Ahoj
Mel jsem problem s haveti. Narazil jsem na adwcleaner a provedl scan a cisteni. Bylo tam toho hrozne moc a pomohlo to. Havet si nastavila v nastaveni systemu proxy. Po odstraneni haveti jsem musel rucne odskrtnout proxy. Druhy den bylo zase nastaveno proxy. Vlozim prvni log a potom druhy log. Po kazdem scanu bylo nastaveno proxy a nez jsem zrusil proxy v systemu nesel internet. Podivate se mi na log prosim? Dekuji
S pozdravem David
# AdwCleaner v5.009 - Logfile created 02/10/2015 at 18:25:09
# Updated 27/09/2015 by Xplode
# Database : 2015-09-30.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x86)
# Username : Vladicek - VLADICEK-PC
# Running from : C:\Users\Vladicek\Downloads\adwcleaner_5.009.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : Live Malware Protection
[-] Service Deleted : PrivoxyService
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files\PrivateVPN
[-] Folder Deleted : C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco
[-] Folder Deleted : C:\Users\Vladicek\AppData\Local\pdfforge
[-] Folder Deleted : C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Folder Deleted : C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco
[-] Folder Deleted : C:\Users\Vladicek\AppData\Roaming\pdfforge
[-] Folder Deleted : C:\Users\Vladicek\AppData\Roaming\NetMon
***** [ Files ] *****
[-] File Deleted : C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.best-deals-products.com_0.localstorage-journal
[-] File Deleted : C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] File Deleted : C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] File Deleted : C:\Windows\mlwps.exe
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : Malware Cleaner
[-] Task Deleted : Adobe Flash Player Updater
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D3C24E2B-C820-4492-9B69-11BF7163F998}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2F137995-4D26-44AD-9C4E-91055090A817}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3C24E2B-C820-4492-9B69-11BF7163F998}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3C24E2B-C820-4492-9B69-11BF7163F998}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D3C24E2B-C820-4492-9B69-11BF7163F998}
[-] Key Deleted : HKU\.DEFAULT\Software\Avg Secure Update
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\NetMon
[-] Key Deleted : HKCU\Software\Avg Secure Update
[-] Key Deleted : HKLM\SOFTWARE\SecureWebChannel
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{20B9D1AE-AD1A-38B4-87FE-AF278DA9861D}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{20B9D1AE-AD1A-38B4-87FE-AF278DA9861D}
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKU\S-1-5-21-90453049-3214159046-942315906-1001\Software\Microsoft\Internet Explorer\SearchScopes\{20B9D1AE-AD1A-38B4-87FE-AF278DA9861D}
[-] Data Restored : HKU\S-1-5-21-90453049-3214159046-942315906-1001\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
***** [ Web browsers ] *****
[-] [C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN
[-] [C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... XX5TH0ETPN
[-] [C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oadboiipflhobonjjffjbfekfjcgkhco
[-] [C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : delta-homes
[-] [C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN
[-] [C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... XX5TH0ETPN
[-] [C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oadboiipflhobonjjffjbfekfjcgkhco
*************************
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [5237 bytes] ##########
Druhy log:
# AdwCleaner v5.009 - Logfile created 03/10/2015 at 08:34:01
# Updated 27/09/2015 by Xplode
# Database : 2015-09-30.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x86)
# Username : Vladicek - VLADICEK-PC
# Running from : C:\Users\Vladicek\Downloads\adwcleaner_5.009.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : PrivoxyService
***** [ Folders ] *****
[-] Folder Deleted : C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Folder Deleted : C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco
***** [ Files ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\SecureWebChannel
***** [ Web browsers ] *****
[-] [C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN
[-] [C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... XX5TH0ETPN
[-] [C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oadboiipflhobonjjffjbfekfjcgkhco
*************************
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1850 bytes] ##########
Po tretim scanu uz tam nic nebylo ale zustalo v chrome toto:
[C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN
[C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Found : hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... XX5TH0ETPN
[C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : chfdnecihphmhljaaejmgoiahnihplgn
[C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : dgpdioedihjhncjafcpgbbjdpbbkikmi
[C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : oadboiipflhobonjjffjbfekfjcgkhco
Dekuji
Jeste jsem vytvoril log frst
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:30-09-2015
Ran by Vladicek (administrator) on VLADICEK-PC (03-10-2015 09:18:33)
Running from C:\Users\Vladicek\Desktop
Loaded Profiles: Vladicek (Available Profiles: Vladicek & test)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Vladicek\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [NVHotkey] => rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
HKLM\...\Run: [nwiz] => nwiz.exe /install
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [5955072 2011-01-18] (Dell Inc.)
