 - 00000000 ____D C:\Program Files\Common Files\Java
2015-07-12 20:56 - 2015-07-12 20:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-12 20:55 - 2015-07-12 21:05 - 00000000 ____D C:\ProgramData\Oracle
2015-07-08 20:57 - 2015-07-08 20:58 - 00007599 _____ C:\Users\Petřík\AppData\Local\Resmon.ResmonCfg
2015-06-30 11:02 - 2015-06-30 11:02 - 00000000 ____D C:\Users\Petřík\AppData\Local\GWX
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-12 21:22 - 2014-11-06 08:39 - 00000000 ____D C:\Users\Petřík\AppData\Local\Google
2015-07-12 21:10 - 2014-11-06 08:40 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-12 21:10 - 2014-11-06 08:39 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-12 20:59 - 2013-07-12 18:04 - 00000000 ____D C:\Program Files\Java
2015-07-12 20:58 - 2012-12-27 14:36 - 01563837 _____ C:\Windows\WindowsUpdate.log
2015-07-12 20:55 - 2013-07-12 18:04 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-07-12 20:53 - 2014-11-06 08:39 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-12 20:53 - 2012-12-27 14:54 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-07-12 20:53 - 2012-12-27 14:54 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-07-12 20:51 - 2014-10-31 09:55 - 00000000 ____D C:\Windows\system32\appmgmt
2015-07-12 20:49 - 2013-01-24 18:45 - 00000000 ____D C:\Users\Petřík\AppData\Roaming\Skype
2015-07-12 20:49 - 2012-12-27 15:21 - 00000000 ____D C:\Program Files\Steam
2015-07-12 20:49 - 2009-07-14 06:39 - 00112834 _____ C:\Windows\setupact.log
2015-07-12 20:48 - 2009-07-14 06:34 - 00025760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-12 20:48 - 2009-07-14 06:34 - 00025760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-12 20:47 - 2014-11-06 08:39 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-12 20:47 - 2012-12-28 03:00 - 00000000 ____D C:\ProgramData\NVIDIA
2015-07-12 20:47 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-03 18:45 - 2014-10-31 09:52 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieUserList
2015-07-03 18:45 - 2014-10-31 09:52 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieSiteList
2015-07-03 18:45 - 2002-01-07 05:31 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieBrowserModeList
2015-06-23 13:27 - 2012-12-27 14:50 - 00246952 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-06-14 14:12 - 2009-07-14 06:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
==================== Files in the root of some directories =======
2015-07-08 20:57 - 2015-07-08 20:58 - 0007599 _____ () C:\Users\Petřík\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
C:\Users\Petřík\AppData\Local\Temp\APNSetup.exe
C:\Users\Petřík\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Petřík\AppData\Local\Temp\GuardICQ.exe
C:\Users\Petřík\AppData\Local\Temp\ICQInetInstaller.exe
C:\Users\Petřík\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Petřík\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Petřík\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Petřík\AppData\Local\Temp\MixiDJToolbar_yh.exe
C:\Users\Petřík\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\Petřík\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Petřík\AppData\Local\Temp\nvSCPAPISvr.exe
C:\Users\Petřík\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\Petřík\AppData\Local\Temp\nvStInst.exe
C:\Users\Petřík\AppData\Local\Temp\ose00000.exe
C:\Users\Petřík\AppData\Local\Temp\PIPInstaller_PTV_.exe
C:\Users\Petřík\AppData\Local\Temp\setup.exe
C:\Users\Petřík\AppData\Local\Temp\setup_fsu_cid.exe
C:\Users\Petřík\AppData\Local\Temp\uttC998.tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-03-03 16:48
==================== End of log ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
zpomaleny PC, vytezovani procesoru a RAM
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
zpomaleny PC, vytezovani procesoru a RAM
- Přílohy
-
- Addition.rar
- (5.38 KiB) Staženo 57 x
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomaleny PC, vytezovani procesoru a RAM
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zpomaleny PC, vytezovani procesoru a RAM
# AdwCleaner v4.208 - Log vytvořen 12/07/2015 v 22:10:33
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-07-11.1 [Server]
# Operační system : Windows 7 Professional Service Pack 1 (x86)
# Uživatelské jméno : Petřík - PETŘÍK-PC
# Spuštěno z : C:\Users\Petřík\Desktop\adwcleaner_4.208.exe
# Nastavení : Čištění
***** [ Služby ] *****
[#] Služba Smazáno : PanService
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\apn
Složka Smazáno : C:\ProgramData\Ask
Složka Smazáno : C:\ProgramData\AskPartnerNetwork
Složka Smazáno : C:\ProgramData\Babylon
Složka Smazáno : C:\ProgramData\ICQ\ICQToolbar
Složka Smazáno : C:\Program Files\DAEMON Tools Toolbar
Složka Smazáno : C:\Program Files\ICQ6Toolbar
Složka Smazáno : C:\Program Files\PANDORA.TV
Složka Smazáno : C:\Program Files\GotClip
Složka Smazáno : C:\Users\PETK~1\AppData\Local\Temp\apn
Složka Smazáno : C:\Users\PETK~1\AppData\Local\Temp\CT3289075
Složka Smazáno : C:\Users\Petřík\AppData\Roaming\Babylon
Složka Smazáno : C:\Users\Petřík\AppData\Roaming\CRMixiDJTB
Složka Smazáno : C:\Users\Petřík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Složka Smazáno : C:\Users\Petřík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GotClip
Složka Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Složka Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5}
Složka Smazáno : C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\boipimhfjpakfgckhbljjengakjhkcbp
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\bprotector_extensions.sqlite
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\bprotector_prefs.js
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\Askcom.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\askcomsearch.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\Babylon.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\BrowserProtect.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\user.js
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-1.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-2.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-3.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-4.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-5.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-6.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-7.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-8.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin.gif
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin.src
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin.xml
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{17E113E6-CD0E-4045-B154-65F0E57959EF}]
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\boipimhfjpakfgckhbljjengakjhkcbp
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Klíč Smazáno : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Klíč Smazáno : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\Prod.cap
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\apnwidgets.ask.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\ask.com
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Activities\Search\ask.com
Klíč Smazáno : HKCU\Software\a0d8dcb53deb47
Klíč Smazáno : HKLM\SOFTWARE\a0d8dcb53deb47
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{A2773ED4-83BD-488A-A186-73590706C916}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{17E113E6-CD0E-4045-B154-65F0E57959EF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{17E113E6-CD0E-4045-B154-65F0E57959EF}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{17E113E6-CD0E-4045-B154-65F0E57959EF}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{17E113E6-CD0E-4045-B154-65F0E57959EF}
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{24D9ACCB-29FD-4C6C-9E6D-075F53A9C229}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Klíč Smazáno : HKCU\Software\APN PIP
Klíč Smazáno : HKCU\Software\BABSOLUTION
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\DataMngr
[#] Klíč Smazáno : HKCU\Software\DataMngr_Toolbar
Klíč Smazáno : HKCU\Software\filescout
Klíč Smazáno : HKLM\SOFTWARE\Babylon
Klíč Smazáno : HKLM\SOFTWARE\Conduit
Klíč Smazáno : HKLM\SOFTWARE\DataMngr
Klíč Smazáno : HKLM\SOFTWARE\dt soft\daemon tools toolbar
Klíč Smazáno : HKLM\SOFTWARE\ICQ\ICQToolbar
Klíč Smazáno : HKLM\SOFTWARE\PIP
Klíč Smazáno : HKU\.DEFAULT\Software\AskPartnerNetwork
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B49962AF-CAB9-44DE-8729-A4369F44BA0D}
Data Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\bitguard\271832~1.68\{c16c1~1\bitguard.dll
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17840
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
-\\ Mozilla Firefox v38.0.5 (x86 cs)
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289075&SearchSource=2&CUI=UN34394566821209751&UM=1&q=");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.originalHomepage", "hxxp://mixidj.delta-search.com/?affID=121125&babsrc=HP_ss&mntrId=A665002618322EBC");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289075&SearchSource=2&CUI=UN34394566821209751&UM=&q=");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.smartbar.CTID", "CT3289075");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.smartbar.Uninstall", "0");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.smartbar.homepage", "true");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.smartbar.toolbarName", "uTorrentControl_v6 ");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitHomepagesList", "");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitSearchEngineList", "");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitSearchUrlList", "");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.keywordURLSelectedCTID", "CT3289075");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("browser.newtab.url", "hxxp://mixidj.delta-search.com/?affID=121125&babsrc=NT_ss&mntrId=A665002618322EBC");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultthis.engineName", "uTorrentControl_v6 Customized Web Search");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289075&CUI=UN34394566821209751&UM=1&SearchSource=3&q={searchTerms}");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("extensions.enabledAddons", "%7B17E113E6-CD0E-4045-B154-65F0E57959EF%7D:2.0.0.429,%7B800b5000-a755-47e1-992b-48a1c1357f07%7D:1.5.3,toolbar%40ask.com:49.19,%7B96f454ea-9d38-474f-b504-56193e00[...]
