Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

spousta reklam v prohlížeči

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
bretja
Návštěvník
Návštěvník
Příspěvky: 15
Registrován: 25 bře 2013 22:54

spousta reklam v prohlížeči

#1 Příspěvek od bretja »

Ahoj,
prosím o kontrolu logu. V prohlížeči mi neustále vyskakují reklamy při kliknutí i na známé odkazy.
Díky


Logfile of random's system information tool 1.10 (written by random/random)
Run by martinra at 2015-12-30 11:00:15
Microsoft Windows 10 Home
System drive C: has 336 GB (73%) free of 459 GB
Total RAM: 3066 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:00:27, on 30.12.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16603)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Windows\System32\rundll32.exe
C:\Users\martinra\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Windows\System32\InstallAgent.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Windows\explorer.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\DllHost.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\WINDOWS\System32\Taskmgr.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Radek\RSIT.exe
C:\Program Files\trend micro\martinra.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file)
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (file missing)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: IEExtension.VDownloaderBHO - {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} - mscoree.dll (file missing)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: DownTango Launcher Toolbar - {b52d0735-ec19-448a-abde-e01b5bd275d2} - C:\Users\martinra\AppData\Roaming\DownTangoLauncherToolbar\DownTangoLauncherToolbar.dll
O2 - BHO: Movies Toolbar (Dist. by Koyote-Lab, Inc.) - {e5d4f4fd-a039-4670-8354-633c30a5f54e} - C:\PROGRA~1\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll (file missing)
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: DownTango Launcher Toolbar - {b52d0735-ec19-448a-abde-e01b5bd275d2} - C:\Users\martinra\AppData\Roaming\DownTangoLauncherToolbar\DownTangoLauncherToolbar.dll
O3 - Toolbar: Movies Toolbar (Dist. by Koyote-Lab, Inc.) - {e5d4f4fd-a039-4670-8354-633c30a5f54e} - C:\PROGRA~1\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll (file missing)
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\soundmax.exe /tray
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\martinra\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [NextLive] C:\windows\system32\rundll32.exe "C:\Users\martinra\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
O4 - HKCU\..\Run: [OneDrive] "C:\Users\martinra\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: VDownloader.lnk = C:\Program Files\VDownloader\VDownloader.exe
O4 - Global Startup: Canon LBP2900 Status Window.lnk = C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: (no name) - {45d8438c-b51d-47a8-aeea-9061535f25f1} - C:\Users\martinra\AppData\Roaming\DownTangoLauncherToolbar\DownTangoLauncherToolbar.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @oem7.inf,%AEADISRV.SvcDesc%;Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\WINDOWS\system32\AEADISRV.EXE
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: @oem30.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Broadcom Corporation. - C:\WINDOWS\system32\BtwRSupportService.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem12.inf,%hpservice_desc%;HP Service (hpsrv) - Hewlett-Packard Company - C:\WINDOWS\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe

--
End of file - 10494 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3711999932-26349160-60105416-1001Core.job - C:\Users\martinra\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3711999932-26349160-60105416-1001UA.job - C:\Users\martinra\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Norton Security Scan for martinra.job - C:\PROGRA~1\NORTON~2\Engine\353~1.1\Nss.exe /scan-quick /scheduled
C:\WINDOWS\tasks\User_Feed_Synchronization-{C92D441B-14B1-440D-9A59-50C7D07720A0}.job - C:\WINDOWS\system32\msfeedssync.exe sync

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b523e7c-f096-4e36-a0cb-7efeb5c675c1}]
IEExtension.VDownloaderBHO - C:\WINDOWS\system32\mscoree.dll [2015-07-10 339968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12 1725056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b52d0735-ec19-448a-abde-e01b5bd275d2}]
DownTango Launcher Toolbar - C:\Users\martinra\AppData\Roaming\DownTangoLauncherToolbar\DownTangoLauncherToolbar.dll [2012-09-28 1031240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e5d4f4fd-a039-4670-8354-633c30a5f54e}]
Movies Toolbar (Dist. by Koyote-Lab, Inc.) - C:\PROGRA~1\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0}
{b52d0735-ec19-448a-abde-e01b5bd275d2} - DownTango Launcher Toolbar - C:\Users\martinra\AppData\Roaming\DownTangoLauncherToolbar\DownTangoLauncherToolbar.dll [2012-09-28 1031240]
{e5d4f4fd-a039-4670-8354-633c30a5f54e} - Movies Toolbar (Dist. by Koyote-Lab, Inc.) - C:\PROGRA~1\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-07-27 288312]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-08-25 186904]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2009-06-18 563736]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-07-23 498744]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2009-05-18 3866624]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"SSDMonitor"=C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe [2012-08-21 105120]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe /autoRun []
"Facebook Update"=C:\Users\martinra\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-09-28 138096]
"NextLive"=C:\Users\martinra\AppData\Roaming\newnext.me\nengine.dll [2013-11-14 1283584]
"OneDrive"=C:\Users\martinra\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-11 551112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28 1067736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2008-12-02 3882312]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Canon LBP2900 Status Window.lnk - C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE

C:\Users\martinra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
VDownloader.lnk - C:\Program Files\VDownloader\VDownloader.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe]
"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-12-30 11:00:15 ----D---- C:\rsit
2015-12-30 11:00:15 ----D---- C:\Program Files\trend micro
2015-12-30 10:47:05 ----HD---- C:\OneDriveTemp
2015-12-13 17:01:22 ----D---- C:\Radek
2015-12-11 20:55:28 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-11 20:55:28 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-11 20:55:27 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-12-11 20:55:27 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-12-11 20:55:26 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-11 20:55:22 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-11 20:55:20 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-11 20:55:20 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-11 20:55:20 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-11 20:55:20 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-12-11 20:55:17 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-11 20:55:15 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-11 20:55:15 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-11 20:55:12 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-12-11 20:55:12 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-12-11 20:55:12 ----A---- C:\WINDOWS\system32\DAMM.dll
2015-12-11 20:55:11 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-11 20:55:10 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-12-11 20:55:10 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-11 20:55:09 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-11 20:55:09 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-12-11 20:55:09 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-12-11 20:55:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-12-11 20:55:06 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2015-12-11 20:55:06 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-11 20:55:06 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\Magnify.exe
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-12-11 20:55:04 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-11 20:55:03 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-11 20:55:02 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-11 20:55:02 ----A---- C:\WINDOWS\system32\esent.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\ninput.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\ieui.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\duser.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-11 20:55:01 ----A---- C:\WINDOWS\explorer.exe
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\internetmail.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-12-11 20:54:59 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-12-11 20:54:59 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-12-11 20:54:59 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-11 20:54:58 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-11 20:54:56 ----A---- C:\WINDOWS\system32\winload.exe
2015-12-11 20:54:56 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-12-11 20:54:56 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-11 20:54:56 ----A---- C:\WINDOWS\system32\comdlg32.dll
2015-12-11 20:54:55 ----A---- C:\WINDOWS\system32\winresume.exe
2015-12-11 20:54:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-11 20:54:55 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-12-11 20:54:55 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-12-11 20:54:54 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-11 20:54:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-11 20:54:54 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\NetworkUXBroker.exe
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\dot3mm.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\DAMediaManager.dll
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\EthernetMediaManager.dll
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-12-11 20:54:51 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-12-11 20:54:51 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\userenv.dll
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-12-11 20:54:49 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-11 20:54:49 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-12-11 20:54:45 ----A---- C:\WINDOWS\system32\kbdgeoqw.dll
2015-12-11 20:54:45 ----A---- C:\WINDOWS\system32\KBDAZE.DLL
2015-12-11 20:54:45 ----A---- C:\WINDOWS\system32\drivers\gpuenergydrv.sys
2015-12-11 20:54:44 ----A---- C:\WINDOWS\system32\profext.dll
2015-12-11 20:54:44 ----A---- C:\WINDOWS\system32\KBDAZST.DLL
2015-12-11 20:54:44 ----A---- C:\WINDOWS\system32\KBDAZEL.DLL
2015-12-04 20:50:35 ----D---- C:\ProgramData\LuckyBrowse