HKU\S-1-5-21-90453049-3214159046-942315906-1001\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files\DAEMON Tools Pro\DTAgent.exe [3125280 2013-10-17] (Disc Soft Ltd)
HKU\S-1-5-21-90453049-3214159046-942315906-1001\...\Run: [GoogleChromeAutoLaunch_AA9CA6AE9546C1DCAD09ABBDC96495FB] => C:\Program Files\Google\Chrome\Application\chrome.exe [815944 2015-09-24] (Google Inc.)
HKU\S-1-5-21-90453049-3214159046-942315906-1001\...\MountPoints2: {5c9fae20-db73-11e4-ac19-00188baa02be} - G:\setup.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2015-04-04] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-90453049-3214159046-942315906-1001] => 127.0.0.1:8118
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{5382D3C0-3A4E-4B0A-AD14-5243D1FD248F}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{F1B839A2-CC31-416B-A5CC-0522D04DB295}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-90453049-3214159046-942315906-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-29] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-29] (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Vladicek\AppData\Roaming\Mozilla\Firefox\Profiles\ccdy4f04.default
FF Homepage: seznam.cz
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-10-02] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1218158.dll [2015-04-17] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-29] (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-19] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-19] (Google Inc.)
FF Plugin HKU\S-1-5-21-90453049-3214159046-942315906-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Vladicek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-27] (Unity Technologies ApS)
FF Extension: Star Stable Online - C:\Users\Vladicek\AppData\Roaming\Mozilla\Firefox\Profiles\ccdy4f04.default\Extensions\plugin@starstable.com [2015-04-07]
FF Extension: Free Flash, Unity3D and html5 games - C:\Users\Vladicek\AppData\Roaming\Mozilla\Firefox\Profiles\ccdy4f04.default\Extensions\jid1-461B0PwxL3oTt1@jetpack.xpi [2015-04-11]
FF Extension: Firefox Helper - C:\Program Files\Mozilla Firefox\distribution\bundles\0eb051f29334d5760f2530d30ee67d71 [2015-05-30]
Chrome:
=======
CHR HomePage: Default -> hxxps://mysearch.avg.com/?rvt=1
CHR StartupUrls: Default -> "hxxp://istart.webssearches.com/?type=hp&ts=1419682824&from=cvs&uid=ST9250421ASG_5TH0ETPNXXXX5TH0ETPN","hxxp://www.delta-homes.com/?type=hp&ts=1430896 ... seznam.cz/"
CHR Profile: C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-11]
CHR Extension: (Angry Birds) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2015-05-23]
CHR Extension: (Dokumenty Google) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-11]
CHR Extension: (Disk Google) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-11]
CHR Extension: (YouTube) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-11]
CHR Extension: (Adblock Plus) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-05-23]
CHR Extension: (AVG Secure Search) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2015-10-03]
CHR Extension: (Vyhledávání Google) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-11]
CHR Extension: (Tabulky Google) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-19]
CHR Extension: (Mapy Google) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-05-23]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2015-05-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-11]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2015-10-03]
CHR Extension: (Gmail) - C:\Users\Vladicek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-11]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [5210112 2011-01-18] (Dell Inc.) [File not signed]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 BCM42RLY; C:\Windows\System32\drivers\BCM42RLY.sys [18496 2011-01-18] (Broadcom Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2015-04-05] (Disc Soft Ltd)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-10-03 09:18 - 2015-10-03 09:19 - 00011075 _____ C:\Users\Vladicek\Desktop\FRST.txt
2015-10-03 09:17 - 2015-10-03 09:18 - 00000000 ____D C:\FRST
2015-10-03 09:14 - 2015-10-03 09:15 - 00112640 _____ (forum.viry.cz) C:\Users\Vladicek\Desktop\FRSTLauncher.exe
2015-10-03 09:14 - 2015-10-03 09:14 - 00000000 ____D C:\Users\Vladicek\AppData\Local\Macromedia
2015-10-03 09:11 - 2015-10-03 09:12 - 01696256 _____ (Farbar) C:\Users\Vladicek\Desktop\FRST.exe
2015-10-03 08:37 - 2015-10-03 08:37 - 00001929 _____ C:\Users\Vladicek\Desktop\AdwCleaner[C2].txt
2015-10-02 22:40 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-10-02 18:35 - 2015-10-02 18:35 - 00005316 _____ C:\Users\Vladicek\Desktop\AdwCleaner[C1].txt
2015-10-02 18:21 - 2015-10-03 08:39 - 00000000 ____D C:\AdwCleaner
2015-10-02 18:20 - 2015-10-02 18:21 - 01670656 _____ C:\Users\Vladicek\Downloads\adwcleaner_5.009.exe
2015-10-02 17:56 - 2015-10-02 18:35 - 00001720 _____ C:\Users\Vladicek\Desktop\chrome – zástupce.lnk