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("extensions.xpiState", "{\"app-profile\":{\"toolbar@ask.com\":{\"d\":\"C:\\\\Users\\\\PetĹ™Ăk\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\dmxn1kd3.default\\\\extensions\\\\to[...]
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.engineVerified", true);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.facebookSmilesAddonShowedPopup", true);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.firstTbRun", false);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.geolastmodified", 1435655029);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.history", "katastraln%C3%AD%20urad");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.icqgeo", 42);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.installTime", "1359319041");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.newtab_most_visited_state", "1");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.numberOfSearches", 1);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.previousFFVersion", "38.0.5");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.skip_default_search", "no");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.uniqueID", "135922995613592828861359286195099");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.version", "1.5.3");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289075&SearchSource=2&CUI=UN34394566821209751&UM=false&q=");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("plugin.state.npconduitfirefoxplugin", 2);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.addressBarOwnerCTID", "CT3289075");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3289075&CUI=UN34394566821209751&UM=1&SearchSource=13");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289075&SearchSource=2&CUI=UN34394566821209751&UM=&q=,hxxp://search.conduit.com/ResultsExt.aspx?octi[...]
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.defaultSearchOwnerCTID", "CT3289075");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.homePageOwnerCTID", "CT3289075");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.machineId", "V5TE2UB9BNQEYVUNUZRDVJWAQTT5L34DK7A2WHBVIOAR5512R0ZW5LXASEUZKWHUCQ1OZMOAQZ/KKSPAK1MD9G");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.originalHomepage", "hxxp://start.icq.com/");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.originalSearchAddressUrl", "");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.originalSearchEngine", "ICQ Search");
-\\ Google Chrome v43.0.2357.132
-\\ Opera v0.0.0.0
*************************
AdwCleaner[R0].txt - [14071 bytů] - [12/07/2015 22:03:20]
AdwCleaner[S0].txt - [14103 bytů] - [12/07/2015 22:10:33]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [14162 bytů] ##########
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-07-11.1 [Server]
# Operační system : Windows 7 Professional Service Pack 1 (x86)
# Uživatelské jméno : Petřík - PETŘÍK-PC
# Spuštěno z : C:\Users\Petřík\Desktop\adwcleaner_4.208.exe
# Nastavení : Čištění
***** [ Služby ] *****
[#] Služba Smazáno : PanService
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\apn
Složka Smazáno : C:\ProgramData\Ask
Složka Smazáno : C:\ProgramData\AskPartnerNetwork
Složka Smazáno : C:\ProgramData\Babylon
Složka Smazáno : C:\ProgramData\ICQ\ICQToolbar
Složka Smazáno : C:\Program Files\DAEMON Tools Toolbar
Složka Smazáno : C:\Program Files\ICQ6Toolbar
Složka Smazáno : C:\Program Files\PANDORA.TV
Složka Smazáno : C:\Program Files\GotClip
Složka Smazáno : C:\Users\PETK~1\AppData\Local\Temp\apn
Složka Smazáno : C:\Users\PETK~1\AppData\Local\Temp\CT3289075
Složka Smazáno : C:\Users\Petřík\AppData\Roaming\Babylon
Složka Smazáno : C:\Users\Petřík\AppData\Roaming\CRMixiDJTB
Složka Smazáno : C:\Users\Petřík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Složka Smazáno : C:\Users\Petřík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GotClip
Složka Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\Extensions\{800B5000-A755-47E1-992B-48A1C1357F07}
Složka Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5}
Složka Smazáno : C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\boipimhfjpakfgckhbljjengakjhkcbp
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\bprotector_extensions.sqlite
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\bprotector_prefs.js
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\Askcom.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\askcomsearch.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\Babylon.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\BrowserProtect.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\user.js
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-1.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-2.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-3.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-4.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-5.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-6.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-7.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin-8.xml
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin.gif
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin.src
Soubor Smazáno : C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\icqplugin.xml
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{17E113E6-CD0E-4045-B154-65F0E57959EF}]
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\boipimhfjpakfgckhbljjengakjhkcbp
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Klíč Smazáno : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Klíč Smazáno : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Klíč Smazáno : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\Prod.cap
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\apnwidgets.ask.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\ask.com
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Activities\Search\ask.com
Klíč Smazáno : HKCU\Software\a0d8dcb53deb47
Klíč Smazáno : HKLM\SOFTWARE\a0d8dcb53deb47
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{A2773ED4-83BD-488A-A186-73590706C916}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{17E113E6-CD0E-4045-B154-65F0E57959EF}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{17E113E6-CD0E-4045-B154-65F0E57959EF}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{17E113E6-CD0E-4045-B154-65F0E57959EF}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{17E113E6-CD0E-4045-B154-65F0E57959EF}
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Hodnota Smazáno : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{24D9ACCB-29FD-4C6C-9E6D-075F53A9C229}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Klíč Smazáno : HKCU\Software\APN PIP
Klíč Smazáno : HKCU\Software\BABSOLUTION
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\DataMngr
[#] Klíč Smazáno : HKCU\Software\DataMngr_Toolbar
Klíč Smazáno : HKCU\Software\filescout
Klíč Smazáno : HKLM\SOFTWARE\Babylon
Klíč Smazáno : HKLM\SOFTWARE\Conduit
Klíč Smazáno : HKLM\SOFTWARE\DataMngr
Klíč Smazáno : HKLM\SOFTWARE\dt soft\daemon tools toolbar
Klíč Smazáno : HKLM\SOFTWARE\ICQ\ICQToolbar
Klíč Smazáno : HKLM\SOFTWARE\PIP
Klíč Smazáno : HKU\.DEFAULT\Software\AskPartnerNetwork
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B49962AF-CAB9-44DE-8729-A4369F44BA0D}
Data Smazáno : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\bitguard\271832~1.68\{c16c1~1\bitguard.dll
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17840
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Nastavení Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
-\\ Mozilla Firefox v38.0.5 (x86 cs)
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289075&SearchSource=2&CUI=UN34394566821209751&UM=1&q=");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.originalHomepage", "hxxp://mixidj.delta-search.com/?affID=121125&babsrc=HP_ss&mntrId=A665002618322EBC");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289075&SearchSource=2&CUI=UN34394566821209751&UM=&q=");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.smartbar.CTID", "CT3289075");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.smartbar.Uninstall", "0");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.smartbar.homepage", "true");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("CT3289075.smartbar.toolbarName", "uTorrentControl_v6 ");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitHomepagesList", "");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitSearchEngineList", "");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.ConduitSearchUrlList", "");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("Smartbar.keywordURLSelectedCTID", "CT3289075");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("browser.newtab.url", "hxxp://mixidj.delta-search.com/?affID=121125&babsrc=NT_ss&mntrId=A665002618322EBC");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaultthis.engineName", "uTorrentControl_v6 Customized Web Search");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289075&CUI=UN34394566821209751&UM=1&SearchSource=3&q={searchTerms}");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("extensions.enabledAddons", "%7B17E113E6-CD0E-4045-B154-65F0E57959EF%7D:2.0.0.429,%7B800b5000-a755-47e1-992b-48a1c1357f07%7D:1.5.3,toolbar%40ask.com:49.19,%7B96f454ea-9d38-474f-b504-56193e00[...]
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("extensions.xpiState", "{\"app-profile\":{\"toolbar@ask.com\":{\"d\":\"C:\\\\Users\\\\PetĹ™Ăk\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\dmxn1kd3.default\\\\extensions\\\\to[...]
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.engineVerified", true);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.facebookSmilesAddonShowedPopup", true);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.firstTbRun", false);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.geolastmodified", 1435655029);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.history", "katastraln%C3%AD%20urad");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.icqgeo", 42);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.installTime", "1359319041");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.newtab_most_visited_state", "1");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.numberOfSearches", 1);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.previousFFVersion", "38.0.5");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.skip_default_search", "no");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.uniqueID", "135922995613592828861359286195099");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("icqtoolbar.version", "1.5.3");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289075&SearchSource=2&CUI=UN34394566821209751&UM=false&q=");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("plugin.state.npconduitfirefoxplugin", 2);
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.addressBarOwnerCTID", "CT3289075");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3289075&CUI=UN34394566821209751&UM=1&SearchSource=13");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3289075&SearchSource=2&CUI=UN34394566821209751&UM=&q=,hxxp://search.conduit.com/ResultsExt.aspx?octi[...]
