Vyosek prosím o kontrolu. Díky za pomoc.

Zpráva

takos · #1 Příspěvek od **takos** » 13 zář 2015 11:31

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:12-09-2015
Ran by sangoko (administrator) on TAKOS (13-09-2015 12:25:40)
Running from C:\Users\sangoko\Desktop
Loaded Profiles: sangoko (Available Profiles: sangoko & Společnost)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Agere Systems) C:\Windows\System32\agrsmsvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
( ) C:\Windows\System32\lxducoms.exe
(Motive Communications, Inc.) C:\Program Files\Common Files\Motive\McciCMService.exe
() C:\Program Files\SensorsView\drv\svsvc.exe
() C:\Program Files\Synergy\synergyd.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.28.13\GoogleCrashHandler.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
() C:\Program Files\RocketDock\RocketDock.exe
() C:\Program Files\WandouLabs\wandoujia_helper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynToshiba.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1451304 2009-03-20] (Synaptics Incorporated)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Windows\RtHDVCpl.exe [4489216 2007-06-13] (Realtek Semiconductor)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-750613624-948088251-3038114490-1000\...\Run: [RocketDock] => C:\Program Files\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-750613624-948088251-3038114490-1000\...\Run: [supertintin_skype] => C:\Program Files\Supertintin for Skype\supertintin_skype.exe [999936 2011-01-10] (Imtiger Software Inc.)
HKU\S-1-5-21-750613624-948088251-3038114490-1000\...\Run: [Google Update] => C:\Users\sangoko\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-07-29] (Google)
Startup: C:\Users\sangoko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Bandwidth Meter.lnk [2010-11-02]
Startup: C:\Users\sangoko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wandoujia_helper.lnk [2015-07-05]
ShortcutTarget: wandoujia_helper.lnk -> C:\Program Files\WandouLabs\wandoujia_helper.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176 2008-06-26] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{092130CD-1790-4714-922B-C93CB7D8403A}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{BB835034-38EE-45E2-BA98-9C6D49D0AAB5}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-750613624-948088251-3038114490-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
HKU\S-1-5-21-750613624-948088251-3038114490-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-750613624-948088251-3038114490-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-750613624-948088251-3038114490-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = web/?type=dspp&ts=1432140622&from=xtab&uid=EE37F7F59F8C4eb7ACB70257A39DCFE8&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-09-13] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-13] (Oracle Corporation)
DPF: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_15-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default
FF Homepage: http://www.google.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-15] ()
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [No File]
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-13] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-13] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2015-08-24] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2015-08-24] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-750613624-948088251-3038114490-1000: @lingea.com/x-lingea-translate -> C:\Program Files\Common Files\Lingea Shared\LG_Mozilla.dll [2011-10-20] (Lingea s.r.o.)
FF Plugin HKU\S-1-5-21-750613624-948088251-3038114490-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\sangoko\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2014-05-15] (Google)
FF Plugin HKU\S-1-5-21-750613624-948088251-3038114490-1000: @talk.google.com/O1DPlugin -> C:\Users\sangoko\AppData\Roaming\Mozilla\plugins\npo1d.dll [2014-05-15] (Google)
FF Plugin HKU\S-1-5-21-750613624-948088251-3038114490-1000: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2015-08-24] (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll [2011-04-15] (BitComet)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll [2009-11-14] (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll [2009-06-25] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np_gp.dll [2009-09-23] (NOS Microsystems Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Users\sangoko\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2014-05-15] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\sangoko\AppData\Roaming\mozilla\plugins\npo1d.dll [2014-05-15] (Google)
FF SearchPlugin: C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\searchplugins\heurkacz.xml [2012-07-07]
FF Extension: BlackFox V2-Blue - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\zigboom.designs@gmail.com [2015-07-12]
FF Extension: FT DeepDark - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-08-25]
FF Extension: FoxLingo - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66}(49) [2012-09-02]
FF Extension: Automatic Save Folder - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\asf@mangaheart.org.xpi [2015-09-12]
FF Extension: Google Translator for Firefox - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\translator@zoli.bod.xpi [2012-10-23]
FF Extension: Walnut for Firefox - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF}.xpi [2011-07-13]
FF Extension: ReloadEvery - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2015-09-09]
FF Extension: Video DownloadHelper - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-03-15]
FF Extension: DownThemAll! - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2012-06-26]
FF Extension: FoxTab - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}.xpi [2015-09-12]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-04-23]