2015-10-02 17:43 - 2015-10-02 17:43 - 00000000 ____D C:\Program Files\Cisco
2015-10-02 17:42 - 2015-10-02 17:42 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN
2015-10-02 17:41 - 2011-01-18 08:49 - 01066496 _____ (Dell Inc.) C:\Windows\system32\BCMLogon.dll
2015-10-02 17:40 - 2015-10-02 17:40 - 00000000 ____D C:\Windows\system32\vs08
2015-10-02 17:40 - 2011-01-18 08:50 - 02682880 _____ (Microsoft Corporation) C:\Windows\system32\vcredist_x86.exe
2015-10-02 17:40 - 2011-01-18 08:50 - 00052224 _____ (Broadcom Corporation) C:\Windows\system32\wltrynt.dll
2015-10-02 17:40 - 2011-01-18 08:50 - 00000457 _____ C:\Windows\system32\vcredist_x86.bat
2015-10-02 17:40 - 2011-01-18 08:49 - 07558656 _____ (Dell Inc.) C:\Windows\system32\BCMWLCPL.CPL
2015-10-02 17:40 - 2011-01-18 08:49 - 04526080 _____ (Dell Inc.) C:\Windows\system32\bcmttls.dll
2015-10-02 17:40 - 2011-01-18 08:49 - 04248128 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL6.SYS
2015-10-02 17:40 - 2011-01-18 08:49 - 03874816 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv.dll
2015-10-02 17:40 - 2011-01-18 08:49 - 03563520 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui.dll
2015-10-02 17:40 - 2011-01-18 08:49 - 00091448 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlcoi.dll
2015-10-02 17:40 - 2011-01-18 08:49 - 00050704 _____ (CACE Technologies, Inc.) C:\Windows\system32\Drivers\npf.sys
2015-10-02 17:40 - 2011-01-18 08:49 - 00018496 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bcm42rly.sys
2015-10-02 17:40 - 2011-01-18 08:49 - 00006656 _____ C:\Windows\system32\bcmwlrc.dll
2015-10-02 17:38 - 2015-10-02 17:39 - 92766976 _____ C:\Users\Vladicek\Downloads\DELL_MULTI-DEVICE_A37_R295615.exe
2015-10-02 17:27 - 2015-10-02 17:29 - 119419544 _____ C:\Users\Vladicek\Downloads\DELL_MULTI-DEVICE_A31-1_R286815 (1).exe
2015-10-02 17:22 - 2015-10-02 17:24 - 115111050 _____ C:\Users\Vladicek\Downloads\DELL_MULTI-DEVICE_A31-1_R286815.exe
2015-10-02 16:40 - 2015-10-02 16:40 - 01190616 _____ (Adobe Systems Incorporated) C:\Users\Vladicek\Downloads\flashplayer19_ha_install.exe
2015-10-02 16:27 - 2015-10-02 16:27 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2015-09-19 17:15 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-19 17:15 - 2015-08-27 19:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-19 17:15 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-09-19 17:15 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-09-19 17:15 - 2015-08-05 19:41 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-19 17:15 - 2015-08-05 19:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-09-19 17:15 - 2015-08-05 19:40 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-09-19 17:14 - 2015-09-02 04:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-09-19 17:14 - 2015-09-02 04:48 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-19 17:14 - 2015-09-02 04:48 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-09-19 17:14 - 2015-09-02 04:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-09-19 17:14 - 2015-09-02 03:36 - 02384896 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-19 17:14 - 2015-09-02 03:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-19 17:14 - 2015-08-04 19:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-09-19 17:14 - 2015-08-04 19:47 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-09-19 17:14 - 2015-08-04 19:47 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-09-19 17:14 - 2015-08-04 19:46 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-09-19 17:14 - 2015-08-04 19:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-09-19 17:14 - 2015-08-04 18:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-09-19 17:14 - 2015-07-22 19:57 - 03989952 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-09-19 17:14 - 2015-07-22 19:57 - 03934656 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-09-19 17:14 - 2015-07-22 19:57 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-09-19 17:14 - 2015-07-22 19:57 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-09-19 17:14 - 2015-07-22 19:54 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00937984 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-09-19 17:14 - 2015-07-22 19:53 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-09-19 17:14 - 2015-07-22 19:52 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-09-19 17:14 - 2015-07-22 19:52 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-09-19 17:14 - 2015-07-22 19:52 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-09-19 17:14 - 2015-07-22 19:52 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-09-19 17:14 - 2015-07-22 19:47 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-09-19 17:14 - 2015-07-22 19:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-09-19 17:14 - 2015-07-22 19:42 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-09-19 17:14 - 2015-07-22 19:42 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-09-19 17:14 - 2015-07-22 18:38 