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.defaultSearchOwnerCTID", "CT3289075");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.homePageOwnerCTID", "CT3289075");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.machineId", "V5TE2UB9BNQEYVUNUZRDVJWAQTT5L34DK7A2WHBVIOAR5512R0ZW5LXASEUZKWHUCQ1OZMOAQZ/KKSPAK1MD9G");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.originalHomepage", "hxxp://start.icq.com/");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.originalSearchAddressUrl", "");
[dmxn1kd3.default\prefs.js] - Řádek Smazáno : user_pref("smartbar.originalSearchEngine", "ICQ Search");
-\\ Google Chrome v43.0.2357.132
-\\ Opera v0.0.0.0
*************************
AdwCleaner[R0].txt - [14071 bytů] - [12/07/2015 22:03:20]
AdwCleaner[S0].txt - [14103 bytů] - [12/07/2015 22:10:33]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [14162 bytů] ##########
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomaleny PC, vytezovani procesoru a RAM
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zpomaleny PC, vytezovani procesoru a RAM
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-07-2015
Ran by Petřík (administrator) on PETŘÍK-PC on 13-07-2015 18:13:16
Running from C:\Users\Petřík\Desktop
Loaded Profiles: Petřík (Available Profiles: Petřík & UpdatusUser)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
() C:\Program Files\IMPI\ExtensionUpdaterService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2029640 2009-03-19] (ESET)
HKLM\...\Run: [Acrobat Assistant 7.0] => C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [483328 2004-12-14] (Adobe Systems Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [1793736 2015-02-20] (NVIDIA Corporation)
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [18706176 2013-01-08] (Skype Technologies S.A.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-03-20] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk [2012-12-27]
ShortcutTarget: Adobe Acrobat Speed Launcher.lnk -> C:\Windows\Installer\{AC76BA86-1033-C740-7760-100000000002}\SC_Acrobat.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-07-12] (Oracle Corporation)
BHO: AcroIEToolbarHelper Class -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-12] (Oracle Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2528213463-800438733-1852482963-1001 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2011-11-03] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CB700AFB-7B73-489D-BE8D-0020B6D22EA8}: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default
FF SearchEngineOrder.1: Mixi.DJ Search
FF SelectedSearchEngine:
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_191.dll [2015-07-12] ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll [2013-07-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-12] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-09-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\utorrentcontrolv6-customized-web-search.xml [2013-07-27]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: Eset Plugin - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-12-27]
FF Extension: IMPI - C:\Program Files\IMPI\Firefox [2013-03-18]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\toolbar@ask.com.xpi [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} [not found]
Chrome:
=======
CHR Profile: C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-06]
CHR Extension: (Google Drive) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-06]
CHR Extension: (YouTube) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-06]
CHR Extension: (Google Search) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-06]
CHR Extension: (Google Wallet) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-26]
CHR Extension: (Gmail) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-06]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [20680 2009-03-19] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [731840 2009-03-19] (ESET)
R2 IMPI Updater; C:\Program Files\IMPI\ExtensionUpdaterService.exe [185856 2013-02-05] () [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-18] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 eamon; C:\Windows\System32\DRIVERS\eamon.sys [113960 2009-03-19] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [107256 2009-03-19] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [93312 2009-03-19] (ESET)
R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [47104 2009-07-14] (Atheros Communications, Inc.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [721904 2012-12-27] () [File not signed]
U3 akfg8uox; C:\Windows\system32\Drivers\akfg8uox.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-13 03:23 - 2015-07-13 03:23 - 00000000 ____D C:\Users\Petřík\AppData\Local\Steam
2015-07-13 00:12 - 2015-01-31 05:33 - 02744320 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-07-13 00:12 - 2015-01-31 05:33 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-07-13 00:12 - 2015-01-31 02:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-07-13 00:12 - 2014-12-11 19:47 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-07-12 22:32 - 2014-09-05 03:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-07-12 22:22 - 2015-07-12 22:22 - 00000929 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-07-12 22:22 - 2015-07-12 22:22 - 00000917 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-07-12 22:03 - 2015-07-12 22:11 - 00000000 ____D C:\AdwCleaner
2015-07-12 21:56 - 2015-07-12 21:56 - 02248704 _____ C:\Users\Petřík\Downloads\adwcleaner_4.208.exe
2015-07-12 21:56 - 2015-07-12 21:56 - 02248704 _____ C:\Users\Petřík\Desktop\adwcleaner_4.208.exe
2015-07-12 21:56 - 2015-07-12 21:56 - 00000000 ____D C:\Users\Petřík\AppData\Local\NVIDIA
2015-07-12 21:42 - 2012-08-23 16:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-07-12 21:41 - 2015-02-04 01:57 - 00606920 _____ (NVIDIA Corporation) C:\Windows\system32\nvStreaming.exe
2015-07-12 21:41 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2015-07-12 21:40 - 2015-02-03 18:18 - 04229086 _____ C:\Windows\system32\nvcoproc.bin
2015-07-12 21:37 - 2013-10-02 02:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2015-07-12 21:37 - 2013-10-02 02:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-07-12 21:37 - 2013-10-02 02:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-07-12 21:37 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2015-07-12 21:37 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2015-07-12 21:37 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-07-12 21:37 - 2013-10-02 01:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-07-12 21:37 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-07-12 21:37 - 2013-10-02 00:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-07-12 21:37 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-07-12 21:25 - 2015-07-12 21:25 - 00005508 _____ C:\Users\Petřík\Desktop\Addition.rar
2015-07-12 21:24 - 2015-07-09 19:44 - 00015808 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-12 21:24 - 2015-07-09 19:43 - 00587264 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-12 21:24 - 2015-07-09 19:34 - 00932864 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-12 21:23 - 2015-07-12 21:24 - 00020179 _____ C:\Users\Petřík\Desktop\Addition.txt
2015-07-12 21:23 - 2015-06-26 19:56 - 02943488 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 02057216 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-12 21:23 - 2015-06-26 19:55 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-12 21:23 - 2015-06-26 19:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-12 21:23 - 2015-06-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-12 21:23 - 2015-06-26 19:55 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-07-12 21:23 - 2015-05-09 20:09 - 00715200 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-07-12 21:23 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-07-12 21:23 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-07-12 21:23 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-07-12 21:23 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-07-12 21:23 - 2015-03-14 05:04 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-07-12 21:23 - 2015-03-14 05:04 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-07-12 21:22 - 2015-07-13 18:13 - 00010311 _____ C:\Users\Petřík\Desktop\FRST.txt
2015-07-12 21:21 - 2015-07-12 21:11 - 01636864 _____ (Farbar) C:\Users\Petřík\Desktop\FRST.exe
2015-07-12 21:20 - 2015-07-13 18:13 - 00000000 ____D C:\FRST
2015-07-12 21:12 - 2015-07-12 21:12 - 00000000 ____D C:\rsit
2015-07-12 21:12 - 2015-07-12 21:12 - 00000000 ____D C:\Program Files\trend micro
2015-07-12 21:11 - 2015-07-12 21:11 - 01636864 _____ (Farbar) C:\Users\Petřík\Downloads\FRST.exe
2015-07-12 21:10 - 2015-07-12 21:11 - 01107968 _____ C:\Users\Petřík\Downloads\RSIT.exe
2015-07-12 21:07 - 2015-07-12 21:07 - 00000000 ____D C:\Users\Petřík\AppData\Roaming\Hard Disk Sentinel
2015-07-12 21:06 - 2015-07-12 21:06 - 00000000 ____D C:\Users\Petřík\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable
2015-07-12 20:58 - 2015-07-12 21:02 - 51503116 _____ C:\Users\Petřík\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable.rar
2015-07-12 20:58 - 2013-07-12 18:04 - 00867240 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2015-07-12 20:58 - 2013-07-12 18:04 - 00789416 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2015-07-12 20:57 - 2015-07-12 20:57 - 00000000 ____D C:\Program Files\Common Files\Java
2015-07-12 20:56 - 2015-07-12 20:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-12 20:55 - 2015-07-12 21:05 - 00000000 ____D C:\ProgramData\Oracle
2015-07-08 20:57 - 2015-07-08 20:58 - 00007599 _____ C:\Users\Petřík\AppData\Local\Resmon.ResmonCfg
2015-06-30 11:02 - 2015-06-30 11:02 - 00000000 ____D C:\Users\Petřík\AppData\Local\GWX
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-13 18:11 - 2014-11-06 08:39 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-13 18:11 - 2013-01-24 18:45 - 00000000 ____D C:\Users\Petřík\AppData\Roaming\Skype