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.nevyhazujto.cz/index.php?mod=search ... aodvoz.cz/"
CHR Profile: C:\Users\sangoko\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Video AdBlock for Chrome) - C:\Users\sangoko\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd [2015-06-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\sangoko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-23]
CHR HKLM\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-750613624-948088251-3038114490-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
S3 CFSvcs; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960 2006-11-14] (TOSHIBA CORPORATION) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S2 lxduCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxduserv.exe [98984 2008-05-24] (Lexmark International, Inc.)
R2 lxdu_device; C:\Windows\system32\lxducoms.exe [594600 2008-05-24] ( )
R2 McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [303104 2007-10-15] (Motive Communications, Inc.) [File not signed]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 sviewsvc; C:\Program Files\SensorsView\drv\svsvc.exe [221184 2005-10-30] () [File not signed]
R2 Synergy; C:\Program Files\Synergy\synergyd.exe [318976 2013-05-03] ()
S4 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-01] (TeamViewer GmbH)
S4 TNaviSrv; C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe [77824 2007-06-28] (TOSHIBA Corporation) [File not signed]
S4 TODDSrv; C:\Windows\system32\TODDSrv.exe [114688 2006-05-25] (TOSHIBA Corporation) [File not signed]
S3 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-08-23] (Ulead Systems, Inc.) [File not signed]
S4 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [110592 2009-11-13] (WDC) [File not signed]
S4 WDSmartWareBackgroundService; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [20480 2009-06-16] (Memeo) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BVRPMPR5; C:\Windows\system32\drivers\BVRPMPR5.SYS [44224 2006-09-06] (BVRP Software) [File not signed]
R0 CplIR; C:\Windows\System32\DRIVERS\CplIR.SYS [14848 2007-03-06] (COMPAL ELECTRONIC INC.)
S3 DrvAgent32; C:\Windows\system32\Drivers\DrvAgent32.sys [23456 2015-05-20] (Phoenix Technologies) [File not signed]
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [190424 2009-04-11] (Společnost Microsoft)
S3 FreshIO; C:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys [2410 2004-10-26] () [File not signed]
R0 FSProFilter2; C:\Windows\System32\Drivers\FSPFltd2.sys [51760 2011-06-03] (FSPro Labs)
S3 GemCCID; C:\Windows\System32\DRIVERS\GemCCID.sys [98816 2013-04-24] (Gemalto)
R0 LPCFilter; C:\Windows\System32\DRIVERS\LPCFilter.sys [19456 2006-07-28] (COMPAL ELECTRONIC INC.)
S3 LVPr2Mon; C:\Windows\System32\Drivers\LVPr2Mon.sys [25752 2009-10-07] ()
R3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-12-17] (Logitech Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 NETwLv32; C:\Windows\System32\DRIVERS\NETwLv32.sys [6637056 2000-01-01] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [34064 2008-06-01] (CACE Technologies)
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1082232 2013-03-03] (Společnost Microsoft)
S3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13976 2009-05-01] (Logitech Inc.)
S3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2687512 2009-05-01] (Logitech Inc.)
S3 sonypvs1; C:\Windows\System32\DRIVERS\sonypvs1.sys [102220 2002-10-15] (Sony Corporation) [File not signed]
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [477240 2012-06-16] (Duplex Secure Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13368 2015-07-27] (SlimWare Utilities, Inc.)
S3 tosporte; C:\Windows\System32\DRIVERS\tosporte.sys [41600 2006-10-10] (TOSHIBA Corporation) [File not signed]
S3 tosrfbd; C:\Windows\System32\DRIVERS\tosrfbd.sys [113920 2007-02-22] (TOSHIBA CORPORATION) [File not signed]
S3 tosrfbnp; C:\Windows\System32\Drivers\tosrfbnp.sys [36480 2006-11-20] (TOSHIBA Corporation) [File not signed]
S1 Tosrfcom; C:\Windows\System32\Drivers\tosrfcom.sys [64896 2005-08-01] (TOSHIBA Corporation) [File not signed]
S3 Tosrfhid; C:\Windows\System32\DRIVERS\Tosrfhid.sys [73728 2007-03-01] (TOSHIBA Corporation.) [File not signed]
S3 tosrfnds; C:\Windows\System32\DRIVERS\tosrfnds.sys [18612 2005-01-06] (TOSHIBA Corporation.) [File not signed]
S3 TosRfSnd; C:\Windows\System32\drivers\tosrfsnd.sys [53376 2007-01-22] (TOSHIBA Corporation) [File not signed]
S3 Tosrfusb; C:\Windows\System32\DRIVERS\tosrfusb.sys [41344 2007-02-28] (TOSHIBA CORPORATION) [File not signed]
S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [21344 2005-05-26] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [38144 2005-05-26] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [39036 2005-06-24] (LG Electronics Inc.)
R3 UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [11776 2007-04-16] (Chicony Electronics Co., Ltd.)
R2 v2imount; C:\Windows\System32\DRIVERS\v2imount.sys [38112 2008-01-19] (Symantec Corporation)
S3 AIDA64Driver; \??\C:\Program Files\FinalWire\AIDA64 Extreme\kerneld.x32 [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-19] (Microsoft Corporation)
S2 ASInsHelp; \??\C:\Windows\system32\drivers\AsInsHelp32.sys [X]
U5 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [43904 2009-02-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-13 12:25 - 2015-09-13 12:26 - 00021194 _____ C:\Users\sangoko\Desktop\FRST.txt
2015-09-13 12:25 - 2015-09-13 12:25 - 00000000 ____D C:\FRST
2015-09-13 12:23 - 2015-09-13 12:23 - 01692160 _____ (Farbar) C:\Users\sangoko\Desktop\FRST.exe
2015-09-13 12:21 - 2015-09-13 12:22 - 00000000 ____D C:\Program Files\trend micro
2015-09-13 12:21 - 2015-09-13 12:21 - 00000000 ____D C:\rsit
2015-09-13 10:09 - 2015-09-13 10:09 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\Sun
2015-09-13 10:09 - 2015-09-13 10:09 - 00000000 ____D C:\Users\sangoko\.oracle_jre_usage
2015-09-12 10:35 - 2015-09-12 10:35 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\Slickscreen LLC
2015-09-12 10:35 - 2015-09-12 10:35 - 00000000 ____D C:\Users\sangoko\AppData\Local\Slickscreen LLC
2015-09-12 10:20 - 2015-09-12 10:20 - 00000314 _____ C:\Users\sangoko\Desktop\Slickscreen.appref-ms
2015-09-10 23:40 - 2015-09-13 08:37 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\MPC-HC
2015-09-10 19:18 - 2015-09-10 19:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2015-09-10 19:18 - 2015-06-22 15:25 - 00240128 _____ C:\Windows\system32\xvidvfw.dll
2015-09-10 19:18 - 2015-06-22 15:24 - 00655872 _____ C:\Windows\system32\xvidcore.dll
2015-09-10 19:18 - 2015-02-28 17:21 - 03591680 _____ (x264vfw project) C:\Windows\system32\x264vfw.dll
2015-09-10 19:18 - 2012-07-21 12:54 - 00122880 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
2015-09-10 19:18 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\system32\lagarith.dll
2015-09-10 19:17 - 2015-08-24 20:00 - 00112128 _____ C:\Windows\system32\ff_vfw.dll
2015-09-10 19:13 - 2015-09-10 19:13 - 06667640 _____ (Piriform Ltd) C:\Users\sangoko\Desktop\ccsetup509.exe
2015-09-10 07:12 - 2015-09-10 07:12 - 00000312 _____ C:\Users\Společnost\Downloads\305915260_0_zprava.html
2015-09-09 21:47 - 2015-08-13 16:15 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-09-09 21:47 - 2015-08-13 16:15 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-09-09 21:46 - 2015-09-02 23:26 - 01402368 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-09 21:46 - 2015-09-02 23:26 - 01253376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-09 21:42 - 2015-07-10 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-09 19:07 - 2015-09-09 19:19 - 00000430 _____ C:\Users\sangoko\Desktop\Vyhledane pohyby srpen 2015.csv
2015-09-09 11:36 - 2015-09-02 23:26 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-09 11:36 - 2015-09-02 21:55 - 02067456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-09 11:36 - 2015-09-02 21:54 - 00297472 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-09 11:36 - 2015-08-05 17:59 - 00602112 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-09 10:27 - 2015-08-14 08:23 - 01214976 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-09 10:27 - 2015-08-14 08:23 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-09 10:27 - 2015-08-14 08:19 - 06010880 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-09 10:27 - 2015-08-14 08:19 - 00630272 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-09 10:27 - 2015-08-14 08:18 - 11085824 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-09 10:27 - 2015-08-14 08:18 - 01469440 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-09 10:27 - 2015-08-14 08:18 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-09 10:26 - 2015-08-14 08:24 - 00916992 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-09 10:26 - 2015-08-14 08:23 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-09-09 10:26 - 2015-08-14 08:23 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-09-09 10:26 - 2015-08-14 08:22 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-09-09 10:26 - 2015-08-14 08:20 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2015-09-09 10:26 - 2015-08-14 08:20 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-09-09 10:26 - 2015-08-14 08:19 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-09 10:26 - 2015-08-14 08:19 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-09-09 10:26 - 2015-08-14 08:19 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 02006016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-09 10:26 - 2015-08-14 08:17 - 00348160 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-09 10:26 - 2015-08-14 08:17 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-09 10:26 - 2015-08-14 08:16 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\corpol.dll
2015-09-09 10:26 - 2015-08-14 06:41 - 00385024 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-09 10:26 - 2015-08-14 05:04 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-09 10:26 - 2015-08-14 05:04 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-09 10:26 - 2015-08-14 05:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-09-09 10:26 - 2015-08-14 05:02 - 01638912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-08 12:22 - 2015-09-08 12:22 - 00006911 _____ C:\Users\sangoko\Desktop\Vyhledane pohyby Licence 1015.csv
2015-09-06 22:06 - 2015-09-06 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-09-06 22:06 - 2015-09-06 22:06 - 00000000 ____D C:\Program Files\DCoder Image Source
2015-09-06 22:06 - 2015-09-06 22:06 - 00000000 ____D C:\Program Files\7-Zip
2015-09-06 22:00 - 2015-09-10 23:42 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\vlc
2015-09-02 16:05 - 2015-09-02 16:05 - 00000000 ____D C:\Users\Společnost\Desktop\Vypisy
2015-09-02 07:27 - 2015-09-02 07:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange
2015-09-01 21:56 - 2015-09-01 22:45 - 880887368 _____ C:\Users\Společnost\Downloads\Hot.Tub.Time.Machine.2-vložené-titulky-cz-2015-novinka.mkv
2015-08-31 13:31 - 2015-08-31 13:31 - 00000680 _____ C:\Users\Společnost\AppData\Local\d3d9caps.dat
2015-08-31 11:45 - 2015-08-31 11:45 - 00000463 _____ C:\Users\Společnost\Downloads\303318245_0_zprava.html
2015-08-31 11:45 - 2015-08-31 11:45 - 00000138 _____ C:\Users\Společnost\Downloads\303318245_1_zprava.xml
2015-08-28 17:48 - 2015-08-28 17:49 - 00000000 ____D C:\Users\sangoko\AppData\Local\{501791EE-898A-4BCF-ADC4-C92497790BAB}
2015-08-24 12:34 - 2015-09-07 03:42 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-08-17 22:22 - 2015-08-17 22:22 - 00000000 ____D C:\Users\sangoko\AppData\Local\{2C034788-B0F6-4DB3-857C-9AE76A11902B}