======List of files/folders modified in the last 1 month======

2015-12-30 11:00:16 ----D---- C:\WINDOWS\Prefetch
2015-12-30 11:00:15 ----RD---- C:\Program Files
2015-12-30 10:59:30 ----D---- C:\WINDOWS\Temp
2015-12-30 10:58:09 ----D---- C:\WINDOWS\System32
2015-12-30 10:58:09 ----D---- C:\WINDOWS\INF
2015-12-30 10:58:09 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-30 10:57:51 ----HD---- C:\Program Files\WindowsApps
2015-12-30 10:52:19 ----D---- C:\WINDOWS\AppReadiness
2015-12-30 10:50:35 ----D---- C:\WINDOWS\Tasks
2015-12-28 11:36:33 ----D---- C:\WINDOWS\Microsoft.NET
2015-12-28 11:34:01 ----D---- C:\WINDOWS\system32\config
2015-12-28 11:10:11 ----SHD---- C:\WINDOWS\Installer
2015-12-28 11:10:10 ----SHD---- C:\Config.Msi
2015-12-28 10:59:32 ----D---- C:\WINDOWS\system32\sru
2015-12-20 20:14:38 ----RD---- C:\WINDOWS\assembly
2015-12-20 19:38:23 ----SHD---- C:\System Volume Information
2015-12-15 18:18:51 ----D---- C:\WINDOWS\system32\NDF
2015-12-13 17:41:40 ----D---- C:\WINDOWS\CbsTemp
2015-12-13 17:35:26 ----D---- C:\WINDOWS\WinSxS
2015-12-13 17:34:16 ----D---- C:\WINDOWS\system32\drivers
2015-12-13 17:34:15 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-13 17:31:18 ----SD---- C:\WINDOWS\system32\F12
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\oobe
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\migration
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\cs-CZ
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\Boot
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\appraiser
2015-12-13 17:31:15 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-13 17:31:15 ----D---- C:\WINDOWS\Provisioning
2015-12-13 17:31:14 ----RSD---- C:\WINDOWS\Fonts
2015-12-13 17:31:14 ----D---- C:\WINDOWS\L2Schemas
2015-12-13 17:31:13 ----D---- C:\WINDOWS\apppatch
2015-12-13 17:31:13 ----D---- C:\Windows
2015-12-13 17:31:13 ----D---- C:\Program Files\Windows Journal
2015-12-13 17:31:13 ----D---- C:\Program Files\Internet Explorer
2015-12-13 17:31:12 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-13 17:31:09 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-12 20:36:44 ----D---- C:\WINDOWS\system32\Tasks
2015-12-12 20:36:18 ----D---- C:\Program Files\Common Files\Adobe
2015-12-12 20:36:17 ----D---- C:\Program Files\Adobe
2015-12-12 20:36:09 ----D---- C:\ProgramData\Adobe
2015-12-12 19:19:36 ----D---- C:\ProgramData\Microsoft Help
2015-12-12 19:17:04 ----D---- C:\WINDOWS\system32\MRT
2015-12-11 19:23:01 ----D---- C:\WINDOWS\system32\catroot2
2015-12-09 04:39:28 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-12-04 20:50:35 ----HD---- C:\ProgramData
2015-12-01 01:32:22 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;@oem12.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 iaStor;@oem26.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2009-08-07 330264]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-07-09 45200]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-12-01 7680]
R1 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2009-05-16 214024]
R1 mfetdik;McAfee Inc. mfetdik; C:\WINDOWS\system32\drivers\mfetdik.sys [2009-05-16 55336]
R1 MpKslb2d89724;MpKslb2d89724; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{439A64FB-5AC1-4132-9928-97AEBC8AE6E6}\MpKslb2d89724.sys [2015-12-28 39168]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2010-01-27 50704]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 5U876UVC;@oem11.inf,%5U876.SvcInstName%;HP Webcam [2 MP series]; C:\WINDOWS\system32\DRIVERS\5U876.sys [2009-06-30 118656]
R3 Accelerometer;@oem12.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 ADIHdAudAddService;@oem7.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 AtiHdmiService;@oem19.inf,%ATIHdAudioDriver.SvcDesc%;ATI Service for HD Audio Codec; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-07-24 103440]
R3 bcbtums;@oem30.inf,%BCBTUMS.SvcDesc%;Bluetooth USB LD Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-10-28 175320]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-07-10 86528]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 61952]
R3 HpqKbFiltr;@oem3.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [2009-04-29 15872]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-11 130048]
R3 NETwNs32;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit; C:\WINDOWS\System32\drivers\Netwsn00.sys [2015-07-10 10372096]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-07-10 129536]
R3 SynTP;@oem24.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-09-17 725504]
S3 btwampfl;@oem30.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-10-28 144600]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-09-17 26112]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 dg_ssudbus;@oem23.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 88576]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\WINDOWS\system32\drivers\MfeAVFK.sys [2009-05-16 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\WINDOWS\system32\drivers\MfeBOPK.sys [2009-05-16 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\WINDOWS\system32\drivers\MfeRKDK.sys [2009-05-16 34248]
S3 NETw1v32;Intel(R) Wireless WiFi Link 1000 Series Adapter Driver for Windows Vista 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw1v32.sys [2009-07-21 5958656]
S3 ssudmdm;@oem22.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 184192]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-11 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AEADIFilters;@oem7.inf,%AEADISRV.SvcDesc%;Andrea ADI Filters Service; C:\WINDOWS\system32\AEADISRV.EXE [2008-07-15 90112]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 BcmBtRSupport;@oem30.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-10-28 1680088]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-10-12 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-10-12 1773696]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-03-24 121344]
R2 hpsrv;@oem12.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2011-05-13 26168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-08-25 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-11 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2012-08-21 794272]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2009-06-18 635416]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2005-09-30 96341]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-11 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-03-05 655624]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-06-13 1120752]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-11 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-04-30 74392]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: spousta reklam v prohlížeči

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
bretja
Návštěvník
Návštěvník
Příspěvky: 15
Registrován: 25 bře 2013 22:54

Re: spousta reklam v prohlížeči

#3 Příspěvek od bretja »

AdwCleaner toho vyčistil docela dost, ale problém stále přetrvává

díky
Bretja

# AdwCleaner v5.027 - Logfile created 31/12/2015 at 09:26:42
# Updated 30/12/2015 by Xplode
# Database : 2015-12-30.1 [Server]
# Operating system : Windows 10 Home (x86)
# Username : martinra
# Running from : C:\Users\martinra\Desktop\adwcleaner_5.027.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\Conduit
[-] Folder Deleted : C:\Program Files\DownTangoLauncherToolbar
[-] Folder Deleted : C:\Program Files\Protected Search
[-] Folder Deleted : C:\Program Files\RelevantKnowledge
[-] Folder Deleted : C:\Program Files\Common Files\DVDVideoSoft\TB
[-] Folder Deleted : C:\ProgramData\LuckyBrowse
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protected Search
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverRestore
[-] Folder Deleted : C:\Users\martinra\AppData\Local\Conduit
[-] Folder Deleted : C:\Users\martinra\AppData\Local\DownTango
[-] Folder Deleted : C:\Users\martinra\AppData\Local\genienext
[-] Folder Deleted : C:\Users\martinra\AppData\Local\Mobogenie
[-] Folder Deleted : C:\Users\martinra\AppData\Local\OpenCandy
[-] Folder Deleted : C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaifmhgonleehnkppkhhchcbhhigac
[-] Folder Deleted : C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejdabpabkmacjiiooccecnpakonoibah
[-] Folder Deleted : C:\Users\martinra\AppData\Local\Chromium\User Data\Default\Extensions\aaaaifmhgonleehnkppkhhchcbhhigac
[-] Folder Deleted : C:\Users\martinra\AppData\Local\Chromium\User Data\Default\Extensions\ejdabpabkmacjiiooccecnpakonoibah
[-] Folder Deleted : C:\Users\martinra\AppData\LocalLow\Conduit
[-] Folder Deleted : C:\Users\martinra\AppData\LocalLow\DownTangoLauncherToolbar
[-] Folder Deleted : C:\Users\martinra\AppData\LocalLow\PriceGong
[-] Folder Deleted : C:\Users\martinra\AppData\LocalLow\SimplyTech
[-] Folder Deleted : C:\Users\martinra\AppData\LocalLow\Toolbar4
[-] Folder Deleted : C:\Users\martinra\AppData\Roaming\DownTangoLauncherToolbar
[-] Folder Deleted : C:\Users\martinra\AppData\Roaming\newnext.me
[-] Folder Deleted : C:\Users\martinra\AppData\Roaming\OpenCandy
[-] Folder Deleted : C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\Extensions\{890a3e16-521d-4d00-bdf9-e07218d09c8d}
[#] Folder Deleted : C:\WINDOWS\system32\Tasks\LuckyBrowse
[-] Folder Deleted : C:\WINDOWS\system32\Tasks\ProtectedSearch