2015-07-13 18:11 - 2012-12-27 15:21 - 00000000 ____D C:\Program Files\Steam
2015-07-13 18:10 - 2014-11-06 08:39 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-13 18:10 - 2012-12-27 14:36 - 02006957 _____ C:\Windows\WindowsUpdate.log
2015-07-13 10:55 - 2014-11-06 08:39 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-13 10:49 - 2009-07-14 06:34 - 00025760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-13 10:49 - 2009-07-14 06:34 - 00025760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-13 07:19 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2015-07-13 03:17 - 2012-12-28 03:00 - 00000000 ____D C:\ProgramData\NVIDIA
2015-07-13 03:17 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-13 03:17 - 2009-07-14 06:39 - 00113114 _____ C:\Windows\setupact.log
2015-07-13 00:19 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2015-07-12 22:27 - 2012-12-28 10:56 - 00085360 _____ C:\Users\Petřík\AppData\Local\GDIPFONTCACHEV1.DAT
2015-07-12 22:26 - 2009-07-14 06:33 - 00338664 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-12 22:24 - 2012-12-28 11:33 - 00000000 ____D C:\Program Files\TeamViewer
2015-07-12 22:23 - 2012-12-27 14:46 - 01567124 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-12 22:10 - 2013-01-27 13:29 - 00000000 ____D C:\ProgramData\ICQ
2015-07-12 22:00 - 2009-07-14 04:37 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-12 21:59 - 2014-11-06 08:39 - 00000000 ____D C:\Program Files\Google
2015-07-12 21:59 - 2012-12-27 15:04 - 00102822 _____ C:\Windows\PFRO.log
2015-07-12 21:57 - 2015-04-04 09:39 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-12 21:57 - 2014-12-12 07:04 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-12 21:57 - 2014-05-07 19:13 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-12 21:41 - 2012-12-28 03:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-07-12 21:41 - 2012-12-28 03:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-07-12 21:22 - 2014-11-06 08:39 - 00000000 ____D C:\Users\Petřík\AppData\Local\Google
2015-07-12 21:10 - 2014-11-06 08:40 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-12 20:59 - 2013-07-12 18:04 - 00000000 ____D C:\Program Files\Java
2015-07-12 20:55 - 2013-07-12 18:04 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-07-12 20:53 - 2012-12-27 14:54 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-07-12 20:53 - 2012-12-27 14:54 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-07-12 20:51 - 2014-10-31 09:55 - 00000000 ____D C:\Windows\system32\appmgmt
2015-07-03 18:45 - 2014-10-31 09:52 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieUserList
2015-07-03 18:45 - 2014-10-31 09:52 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieSiteList
2015-07-03 18:45 - 2002-01-07 05:31 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieBrowserModeList
2015-06-23 13:27 - 2012-12-27 14:50 - 00246952 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-06-14 14:12 - 2009-07-14 06:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
==================== Files in the root of some directories =======
2015-07-08 20:57 - 2015-07-08 20:58 - 0007599 _____ () C:\Users\Petřík\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
C:\Users\Petřík\AppData\Local\Temp\APNSetup.exe
C:\Users\Petřík\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Petřík\AppData\Local\Temp\GuardICQ.exe
C:\Users\Petřík\AppData\Local\Temp\ICQInetInstaller.exe
C:\Users\Petřík\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Petřík\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Petřík\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Petřík\AppData\Local\Temp\MixiDJToolbar_yh.exe
C:\Users\Petřík\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\Petřík\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Petřík\AppData\Local\Temp\nvSCPAPISvr.exe
C:\Users\Petřík\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\Petřík\AppData\Local\Temp\nvStInst.exe
C:\Users\Petřík\AppData\Local\Temp\ose00000.exe
C:\Users\Petřík\AppData\Local\Temp\PIPInstaller_PTV_.exe
C:\Users\Petřík\AppData\Local\Temp\Quarantine.exe
C:\Users\Petřík\AppData\Local\Temp\setup.exe
C:\Users\Petřík\AppData\Local\Temp\setup_fsu_cid.exe
C:\Users\Petřík\AppData\Local\Temp\sqlite3.dll
C:\Users\Petřík\AppData\Local\Temp\uttC998.tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-07-13 00:37
==================== End of log ============================
Ran by Petřík (administrator) on PETŘÍK-PC on 13-07-2015 18:13:16
Running from C:\Users\Petřík\Desktop
Loaded Profiles: Petřík (Available Profiles: Petřík & UpdatusUser)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
() C:\Program Files\IMPI\ExtensionUpdaterService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2029640 2009-03-19] (ESET)
HKLM\...\Run: [Acrobat Assistant 7.0] => C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [483328 2004-12-14] (Adobe Systems Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [1793736 2015-02-20] (NVIDIA Corporation)
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [18706176 2013-01-08] (Skype Technologies S.A.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-03-20] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk [2012-12-27]
ShortcutTarget: Adobe Acrobat Speed Launcher.lnk -> C:\Windows\Installer\{AC76BA86-1033-C740-7760-100000000002}\SC_Acrobat.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-07-12] (Oracle Corporation)
BHO: AcroIEToolbarHelper Class -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-12] (Oracle Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2528213463-800438733-1852482963-1001 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2011-11-03] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CB700AFB-7B73-489D-BE8D-0020B6D22EA8}: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default
FF SearchEngineOrder.1: Mixi.DJ Search
FF SelectedSearchEngine:
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_191.dll [2015-07-12] ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll [2013-07-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-12] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-09-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\utorrentcontrolv6-customized-web-search.xml [2013-07-27]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: Eset Plugin - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-12-27]
FF Extension: IMPI - C:\Program Files\IMPI\Firefox [2013-03-18]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\toolbar@ask.com.xpi [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} [not found]
Chrome:
=======
CHR Profile: C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-06]
CHR Extension: (Google Drive) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-06]
CHR Extension: (YouTube) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-06]
CHR Extension: (Google Search) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-06]
CHR Extension: (Google Wallet) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-26]
CHR Extension: (Gmail) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-06]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [20680 2009-03-19] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [731840 2009-03-19] (ESET)
R2 IMPI Updater; C:\Program Files\IMPI\ExtensionUpdaterService.exe [185856 2013-02-05] () [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-18] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 eamon; C:\Windows\System32\DRIVERS\eamon.sys [113960 2009-03-19] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [107256 2009-03-19] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [93312 2009-03-19] (ESET)
R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [47104 2009-07-14] (Atheros Communications, Inc.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [721904 2012-12-27] () [File not signed]
U3 akfg8uox; C:\Windows\system32\Drivers\akfg8uox.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-13 03:23 - 2015-07-13 03:23 - 00000000 ____D C:\Users\Petřík\AppData\Local\Steam
2015-07-13 00:12 - 2015-01-31 05:33 - 02744320 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-07-13 00:12 - 2015-01-31 05:33 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-07-13 00:12 - 2015-01-31 02:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-07-13 00:12 - 2014-12-11 19:47 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-07-12 22:32 - 2014-09-05 03:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-07-12 22:22 - 2015-07-12 22:22 - 00000929 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-07-12 22:22 - 2015-07-12 22:22 - 00000917 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-07-12 22:03 - 2015-07-12 22:11 - 00000000 ____D C:\AdwCleaner
2015-07-12 21:56 - 2015-07-12 21:56 - 02248704 _____ C:\Users\Petřík\Downloads\adwcleaner_4.208.exe
2015-07-12 21:56 - 2015-07-12 21:56 - 02248704 _____ C:\Users\Petřík\Desktop\adwcleaner_4.208.exe
2015-07-12 21:56 - 2015-07-12 21:56 - 00000000 ____D C:\Users\Petřík\AppData\Local\NVIDIA
2015-07-12 21:42 - 2012-08-23 16:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-07-12 21:41 - 2015-02-04 01:57 - 00606920 _____ (NVIDIA Corporation) C:\Windows\system32\nvStreaming.exe
2015-07-12 21:41 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2015-07-12 21:40 - 2015-02-03 18:18 - 04229086 _____ C:\Windows\system32\nvcoproc.bin
2015-07-12 21:37 - 2013-10-02 02:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2015-07-12 21:37 - 2013-10-02 02:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-07-12 21:37 - 2013-10-02 02:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-07-12 21:37 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2015-07-12 21:37 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2015-07-12 21:37 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-07-12 21:37 - 2013-10-02 01:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-07-12 21:37 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-07-12 21:37 - 2013-10-02 00:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-07-12 21:37 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-07-12 21:25 - 2015-07-12 21:25 - 00005508 _____ C:\Users\Petřík\Desktop\Addition.rar