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-13 12:23 - 2015-05-23 14:42 - 00000446 ____H C:\Windows\Tasks\User_Feed_Synchronization-{7FA545D4-2B59-4223-87BD-BC37232271A9}.job
2015-09-13 12:07 - 2015-07-16 12:51 - 00000970 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-750613624-948088251-3038114490-1000UA.job
2015-09-13 12:03 - 2006-11-02 14:47 - 00003296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-13 12:03 - 2006-11-02 14:47 - 00003296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-13 11:28 - 2012-06-17 00:46 - 01071875 _____ C:\Windows\WindowsUpdate.log
2015-09-13 10:10 - 2013-10-15 18:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-13 10:10 - 2007-04-27 09:27 - 00000000 ____D C:\Program Files\Java
2015-09-13 10:09 - 2008-01-17 15:01 - 00000000 ____D C:\Users\sangoko
2015-09-13 10:09 - 2007-04-27 09:27 - 00000000 ____D C:\Program Files\Common Files\Java
2015-09-13 10:08 - 2015-02-03 18:44 - 00097888 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-09-13 09:33 - 2010-10-24 09:48 - 00000000 ____D C:\Users\sangoko\AppData\Local\Deployment
2015-09-13 08:34 - 2015-06-14 17:47 - 00000000 ____D C:\Users\sangoko\AppData\Local\CrashDumps
2015-09-13 08:34 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\LogFiles
2015-09-13 08:11 - 2010-08-14 22:42 - 00000000 ____D C:\Program Files\CCleaner
2015-09-13 08:08 - 2008-02-16 21:02 - 00000000 ____D C:\Users\sangoko\AppData\Local\Google
2015-09-13 08:03 - 2015-07-16 12:50 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-13 08:03 - 2011-01-12 23:23 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2015-09-13 08:03 - 2009-12-07 16:32 - 00000434 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2015-09-13 08:03 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-13 03:33 - 2006-11-02 15:01 - 00032628 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-09-13 03:32 - 2011-01-17 21:34 - 00000012 _____ C:\Windows\bthservsdp.dat
2015-09-12 22:24 - 2015-05-23 17:04 - 00000440 ____H C:\Windows\Tasks\User_Feed_Synchronization-{1FD776CB-3058-4844-897A-E17B4997AABB}.job
2015-09-10 19:17 - 2011-03-24 02:13 - 00000000 ____D C:\Program Files\K-Lite Codec Pack
2015-09-10 07:07 - 2015-07-16 12:51 - 00000918 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-750613624-948088251-3038114490-1000Core.job
2015-09-10 06:59 - 2015-04-28 13:09 - 00000000 ____D C:\Users\Společnost\AppData\Roaming\vlc
2015-09-10 06:50 - 2008-02-09 21:27 - 00000000 ____D C:\Netgear
2015-09-09 23:01 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2015-09-09 22:43 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2015-09-09 21:42 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-09 21:40 - 2015-07-01 23:13 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\Wandoujia2
2015-09-09 16:35 - 2006-11-02 12:33 - 01558484 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-09 16:09 - 2015-04-01 13:38 - 00000000 ____D C:\Users\sangoko\Desktop\faktury 1čtvrdletí
2015-09-09 16:09 - 2015-03-18 11:40 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\PrimoPDF
2015-09-09 11:34 - 2013-07-11 18:15 - 00000000 ____D C:\Windows\system32\MRT
2015-09-07 04:02 - 2008-02-16 21:03 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\Skype
2015-09-07 03:42 - 2015-07-21 11:24 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2015-09-07 02:18 - 2015-06-17 15:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SensorsView beta 1.0
2015-09-02 16:25 - 2015-08-03 18:11 - 00000000 ____D C:\Users\Společnost\Desktop\výpisy Štork
2015-09-02 15:05 - 2014-12-22 18:05 - 00000000 ____D C:\Users\sangoko\Desktop\výpisy
2015-09-02 07:26 - 2015-03-18 12:10 - 00000000 ____D C:\Program Files\Tracker Software
2015-08-31 07:02 - 2015-07-16 12:50 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-29 00:23 - 2012-05-13 18:36 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-08-26 18:36 - 2006-11-02 12:24 - 132039072 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-08-24 13:12 - 2012-08-31 17:55 - 00001356 _____ C:\Users\sangoko\AppData\Local\d3d9caps.dat
2015-08-19 17:40 - 2010-08-16 19:45 - 00000000 ___RD C:\Users\sangoko\GIGAHITY
2015-08-18 10:13 - 2015-03-09 13:57 - 00000000 ____D C:\Users\Společnost
2015-08-16 12:10 - 2014-02-25 18:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-08-14 22:13 - 2014-06-10 12:49 - 00000000 ____D C:\Users\sangoko\Desktop\DC Praha

==================== Files in the root of some directories =======

2010-03-05 02:43 - 2010-06-13 09:22 - 0022328 _____ () C:\Users\sangoko\AppData\Roaming\PnkBstrK.sys
2009-04-29 21:50 - 2014-08-17 12:19 - 0027660 _____ () C:\Users\sangoko\AppData\Roaming\UserTile.png
2012-08-31 17:55 - 2015-08-24 13:12 - 0001356 _____ () C:\Users\sangoko\AppData\Local\d3d9caps.dat
2012-08-10 08:32 - 2012-08-10 08:32 - 0000095 _____ () C:\Users\sangoko\AppData\Local\fusioncache.dat
2015-05-30 01:05 - 2015-05-30 01:05 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2008-07-06 20:47 - 2008-07-06 20:47 - 0000048 ____H () C:\ProgramData\ezsidmv.dat
2008-04-24 23:46 - 2009-04-22 17:23 - 0788412 _____ () C:\ProgramData\LUUnInstall.LiveUpdate
2010-09-11 20:13 - 2010-09-11 20:13 - 0000089 _____ () C:\ProgramData\lxdu.log
2011-03-04 01:41 - 2011-12-06 23:36 - 0000846 _____ () C:\ProgramData\lxduDiagnostics.log
2012-06-19 00:32 - 2012-07-27 12:41 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some files in TEMP:
====================
C:\Users\sangoko\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\Společnost\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Společnost\AppData\Local\Temp\vlc-2.2.1-win32.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-09-13 08:10

==================== End of FRST.txt ============================

#2 Příspěvek od **vyosek** » 13 zář 2015 18:14

Zdravim

Je nejaky problem nebo jen preventivka??

takos · #3 Příspěvek od **takos** » 13 zář 2015 20:55

Preventivka

Jak to vypadá?

Jinak takový dotaz, na disku C jsem měl už žalostně málo místa cca 3GB a tak jsem některé soubory hudba a videa přesunul na disk E a po defregmentaci disku jsem získal kapacitu cca 14GB volného místa ale po nainstalování jednoho nebo dvou programů mi klesla kapacita disku C na pouhých 5GB je mi to divné jelikož to nebyl nic velikého, a tak jsem udělal opět defregmentaci disku a ejhle kapacita se opět zvětšila na cca 16GB. Jak je to možné. Zatím ta kapacita drží ale co se bude dít dál nevím. Díky za případné vysvětlení. Díky Jirka

#4 Příspěvek od **vyosek** » 14 zář 2015 06:23

Defragmentace misto neuvolnuje, ta jen presouva a sklada soubory na disku

Spise to budou body obnovy, podival bych se po nich...

Co zabira misto muzete zjistit pomoci TreeSize http://portableapps.com/news/2012-10-20 ... 7-released

- - -

Pro jistotu pustime AdwCleaner a MBAM

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Po spusteni probehne stazeni databaze
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner[C?].txt, ten sem vlozte

MBAM dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=144868

takos · #5 Příspěvek od **takos** » 14 zář 2015 07:34

To jsem si také myslel ale děje se to po Defregmentaci o tom mení pochyb. Co se týče těch bodů obnovení nevím jak to přesně myslíte. Podívat kam a co s nimi mám dělat? Defregmentace po které se to děje s nimi přece nic nedělá nebo ano? Omlouvám se za mojí nevzdělanost ale fakt netuším jak je to myšleno. Díky za bližší postup nebo vyjasnění. Díky

takos · #6 Příspěvek od **takos** » 14 zář 2015 07:37

C:\ProgramData\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.exe->C:\AdwCleaner\Quarantine\C\ProgramData\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.exe.vir
C:\ProgramData\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.lnk->C:\AdwCleaner\Quarantine\C\ProgramData\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.lnk.vir
C:\ProgramData\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.msi->C:\AdwCleaner\Quarantine\C\ProgramData\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.msi.vir
C:\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\ignores.dat->C:\AdwCleaner\Quarantine\C\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\ignores.dat.vir
C:\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\rupdates.db->C:\AdwCleaner\Quarantine\C\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\rupdates.db.vir
C:\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\settings.db->C:\AdwCleaner\Quarantine\C\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\settings.db.vir
C:\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\supdates.db->C:\AdwCleaner\Quarantine\C\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\supdates.db.vir
C:\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\SWDUMon.cat->C:\AdwCleaner\Quarantine\C\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\SWDUMon.cat.vir
C:\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\SWDUMon.inf->C:\AdwCleaner\Quarantine\C\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\SWDUMon.inf.vir
C:\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\SWDUMon.sys->C:\AdwCleaner\Quarantine\C\Users\sangoko\AppData\Local\slimware utilities inc\SlimDrivers\SWDUMon.sys.vir
C:\Windows\system32\drivers\swdumon.sys->C:\AdwCleaner\Quarantine\C\Windows\system32\drivers\swdumon.sys.vir