***** [ Files ] *****

[-] File Deleted : C:\END
[-] File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\Web Search.xml
[-] File Deleted : C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ejdabpabkmacjiiooccecnpakonoibah_0.localstorage
[-] File Deleted : C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ejdabpabkmacjiiooccecnpakonoibah_0.localstorage-journal
[-] File Deleted : C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] File Deleted : C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] File Deleted : C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_videodownloadconverter.dl.tb.ask.com_0.localstorage
[-] File Deleted : C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_videodownloadconverter.dl.tb.ask.com_0.localstorage-journal
[-] File Deleted : C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage
[-] File Deleted : C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal
[-] File Deleted : C:\Users\martinra\AppData\Local\Chromium\User Data\Default\Local Storage\hxxp_search.internetquickaccess.com_0.localstorage
[-] File Deleted : C:\Users\martinra\AppData\Local\Chromium\User Data\Default\Local Storage\hxxp_search.internetquickaccess.com_0.localstorage-journal
[-] File Deleted : C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\invalidprefs.js
[-] File Deleted : C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\searchplugins\Web Search.xml
[-] File Deleted : C:\WINDOWS\launcher.exe

***** [ DLLs ] *****


***** [ Shortcuts ] *****

[-] Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
[-] Shortcut Disinfected : C:\Users\martinra\Desktop\firefox – zástupce.lnk
[-] Shortcut Disinfected : C:\Users\martinra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk
[-] Shortcut Disinfected : C:\Users\martinra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[-] Shortcut Disinfected : C:\Users\martinra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

***** [ Scheduled tasks ] *****

[-] Task Deleted : LuckyBrowse
[-] Task Deleted : ProtectedSearch\Protected Search

***** [ Registry ] *****

[-] Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
[-] Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
[-] Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\wtb.Band
[-] Key Deleted : HKLM\SOFTWARE\Classes\wtb.Band.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\wtb.NotificationSource
[-] Key Deleted : HKLM\SOFTWARE\Classes\wtb.NotificationSource.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\wtb.SourceSinkImpl
[-] Key Deleted : HKLM\SOFTWARE\Classes\wtb.SourceSinkImpl.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\wtb.ToolbarInfo
[-] Key Deleted : HKLM\SOFTWARE\Classes\wtb.ToolbarInfo.1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3FC27B34-0C19-49DA-875E-1875DDD4A6B2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B52D0735-EC19-448A-ABDE-E01B5BD275D2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8DA8B89E-0C65-403B-8231-AB22ECFA0687}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B0E28FA0-DF07-44B6-95CE-48BE26DB9266}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E6B4EE8F-C38E-4994-BE28-229A3F92262C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FCA8936E-403A-4487-A966-70F80F1D5A6A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B52D0735-EC19-448A-ABDE-E01B5BD275D2}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B52D0735-EC19-448A-ABDE-E01B5BD275D2}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3F69D07-0AEE-47AF-87D0-1A67D4F70C68}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{45D8438C-B51D-47A8-AEEA-9061535F25F1}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B52D0735-EC19-448A-ABDE-E01B5BD275D2}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{45D8438C-B51D-47A8-AEEA-9061535F25F1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{B52D0735-EC19-448A-ABDE-E01B5BD275D2}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
[-] Key Deleted : HKCU\Software\APN DTX
[-] Key Deleted : HKCU\Software\eSupport.com
[-] Key Deleted : HKCU\Software\ProtectedSearch
[-] Key Deleted : HKCU\Software\simplytech
[-] Key Deleted : HKCU\Software\Softonic
[-] Key Deleted : HKCU\Software\Somoto Toolbar
[-] Key Deleted : HKCU\Software\DriverRestore
[-] Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
[-] Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
[-] Key Deleted : HKCU\Software\AppDataLow\Software\simplytech
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\DataMngr
[-] Key Deleted : HKLM\SOFTWARE\DownTango
[-] Key Deleted : HKLM\SOFTWARE\SimpleFiles
[-] Key Deleted : HKLM\SOFTWARE\Speedchecker Limited
[-] Key Deleted : HKLM\SOFTWARE\VDownloader\OpenCandy
[-] Key Deleted : HKLM\SOFTWARE\LuckyBrowse
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D08D9F98-1C78-4704-87E6-368B0023D831}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Protected Search_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
[-] Data Restored : HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\Search [Start Page]
[-] Data Restored : HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\Search [Start Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\Search [Default_Search_URL]
[-] Data Restored : HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\Search [Search Bar]
[-] Data Restored : HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\Search [Search Page]
[-] Data Restored : HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchURI [(Default)]
[-] Data Restored : HKLM\SOFTWARE\Classes\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Default_Page_URL]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Start Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Start Default_Page_URL]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Search Bar]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Search Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Start Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Start Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Bar]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [(Default)]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchURI [(Default)]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchURI [(Default)]
[-] Data Restored : HKU\S-1-5-21-3711999932-26349160-60105416-1001_Classes\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-3711999932-26349160-60105416-1001_Classes\Software\Microsoft\Internet Explorer\Main [Start Default_Page_URL]
[-] Data Restored : HKU\S-1-5-21-3711999932-26349160-60105416-1001_Classes\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKU\S-1-5-21-3711999932-26349160-60105416-1001_Classes\Software\Microsoft\Internet Explorer\Main [Search Bar]
[-] Data Restored : HKU\S-1-5-21-3711999932-26349160-60105416-1001_Classes\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{70A89691-448B-4BC4-BCBE-2FDF7999B149}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com

***** [ Web browsers ] *****

[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("DownTangoLauncherToolbar_592.global.ClearSearchHistoryOnClose", "false");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("DownTangoLauncherToolbar_592.global.CurrentLanguageSelection", "English");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("DownTangoLauncherToolbar_592.global.CurrentNavigationSelection", "Current window");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("DownTangoLauncherToolbar_592.global.CurrentSearchEngineSelection", "US: United States of America");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("DownTangoLauncherToolbar_592.global.DisplayRecentSearches", "true");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("DownTangoLauncherToolbar_592.global.ShowButtonText2", "true");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("DownTangoLauncherToolbar_592.global.UpdateTime", "1449950259241");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("DownTangoLauncherToolbar_592.global.setupExtension", "true");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("DownTangoLauncherToolbar_592.global.userEnable", true);
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("DownTangoLauncherToolbar_592.global.userID", "5b756991d4c7972f488e0765facfbf59");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("browser.newtab.url", "hxxp://newtab.certified-toolbar.com/nff?si=41460&tid=592&new=true");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultengine", "Web Search");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultenginename", "Web Search");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("browser.search.order.1", "Web Search");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("browser.search.selectedEngine", "Web Search");
[-] [C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\prefs.js] [Preference] Deleted : user_pref("keyword.URL", "hxxp://search.certified-toolbar.com?si=41460&tid=592&bs=true&q=");
[-] [C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : aaaaifmhgonleehnkppkhhchcbhhigac
[-] [C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ejdabpabkmacjiiooccecnpakonoibah
[-] [C:\Users\martinra\AppData\Local\Chromium\User Data\Default\Secure Preferences] [Extension] Deleted : aaaaifmhgonleehnkppkhhchcbhhigac
[-] [C:\Users\martinra\AppData\Local\Chromium\User Data\Default\Secure Preferences] [Extension] Deleted : ejdabpabkmacjiiooccecnpakonoibah