2015-07-12 21:24 - 2015-07-09 19:44 - 00015808 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-12 21:24 - 2015-07-09 19:43 - 00587264 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-12 21:24 - 2015-07-09 19:34 - 00932864 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-12 21:23 - 2015-07-12 21:24 - 00020179 _____ C:\Users\Petřík\Desktop\Addition.txt
2015-07-12 21:23 - 2015-06-26 19:56 - 02943488 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 02057216 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-12 21:23 - 2015-06-26 19:55 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-12 21:23 - 2015-06-26 19:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-12 21:23 - 2015-06-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-12 21:23 - 2015-06-26 19:55 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-07-12 21:23 - 2015-05-09 20:09 - 00715200 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-07-12 21:23 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-07-12 21:23 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-07-12 21:23 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-07-12 21:23 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-07-12 21:23 - 2015-03-14 05:04 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-07-12 21:23 - 2015-03-14 05:04 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-07-12 21:22 - 2015-07-13 18:13 - 00010311 _____ C:\Users\Petřík\Desktop\FRST.txt
2015-07-12 21:21 - 2015-07-12 21:11 - 01636864 _____ (Farbar) C:\Users\Petřík\Desktop\FRST.exe
2015-07-12 21:20 - 2015-07-13 18:13 - 00000000 ____D C:\FRST
2015-07-12 21:12 - 2015-07-12 21:12 - 00000000 ____D C:\rsit
2015-07-12 21:12 - 2015-07-12 21:12 - 00000000 ____D C:\Program Files\trend micro
2015-07-12 21:11 - 2015-07-12 21:11 - 01636864 _____ (Farbar) C:\Users\Petřík\Downloads\FRST.exe
2015-07-12 21:10 - 2015-07-12 21:11 - 01107968 _____ C:\Users\Petřík\Downloads\RSIT.exe
2015-07-12 21:07 - 2015-07-12 21:07 - 00000000 ____D C:\Users\Petřík\AppData\Roaming\Hard Disk Sentinel
2015-07-12 21:06 - 2015-07-12 21:06 - 00000000 ____D C:\Users\Petřík\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable
2015-07-12 20:58 - 2015-07-12 21:02 - 51503116 _____ C:\Users\Petřík\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable.rar
2015-07-12 20:58 - 2013-07-12 18:04 - 00867240 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2015-07-12 20:58 - 2013-07-12 18:04 - 00789416 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2015-07-12 20:57 - 2015-07-12 20:57 - 00000000 ____D C:\Program Files\Common Files\Java
2015-07-12 20:56 - 2015-07-12 20:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-12 20:55 - 2015-07-12 21:05 - 00000000 ____D C:\ProgramData\Oracle
2015-07-08 20:57 - 2015-07-08 20:58 - 00007599 _____ C:\Users\Petřík\AppData\Local\Resmon.ResmonCfg
2015-06-30 11:02 - 2015-06-30 11:02 - 00000000 ____D C:\Users\Petřík\AppData\Local\GWX
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-13 18:11 - 2014-11-06 08:39 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-13 18:11 - 2013-01-24 18:45 - 00000000 ____D C:\Users\Petřík\AppData\Roaming\Skype
2015-07-13 18:11 - 2012-12-27 15:21 - 00000000 ____D C:\Program Files\Steam
2015-07-13 18:10 - 2014-11-06 08:39 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-13 18:10 - 2012-12-27 14:36 - 02006957 _____ C:\Windows\WindowsUpdate.log
2015-07-13 10:55 - 2014-11-06 08:39 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-13 10:49 - 2009-07-14 06:34 - 00025760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-13 10:49 - 2009-07-14 06:34 - 00025760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-13 07:19 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2015-07-13 03:17 - 2012-12-28 03:00 - 00000000 ____D C:\ProgramData\NVIDIA
2015-07-13 03:17 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-13 03:17 - 2009-07-14 06:39 - 00113114 _____ C:\Windows\setupact.log
2015-07-13 00:19 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2015-07-12 22:27 - 2012-12-28 10:56 - 00085360 _____ C:\Users\Petřík\AppData\Local\GDIPFONTCACHEV1.DAT
2015-07-12 22:26 - 2009-07-14 06:33 - 00338664 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-12 22:24 - 2012-12-28 11:33 - 00000000 ____D C:\Program Files\TeamViewer
2015-07-12 22:23 - 2012-12-27 14:46 - 01567124 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-12 22:10 - 2013-01-27 13:29 - 00000000 ____D C:\ProgramData\ICQ
2015-07-12 22:00 - 2009-07-14 04:37 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-12 21:59 - 2014-11-06 08:39 - 00000000 ____D C:\Program Files\Google
2015-07-12 21:59 - 2012-12-27 15:04 - 00102822 _____ C:\Windows\PFRO.log
2015-07-12 21:57 - 2015-04-04 09:39 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-12 21:57 - 2014-12-12 07:04 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-12 21:57 - 2014-05-07 19:13 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-12 21:41 - 2012-12-28 03:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-07-12 21:41 - 2012-12-28 03:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-07-12 21:22 - 2014-11-06 08:39 - 00000000 ____D C:\Users\Petřík\AppData\Local\Google
2015-07-12 21:10 - 2014-11-06 08:40 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-12 20:59 - 2013-07-12 18:04 - 00000000 ____D C:\Program Files\Java
2015-07-12 20:55 - 2013-07-12 18:04 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-07-12 20:53 - 2012-12-27 14:54 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-07-12 20:53 - 2012-12-27 14:54 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-07-12 20:51 - 2014-10-31 09:55 - 00000000 ____D C:\Windows\system32\appmgmt
2015-07-03 18:45 - 2014-10-31 09:52 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieUserList
2015-07-03 18:45 - 2014-10-31 09:52 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieSiteList
2015-07-03 18:45 - 2002-01-07 05:31 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieBrowserModeList
2015-06-23 13:27 - 2012-12-27 14:50 - 00246952 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-06-14 14:12 - 2009-07-14 06:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
==================== Files in the root of some directories =======
2015-07-08 20:57 - 2015-07-08 20:58 - 0007599 _____ () C:\Users\Petřík\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
C:\Users\Petřík\AppData\Local\Temp\APNSetup.exe
C:\Users\Petřík\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Petřík\AppData\Local\Temp\GuardICQ.exe
C:\Users\Petřík\AppData\Local\Temp\ICQInetInstaller.exe
C:\Users\Petřík\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Petřík\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Petřík\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Petřík\AppData\Local\Temp\MixiDJToolbar_yh.exe
C:\Users\Petřík\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\Petřík\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Petřík\AppData\Local\Temp\nvSCPAPISvr.exe
C:\Users\Petřík\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\Petřík\AppData\Local\Temp\nvStInst.exe
C:\Users\Petřík\AppData\Local\Temp\ose00000.exe
C:\Users\Petřík\AppData\Local\Temp\PIPInstaller_PTV_.exe
C:\Users\Petřík\AppData\Local\Temp\Quarantine.exe
C:\Users\Petřík\AppData\Local\Temp\setup.exe
C:\Users\Petřík\AppData\Local\Temp\setup_fsu_cid.exe
C:\Users\Petřík\AppData\Local\Temp\sqlite3.dll
C:\Users\Petřík\AppData\Local\Temp\uttC998.tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-07-13 00:37
==================== End of log ============================
- Přílohy
-
- Addition.rar
- (5.28 KiB) Staženo 55 x
Re: zpomaleny PC, vytezovani procesoru a RAM
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-07-2015
Ran by Petřík (administrator) on PETŘÍK-PC on 13-07-2015 18:13:16
Running from C:\Users\Petřík\Desktop
Loaded Profiles: Petřík (Available Profiles: Petřík & UpdatusUser)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
() C:\Program Files\IMPI\ExtensionUpdaterService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2029640 2009-03-19] (ESET)
HKLM\...\Run: [Acrobat Assistant 7.0] => C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [483328 2004-12-14] (Adobe Systems Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [1793736 2015-02-20] (NVIDIA Corporation)
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [18706176 2013-01-08] (Skype Technologies S.A.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-03-20] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk [2012-12-27]
ShortcutTarget: Adobe Acrobat Speed Launcher.lnk -> C:\Windows\Installer\{AC76BA86-1033-C740-7760-100000000002}\SC_Acrobat.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-07-12] (Oracle Corporation)
BHO: AcroIEToolbarHelper Class -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-12] (Oracle Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2528213463-800438733-1852482963-1001 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2011-11-03] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CB700AFB-7B73-489D-BE8D-0020B6D22EA8}: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default
FF SearchEngineOrder.1: Mixi.DJ Search
FF SelectedSearchEngine:
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_191.dll [2015-07-12] ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll [2013-07-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-12] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-09-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\utorrentcontrolv6-customized-web-search.xml [2013-07-27]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: Eset Plugin - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-12-27]