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-09-19 17:14 - 2015-07-22 18:34 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-09-19 17:14 - 2015-07-22 18:34 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-09-19 17:14 - 2015-07-22 18:33 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-09-19 17:13 - 2015-08-18 03:14 - 00344168 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-19 17:13 - 2015-08-15 08:06 - 19856896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-19 17:13 - 2015-08-15 07:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-19 17:13 - 2015-08-15 07:53 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-09-19 17:13 - 2015-08-15 07:40 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-19 17:13 - 2015-08-15 07:40 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-09-19 17:13 - 2015-08-15 07:39 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-19 17:13 - 2015-08-15 07:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-09-19 17:13 - 2015-08-15 07:38 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-09-19 17:13 - 2015-08-15 07:35 - 02279424 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-19 17:13 - 2015-08-15 07:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-19 17:13 - 2015-08-15 07:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-09-19 17:13 - 2015-08-15 07:30 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-19 17:13 - 2015-08-15 07:29 - 00665600 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-19 17:13 - 2015-08-15 07:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-09-19 17:13 - 2015-08-15 07:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-19 17:13 - 2015-08-15 07:29 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-09-19 17:13 - 2015-08-15 07:24 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-19 17:13 - 2015-08-15 07:21 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-19 17:13 - 2015-08-15 07:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-19 17:13 - 2015-08-15 07:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-09-19 17:13 - 2015-08-15 07:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-19 17:13 - 2015-08-15 07:11 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-19 17:13 - 2015-08-15 07:10 - 04520448 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-19 17:13 - 2015-08-15 07:04 - 12857344 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-19 17:13 - 2015-08-15 07:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-19 17:13 - 2015-08-15 07:02 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-19 17:13 - 2015-08-15 07:01 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-19 17:13 - 2015-08-15 07:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-09-19 17:13 - 2015-08-15 06:43 - 01951232 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-19 17:13 - 2015-08-15 06:39 - 01310720 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-19 17:13 - 2015-08-15 06:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-09-19 17:13 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-09-19 17:13 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-09-19 17:09 - 2015-08-26 19:56 - 02953728 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-09-19 17:09 - 2015-08-26 19:56 - 02061824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-09-19 17:09 - 2015-08-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-09-19 17:09 - 2015-08-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-09-19 17:09 - 2015-08-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-09-19 17:09 - 2015-08-26 19:56 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-09-19 17:09 - 2015-08-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-09-19 17:09 - 2015-08-26 19:55 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-09-19 17:09 - 2015-08-26 19:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-09-19 17:09 - 2015-08-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-09-19 17:09 - 2015-08-26 19:55 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-09-19 17:09 - 2015-07-15 04:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-19 17:09 - 2015-06-25 11:48 - 00105408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-09-19 17:09 - 2015-06-25 11:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-09-19 17:09 - 2015-06-25 11:44 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-09-19 13:05 - 2015-07-28 22:04 - 00015808 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-09-19 13:05 - 2015-07-28 22:00 - 00952832 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-09-19 13:05 - 2015-07-28 22:00 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-09-19 13:05 - 2015-07-28 22:00 - 00598528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-09-19 13:05 - 2015-07-28 22:00 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-09-19 13:05 - 2015-07-28 22:00 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-09-19 13:05 - 2015-07-28 22:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-09-19 