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [22380 bytes] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: spousta reklam v prohlížeči

#4 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
bretja
Návštěvník
Návštěvník
Příspěvky: 15
Registrován: 25 bře 2013 22:54

Re: spousta reklam v prohlížeči

#5 Příspěvek od bretja »

Tady je nový log z RSIT. A mimochodem, hezký Nový rok :-)

Logfile of random's system information tool 1.10 (written by random/random)
Run by martinra at 2016-01-01 17:28:27
Microsoft Windows 10 Home
System drive C: has 333 GB (72%) free of 459 GB
Total RAM: 3066 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:28:37, on 1.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16603)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Users\martinra\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\svchost.exe
C:\Windows\System32\InstallAgent.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Radek\RSIT.exe
C:\Program Files\trend micro\martinra.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (file missing)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: IEExtension.VDownloaderBHO - {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} - mscoree.dll (file missing)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Movies Toolbar (Dist. by Koyote-Lab, Inc.) - {e5d4f4fd-a039-4670-8354-633c30a5f54e} - C:\PROGRA~1\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll (file missing)
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: Movies Toolbar (Dist. by Koyote-Lab, Inc.) - {e5d4f4fd-a039-4670-8354-633c30a5f54e} - C:\PROGRA~1\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll (file missing)
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\soundmax.exe /tray
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\martinra\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [OneDrive] "C:\Users\martinra\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: VDownloader.lnk = C:\Program Files\VDownloader\VDownloader.exe
O4 - Global Startup: Canon LBP2900 Status Window.lnk = C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @oem7.inf,%AEADISRV.SvcDesc%;Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\WINDOWS\system32\AEADISRV.EXE
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: @oem30.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Broadcom Corporation. - C:\WINDOWS\system32\BtwRSupportService.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem12.inf,%hpservice_desc%;HP Service (hpsrv) - Hewlett-Packard Company - C:\WINDOWS\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe

--
End of file - 9537 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3711999932-26349160-60105416-1001Core.job - C:\Users\martinra\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3711999932-26349160-60105416-1001UA.job - C:\Users\martinra\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Norton Security Scan for martinra.job - C:\PROGRA~1\NORTON~2\Engine\353~1.1\Nss.exe /scan-quick /scheduled

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b523e7c-f096-4e36-a0cb-7efeb5c675c1}]
IEExtension.VDownloaderBHO - C:\WINDOWS\system32\mscoree.dll [2015-07-10 339968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12 1725056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e5d4f4fd-a039-4670-8354-633c30a5f54e}]
Movies Toolbar (Dist. by Koyote-Lab, Inc.) - C:\PROGRA~1\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0}
{e5d4f4fd-a039-4670-8354-633c30a5f54e} - Movies Toolbar (Dist. by Koyote-Lab, Inc.) - C:\PROGRA~1\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-07-27 288312]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-08-25 186904]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2009-06-18 563736]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-07-23 498744]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2009-05-18 3866624]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"SSDMonitor"=C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe [2012-08-21 105120]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe /autoRun []
"Facebook Update"=C:\Users\martinra\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-09-28 138096]
"OneDrive"=C:\Users\martinra\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-11 551112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28 1067736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2008-12-02 3882312]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Canon LBP2900 Status Window.lnk - C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE

C:\Users\martinra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
VDownloader.lnk - C:\Program Files\VDownloader\VDownloader.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera]
"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 2 months======

2016-01-01 17:28:12 ----D---- C:\bbad2bc29ce8f25c55eb484a
2016-01-01 17:18:05 ----HD---- C:\OneDriveTemp
2015-12-31 09:22:30 ----D---- C:\AdwCleaner
2015-12-30 12:11:48 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe
2015-12-30 11:54:37 ----HD---- C:\$WINDOWS.~BT
2015-12-30 11:00:15 ----D---- C:\rsit
2015-12-30 11:00:15 ----D---- C:\Program Files\trend micro
2015-12-13 17:01:22 ----D---- C:\Radek
2015-12-11 20:55:28 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-11 20:55:28 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-11 20:55:27 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-12-11 20:55:27 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-12-11 20:55:26 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-11 20:55:22 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-11 20:55:20 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-11 20:55:20 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-11 20:55:20 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-11 20:55:20 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-12-11 20:55:17 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-11 20:55:15 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-11 20:55:15 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-11 20:55:12 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-12-11 20:55:12 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-12-11 20:55:12 ----A---- C:\WINDOWS\system32\DAMM.dll
2015-12-11 20:55:11 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-11 20:55:10 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-12-11 20:55:10 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-11 20:55:09 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-11 20:55:09 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-12-11 20:55:09 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-12-11 20:55:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-12-11 20:55:06 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2015-12-11 20:55:06 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-11 20:55:06 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\Magnify.exe
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-12-11 20:55:04 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-11 20:55:03 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-11 20:55:02 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-11 20:55:02 ----A---- C:\WINDOWS\system32\esent.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\ninput.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\ieui.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\duser.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-11 20:55:01 ----A---- C:\WINDOWS\explorer.exe
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\internetmail.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-12-11 20:54:59 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-12-11 20:54:59 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-12-11 20:54:59 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-11 20:54:58 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-11 20:54:56 ----A---- C:\WINDOWS\system32\winload.exe
2015-12-11 20:54:56 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-12-11 20:54:56 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-11 20:54:56 ----A---- C:\WINDOWS\system32\comdlg32.dll
2015-12-11 20:54:55 ----A---- C:\WINDOWS\system32\winresume.exe
2015-12-11 20:54:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-11 20:54:55 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-12-11 20:54:55 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-12-11 20:54:54 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-11 20:54:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-11 20:54:54 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\NetworkUXBroker.exe
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\dot3mm.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\DAMediaManager.dll
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\EthernetMediaManager.dll
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-12-11 20:54:51 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-12-11 20:54:51 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\userenv.dll
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-12-11 20:54:49 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-11 20:54:49 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-12-11 20:54:45 ----A---- C:\WINDOWS\system32\kbdgeoqw.dll
2015-12-11 20:54:45 ----A---- C:\WINDOWS\system32\KBDAZE.DLL
2015-12-11 20:54:45 ----A---- C:\WINDOWS\system32\drivers\gpuenergydrv.sys
2015-12-11 20:54:44 ----A---- C:\WINDOWS\system32\profext.dll
2015-12-11 20:54:44 ----A---- C:\WINDOWS\system32\KBDAZST.DLL
2015-12-11 20:54:44 ----A---- C:\WINDOWS\system32\KBDAZEL.DLL