FF Extension: IMPI - C:\Program Files\IMPI\Firefox [2013-03-18]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\toolbar@ask.com.xpi [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} [not found]
Chrome:
=======
CHR Profile: C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-06]
CHR Extension: (Google Drive) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-06]
CHR Extension: (YouTube) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-06]
CHR Extension: (Google Search) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-06]
CHR Extension: (Google Wallet) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-26]
CHR Extension: (Gmail) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-06]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [20680 2009-03-19] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [731840 2009-03-19] (ESET)
R2 IMPI Updater; C:\Program Files\IMPI\ExtensionUpdaterService.exe [185856 2013-02-05] () [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-18] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 eamon; C:\Windows\System32\DRIVERS\eamon.sys [113960 2009-03-19] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [107256 2009-03-19] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [93312 2009-03-19] (ESET)
R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [47104 2009-07-14] (Atheros Communications, Inc.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [721904 2012-12-27] () [File not signed]
U3 akfg8uox; C:\Windows\system32\Drivers\akfg8uox.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-13 03:23 - 2015-07-13 03:23 - 00000000 ____D C:\Users\Petřík\AppData\Local\Steam
2015-07-13 00:12 - 2015-01-31 05:33 - 02744320 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-07-13 00:12 - 2015-01-31 05:33 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-07-13 00:12 - 2015-01-31 02:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-07-13 00:12 - 2014-12-11 19:47 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-07-12 22:32 - 2014-09-05 03:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-07-12 22:22 - 2015-07-12 22:22 - 00000929 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-07-12 22:22 - 2015-07-12 22:22 - 00000917 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-07-12 22:03 - 2015-07-12 22:11 - 00000000 ____D C:\AdwCleaner
2015-07-12 21:56 - 2015-07-12 21:56 - 02248704 _____ C:\Users\Petřík\Downloads\adwcleaner_4.208.exe
2015-07-12 21:56 - 2015-07-12 21:56 - 02248704 _____ C:\Users\Petřík\Desktop\adwcleaner_4.208.exe
2015-07-12 21:56 - 2015-07-12 21:56 - 00000000 ____D C:\Users\Petřík\AppData\Local\NVIDIA
2015-07-12 21:42 - 2012-08-23 16:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-07-12 21:41 - 2015-02-04 01:57 - 00606920 _____ (NVIDIA Corporation) C:\Windows\system32\nvStreaming.exe
2015-07-12 21:41 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2015-07-12 21:40 - 2015-02-03 18:18 - 04229086 _____ C:\Windows\system32\nvcoproc.bin
2015-07-12 21:37 - 2013-10-02 02:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2015-07-12 21:37 - 2013-10-02 02:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-07-12 21:37 - 2013-10-02 02:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-07-12 21:37 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2015-07-12 21:37 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2015-07-12 21:37 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-07-12 21:37 - 2013-10-02 01:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-07-12 21:37 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-07-12 21:37 - 2013-10-02 00:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-07-12 21:37 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-07-12 21:25 - 2015-07-12 21:25 - 00005508 _____ C:\Users\Petřík\Desktop\Addition.rar
2015-07-12 21:24 - 2015-07-09 19:44 - 00015808 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-12 21:24 - 2015-07-09 19:43 - 00587264 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-12 21:24 - 2015-07-09 19:34 - 00932864 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-12 21:23 - 2015-07-12 21:24 - 00020179 _____ C:\Users\Petřík\Desktop\Addition.txt
2015-07-12 21:23 - 2015-06-26 19:56 - 02943488 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 02057216 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-12 21:23 - 2015-06-26 19:55 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-12 21:23 - 2015-06-26 19:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-12 21:23 - 2015-06-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-12 21:23 - 2015-06-26 19:55 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-07-12 21:23 - 2015-05-09 20:09 - 00715200 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-07-12 21:23 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-07-12 21:23 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-07-12 21:23 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-07-12 21:23 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-07-12 21:23 - 2015-03-14 05:04 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-07-12 21:23 - 2015-03-14 05:04 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-07-12 21:22 - 2015-07-13 18:13 - 00010311 _____ C:\Users\Petřík\Desktop\FRST.txt
2015-07-12 21:21 - 2015-07-12 21:11 - 01636864 _____ (Farbar) C:\Users\Petřík\Desktop\FRST.exe
2015-07-12 21:20 - 2015-07-13 18:13 - 00000000 ____D C:\FRST
2015-07-12 21:12 - 2015-07-12 21:12 - 00000000 ____D C:\rsit
2015-07-12 21:12 - 2015-07-12 21:12 - 00000000 ____D C:\Program Files\trend micro
2015-07-12 21:11 - 2015-07-12 21:11 - 01636864 _____ (Farbar) C:\Users\Petřík\Downloads\FRST.exe
2015-07-12 21:10 - 2015-07-12 21:11 - 01107968 _____ C:\Users\Petřík\Downloads\RSIT.exe
2015-07-12 21:07 - 2015-07-12 21:07 - 00000000 ____D C:\Users\Petřík\AppData\Roaming\Hard Disk Sentinel
2015-07-12 21:06 - 2015-07-12 21:06 - 00000000 ____D C:\Users\Petřík\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable
2015-07-12 20:58 - 2015-07-12 21:02 - 51503116 _____ C:\Users\Petřík\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable.rar
2015-07-12 20:58 - 2013-07-12 18:04 - 00867240 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2015-07-12 20:58 - 2013-07-12 18:04 - 00789416 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2015-07-12 20:57 - 2015-07-12 20:57 - 00000000 ____D C:\Program Files\Common Files\Java
2015-07-12 20:56 - 2015-07-12 20:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-12 20:55 - 2015-07-12 21:05 - 00000000 ____D C:\ProgramData\Oracle
2015-07-08 20:57 - 2015-07-08 20:58 - 00007599 _____ C:\Users\Petřík\AppData\Local\Resmon.ResmonCfg
2015-06-30 11:02 - 2015-06-30 11:02 - 00000000 ____D C:\Users\Petřík\AppData\Local\GWX
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-13 18:11 - 2014-11-06 08:39 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-13 18:11 - 2013-01-24 18:45 - 00000000 ____D C:\Users\Petřík\AppData\Roaming\Skype
2015-07-13 18:11 - 2012-12-27 15:21 - 00000000 ____D C:\Program Files\Steam
2015-07-13 18:10 - 2014-11-06 08:39 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-13 18:10 - 2012-12-27 14:36 - 02006957 _____ C:\Windows\WindowsUpdate.log
2015-07-13 10:55 - 2014-11-06 08:39 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-13 10:49 - 2009-07-14 06:34 - 00025760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-13 10:49 - 2009-07-14 06:34 - 00025760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-13 07:19 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2015-07-13 03:17 - 2012-12-28 03:00 - 00000000 ____D C:\ProgramData\NVIDIA
2015-07-13 03:17 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-13 03:17 - 2009-07-14 06:39 - 00113114 _____ C:\Windows\setupact.log
2015-07-13 00:19 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2015-07-12 22:27 - 2012-12-28 10:56 - 00085360 _____ C:\Users\Petřík\AppData\Local\GDIPFONTCACHEV1.DAT
2015-07-12 22:26 - 2009-07-14 06:33 - 00338664 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-12 22:24 - 2012-12-28 11:33 - 00000000 ____D C:\Program Files\TeamViewer
2015-07-12 22:23 - 2012-12-27 14:46 - 01567124 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-12 22:10 - 2013-01-27 13:29 - 00000000 ____D C:\ProgramData\ICQ
2015-07-12 22:00 - 2009-07-14 04:37 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-12 21:59 - 2014-11-06 08:39 - 00000000 ____D C:\Program Files\Google
2015-07-12 21:59 - 2012-12-27 15:04 - 00102822 _____ C:\Windows\PFRO.log
2015-07-12 21:57 - 2015-04-04 09:39 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-12 21:57 - 2014-12-12 07:04 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-12 21:57 - 2014-05-07 19:13 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-12 21:41 - 2012-12-28 03:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-07-12 21:41 - 2012-12-28 03:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-07-12 21:22 - 2014-11-06 08:39 - 00000000 ____D C:\Users\Petřík\AppData\Local\Google
2015-07-12 21:10 - 2014-11-06 08:40 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-12 20:59 - 2013-07-12 18:04 - 00000000 ____D C:\Program Files\Java
2015-07-12 20:55 - 2013-07-12 18:04 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-07-12 20:53 - 2012-12-27 14:54 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-07-12 20:53 - 2012-12-27 14:54 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-07-12 20:51 - 2014-10-31 09:55 - 00000000 ____D C:\Windows\system32\appmgmt
2015-07-03 18:45 - 2014-10-31 09:52 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieUserList
2015-07-03 18:45 - 2014-10-31 09:52 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieSiteList
2015-07-03 18:45 - 2002-01-07 05:31 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieBrowserModeList
2015-06-23 13:27 - 2012-12-27 14:50 - 00246952 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-06-14 14:12 - 2009-07-14 06:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
==================== Files in the root of some directories =======