# AdwCleaner v5.007 - Logfile created 14/09/2015 at 08:04:53
# Updated 08/09/2015 by Xplode
# Database : 2015-09-10.1 [Server]
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Username : sangoko - TAKOS
# Running from : C:\Users\sangoko\Desktop\adwcleaner_5.007.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

Service Found : swdumon

***** [ Folders ] *****

Folder Found : C:\ProgramData\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}
Folder Found : C:\Users\sangoko\AppData\Local\eSupport.com
Folder Found : C:\Users\sangoko\AppData\Local\slimware utilities inc
Folder Found : C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\FoxTab

***** [ Files ] *****

File Found : C:\Windows\system32\drivers\swdumon.sys

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

Task Found : AmiUpdXp
Task Found : globalUpdateUpdateTaskMachineCore
Task Found : globalUpdateUpdateTaskMachineUA
Task Found : IHUninstallTrackingTASK
Task Found : YourFile Update

***** [ Registry ] *****

Key Found : HKCU\Software\eSupport.com
Key Found : HKCU\Software\SlimWare Utilities Inc
Key Found : HKLM\SOFTWARE\SlimWare Utilities Inc

***** [ Web browsers ] *****

# AdwCleaner v5.007 - Logfile created 14/09/2015 at 08:17:30
# Updated 08/09/2015 by Xplode
# Database : 2015-09-10.1 [Server]
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Username : sangoko - TAKOS
# Running from : C:\Users\sangoko\Desktop\adwcleaner_5.007.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : swdumon

***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}
[-] Folder Deleted : C:\Users\sangoko\AppData\Local\eSupport.com
[-] Folder Deleted : C:\Users\sangoko\AppData\Local\slimware utilities inc
[-] Folder Deleted : C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\FoxTab

***** [ Files ] *****

[-] File Deleted : C:\Windows\system32\drivers\swdumon.sys

***** [ Shortcuts ] *****

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1275 bytes] ##########

takos · #7 Příspěvek od **takos** » 15 zář 2015 09:01

Malwarebytes Anti-Malware
http://www.malwarebytes.org

Datum skenování: 15.9.2015
Čas skenování: 7:46:05
Protokol: Sken Malwarebytes.txt
Správce: Ano

Verze: 0.0.0.0000
Databáze malwaru: v2015.09.15.02
Databáze rootkitů: v2015.08.16.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows Vista Service Pack 2
CPU: x86
Souborový systém: NTFS
Uživatel: sangoko

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 632206
Uplynulý čas: 4 hod, 30 min, 33 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Sken hloubkových rootkitů: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

#8 Příspěvek od **vyosek** » 22 zář 2015 06:05

Omlouvam se, nejak jsem nestihal

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

Kód: Vybrat vše

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

takos · #9 Příspěvek od **takos** » 24 zář 2015 10:07

Dobrý den, tak nevím kde jsem udělal chybu ale po provedené postupu k danému programu se sice spustil, vypadalo to nadějně ale asi po pul hoduině nebo tak něco se zasek nebo to přestalo postupovat až po několika hodinách jsem musel pc restartovat a žádný soubor to nevygenerovalo.

Poradtě prosím děkuji Jirka

#10 Příspěvek od **vyosek** » 24 zář 2015 10:15

Poprosim o novy log z FRST

takos · #11 Příspěvek od **takos** » 24 zář 2015 18:50

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:23-09-2015
Ran by sangoko (administrator) on TAKOS (24-09-2015 19:32:37)
Running from C:\Users\sangoko\Desktop
Loaded Profiles: sangoko (Available Profiles: sangoko & Společnost)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Agere Systems) C:\Windows\System32\agrsmsvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
( ) C:\Windows\System32\lxducoms.exe
(Motive Communications, Inc.) C:\Program Files\Common Files\Motive\McciCMService.exe
() C:\Program Files\SensorsView\drv\svsvc.exe
() C:\Program Files\Synergy\synergyd.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\RocketDock\RocketDock.exe
() C:\Program Files\WandouLabs\wandoujia_helper.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynToshiba.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
() C:\Program Files\WandouLabs\WDPlatform.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1451304 2009-03-20] (Synaptics Incorporated)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Windows\RtHDVCpl.exe [4489216 2007-06-13] (Realtek Semiconductor)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-750613624-948088251-3038114490-1000\...\Run: [RocketDock] => C:\Program Files\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-750613624-948088251-3038114490-1000\...\Run: [supertintin_skype] => C:\Program Files\Supertintin for Skype\supertintin_skype.exe [999936 2011-01-10] (Imtiger Software Inc.)
HKU\S-1-5-21-750613624-948088251-3038114490-1000\...\Run: [Google Update] => C:\Users\sangoko\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-07-29] (Google)
Startup: C:\Users\sangoko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Bandwidth Meter.lnk [2010-11-02]
Startup: C:\Users\sangoko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wandoujia_helper.lnk [2015-07-05]
ShortcutTarget: wandoujia_helper.lnk -> C:\Program Files\WandouLabs\wandoujia_helper.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176 2008-06-26] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{092130CD-1790-4714-922B-C93CB7D8403A}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{BB835034-38EE-45E2-BA98-9C6D49D0AAB5}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-750613624-948088251-3038114490-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
HKU\S-1-5-21-750613624-948088251-3038114490-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-750613624-948088251-3038114490-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-750613624-948088251-3038114490-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-750613624-948088251-3038114490-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = web/?type=dspp&ts=1432140622&from=xtab&uid=EE37F7F59F8C4eb7ACB70257A39DCFE8&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-09-22] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-22] (Oracle Corporation)
DPF: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_15-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default
FF Homepage: WWW.google.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-22] ()
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [No File]
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-22] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2015-08-24] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2015-08-24] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-750613624-948088251-3038114490-1000: @lingea.com/x-lingea-translate -> C:\Program Files\Common Files\Lingea Shared\LG_Mozilla.dll [2011-10-20] (Lingea s.r.o.)
FF Plugin HKU\S-1-5-21-750613624-948088251-3038114490-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\sangoko\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2014-05-15] (Google)
FF Plugin HKU\S-1-5-21-750613624-948088251-3038114490-1000: @talk.google.com/O1DPlugin -> C:\Users\sangoko\AppData\Roaming\Mozilla\plugins\npo1d.dll [2014-05-15] (Google)
FF Plugin HKU\S-1-5-21-750613624-948088251-3038114490-1000: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2015-08-24] (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll [2011-04-15] (BitComet)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll [2009-11-14] (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll [2009-06-25] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np_gp.dll [2009-09-23] (NOS Microsystems Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Users\sangoko\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2014-05-15] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\sangoko\AppData\Roaming\mozilla\plugins\npo1d.dll [2014-05-15] (Google)
FF SearchPlugin: C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\searchplugins\heurkacz.xml [2012-07-07]
FF Extension: BlackFox V2-Blue - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\zigboom.designs@gmail.com [2015-07-12]
FF Extension: FT DeepDark - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-08-25]
FF Extension: FoxLingo - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66}(49) [2012-09-02]
FF Extension: Google Translator for Firefox - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\translator@zoli.bod.xpi [2012-10-23]
FF Extension: Walnut for Firefox - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF}.xpi [2011-07-13]
FF Extension: ReloadEvery - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2015-09-09]
FF Extension: Video DownloadHelper - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-03-15]
FF Extension: DownThemAll! - C:\Users\sangoko\AppData\Roaming\Mozilla\Firefox\Profiles\qu52wjqv.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2012-06-26]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-04-23]