13:05 - 2015-07-28 21:54 - 00934400 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-09-19 13:05 - 2015-06-03 22:17 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-09-19 12:42 - 2015-07-10 19:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-09-19 12:42 - 2015-07-10 19:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-09-19 12:42 - 2015-07-10 19:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-09-19 12:41 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-09-19 12:41 - 2015-07-30 19:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-09-19 12:41 - 2015-07-30 19:57 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-09-19 12:41 - 2015-07-15 19:59 - 00078784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-09-19 12:41 - 2015-07-15 19:55 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-09-19 12:41 - 2015-07-15 19:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-09-19 12:41 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-09-19 12:41 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-09-19 12:41 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-09-19 12:41 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-09-19 12:41 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-09-19 12:41 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-09-19 12:41 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-09-19 12:41 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-09-19 12:41 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-09-19 12:41 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-09-19 12:41 - 2015-04-11 05:07 - 00054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2015-09-19 12:37 - 2015-07-10 19:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-09-19 12:36 - 2015-07-15 04:55 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-09-19 12:36 - 2015-05-09 05:14 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-09-19 12:36 - 2015-05-09 05:13 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-09-19 12:36 - 2015-05-09 05:13 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-09-19 12:36 - 2015-05-09 05:12 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-09-19 12:36 - 2015-05-09 05:08 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 03:59 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 03:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 03:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-19 12:36 - 2015-05-09 03:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-19 12:36 - 2015-04-29 20:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-09-19 12:36 - 2015-04-29 20:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-09-19 12:36 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-09-19 12:36 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-09-19 12:36 - 2015-04-29 20:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-09-19 12:36 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-10-03 09:16 - 2009-07-14 06:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-03 09:16 - 2009-07-14 06:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-03 08:39 - 2015-03-28 21:15 - 02002703 _____ C:\Windows\WindowsUpdate.log
2015-10-03 08:36 - 2015-03-28 21:26 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-03 08:36 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-03 08:36 - 2009-07-14 06:39 - 00022303 _____ C:\Windows\setupact.log
2015-10-03 08:31 - 2015-03-28 21:26 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-03 08:23 - 2015-03-28 21:24 - 01470062 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-03 08:19 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2015-10-03 08:16 - 2009-07-14 06:33 - 00409608 _____ C:\Windows\system32\FNTCACHE.DAT
2015-10-03 08:14 - 2015-03-30 01:20 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-03 08:14 - 2015-03-30 01:20 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-03 08:14 - 2009-07-14 11:21 - 00000000 ____D C:\Program Files\Windows Journal
2015-10-02 22:49 - 2015-04-03 21:12 - 00000000 ____D C:\Windows\system32\MRT
2015-10-02 17:43 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\zh-TW
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\zh-HK
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\zh-CN
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\tr-TR
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\th-TH
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\sv-SE
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\sl-SI
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\sk-SK
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\ru-RU
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\ro-RO
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\pt-PT
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\pt-BR
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\pl-PL
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\nl-NL
2015-10-02 17:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Help