2015-07-08 20:57 - 2015-07-08 20:58 - 0007599 _____ () C:\Users\Petřík\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
C:\Users\Petřík\AppData\Local\Temp\APNSetup.exe
C:\Users\Petřík\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Petřík\AppData\Local\Temp\GuardICQ.exe
C:\Users\Petřík\AppData\Local\Temp\ICQInetInstaller.exe
C:\Users\Petřík\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Petřík\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Petřík\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Petřík\AppData\Local\Temp\MixiDJToolbar_yh.exe
C:\Users\Petřík\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\Petřík\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Petřík\AppData\Local\Temp\nvSCPAPISvr.exe
C:\Users\Petřík\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\Petřík\AppData\Local\Temp\nvStInst.exe
C:\Users\Petřík\AppData\Local\Temp\ose00000.exe
C:\Users\Petřík\AppData\Local\Temp\PIPInstaller_PTV_.exe
C:\Users\Petřík\AppData\Local\Temp\Quarantine.exe
C:\Users\Petřík\AppData\Local\Temp\setup.exe
C:\Users\Petřík\AppData\Local\Temp\setup_fsu_cid.exe
C:\Users\Petřík\AppData\Local\Temp\sqlite3.dll
C:\Users\Petřík\AppData\Local\Temp\uttC998.tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-07-13 00:37
==================== End of log ============================
Ran by Petřík (administrator) on PETŘÍK-PC on 13-07-2015 18:13:16
Running from C:\Users\Petřík\Desktop
Loaded Profiles: Petřík (Available Profiles: Petřík & UpdatusUser)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
() C:\Program Files\IMPI\ExtensionUpdaterService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2029640 2009-03-19] (ESET)
HKLM\...\Run: [Acrobat Assistant 7.0] => C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [483328 2004-12-14] (Adobe Systems Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [1793736 2015-02-20] (NVIDIA Corporation)
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-2528213463-800438733-1852482963-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [18706176 2013-01-08] (Skype Technologies S.A.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-03-20] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk [2012-12-27]
ShortcutTarget: Adobe Acrobat Speed Launcher.lnk -> C:\Windows\Installer\{AC76BA86-1033-C740-7760-100000000002}\SC_Acrobat.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-07-12] (Oracle Corporation)
BHO: AcroIEToolbarHelper Class -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-12] (Oracle Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2528213463-800438733-1852482963-1001 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2011-11-03] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CB700AFB-7B73-489D-BE8D-0020B6D22EA8}: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default
FF SearchEngineOrder.1: Mixi.DJ Search
FF SelectedSearchEngine:
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_191.dll [2015-07-12] ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll [2013-07-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-12] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-09-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\searchplugins\utorrentcontrolv6-customized-web-search.xml [2013-07-27]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: Eset Plugin - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-12-27]
FF Extension: IMPI - C:\Program Files\IMPI\Firefox [2013-03-18]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\toolbar@ask.com.xpi [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} [not found]
Chrome:
=======
CHR Profile: C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-06]
CHR Extension: (Google Drive) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-06]
CHR Extension: (YouTube) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-06]
CHR Extension: (Google Search) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-06]
CHR Extension: (Google Wallet) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-26]
CHR Extension: (Gmail) - C:\Users\Petřík\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-06]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [20680 2009-03-19] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [731840 2009-03-19] (ESET)
R2 IMPI Updater; C:\Program Files\IMPI\ExtensionUpdaterService.exe [185856 2013-02-05] () [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-18] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 eamon; C:\Windows\System32\DRIVERS\eamon.sys [113960 2009-03-19] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [107256 2009-03-19] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [93312 2009-03-19] (ESET)
R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [47104 2009-07-14] (Atheros Communications, Inc.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [721904 2012-12-27] () [File not signed]
U3 akfg8uox; C:\Windows\system32\Drivers\akfg8uox.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-13 03:23 - 2015-07-13 03:23 - 00000000 ____D C:\Users\Petřík\AppData\Local\Steam
2015-07-13 00:12 - 2015-01-31 05:33 - 02744320 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-07-13 00:12 - 2015-01-31 05:33 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-07-13 00:12 - 2015-01-31 02:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-07-13 00:12 - 2014-12-11 19:47 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-07-12 22:32 - 2014-09-05 03:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-07-12 22:22 - 2015-07-12 22:22 - 00000929 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-07-12 22:22 - 2015-07-12 22:22 - 00000917 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-07-12 22:03 - 2015-07-12 22:11 - 00000000 ____D C:\AdwCleaner
2015-07-12 21:56 - 2015-07-12 21:56 - 02248704 _____ C:\Users\Petřík\Downloads\adwcleaner_4.208.exe
2015-07-12 21:56 - 2015-07-12 21:56 - 02248704 _____ C:\Users\Petřík\Desktop\adwcleaner_4.208.exe
2015-07-12 21:56 - 2015-07-12 21:56 - 00000000 ____D C:\Users\Petřík\AppData\Local\NVIDIA
2015-07-12 21:42 - 2012-08-23 16:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-07-12 21:41 - 2015-02-04 01:57 - 00606920 _____ (NVIDIA Corporation) C:\Windows\system32\nvStreaming.exe
2015-07-12 21:41 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2015-07-12 21:40 - 2015-02-03 18:18 - 04229086 _____ C:\Windows\system32\nvcoproc.bin
2015-07-12 21:37 - 2013-10-02 02:42 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2015-07-12 21:37 - 2013-10-02 02:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-07-12 21:37 - 2013-10-02 02:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-07-12 21:37 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2015-07-12 21:37 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2015-07-12 21:37 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-07-12 21:37 - 2013-10-02 01:45 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-07-12 21:37 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-07-12 21:37 - 2013-10-02 00:53 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-07-12 21:37 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-07-12 21:25 - 2015-07-12 21:25 - 00005508 _____ C:\Users\Petřík\Desktop\Addition.rar
2015-07-12 21:24 - 2015-07-09 19:44 - 00015808 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-12 21:24 - 2015-07-09 19:43 - 00587264 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-12 21:24 - 2015-07-09 19:42 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-12 21:24 - 2015-07-09 19:34 - 00932864 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-12 21:23 - 2015-07-12 21:24 - 00020179 _____ C:\Users\Petřík\Desktop\Addition.txt
2015-07-12 21:23 - 2015-06-26 19:56 - 02943488 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 02057216 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-12 21:23 - 2015-06-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-12 21:23 - 2015-06-26 19:55 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-12 21:23 - 2015-06-26 19:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-12 21:23 - 2015-06-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-12 21:23 - 2015-06-26 19:55 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-07-12 21:23 - 2015-05-09 20:09 - 00715200 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-07-12 21:23 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-07-12 21:23 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-07-12 21:23 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-07-12 21:23 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-07-12 21:23 - 2015-03-14 05:04 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-07-12 21:23 - 2015-03-14 05:04 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-07-12 21:22 - 2015-07-13 18:13 - 00010311 _____ C:\Users\Petřík\Desktop\FRST.txt
2015-07-12 21:21 - 2015-07-12 21:11 - 01636864 _____ (Farbar) C:\Users\Petřík\Desktop\FRST.exe
2015-07-12 21:20 - 2015-07-13 18:13 - 00000000 ____D C:\FRST
2015-07-12 21:12 - 2015-07-12 21:12 - 00000000 ____D C:\rsit
2015-07-12 21:12 - 2015-07-12 21:12 - 00000000 ____D C:\Program Files\trend micro
2015-07-12 21:11 - 2015-07-12 21:11 - 01636864 _____ (Farbar) C:\Users\Petřík\Downloads\FRST.exe
2015-07-12 21:10 - 2015-07-12 21:11 - 01107968 _____ C:\Users\Petřík\Downloads\RSIT.exe
2015-07-12 21:07 - 2015-07-12 21:07 - 00000000 ____D C:\Users\Petřík\AppData\Roaming\Hard Disk Sentinel
2015-07-12 21:06 - 2015-07-12 21:06 - 00000000 ____D C:\Users\Petřík\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable
2015-07-12 20:58 - 2015-07-12 21:02 - 51503116 _____ C:\Users\Petřík\Downloads\Hard-Disk-Sentinel-Pro-4.60+portable.rar
2015-07-12 20:58 - 2013-07-12 18:04 - 00867240 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2015-07-12 20:58 - 2013-07-12 18:04 - 00789416 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2015-07-12 20:57 - 2015-07-12 20:57 - 00000000 ____D C:\Program Files\Common Files\Java