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.nevyhazujto.cz/index.php?mod=search ... aodvoz.cz/"
CHR Profile: C:\Users\sangoko\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Video AdBlock for Chrome) - C:\Users\sangoko\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd [2015-06-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\sangoko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-23]
CHR HKLM\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-750613624-948088251-3038114490-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
S3 CFSvcs; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960 2006-11-14] (TOSHIBA CORPORATION) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S2 lxduCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxduserv.exe [98984 2008-05-24] (Lexmark International, Inc.)
R2 lxdu_device; C:\Windows\system32\lxducoms.exe [594600 2008-05-24] ( )
R2 McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [303104 2007-10-15] (Motive Communications, Inc.) [File not signed]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 sviewsvc; C:\Program Files\SensorsView\drv\svsvc.exe [221184 2005-10-30] () [File not signed]
R2 Synergy; C:\Program Files\Synergy\synergyd.exe [318976 2013-05-03] ()
S4 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-01] (TeamViewer GmbH)
S4 TNaviSrv; C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe [77824 2007-06-28] (TOSHIBA Corporation) [File not signed]
S4 TODDSrv; C:\Windows\system32\TODDSrv.exe [114688 2006-05-25] (TOSHIBA Corporation) [File not signed]
S3 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-08-23] (Ulead Systems, Inc.) [File not signed]
S4 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [110592 2009-11-13] (WDC) [File not signed]
S4 WDSmartWareBackgroundService; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [20480 2009-06-16] (Memeo) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BVRPMPR5; C:\Windows\system32\drivers\BVRPMPR5.SYS [44224 2006-09-06] (BVRP Software) [File not signed]
R0 CplIR; C:\Windows\System32\DRIVERS\CplIR.SYS [14848 2007-03-06] (COMPAL ELECTRONIC INC.)
S3 DrvAgent32; C:\Windows\system32\Drivers\DrvAgent32.sys [23456 2015-05-20] (Phoenix Technologies) [File not signed]
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [190424 2009-04-11] (Společnost Microsoft)
S3 FreshIO; C:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys [2410 2004-10-26] () [File not signed]
R0 FSProFilter2; C:\Windows\System32\Drivers\FSPFltd2.sys [51760 2011-06-03] (FSPro Labs)
S3 GemCCID; C:\Windows\System32\DRIVERS\GemCCID.sys [98816 2013-04-24] (Gemalto)
R0 LPCFilter; C:\Windows\System32\DRIVERS\LPCFilter.sys [19456 2006-07-28] (COMPAL ELECTRONIC INC.)
S3 LVPr2Mon; C:\Windows\System32\Drivers\LVPr2Mon.sys [25752 2009-10-07] ()
R3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-12-17] (Logitech Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 NETwLv32; C:\Windows\System32\DRIVERS\NETwLv32.sys [6637056 2000-01-01] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [34064 2008-06-01] (CACE Technologies)
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1082232 2013-03-03] (Společnost Microsoft)
S3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13976 2009-05-01] (Logitech Inc.)
S3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2687512 2009-05-01] (Logitech Inc.)
S3 sonypvs1; C:\Windows\System32\DRIVERS\sonypvs1.sys [102220 2002-10-15] (Sony Corporation) [File not signed]
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [477240 2012-06-16] (Duplex Secure Ltd.)
S3 tosporte; C:\Windows\System32\DRIVERS\tosporte.sys [41600 2006-10-10] (TOSHIBA Corporation) [File not signed]
S3 tosrfbd; C:\Windows\System32\DRIVERS\tosrfbd.sys [113920 2007-02-22] (TOSHIBA CORPORATION) [File not signed]
S3 tosrfbnp; C:\Windows\System32\Drivers\tosrfbnp.sys [36480 2006-11-20] (TOSHIBA Corporation) [File not signed]
S1 Tosrfcom; C:\Windows\System32\Drivers\tosrfcom.sys [64896 2005-08-01] (TOSHIBA Corporation) [File not signed]
S3 Tosrfhid; C:\Windows\System32\DRIVERS\Tosrfhid.sys [73728 2007-03-01] (TOSHIBA Corporation.) [File not signed]
S3 tosrfnds; C:\Windows\System32\DRIVERS\tosrfnds.sys [18612 2005-01-06] (TOSHIBA Corporation.) [File not signed]
S3 TosRfSnd; C:\Windows\System32\drivers\tosrfsnd.sys [53376 2007-01-22] (TOSHIBA Corporation) [File not signed]
S3 Tosrfusb; C:\Windows\System32\DRIVERS\tosrfusb.sys [41344 2007-02-28] (TOSHIBA CORPORATION) [File not signed]
S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [21344 2005-05-26] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [38144 2005-05-26] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [39036 2005-06-24] (LG Electronics Inc.)
R3 UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [11776 2007-04-16] (Chicony Electronics Co., Ltd.)
R2 v2imount; C:\Windows\System32\DRIVERS\v2imount.sys [38112 2008-01-19] (Symantec Corporation)
S3 AIDA64Driver; \??\C:\Program Files\FinalWire\AIDA64 Extreme\kerneld.x32 [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-19] (Microsoft Corporation)
S2 ASInsHelp; \??\C:\Windows\system32\drivers\AsInsHelp32.sys [X]
U5 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [43904 2009-02-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-24 19:32 - 2015-09-24 19:32 - 00000000 ____D C:\Users\sangoko\Desktop\FRST-OlderVersion
2015-09-24 02:51 - 2015-09-22 15:06 - 00006681 _____ C:\zoek-results2015-09-22-130657.log
2015-09-23 14:08 - 2015-09-24 08:08 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-09-23 12:55 - 2015-09-23 12:55 - 00000000 ____D C:\Users\sangoko\AppData\Local\CrashDumps
2015-09-23 09:59 - 2015-09-23 10:49 - 468041276 _____ C:\Users\Společnost\Downloads\Black.Sails.S02E06.PROPER.HDTV.x264-KILLERS.mp4
2015-09-23 09:55 - 2015-09-23 09:55 - 00048679 _____ C:\Users\Společnost\Downloads\Black-Sails-S02E07(0000251464).srt
2015-09-23 09:25 - 2015-09-23 09:25 - 00054242 _____ C:\Users\Společnost\Downloads\Black-Sails-S02E06(0000251148).srt
2015-09-23 09:13 - 2015-09-23 09:13 - 00054242 _____ C:\Users\Společnost\Downloads\Black.Sails.S02E06.PROPER.720p.HDTV.x264-KILLERS.srt
2015-09-23 09:12 - 2015-09-23 09:33 - 381155102 _____ C:\Users\Společnost\Downloads\black-sails-s02e07-hdtv-x264-m33p.mp4
2015-09-23 08:45 - 2015-09-23 09:11 - 462129572 _____ C:\Users\Společnost\Downloads\black-sails-s02e06-hdtv-x264-asap.mp4
2015-09-22 15:04 - 2015-09-22 15:04 - 00000021 _____ C:\folders.log
2015-09-22 14:36 - 2015-09-24 02:51 - 00001218 _____ C:\zoek-results.log
2015-09-22 14:34 - 2015-09-24 02:51 - 00000530 _____ C:\runcheck.txt
2015-09-22 14:34 - 2015-09-22 15:06 - 00000000 ____D C:\zoek_backup
2015-09-22 14:32 - 2015-09-22 14:33 - 01308672 _____ C:\Users\sangoko\Desktop\zoek.exe
2015-09-22 14:08 - 2015-09-22 14:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-22 14:08 - 2015-09-22 14:07 - 00097888 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-09-21 23:32 - 2015-09-21 23:32 - 00054868 _____ C:\Users\Společnost\Downloads\Black.Sails.S02E04.720p.HDTV.x264-IMMERSE (+ASAP).srt
2015-09-21 22:11 - 2015-09-21 22:31 - 366356543 _____ C:\Users\Společnost\Downloads\Black.Sails.S02E05.HDTV.x264-LOL.mp4
2015-09-21 21:52 - 2015-09-21 21:52 - 00054770 _____ C:\Users\Společnost\Downloads\Black.Sails.S02E05.720p.HDTV.X264-DIMENSION (+LOL).srt
2015-09-21 21:49 - 2015-09-21 22:09 - 310560816 _____ C:\Users\Společnost\Downloads\Black.Sails.S02E09.HDTV.x264-ASAP.mp4
2015-09-21 00:42 - 2015-09-21 00:58 - 00000000 ____D C:\My Video
2015-09-20 23:09 - 2015-09-20 23:09 - 00000000 ____D C:\Users\Společnost\AppData\Local\Apps\2.0
2015-09-18 21:07 - 2015-09-18 21:07 - 00000000 ____D C:\Users\Společnost\AppData\Roaming\Sun
2015-09-18 21:07 - 2015-09-18 21:07 - 00000000 ____D C:\Users\Společnost\.oracle_jre_usage
2015-09-17 16:53 - 2015-09-18 12:41 - 00050954 _____ C:\Users\Společnost\Desktop\Soud stížnost.odt
2015-09-15 12:18 - 2015-09-15 12:18 - 00321848 _____ (Malwarebytes Corporation) C:\Users\sangoko\Desktop\mbam-clean-2.1.1.1001.exe
2015-09-15 11:26 - 2015-09-24 08:08 - 00012370 _____ C:\Windows\PFRO.log
2015-09-15 09:59 - 2015-09-15 09:59 - 00207079 _____ C:\Users\sangoko\Desktop\Malwarebytes soubory nalezené.zip
2015-09-15 09:55 - 2015-09-15 09:55 - 00001213 _____ C:\Users\sangoko\Desktop\Sken Malwarebytes.txt
2015-09-14 21:23 - 2015-09-14 22:10 - 731548596 _____ C:\Users\Společnost\Downloads\To-byl-zítra-flám-(2010)-CZ-dabing;-komedie,-dobrodružný,-sci-fi.avi
2015-09-14 18:17 - 2015-09-14 18:17 - 00075888 _____ C:\Users\sangoko\AppData\Local\GDIPFONTCACHEV1.DAT
2015-09-14 18:13 - 2015-09-24 19:32 - 00581922 _____ C:\Windows\WindowsUpdate.log
2015-09-14 18:09 - 2015-09-14 18:13 - 03659600 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-14 08:04 - 2015-09-14 08:17 - 00000000 ____D C:\AdwCleaner
2015-09-14 08:03 - 2015-09-14 08:03 - 01660416 _____ C:\Users\sangoko\Desktop\adwcleaner_5.007.exe
2015-09-13 23:10 - 2015-09-13 23:10 - 00000000 ____D C:\Users\sangoko\AppData\Local\MotionDSP
2015-09-13 23:09 - 2015-09-13 23:09 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\MotionDSP
2015-09-13 23:09 - 2015-09-13 23:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\vReveal
2015-09-13 23:08 - 2015-09-13 23:09 - 00000000 ____D C:\Program Files\vReveal 3
2015-09-13 12:30 - 2015-09-13 12:30 - 00015490 _____ C:\Users\sangoko\Desktop\Addition.zip
2015-09-13 12:27 - 2015-09-13 12:29 - 00048396 _____ C:\Users\sangoko\Desktop\Addition.txt
2015-09-13 12:25 - 2015-09-24 19:32 - 00020765 _____ C:\Users\sangoko\Desktop\FRST.txt
2015-09-13 12:25 - 2015-09-24 19:32 - 00000000 ____D C:\FRST
2015-09-13 12:23 - 2015-09-24 19:32 - 01695744 _____ (Farbar) C:\Users\sangoko\Desktop\FRST.exe
2015-09-13 12:21 - 2015-09-13 12:22 - 00000000 ____D C:\Program Files\trend micro
2015-09-13 12:21 - 2015-09-13 12:21 - 00000000 ____D C:\rsit
2015-09-13 10:09 - 2015-09-13 10:09 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\Sun
2015-09-13 10:09 - 2015-09-13 10:09 - 00000000 ____D C:\Users\sangoko\.oracle_jre_usage
2015-09-12 10:35 - 2015-09-12 10:35 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\Slickscreen LLC
2015-09-12 10:35 - 2015-09-12 10:35 - 00000000 ____D C:\Users\sangoko\AppData\Local\Slickscreen LLC
2015-09-12 10:20 - 2015-09-12 10:20 - 00000314 _____ C:\Users\sangoko\Desktop\Slickscreen.appref-ms
2015-09-10 19:18 - 2015-09-10 19:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2015-09-10 19:18 - 2015-06-22 15:25 - 00240128 _____ C:\Windows\system32\xvidvfw.dll
2015-09-10 19:18 - 2015-06-22 15:24 - 00655872 _____ C:\Windows\system32\xvidcore.dll
2015-09-10 19:18 - 2015-02-28 17:21 - 03591680 _____ (x264vfw project) C:\Windows\system32\x264vfw.dll
2015-09-10 19:18 - 2012-07-21 12:54 - 00122880 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
2015-09-10 19:18 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\system32\lagarith.dll
2015-09-10 19:17 - 2015-08-24 20:00 - 00112128 _____ C:\Windows\system32\ff_vfw.dll
2015-09-10 07:12 - 2015-09-10 07:12 - 00000312 _____ C:\Users\Společnost\Downloads\305915260_0_zprava.html
2015-09-09 21:47 - 2015-08-13 16:15 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-09-09 21:47 - 2015-08-13 16:15 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-09-09 21:46 - 2015-09-02 23:26 - 01402368 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-09 21:46 - 2015-09-02 23:26 - 01253376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-09 21:42 - 2015-07-10 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-09 19:07 - 2015-09-09 19:19 - 00000430 _____ C:\Users\sangoko\Desktop\Vyhledane pohyby srpen 2015.csv
2015-09-09 11:36 - 2015-09-02 23:26 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-09 11:36 - 2015-09-02 21:55 - 02067456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-09 11:36 - 2015-09-02 21:54 - 00297472 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-09 11:36 - 2015-08-05 17:59 - 00602112 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-09 10:27 - 2015-08-14 08:23 - 01214976 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-09 10:27 - 2015-08-14 08:23 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-09 10:27 - 2015-08-14 08:19 - 06010880 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-09 10:27 - 2015-08-14 08:19 - 00630272 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-09 10:27 - 2015-08-14 08:18 - 11085824 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-09 10:27 - 2015-08-14 08:18 - 01469440 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-09 10:27 - 2015-08-14 08:18 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-09 10:26 - 2015-08-14 08:24 - 00916992 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-09 10:26 - 2015-08-14 08:23 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-09-09 10:26 - 2015-08-14 08:23 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-09-09 10:26 - 2015-08-14 08:22 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-09-09 10:26 - 2015-08-14 08:20 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2015-09-09 10:26 - 2015-08-14 08:20 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-09-09 10:26 - 2015-08-14 08:19 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-09 10:26 - 2015-08-14 08:19 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-09-09 10:26 - 2015-08-14 08:19 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 02006016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-09-09 10:26 - 2015-08-14 08:18 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-09 10:26 - 2015-08-14 08:17 - 00348160 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-09 10:26 - 2015-08-14 08:17 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-09 10:26 - 2015-08-14 08:16 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\corpol.dll
2015-09-09 10:26 - 2015-08-14 06:41 - 00385024 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-09 10:26 - 2015-08-14 05:04 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-09 10:26 - 2015-08-14 05:04 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-09 10:26 - 2015-08-14 05:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-09-09 10:26 - 2015-08-14 05:02 - 01638912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-08 12:22 - 2015-09-08 12:22 - 00006911 _____ C:\Users\sangoko\Desktop\Vyhledane pohyby Licence 1015.csv
2015-09-06 22:06 - 2015-09-06 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-09-06 22:06 - 2015-09-06 22:06 - 00000000 ____D C:\Program Files\DCoder Image Source
2015-09-06 22:06 - 2015-09-06 22:06 - 00000000 ____D C:\Program Files\7-Zip
2015-09-06 22:00 - 2015-09-17 00:22 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\vlc
2015-09-02 16:05 - 2015-09-02 16:05 - 00000000 ____D C:\Users\Společnost\Desktop\Vypisy
2015-09-02 07:27 - 2015-09-02 07:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange
2015-09-01 21:56 - 2015-09-01 22:45 - 880887368 _____ C:\Users\Společnost\Downloads\Hot.Tub.Time.Machine.2-vložené-titulky-cz-2015-novinka.mkv
2015-08-31 13:31 - 2015-08-31 13:31 - 00000680 _____ C:\Users\Společnost\AppData\Local\d3d9caps.dat
2015-08-31 11:45 - 2015-08-31 11:45 - 00000463 _____ C:\Users\Společnost\Downloads\303318245_0_zprava.html
2015-08-31 11:45 - 2015-08-31 11:45 - 00000138 _____ C:\Users\Společnost\Downloads\303318245_1_zprava.xml