======List of files/folders modified in the last 2 months======

2016-01-01 17:28:22 ----D---- C:\WINDOWS\Prefetch
2016-01-01 17:27:20 ----D---- C:\WINDOWS\Temp
2016-01-01 17:24:08 ----HD---- C:\Program Files\WindowsApps
2016-01-01 17:23:32 ----D---- C:\WINDOWS\AppReadiness
2016-01-01 17:20:19 ----D---- C:\WINDOWS\system32\sru
2016-01-01 17:17:31 ----D---- C:\WINDOWS\System32
2015-12-31 09:36:55 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-31 09:36:54 ----D---- C:\WINDOWS\INF
2015-12-31 09:26:56 ----D---- C:\WINDOWS\system32\Tasks
2015-12-31 09:26:56 ----D---- C:\Windows
2015-12-31 09:26:42 ----RD---- C:\Program Files
2015-12-31 09:26:42 ----HD---- C:\ProgramData
2015-12-31 09:26:42 ----D---- C:\Program Files\Common Files\DVDVideoSoft
2015-12-31 09:19:30 ----D---- C:\WINDOWS\system32\config
2015-12-31 09:16:42 ----D---- C:\WINDOWS\Tasks
2015-12-30 13:01:18 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-30 12:03:26 ----D---- C:\WINDOWS\WinSxS
2015-12-30 11:59:32 ----SHD---- C:\WINDOWS\Installer
2015-12-30 11:59:32 ----SHD---- C:\Config.Msi
2015-12-30 11:58:04 ----DC---- C:\WINDOWS\Panther
2015-12-30 11:54:37 ----D---- C:\WINDOWS\Logs
2015-12-30 11:54:36 ----D---- C:\ProgramData\Microsoft Help
2015-12-30 11:51:18 ----SHD---- C:\System Volume Information
2015-12-30 11:18:32 ----D---- C:\WINDOWS\CbsTemp
2015-12-30 11:16:42 ----D---- C:\WINDOWS\Microsoft.NET
2015-12-26 09:58:33 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-12-20 20:14:38 ----RD---- C:\WINDOWS\assembly
2015-12-15 18:18:51 ----D---- C:\WINDOWS\system32\NDF
2015-12-13 17:34:16 ----D---- C:\WINDOWS\system32\drivers
2015-12-13 17:34:15 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-13 17:33:15 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-13 17:31:18 ----SD---- C:\WINDOWS\system32\F12
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\oobe
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\migration
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\cs-CZ
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\Boot
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\appraiser
2015-12-13 17:31:15 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-13 17:31:15 ----D---- C:\WINDOWS\Provisioning
2015-12-13 17:31:14 ----RSD---- C:\WINDOWS\Fonts
2015-12-13 17:31:14 ----D---- C:\WINDOWS\L2Schemas
2015-12-13 17:31:13 ----D---- C:\WINDOWS\apppatch
2015-12-13 17:31:13 ----D---- C:\Program Files\Windows Journal
2015-12-13 17:31:13 ----D---- C:\Program Files\Internet Explorer
2015-12-13 17:31:12 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-12 20:36:18 ----D---- C:\Program Files\Common Files\Adobe
2015-12-12 20:36:17 ----D---- C:\Program Files\Adobe
2015-12-12 20:36:09 ----D---- C:\ProgramData\Adobe
2015-12-12 19:17:04 ----D---- C:\WINDOWS\system32\MRT
2015-12-11 19:23:01 ----D---- C:\WINDOWS\system32\catroot2
2015-12-09 04:39:28 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-11-23 19:09:54 ----A---- C:\WINDOWS\system32\MRT.exe
2015-11-22 10:12:45 ----RD---- C:\Program Files\Skype
2015-11-02 17:09:44 ----D---- C:\WINDOWS\system32\LogFiles
2015-11-02 17:07:35 ----RD---- C:\Users

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;@oem12.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 iaStor;@oem26.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2009-08-07 330264]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-07-09 45200]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-12-01 7680]
R1 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2009-05-16 214024]
R1 mfetdik;McAfee Inc. mfetdik; C:\WINDOWS\system32\drivers\mfetdik.sys [2009-05-16 55336]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2010-01-27 50704]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 5U876UVC;@oem11.inf,%5U876.SvcInstName%;HP Webcam [2 MP series]; C:\WINDOWS\system32\DRIVERS\5U876.sys [2009-06-30 118656]
R3 Accelerometer;@oem12.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 ADIHdAudAddService;@oem7.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 AtiHdmiService;@oem19.inf,%ATIHdAudioDriver.SvcDesc%;ATI Service for HD Audio Codec; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-07-24 103440]
R3 bcbtums;@oem30.inf,%BCBTUMS.SvcDesc%;Bluetooth USB LD Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-10-28 175320]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-07-10 86528]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 61952]
R3 HpqKbFiltr;@oem3.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [2009-04-29 15872]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-11 130048]
R3 NETwNs32;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit; C:\WINDOWS\System32\drivers\Netwsn00.sys [2015-07-10 10372096]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-07-10 129536]
R3 SynTP;@oem24.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-09-17 725504]
S3 btwampfl;@oem30.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-10-28 144600]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-09-17 26112]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 dg_ssudbus;@oem23.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 88576]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\WINDOWS\system32\drivers\MfeAVFK.sys [2009-05-16 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\WINDOWS\system32\drivers\MfeBOPK.sys [2009-05-16 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\WINDOWS\system32\drivers\MfeRKDK.sys [2009-05-16 34248]
S3 NETw1v32;Intel(R) Wireless WiFi Link 1000 Series Adapter Driver for Windows Vista 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw1v32.sys [2009-07-21 5958656]
S3 ssudmdm;@oem22.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 184192]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-11 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 21856]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AEADIFilters;@oem7.inf,%AEADISRV.SvcDesc%;Andrea ADI Filters Service; C:\WINDOWS\system32\AEADISRV.EXE [2008-07-15 90112]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 BcmBtRSupport;@oem30.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-10-28 1680088]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-10-12 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-10-12 1773696]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-03-24 121344]
R2 hpsrv;@oem12.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2011-05-13 26168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-08-25 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-11 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session2;Hostitel synchronizace_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2012-08-21 794272]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2009-06-18 635416]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 PimIndexMaintenanceSvc_Session2;Data kontaktů_Session2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 UnistoreSvc_Session2;Úložiště uživatelských dat_Session2; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2005-09-30 96341]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-30 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-03-05 655624]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-06-13 1120752]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-11 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-04-30 74392]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: spousta reklam v prohlížeči

#6 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Program Files\McAfee Security Scan
C:\Program Files\Skype\Toolbars
C:\Users\martinra\AppData\Local\Facebook\Update
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3711999932-26349160-60105416-1001Core.job
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3711999932-26349160-60105416-1001UA.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=-


:services
c2cautoupdatesvc
c2cpnrsvc

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
bretja
Návštěvník
Návštěvník
Příspěvky: 15
Registrován: 25 bře 2013 22:54

Re: spousta reklam v prohlížeči

#7 Příspěvek od bretja »

Vyčistil jsem to pomocí OTM, ale reklamy se občas stále objeví. Sice v daleko menší míře, ale stále to tu je :(

log z RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by martinra at 2016-01-02 17:03:09
Microsoft Windows 10 Home
System drive C: has 334 GB (73%) free of 459 GB
Total RAM: 3066 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:03:10, on 2.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16603)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Users\martinra\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\svchost.exe
C:\Windows\System32\InstallAgent.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Radek\RSIT.exe
C:\Program Files\trend micro\martinra.exe
C:\WINDOWS\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IEExtension.VDownloaderBHO - {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} - mscoree.dll (file missing)
O2 - BHO: Movies Toolbar (Dist. by Koyote-Lab, Inc.) - {e5d4f4fd-a039-4670-8354-633c30a5f54e} - C:\PROGRA~1\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll (file missing)
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\soundmax.exe /tray
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SSDMonitor] C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\martinra\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: VDownloader.lnk = C:\Program Files\VDownloader\VDownloader.exe
O4 - Global Startup: Canon LBP2900 Status Window.lnk = C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @oem7.inf,%AEADISRV.SvcDesc%;Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\WINDOWS\system32\AEADISRV.EXE
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: @oem30.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Broadcom Corporation. - C:\WINDOWS\system32\BtwRSupportService.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem12.inf,%hpservice_desc%;HP Service (hpsrv) - Hewlett-Packard Company - C:\WINDOWS\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe

--
End of file - 8881 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Norton Security Scan for martinra.job - C:\PROGRA~1\NORTON~2\Engine\353~1.1\Nss.exe /scan-quick /scheduled

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b523e7c-f096-4e36-a0cb-7efeb5c675c1}]
IEExtension.VDownloaderBHO - C:\WINDOWS\system32\mscoree.dll [2015-07-10 339968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e5d4f4fd-a039-4670-8354-633c30a5f54e}]
Movies Toolbar (Dist. by Koyote-Lab, Inc.) - C:\PROGRA~1\MOVIES~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-07-27 288312]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-08-25 186904]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2009-06-18 563736]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-07-23 498744]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2009-05-18 3866624]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"SSDMonitor"=C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe [2012-08-21 105120]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe /autoRun []
"OneDrive"=C:\Users\martinra\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-11 551112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28 1067736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2008-12-02 3882312]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Canon LBP2900 Status Window.lnk - C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE

C:\Users\martinra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
VDownloader.lnk - C:\Program Files\VDownloader\VDownloader.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera]
"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 2 months======

2016-01-02 16:38:09 ----D---- C:\_OTM
2016-01-02 16:35:13 ----HD---- C:\OneDriveTemp
2015-12-31 09:22:30 ----D---- C:\AdwCleaner
2015-12-30 12:11:48 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe
2015-12-30 11:54:37 ----HD---- C:\$WINDOWS.~BT
2015-12-30 11:00:15 ----D---- C:\rsit
2015-12-30 11:00:15 ----D---- C:\Program Files\trend micro
2015-12-13 17:01:22 ----D---- C:\Radek
2015-12-11 20:55:28 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-11 20:55:28 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-11 20:55:27 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-12-11 20:55:27 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-12-11 20:55:26 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-11 20:55:22 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-11 20:55:20 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-11 20:55:20 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-11 20:55:20 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-11 20:55:20 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-12-11 20:55:17 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-11 20:55:15 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-11 20:55:15 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-11 20:55:12 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-12-11 20:55:12 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-12-11 20:55:12 ----A---- C:\WINDOWS\system32\DAMM.dll
2015-12-11 20:55:11 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-11 20:55:10 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-12-11 20:55:10 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-11 20:55:09 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-11 20:55:09 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-12-11 20:55:09 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-12-11 20:55:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-12-11 20:55:06 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2015-12-11 20:55:06 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-11 20:55:06 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\Magnify.exe
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-11 20:55:05 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-12-11 20:55:04 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-11 20:55:03 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-11 20:55:02 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-11 20:55:02 ----A---- C:\WINDOWS\system32\esent.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\ninput.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\ieui.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\duser.dll
2015-12-11 20:55:01 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-11 20:55:01 ----A---- C:\WINDOWS\explorer.exe
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\internetmail.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-12-11 20:55:00 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-12-11 20:54:59 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-12-11 20:54:59 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-12-11 20:54:59 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-11 20:54:58 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-11 20:54:57 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-11 20:54:56 ----A---- C:\WINDOWS\system32\winload.exe
2015-12-11 20:54:56 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-12-11 20:54:56 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-11 20:54:56 ----A---- C:\WINDOWS\system32\comdlg32.dll
2015-12-11 20:54:55 ----A---- C:\WINDOWS\system32\winresume.exe
2015-12-11 20:54:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-11 20:54:55 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-12-11 20:54:55 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-12-11 20:54:54 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-11 20:54:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-11 20:54:54 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\NetworkUXBroker.exe
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\dot3mm.dll
2015-12-11 20:54:53 ----A---- C:\WINDOWS\system32\DAMediaManager.dll
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\EthernetMediaManager.dll
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2015-12-11 20:54:52 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-12-11 20:54:51 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-12-11 20:54:51 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\userenv.dll
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2015-12-11 20:54:50 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2015-12-11 20:54:49 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-11 20:54:49 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-12-11 20:54:45 ----A---- C:\WINDOWS\system32\kbdgeoqw.dll
2015-12-11 20:54:45 ----A---- C:\WINDOWS\system32\KBDAZE.DLL
2015-12-11 20:54:45 ----A---- C:\WINDOWS\system32\drivers\gpuenergydrv.sys
2015-12-11 20:54:44 ----A---- C:\WINDOWS\system32\profext.dll
2015-12-11 20:54:44 ----A---- C:\WINDOWS\system32\KBDAZST.DLL
2015-12-11 20:54:44 ----A---- C:\WINDOWS\system32\KBDAZEL.DLL

======List of files/folders modified in the last 2 months======

2016-01-02 17:03:08 ----D---- C:\WINDOWS\Temp
2016-01-02 17:03:02 ----D---- C:\WINDOWS\AppReadiness
2016-01-02 16:59:33 ----HD---- C:\Program Files\WindowsApps
2016-01-02 16:55:00 ----D---- C:\WINDOWS\System32
2016-01-02 16:55:00 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-02 16:54:59 ----D---- C:\WINDOWS\INF
2016-01-02 16:51:12 ----D---- C:\WINDOWS\Prefetch
2016-01-02 16:47:48 ----D---- C:\WINDOWS\system32\sru
2016-01-02 16:44:50 ----D---- C:\WINDOWS\system32\WDI
2016-01-02 16:38:12 ----D---- C:\WINDOWS\Tasks
2016-01-02 16:38:11 ----RD---- C:\Program Files\Skype
2016-01-02 14:52:16 ----D---- C:\WINDOWS\system32\config
2016-01-02 14:50:34 ----SHD---- C:\WINDOWS\Installer
2016-01-02 14:50:33 ----SHD---- C:\Config.Msi
2016-01-02 14:50:03 ----SHD---- C:\System Volume Information
2016-01-02 14:49:17 ----D---- C:\WINDOWS\Microsoft.NET
2015-12-31 09:26:56 ----D---- C:\WINDOWS\system32\Tasks
2015-12-31 09:26:56 ----D---- C:\Windows
2015-12-31 09:26:42 ----RD---- C:\Program Files
2015-12-31 09:26:42 ----HD---- C:\ProgramData
2015-12-31 09:26:42 ----D---- C:\Program Files\Common Files\DVDVideoSoft
2015-12-30 13:01:18 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-30 12:03:26 ----D---- C:\WINDOWS\WinSxS
2015-12-30 11:59:42 ----D---- C:\WINDOWS\CbsTemp
2015-12-30 11:58:04 ----DC---- C:\WINDOWS\Panther
2015-12-30 11:54:37 ----D---- C:\WINDOWS\Logs
2015-12-30 11:54:36 ----D---- C:\ProgramData\Microsoft Help
2015-12-26 09:58:33 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2015-12-20 20:14:38 ----RD---- C:\WINDOWS\assembly
2015-12-15 18:18:51 ----D---- C:\WINDOWS\system32\NDF
2015-12-13 17:34:16 ----D---- C:\WINDOWS\system32\drivers
2015-12-13 17:34:15 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-13 17:33:15 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-13 17:31:18 ----SD---- C:\WINDOWS\system32\F12
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\oobe
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\migration
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\cs-CZ
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\Boot
2015-12-13 17:31:18 ----D---- C:\WINDOWS\system32\appraiser
2015-12-13 17:31:15 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-13 17:31:15 ----D---- C:\WINDOWS\Provisioning
2015-12-13 17:31:14 ----RSD---- C:\WINDOWS\Fonts
2015-12-13 17:31:14 ----D---- C:\WINDOWS\L2Schemas
2015-12-13 17:31:13 ----D---- C:\WINDOWS\apppatch
2015-12-13 17:31:13 ----D---- C:\Program Files\Windows Journal
2015-12-13 17:31:13 ----D---- C:\Program Files\Internet Explorer
2015-12-13 17:31:12 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-12 20:36:18 ----D---- C:\Program Files\Common Files\Adobe
2015-12-12 20:36:17 ----D---- C:\Program Files\Adobe
2015-12-12 20:36:09 ----D---- C:\ProgramData\Adobe
2015-12-12 19:17:04 ----D---- C:\WINDOWS\system32\MRT
2015-12-11 19:23:01 ----D---- C:\WINDOWS\system32\catroot2
2015-12-09 04:39:28 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-11-23 19:09:54 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;@oem12.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 iaStor;@oem26.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2009-08-07 330264]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-07-09 45200]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-12-01 7680]
R1 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2009-05-16 214024]
R1 mfetdik;McAfee Inc. mfetdik; C:\WINDOWS\system32\drivers\mfetdik.sys [2009-05-16 55336]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2010-01-27 50704]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 5U876UVC;@oem11.inf,%5U876.SvcInstName%;HP Webcam [2 MP series]; C:\WINDOWS\system32\DRIVERS\5U876.sys [2009-06-30 118656]
R3 Accelerometer;@oem12.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 ADIHdAudAddService;@oem7.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 AtiHdmiService;@oem19.inf,%ATIHdAudioDriver.SvcDesc%;ATI Service for HD Audio Codec; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-07-24 103440]
R3 bcbtums;@oem30.inf,%BCBTUMS.SvcDesc%;Bluetooth USB LD Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-10-28 175320]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-07-10 86528]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 61952]
R3 HpqKbFiltr;@oem3.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [2009-04-29 15872]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-11 130048]
R3 NETwNs32;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit; C:\WINDOWS\System32\drivers\Netwsn00.sys [2015-07-10 10372096]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-07-10 129536]
R3 SynTP;@oem24.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-09-17 725504]
S3 btwampfl;@oem30.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-10-28 144600]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-09-17 26112]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 dg_ssudbus;@oem23.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 88576]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\WINDOWS\system32\drivers\MfeAVFK.sys [2009-05-16 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\WINDOWS\system32\drivers\MfeBOPK.sys [2009-05-16 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\WINDOWS\system32\drivers\MfeRKDK.sys [2009-05-16 34248]
S3 NETw1v32;Intel(R) Wireless WiFi Link 1000 Series Adapter Driver for Windows Vista 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw1v32.sys [2009-07-21 5958656]
S3 ssudmdm;@oem22.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 184192]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-11 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 42848]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 21856]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AEADIFilters;@oem7.inf,%AEADISRV.SvcDesc%;Andrea ADI Filters Service; C:\WINDOWS\system32\AEADISRV.EXE [2008-07-15 90112]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 BcmBtRSupport;@oem30.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-10-28 1680088]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-03-24 121344]
R2 hpsrv;@oem12.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2011-05-13 26168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-08-25 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-11 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2012-08-21 794272]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2009-06-18 635416]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2005-09-30 96341]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-30 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-03-05 655624]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-06-13 1120752]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-11 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-04-30 74392]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]