2015-07-12 20:56 - 2015-07-12 20:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-12 20:55 - 2015-07-12 21:05 - 00000000 ____D C:\ProgramData\Oracle
2015-07-08 20:57 - 2015-07-08 20:58 - 00007599 _____ C:\Users\Petřík\AppData\Local\Resmon.ResmonCfg
2015-06-30 11:02 - 2015-06-30 11:02 - 00000000 ____D C:\Users\Petřík\AppData\Local\GWX
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-13 18:11 - 2014-11-06 08:39 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-13 18:11 - 2013-01-24 18:45 - 00000000 ____D C:\Users\Petřík\AppData\Roaming\Skype
2015-07-13 18:11 - 2012-12-27 15:21 - 00000000 ____D C:\Program Files\Steam
2015-07-13 18:10 - 2014-11-06 08:39 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-13 18:10 - 2012-12-27 14:36 - 02006957 _____ C:\Windows\WindowsUpdate.log
2015-07-13 10:55 - 2014-11-06 08:39 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-13 10:49 - 2009-07-14 06:34 - 00025760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-13 10:49 - 2009-07-14 06:34 - 00025760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-13 07:19 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2015-07-13 03:17 - 2012-12-28 03:00 - 00000000 ____D C:\ProgramData\NVIDIA
2015-07-13 03:17 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-13 03:17 - 2009-07-14 06:39 - 00113114 _____ C:\Windows\setupact.log
2015-07-13 00:19 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2015-07-12 22:27 - 2012-12-28 10:56 - 00085360 _____ C:\Users\Petřík\AppData\Local\GDIPFONTCACHEV1.DAT
2015-07-12 22:26 - 2009-07-14 06:33 - 00338664 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-12 22:24 - 2012-12-28 11:33 - 00000000 ____D C:\Program Files\TeamViewer
2015-07-12 22:23 - 2012-12-27 14:46 - 01567124 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-12 22:10 - 2013-01-27 13:29 - 00000000 ____D C:\ProgramData\ICQ
2015-07-12 22:00 - 2009-07-14 04:37 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-12 21:59 - 2014-11-06 08:39 - 00000000 ____D C:\Program Files\Google
2015-07-12 21:59 - 2012-12-27 15:04 - 00102822 _____ C:\Windows\PFRO.log
2015-07-12 21:57 - 2015-04-04 09:39 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-12 21:57 - 2014-12-12 07:04 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-12 21:57 - 2014-05-07 19:13 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-12 21:41 - 2012-12-28 03:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-07-12 21:41 - 2012-12-28 03:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-07-12 21:22 - 2014-11-06 08:39 - 00000000 ____D C:\Users\Petřík\AppData\Local\Google
2015-07-12 21:10 - 2014-11-06 08:40 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-12 20:59 - 2013-07-12 18:04 - 00000000 ____D C:\Program Files\Java
2015-07-12 20:55 - 2013-07-12 18:04 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-07-12 20:53 - 2012-12-27 14:54 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-07-12 20:53 - 2012-12-27 14:54 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-07-12 20:51 - 2014-10-31 09:55 - 00000000 ____D C:\Windows\system32\appmgmt
2015-07-03 18:45 - 2014-10-31 09:52 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieUserList
2015-07-03 18:45 - 2014-10-31 09:52 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieSiteList
2015-07-03 18:45 - 2002-01-07 05:31 - 00000000 __SHD C:\Users\Petřík\AppData\Local\EmieBrowserModeList
2015-06-23 13:27 - 2012-12-27 14:50 - 00246952 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-06-14 14:12 - 2009-07-14 06:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
==================== Files in the root of some directories =======
2015-07-08 20:57 - 2015-07-08 20:58 - 0007599 _____ () C:\Users\Petřík\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
C:\Users\Petřík\AppData\Local\Temp\APNSetup.exe
C:\Users\Petřík\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Petřík\AppData\Local\Temp\GuardICQ.exe
C:\Users\Petřík\AppData\Local\Temp\ICQInetInstaller.exe
C:\Users\Petřík\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Petřík\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Petřík\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Petřík\AppData\Local\Temp\MixiDJToolbar_yh.exe
C:\Users\Petřík\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\Petřík\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Petřík\AppData\Local\Temp\nvSCPAPISvr.exe
C:\Users\Petřík\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\Petřík\AppData\Local\Temp\nvStInst.exe
C:\Users\Petřík\AppData\Local\Temp\ose00000.exe
C:\Users\Petřík\AppData\Local\Temp\PIPInstaller_PTV_.exe
C:\Users\Petřík\AppData\Local\Temp\Quarantine.exe
C:\Users\Petřík\AppData\Local\Temp\setup.exe
C:\Users\Petřík\AppData\Local\Temp\setup_fsu_cid.exe
C:\Users\Petřík\AppData\Local\Temp\sqlite3.dll
C:\Users\Petřík\AppData\Local\Temp\uttC998.tmp.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-07-13 00:37
==================== End of log ============================
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomaleny PC, vytezovani procesoru a RAM
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\toolbar@ask.com.xpi [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} [not found]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Petřík\AppData\Local\Temp
Task: {50670D1F-48E9-4BB5-935F-D47929D30C1C} - \AdobeFlashPlayerUpdate 2 No Task File <==== ATTENTION
Task: {884186D6-3CE7-4EFD-825C-8AFA41CBB0CB} - \AdobeFlashPlayerUpdate No Task File <==== ATTENTION
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zpomaleny PC, vytezovani procesoru a RAM
Fix result of Farbar Recovery Scan Tool (x86) Version: 12-07-2015
Ran by Petřík at 2015-07-15 20:56:17 Run:1
Running from C:\Users\Petřík\Desktop
Loaded Profiles: Petřík (Available Profiles: Petřík & UpdatusUser)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\toolbar@ask.com.xpi [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} [not found]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Petřík\AppData\Local\Temp
Task: {50670D1F-48E9-4BB5-935F-D47929D30C1C} - \AdobeFlashPlayerUpdate 2 No Task File <==== ATTENTION
Task: {884186D6-3CE7-4EFD-825C-8AFA41CBB0CB} - \AdobeFlashPlayerUpdate No Task File <==== ATTENTION
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully.
C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} => not found.
C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\toolbar@ask.com.xpi => not found.
C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} => not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
"C:\Users\Petřík\AppData\Local\Temp" folder move:
Could not move "C:\Users\Petřík\AppData\Local\Temp" folder => Scheduled to move on reboot.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{50670D1F-48E9-4BB5-935F-D47929D30C1C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{50670D1F-48E9-4BB5-935F-D47929D30C1C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeFlashPlayerUpdate 2" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{884186D6-3CE7-4EFD-825C-8AFA41CBB0CB}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{884186D6-3CE7-4EFD-825C-8AFA41CBB0CB}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeFlashPlayerUpdate" => key removed successfully.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-07-15 20:59:25)<=
"C:\Users\Petřík\AppData\Local\Temp" => Could not move
==== End of Fixlog 20:59:28 ====
Ran by Petřík at 2015-07-15 20:56:17 Run:1
Running from C:\Users\Petřík\Desktop
Loaded Profiles: Petřík (Available Profiles: Petřík & UpdatusUser)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\toolbar@ask.com.xpi [not found]
FF Extension: No Name - C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} [not found]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Petřík\AppData\Local\Temp
Task: {50670D1F-48E9-4BB5-935F-D47929D30C1C} - \AdobeFlashPlayerUpdate 2 No Task File <==== ATTENTION
Task: {884186D6-3CE7-4EFD-825C-8AFA41CBB0CB} - \AdobeFlashPlayerUpdate No Task File <==== ATTENTION
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully.
C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} => not found.
C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\toolbar@ask.com.xpi => not found.
C:\Users\Petřík\AppData\Roaming\Mozilla\Firefox\Profiles\dmxn1kd3.default\extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} => not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
"C:\Users\Petřík\AppData\Local\Temp" folder move:
Could not move "C:\Users\Petřík\AppData\Local\Temp" folder => Scheduled to move on reboot.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{50670D1F-48E9-4BB5-935F-D47929D30C1C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{50670D1F-48E9-4BB5-935F-D47929D30C1C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeFlashPlayerUpdate 2" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{884186D6-3CE7-4EFD-825C-8AFA41CBB0CB}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{884186D6-3CE7-4EFD-825C-8AFA41CBB0CB}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AdobeFlashPlayerUpdate" => key removed successfully.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-07-15 20:59:25)<=
"C:\Users\Petřík\AppData\Local\Temp" => Could not move
==== End of Fixlog 20:59:28 ====
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomaleny PC, vytezovani procesoru a RAM
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zpomaleny PC, vytezovani procesoru a RAM
Ano děkuji, celkem razantní. Ještě jsem radši vyměnil HDD, pár chybek se tam objevilo. Omlouvám se že píšu až teď, mezi tím jsem to vrátil strécovi.
Takže děkuji moc. Jsem moc spokojený se službami tohoto fóra, občas potřebuji Vaše rady ať kvůli sobě nebo mému blízkému okolí.
Takže děkuji moc. Jsem moc spokojený se službami tohoto fóra, občas potřebuji Vaše rady ať kvůli sobě nebo mému blízkému okolí.
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomaleny PC, vytezovani procesoru a RAM
Děkujeme za uznání a nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?