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-24 19:29 - 2015-07-16 12:50 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-24 19:29 - 2015-05-23 14:42 - 00000446 ____H C:\Windows\Tasks\User_Feed_Synchronization-{7FA545D4-2B59-4223-87BD-BC37232271A9}.job
2015-09-24 19:28 - 2011-01-12 23:23 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2015-09-24 19:28 - 2009-12-07 16:32 - 00000435 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2015-09-24 19:28 - 2006-11-02 14:47 - 00003296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-24 19:28 - 2006-11-02 14:47 - 00003296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-24 19:27 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-24 15:12 - 2011-01-17 21:34 - 00000012 _____ C:\Windows\bthservsdp.dat
2015-09-24 15:12 - 2006-11-02 15:01 - 00032628 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-09-24 14:16 - 2015-07-16 12:51 - 00000970 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-750613624-948088251-3038114490-1000UA.job
2015-09-24 14:15 - 2015-07-16 12:50 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-24 13:30 - 2015-05-23 17:04 - 00000440 ____H C:\Windows\Tasks\User_Feed_Synchronization-{1FD776CB-3058-4844-897A-E17B4997AABB}.job
2015-09-24 13:11 - 2015-04-01 13:38 - 00000000 ____D C:\Users\sangoko\Desktop\faktury 1čtvrdletí
2015-09-24 13:11 - 2015-03-18 11:40 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\PrimoPDF
2015-09-24 10:16 - 2008-02-16 21:02 - 00000000 ____D C:\Users\sangoko\AppData\Local\Google
2015-09-24 08:08 - 2012-05-13 18:36 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-09-24 05:16 - 2015-07-16 12:51 - 00000918 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-750613624-948088251-3038114490-1000Core.job
2015-09-24 02:43 - 2015-04-28 13:09 - 00000000 ____D C:\Users\Společnost\AppData\Roaming\vlc
2015-09-22 17:47 - 2014-05-30 09:39 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-09-22 17:46 - 2014-11-17 08:29 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-22 15:06 - 2008-01-17 15:01 - 00000000 ____D C:\Users\sangoko
2015-09-22 15:06 - 2006-11-02 13:18 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2015-09-22 14:33 - 2010-08-16 19:45 - 00000000 ___RD C:\Users\sangoko\GIGAHITY
2015-09-22 14:08 - 2007-04-27 09:27 - 00000000 ____D C:\Program Files\Common Files\Java
2015-09-22 14:07 - 2007-04-27 09:27 - 00000000 ____D C:\Program Files\Java
2015-09-22 14:01 - 2012-06-20 22:49 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-09-22 14:01 - 2012-06-20 22:49 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-09-20 23:28 - 2006-11-02 12:33 - 01558484 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-19 19:02 - 2015-07-01 23:13 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\Wandoujia2
2015-09-18 21:07 - 2015-03-09 13:57 - 00000000 ____D C:\Users\Společnost
2015-09-17 00:27 - 2012-11-02 17:41 - 00000000 ____D C:\ProgramData\TEMP
2015-09-15 17:10 - 2015-03-09 13:57 - 00000000 ____D C:\Users\Společnost\AppData\Local\Google
2015-09-14 18:51 - 2010-10-24 09:48 - 00000000 ____D C:\Users\sangoko\AppData\Local\Deployment
2015-09-14 18:09 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\LogFiles
2015-09-13 08:11 - 2010-08-14 22:42 - 00000000 ____D C:\Program Files\CCleaner
2015-09-10 19:17 - 2011-03-24 02:13 - 00000000 ____D C:\Program Files\K-Lite Codec Pack
2015-09-10 06:50 - 2008-02-09 21:27 - 00000000 ____D C:\Netgear
2015-09-09 23:01 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2015-09-09 22:43 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2015-09-09 21:42 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-09 11:34 - 2013-07-11 18:15 - 00000000 ____D C:\Windows\system32\MRT
2015-09-07 04:02 - 2008-02-16 21:03 - 00000000 ____D C:\Users\sangoko\AppData\Roaming\Skype
2015-09-07 03:42 - 2015-07-21 11:24 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2015-09-07 02:18 - 2015-06-17 15:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SensorsView beta 1.0
2015-09-02 16:25 - 2015-08-03 18:11 - 00000000 ____D C:\Users\Společnost\Desktop\výpisy Štork
2015-09-02 15:05 - 2014-12-22 18:05 - 00000000 ____D C:\Users\sangoko\Desktop\výpisy
2015-09-02 07:26 - 2015-03-18 12:10 - 00000000 ____D C:\Program Files\Tracker Software
2015-08-26 18:36 - 2006-11-02 12:24 - 132039072 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe

==================== Files in the root of some directories =======

2010-03-05 02:43 - 2010-06-13 09:22 - 0022328 _____ () C:\Users\sangoko\AppData\Roaming\PnkBstrK.sys
2009-04-29 21:50 - 2014-08-17 12:19 - 0027660 _____ () C:\Users\sangoko\AppData\Roaming\UserTile.png
2012-08-31 17:55 - 2015-08-24 13:12 - 0001356 _____ () C:\Users\sangoko\AppData\Local\d3d9caps.dat
2012-08-10 08:32 - 2012-08-10 08:32 - 0000095 _____ () C:\Users\sangoko\AppData\Local\fusioncache.dat
2015-05-30 01:05 - 2015-05-30 01:05 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2008-07-06 20:47 - 2008-07-06 20:47 - 0000048 ____H () C:\ProgramData\ezsidmv.dat
2008-04-24 23:46 - 2009-04-22 17:23 - 0788412 _____ () C:\ProgramData\LUUnInstall.LiveUpdate
2010-09-11 20:13 - 2010-09-11 20:13 - 0000089 _____ () C:\ProgramData\lxdu.log
2011-03-04 01:41 - 2011-12-06 23:36 - 0000846 _____ () C:\ProgramData\lxduDiagnostics.log
2012-06-19 00:32 - 2012-07-27 12:41 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some files in TEMP:
====================
C:\Users\sangoko\AppData\Local\Temp\7za.exe
C:\Users\sangoko\AppData\Local\Temp\DaS_21.exe
C:\Users\sangoko\AppData\Local\Temp\hijackthis.exe
C:\Users\sangoko\AppData\Local\Temp\IHUA0A1.tmp.exe
C:\Users\sangoko\AppData\Local\Temp\IHUF6F1.tmp.exe
C:\Users\sangoko\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\sangoko\AppData\Local\Temp\NirCmd.exe
C:\Users\sangoko\AppData\Local\Temp\PEVZ.EXE
C:\Users\sangoko\AppData\Local\Temp\remove.exe
C:\Users\sangoko\AppData\Local\Temp\sed.exe
C:\Users\sangoko\AppData\Local\Temp\shortcut.exe
C:\Users\sangoko\AppData\Local\Temp\sqlite3.dll
C:\Users\sangoko\AppData\Local\Temp\swreg.exe
C:\Users\sangoko\AppData\Local\Temp\swxcacls.exe
C:\Users\sangoko\AppData\Local\Temp\vcredist_x86_80.exe
C:\Users\sangoko\AppData\Local\Temp\vcredist_x86_90.exe
C:\Users\sangoko\AppData\Local\Temp\wget.exe
C:\Users\sangoko\AppData\Local\Temp\zoek-delete.exe
C:\Users\Společnost\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Společnost\AppData\Local\Temp\vlc-2.2.1-win32.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-09-24 08:16

==================== End of FRST.txt ============================

#12 Příspěvek od **vyosek** » 25 zář 2015 06:05

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-750613624-948088251-3038114490-1000\...\Run: [supertintin_skype] => C:\Program Files\Supertintin for Skype\supertintin_skype.exe [999936 2011-01-10] (Imtiger Software Inc.)
HKU\S-1-5-21-750613624-948088251-3038114490-1000\...\Run: [Google Update] => C:\Users\sangoko\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc.)
Startup: C:\Users\sangoko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Bandwidth Meter.lnk [2010-11-02]
Startup: C:\Users\sangoko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wandoujia_helper.lnk [2015-07-05]

SearchScopes: HKU\S-1-5-21-750613624-948088251-3038114490-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = web/?type=dspp&ts=1432140622&from=xtab&uid=EE37F7F59F8C4eb7ACB70257A39DCFE8&q={searchTerms}