-----------------EOF-----------------

ještě pro jistotu log z OTM

All processes killed
========== FILES ==========
File/Folder C:\Program Files\McAfee Security Scan not found.
C:\Program Files\Skype\Toolbars\PNRSvc folder moved successfully.
C:\Program Files\Skype\Toolbars\Internet Explorer folder moved successfully.
C:\Program Files\Skype\Toolbars\ChromeExtension folder moved successfully.
C:\Program Files\Skype\Toolbars\AutoUpdate folder moved successfully.
C:\Program Files\Skype\Toolbars folder moved successfully.
C:\Users\martinra\AppData\Local\Facebook\Update\Manifest\Initial folder moved successfully.
C:\Users\martinra\AppData\Local\Facebook\Update\Manifest folder moved successfully.
C:\Users\martinra\AppData\Local\Facebook\Update\Download folder moved successfully.
C:\Users\martinra\AppData\Local\Facebook\Update\1.2.205.0 folder moved successfully.
C:\Users\martinra\AppData\Local\Facebook\Update folder moved successfully.
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3711999932-26349160-60105416-1001Core.job moved successfully.
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3711999932-26349160-60105416-1001UA.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update deleted successfully.
========== SERVICES/DRIVERS ==========
Service c2cautoupdatesvc stopped successfully!
Service c2cautoupdatesvc deleted successfully!
Service c2cpnrsvc stopped successfully!
Service c2cpnrsvc deleted successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default.migrated

User: DefaultAppPool
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: martinra
->Temp folder emptied: 182709502 bytes
->Temporary Internet Files folder emptied: 35943898 bytes
->FireFox cache emptied: 111172399 bytes
->Google Chrome cache emptied: 162654331 bytes
->Flash cache emptied: 144292 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1302607748 bytes
RecycleBin emptied: 1163163 bytes

Total Files Cleaned = 1,713.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Default.migrated

User: DefaultAppPool

User: martinra
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 01022016_163809

Files moved on Reboot...
C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0 moved successfully.
C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1 moved successfully.
C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2 moved successfully.
C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3 moved successfully.
C:\Users\martinra\AppData\Local\Google\Chrome\User Data\Default\Cache\index moved successfully.
C:\WINDOWS\temp\APPX.3jx58azxmpg4k438mqhpoen6f.tmp moved successfully.
C:\WINDOWS\temp\APPX.4bksb6k_ouh0_8og3jo49ayoe.tmp moved successfully.
C:\WINDOWS\temp\APPX.4tla4dpyasonedv2skknt519.tmp moved successfully.
C:\WINDOWS\temp\APPX.7j_aa24kg8ujiyn6byun0naqd.tmp moved successfully.
C:\WINDOWS\temp\APPX.bcwa0q57zfoq0vv85jqpb84ad.tmp moved successfully.
C:\WINDOWS\temp\APPX.l256wquxpcdyfmywo4qx5f77b.tmp moved successfully.
C:\WINDOWS\temp\APPX.me3y6inbk1n3ziv426d97yi0b.tmp moved successfully.
C:\WINDOWS\temp\APPX.nnuf1attzsjoby_msybo9qtmd.tmp moved successfully.
C:\WINDOWS\temp\APPX.o88njvnasijfkazveiix3g9ke.tmp moved successfully.
C:\WINDOWS\temp\APPX.xnrbjvs99qzvhp07yv8lnktpe.tmp moved successfully.

Registry entries deleted on Reboot...
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: spousta reklam v prohlížeči

#8 Příspěvek od Rudy »

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
bretja
Návštěvník
Návštěvník
Příspěvky: 15
Registrován: 25 bře 2013 22:54

Re: spousta reklam v prohlížeči

#9 Příspěvek od bretja »

Ahoj,

omlouvám se za pozdní odpověď.

Spustil jsem znovu OTM a dal CleanUp. Reklamy jsou tu pořád a bohužel nastala jedna dost špatná změna. Nějak to rozhodilo Windows 10 a nyní nefunguje nabídka start, nedostanu se do složky dokumenty a celé je to zvláštní. Počítač jakoby běží, ale některé složky jsou nedostupné. Když zapnu Tento počítač, najedu na c:/, některé složky jsou jakoby světlejší (zašeděné?) a do nich se nedostanu. Bohužel se ani nedostanu do svých dokumentů. Píše to, že přístup byl odepřen...

Vidím to na reinstal systému... Pokud to teda není nějaká známá chyba :-)

Můžu klidně ještě udělat nějaké testy a logy, aby z nich šlo třeba vyčíst, co se stalo, a nestalo se to i dalším členům fóra...
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: spousta reklam v prohlížeči

#10 Příspěvek od Rudy »

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
bretja
Návštěvník
Návštěvník
Příspěvky: 15
Registrován: 25 bře 2013 22:54

Re: spousta reklam v prohlížeči

#11 Příspěvek od bretja »

Zdravím, log z MBAM následuje:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8.1.2016
Scan Time: 21:41
Logfile: mbamlog.txt
Administrator: Yes

Version: 2.2.0.1024
Malware Database: v2015.09.22.05
Rootkit Database: v2015.09.18.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 10
CPU: x86
File System: NTFS
User: martinra

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 372007
Time Elapsed: 16 min, 1 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 3
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\{2A82F0B3-0308-F75A-36F0-2437800FD578}\BrowserKingdom.dll, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\{2A82F0B3-0308-F75A-36F0-2437800FD578}\qml.dll, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\{2A82F0B3-0308-F75A-36F0-2437800FD578}\{5B985AB7-DF85-A8FC-85B4-DEB297D73AAD}.dat, , [fcf16ac897f4ea4c15f7456a06ffdd23],