2015-09-24 19:32 - 2015-09-24 19:32 - 00000000 ____D C:\Users\sangoko\Desktop\FRST-OlderVersion
2015-09-24 02:51 - 2015-09-22 15:06 - 00006681 _____ C:\zoek-results2015-09-22-130657.log
2015-09-22 15:04 - 2015-09-22 15:04 - 00000021 _____ C:\folders.log
2015-09-22 14:36 - 2015-09-24 02:51 - 00001218 _____ C:\zoek-results.log
2015-09-22 14:34 - 2015-09-24 02:51 - 00000530 _____ C:\runcheck.txt
2015-09-22 14:34 - 2015-09-22 15:06 - 00000000 ____D C:\zoek_backup
2015-09-22 14:32 - 2015-09-22 14:33 - 01308672 _____ C:\Users\sangoko\Desktop\zoek.exe
2015-09-15 12:18 - 2015-09-15 12:18 - 00321848 _____ (Malwarebytes Corporation) C:\Users\sangoko\Desktop\mbam-clean-2.1.1.1001.exe
2015-09-15 09:55 - 2015-09-15 09:55 - 00001213 _____ C:\Users\sangoko\Desktop\Sken Malwarebytes.txt
2015-09-14 08:04 - 2015-09-14 08:17 - 00000000 ____D C:\AdwCleaner
2015-09-14 08:03 - 2015-09-14 08:03 - 01660416 _____ C:\Users\sangoko\Desktop\adwcleaner_5.007.exe
2015-09-13 12:30 - 2015-09-13 12:30 - 00015490 _____ C:\Users\sangoko\Desktop\Addition.zip
2015-09-13 12:27 - 2015-09-13 12:29 - 00048396 _____ C:\Users\sangoko\Desktop\Addition.txt
2015-09-13 12:25 - 2015-09-24 19:32 - 00020765 _____ C:\Users\sangoko\Desktop\FRST.txt
2015-09-13 12:21 - 2015-09-13 12:22 - 00000000 ____D C:\Program Files\trend micro
2015-09-13 12:21 - 2015-09-13 12:21 - 00000000 ____D C:\rsit

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-750613624-948088251-3038114490-1000Core.job => C:\Users\sangoko\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-750613624-948088251-3038114490-1000UA.job => C:\Users\sangoko\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{1FD776CB-3058-4844-897A-E17B4997AABB}.job => C:\Windows\system32\msfeedssync.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{7FA545D4-2B59-4223-87BD-BC37232271A9}.job => C:\Windows\system32\msfeedssync.exe

Hosts:
EmptyTemp:
Reboot:
End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

takos · #13 Příspěvek od **takos** » 25 zář 2015 18:20

Fix result of Farbar Recovery Scan Tool (x86) Version:23-09-2015
Ran by sangoko (2015-09-25 17:48:19) Run:1
Running from C:\Users\sangoko\Desktop
Loaded Profiles: sangoko (Available Profiles: sangoko & Společnost)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-750613624-948088251-3038114490-1000\...\Run: [supertintin_skype] => C:\Program Files\Supertintin for Skype\supertintin_skype.exe [999936 2011-01-10] (Imtiger Software Inc.)
HKU\S-1-5-21-750613624-948088251-3038114490-1000\...\Run: [Google Update] => C:\Users\sangoko\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc.)
Startup: C:\Users\sangoko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Bandwidth Meter.lnk [2010-11-02]
Startup: C:\Users\sangoko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wandoujia_helper.lnk [2015-07-05]

SearchScopes: HKU\S-1-5-21-750613624-948088251-3038114490-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = web/?type=dspp&ts=1432140622&from=xtab&uid=EE37F7F59F8C4eb7ACB70257A39DCFE8&q={searchTerms}

2015-09-24 19:32 - 2015-09-24 19:32 - 00000000 ____D C:\Users\sangoko\Desktop\FRST-OlderVersion
2015-09-24 02:51 - 2015-09-22 15:06 - 00006681 _____ C:\zoek-results2015-09-22-130657.log
2015-09-22 15:04 - 2015-09-22 15:04 - 00000021 _____ C:\folders.log
2015-09-22 14:36 - 2015-09-24 02:51 - 00001218 _____ C:\zoek-results.log
2015-09-22 14:34 - 2015-09-24 02:51 - 00000530 _____ C:\runcheck.txt
2015-09-22 14:34 - 2015-09-22 15:06 - 00000000 ____D C:\zoek_backup
2015-09-22 14:32 - 2015-09-22 14:33 - 01308672 _____ C:\Users\sangoko\Desktop\zoek.exe
2015-09-15 12:18 - 2015-09-15 12:18 - 00321848 _____ (Malwarebytes Corporation) C:\Users\sangoko\Desktop\mbam-clean-2.1.1.1001.exe
2015-09-15 09:55 - 2015-09-15 09:55 - 00001213 _____ C:\Users\sangoko\Desktop\Sken Malwarebytes.txt
2015-09-14 08:04 - 2015-09-14 08:17 - 00000000 ____D C:\AdwCleaner
2015-09-14 08:03 - 2015-09-14 08:03 - 01660416 _____ C:\Users\sangoko\Desktop\adwcleaner_5.007.exe
2015-09-13 12:30 - 2015-09-13 12:30 - 00015490 _____ C:\Users\sangoko\Desktop\Addition.zip
2015-09-13 12:27 - 2015-09-13 12:29 - 00048396 _____ C:\Users\sangoko\Desktop\Addition.txt
2015-09-13 12:25 - 2015-09-24 19:32 - 00020765 _____ C:\Users\sangoko\Desktop\FRST.txt
2015-09-13 12:21 - 2015-09-13 12:22 - 00000000 ____D C:\Program Files\trend micro
2015-09-13 12:21 - 2015-09-13 12:21 - 00000000 ____D C:\rsit

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-750613624-948088251-3038114490-1000Core.job => C:\Users\sangoko\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-750613624-948088251-3038114490-1000UA.job => C:\Users\sangoko\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{1FD776CB-3058-4844-897A-E17B4997AABB}.job => C:\Windows\system32\msfeedssync.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{7FA545D4-2B59-4223-87BD-BC37232271A9}.job => C:\Windows\system32\msfeedssync.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully.
HKU\S-1-5-21-750613624-948088251-3038114490-1000\Software\Microsoft\Windows\CurrentVersion\Run\\supertintin_skype => value removed successfully.
HKU\S-1-5-21-750613624-948088251-3038114490-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => value removed successfully.
C:\Users\sangoko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Bandwidth Meter.lnk => moved successfully
C:\Users\sangoko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wandoujia_helper.lnk => moved successfully
"HKU\S-1-5-21-750613624-948088251-3038114490-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => key removed successfully.
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => key not found.
C:\Users\sangoko\Desktop\FRST-OlderVersion => moved successfully
C:\zoek-results2015-09-22-130657.log => moved successfully
C:\folders.log => moved successfully
C:\zoek-results.log => moved successfully
C:\runcheck.txt => moved successfully
C:\zoek_backup => moved successfully
C:\Users\sangoko\Desktop\zoek.exe => moved successfully
C:\Users\sangoko\Desktop\mbam-clean-2.1.1.1001.exe => moved successfully
C:\Users\sangoko\Desktop\Sken Malwarebytes.txt => moved successfully
C:\AdwCleaner => moved successfully
C:\Users\sangoko\Desktop\adwcleaner_5.007.exe => moved successfully
C:\Users\sangoko\Desktop\Addition.zip => moved successfully
C:\Users\sangoko\Desktop\Addition.txt => moved successfully
C:\Users\sangoko\Desktop\FRST.txt => moved successfully
C:\Program Files\trend micro => moved successfully
C:\rsit => moved successfully
C:\Windows\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-750613624-948088251-3038114490-1000Core.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-750613624-948088251-3038114490-1000UA.job => moved successfully
C:\Windows\Tasks\User_Feed_Synchronization-{1FD776CB-3058-4844-897A-E17B4997AABB}.job => moved successfully
C:\Windows\Tasks\User_Feed_Synchronization-{7FA545D4-2B59-4223-87BD-BC37232271A9}.job => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 553.6 MB temporary data Removed.

The system needed a reboot.

==== End of Fixlog 18:01:01 ====

#14 Příspěvek od **vyosek** » 30 zář 2015 21:56

Jak se chova nas pacient?

takos · #15 Příspěvek od **takos** » 01 říj 2015 14:51

No teplotu nemá

a na nějakou další diagnozu si netroufám ale vypadá spokojeně

až na ten nedostatek místa na disku C

a to jsem vymazel co se dalo aspoň o tom co jsem věděl že můžu bezbolesti vymazat. Máte ohledně tohoto nějakou radu?

Díky Jirka

VIRY.CZ

Vyosek prosím o kontrolu. Díky za pomoc.

Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.

Re: Vyosek prosím o kontrolu. Díky za pomoc.