Registry Keys: 11
PUP.Optional.DownTango, HKLM\SOFTWARE\CLASSES\APPID\DownTangoLauncherToolbar.DLL, , [43aa939f59325fd7f7e6475054b09f61],
PUP.Optional.Bandoo, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\AAAAIFMHGONLEEHNKPPKHHCHCBHHIGAC, , [c32a250dd9b274c24717ed9bfc0812ee],
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\VOLARO, , [707dfb373d4ec86e9b7ecad8ca3af808],
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\VONTEERA, , [688540f2503bda5c58c21c86bf456b95],
PUP.Optional.ProtectedSearch, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ProtectedSearch, , [0de0c76b99f221154e3b72424cb8748c],
PUP.Optional.MoviesToolBar, HKU\S-1-5-21-3711999932-26349160-60105416-1001\SOFTWARE\koyotesoftmoviestoolbarha, , [9558969cfd8e2610ffe6327a798bb050],
PUP.Optional.Bandoo, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{e5d4f4fd-a039-4670-8354-633c30a5f54e}, , [46a74be7c6c547ef7263d9a144c150b0],
PUP.Optional.Bandoo, HKLM\SOFTWARE\CLASSES\CLSID\{E5D4F4FD-A039-4670-8354-633C30A5F54E}, , [46a74be7c6c547ef7263d9a144c150b0],
PUP.Optional.Bandoo, HKU\S-1-5-21-3711999932-26349160-60105416-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{E5D4F4FD-A039-4670-8354-633C30A5F54E}, , [46a74be7c6c547ef7263d9a144c150b0],
PUP.Optional.Bandoo, HKU\S-1-5-21-3711999932-26349160-60105416-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{E5D4F4FD-A039-4670-8354-633C30A5F54E}, , [46a74be7c6c547ef7263d9a144c150b0],
PUP.Optional.CrossAd.Gen, HKU\S-1-5-21-3711999932-26349160-60105416-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{72BFE83A-AEC7-9864-A910-4CA688B92539}, , [fcf16ac897f4ea4c15f7456a06ffdd23],

Registry Values: 3
PUP.Optional.Bandoo, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\aaaaifmhgonleehnkppkhhchcbhhigac|path, C:\Users\martinra\AppData\Local\koyotesoftmoviestoolbarha\GC\toolbar.crx, , [c32a250dd9b274c24717ed9bfc0812ee]
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\VOLARO|debugger, tasklist.exe, , [707dfb373d4ec86e9b7ecad8ca3af808]
PUP.Optional.IFEO, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\VONTEERA|debugger, tasklist.exe, , [688540f2503bda5c58c21c86bf456b95]

Registry Data: 0
(No malicious items detected)

Folders: 9
PUP.Optional.DataMngr, C:\ProgramData\Datamngr, , [9f4ee05218739c9ab0de6530d430e818],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\koyotesoftmoviestoolbarha, , [03ea50e29eed22146954878038cbb947],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\Local\koyotesoftmoviestoolbarha, , [12db1b173556f83e844945c29f64af51],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\Local\koyotesoftmoviestoolbarha\GC, , [12db1b173556f83e844945c29f64af51],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\LocalLow\koyotesoftmoviestoolbarha, , [638a53dfaae1ed49815ebd4afb0825db],
PUP.Optional.DataMngr, C:\Users\martinra\AppData\LocalLow\DataMngr, , [e10c5ed4a1eaf2448d87da3afa09f010],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\Component, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\{2A82F0B3-0308-F75A-36F0-2437800FD578}, , [fcf16ac897f4ea4c15f7456a06ffdd23],

Files: 31
PUP.Optional.DataMngr, C:\ProgramData\Datamngr\coordinator.cfg, , [9f4ee05218739c9ab0de6530d430e818],
PUP.Optional.DataMngr, C:\ProgramData\Datamngr\general.cfg, , [9f4ee05218739c9ab0de6530d430e818],
PUP.Optional.DataMngr, C:\ProgramData\Datamngr\S-1-5-21-3711999932-26349160-60105416-1001.cfg, , [9f4ee05218739c9ab0de6530d430e818],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\koyotesoftmoviestoolbarha\apnuserid.dat, , [03ea50e29eed22146954878038cbb947],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\koyotesoftmoviestoolbarha\appid.dat, , [03ea50e29eed22146954878038cbb947],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\koyotesoftmoviestoolbarha\geodata.xml, , [03ea50e29eed22146954878038cbb947],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\koyotesoftmoviestoolbarha\setupCfg.xml, , [03ea50e29eed22146954878038cbb947],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\koyotesoftmoviestoolbarha\sysid.dat, , [03ea50e29eed22146954878038cbb947],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\Roaming\Mozilla\Firefox\Profiles\v5i6q7el.default\koyotesoftmoviestoolbarha\trackid.dat, , [03ea50e29eed22146954878038cbb947],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\Local\koyotesoftmoviestoolbarha\GC\toolbar.crx, , [12db1b173556f83e844945c29f64af51],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\LocalLow\koyotesoftmoviestoolbarha\apnuserid.dat, , [638a53dfaae1ed49815ebd4afb0825db],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\LocalLow\koyotesoftmoviestoolbarha\appid.dat, , [638a53dfaae1ed49815ebd4afb0825db],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\LocalLow\koyotesoftmoviestoolbarha\dtx.ini, , [638a53dfaae1ed49815ebd4afb0825db],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\LocalLow\koyotesoftmoviestoolbarha\geodata.xml, , [638a53dfaae1ed49815ebd4afb0825db],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\LocalLow\koyotesoftmoviestoolbarha\guid.dat, , [638a53dfaae1ed49815ebd4afb0825db],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\LocalLow\koyotesoftmoviestoolbarha\setupCfg.xml, , [638a53dfaae1ed49815ebd4afb0825db],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\LocalLow\koyotesoftmoviestoolbarha\sysid.dat, , [638a53dfaae1ed49815ebd4afb0825db],
PUP.Optional.Bandoo, C:\Users\martinra\AppData\LocalLow\koyotesoftmoviestoolbarha\trackid.dat, , [638a53dfaae1ed49815ebd4afb0825db],
PUP.Optional.DataMngr, C:\Users\martinra\AppData\LocalLow\DataMngr\{7CA1F051-A4FB-4143-B263-02B41E571EED}64, , [e10c5ed4a1eaf2448d87da3afa09f010],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\Component\config.json, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\Component\hello.js, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\Component\log.html, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\Component\manifest.json, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\Component\scriptTagContext.js, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\Component\tmp_bg.js, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\Component\uconfig.json, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\{2A82F0B3-0308-F75A-36F0-2437800FD578}\BrowserKingdom.dll, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\{2A82F0B3-0308-F75A-36F0-2437800FD578}\c.dat, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\{2A82F0B3-0308-F75A-36F0-2437800FD578}\qml.dll, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\{2A82F0B3-0308-F75A-36F0-2437800FD578}\{5B985AB7-DF85-A8FC-85B4-DEB297D73AAD}.dat, , [fcf16ac897f4ea4c15f7456a06ffdd23],
PUP.Optional.CrossAd.Gen, C:\Users\martinra\AppData\Local\Browser Kingdom\{2A82F0B3-0308-F75A-36F0-2437800FD578}\{F738F0FB-5546-789A-29ED-AC5F4BA86892}.dll, , [fcf16ac897f4ea4c15f7456a06ffdd23],

Physical Sectors: 0
(No malicious items detected)


(end)
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: spousta reklam v prohlížeči

#12 Příspěvek od Rudy »

Smažte všechny nálezy.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
bretja
Návštěvník
Návštěvník
Příspěvky: 15
Registrován: 25 bře 2013 22:54

Re: spousta reklam v prohlížeči

#13 Příspěvek od bretja »

tak reklamy jsou pryč, ale stále jsou některé složky nedostupné (jako třeba Nabídka start). Máte nějaký nápad, co by to mohlo být?
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: spousta reklam v prohlížeči

#14 Příspěvek od Rudy »

To je problém desítek. Jiná verze toto po čištění neudělá. Zkuste obnovu systému k datu, kdy korektně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
bretja
Návštěvník
Návštěvník
Příspěvky: 15
Registrován: 25 bře 2013 22:54

Re: spousta reklam v prohlížeči

#15 Příspěvek od bretja »

jj, vyzkouším tu obnovu. Díky
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“