2015-10-02 17:40 - 2015-04-05 08:33 - 00000000 ____D C:\Program Files\Dell
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\nb-NO
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\lv-LV
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\lt-LT
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\ko-KR
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\ja-JP
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\it-IT
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\hu-HU
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\hr-HR
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\he-IL
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\fr-FR
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\fi-FI
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\et-EE
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\el-GR
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\de-DE
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\bg-BG
2015-10-02 17:40 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\ar-SA
2015-10-02 17:26 - 2015-04-05 10:29 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-10-02 17:26 - 2015-04-05 10:29 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-10-02 16:43 - 2015-05-31 07:01 - 00000000 ____D C:\Users\Vladicek\AppData\Local\Adobe
2015-10-02 16:21 - 2015-05-23 11:59 - 00001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-10-02 16:21 - 2015-05-23 11:59 - 00001052 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-10-02 16:20 - 2015-04-04 22:12 - 00073728 _____ C:\Windows\system32\tasks.dll
2015-09-29 13:32 - 2015-03-28 22:04 - 00000000 ____D C:\Users\Vladicek\AppData\Roaming\.minecraft
2015-09-26 08:34 - 2015-03-28 21:26 - 00000000 ____D C:\Users\Vladicek\AppData\Local\Google
2015-09-19 09:30 - 2015-04-06 14:10 - 00000000 ___SD C:\Windows\system32\GWX
==================== Files in the root of some directories =======
2015-03-28 22:03 - 2015-03-28 22:03 - 0000000 _____ () C:\Users\Vladicek\AppData\Roaming\3726.tmp
2015-08-29 14:06 - 2015-08-29 14:06 - 0000000 _____ () C:\Users\Vladicek\AppData\Roaming\B356.tmp
2015-08-29 14:06 - 2015-08-29 14:06 - 1020928 _____ () C:\Users\Vladicek\AppData\Roaming\B356.tmp.exe
2015-04-04 22:14 - 2015-04-04 22:14 - 0009662 _____ () C:\Users\Vladicek\AppData\Roaming\em_64x64.ico
Some files in TEMP:
====================
C:\Users\Vladicek\AppData\Local\Temp\2C8C.tmp.exe
C:\Users\Vladicek\AppData\Local\Temp\2C9D.tmp.exe
C:\Users\Vladicek\AppData\Local\Temp\7AAB.tmp.exe
C:\Users\Vladicek\AppData\Local\Temp\hp_238583.exe
C:\Users\Vladicek\AppData\Local\Temp\hp_u_23828328.exe
C:\Users\Vladicek\AppData\Local\Temp\hp_u_823824.exe
C:\Users\Vladicek\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Vladicek\AppData\Local\Temp\nvAppBar.exe
C:\Users\Vladicek\AppData\Local\Temp\nView.dll
C:\Users\Vladicek\AppData\Local\Temp\nViewSetup.exe
C:\Users\Vladicek\AppData\Local\Temp\nvShell.dll
C:\Users\Vladicek\AppData\Local\Temp\nvTaskBar.exe
C:\Users\Vladicek\AppData\Local\Temp\nvwdmcpl.dll
C:\Users\Vladicek\AppData\Local\Temp\nvwimg.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSAR.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSCS.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSDA.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSDE.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSEL.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSENG.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSENU.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSES.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSESM.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSFI.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSFR.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSHE.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSHU.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSIT.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSJA.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSKO.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSNL.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSNO.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSPL.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSPT.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSPTB.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSRU.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSSK.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSSL.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSSV.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSTH.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSTR.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSZHC.dll
C:\Users\Vladicek\AppData\Local\Temp\NVWRSZHT.dll
C:\Users\Vladicek\AppData\Local\Temp\nwiz.exe
C:\Users\Vladicek\AppData\Local\Temp\ose00000.exe
C:\Users\Vladicek\AppData\Local\Temp\Phineas and Ferb.exe
C:\Users\Vladicek\AppData\Local\Temp\tasks.dll
C:\Users\Vladicek\AppData\Local\Temp\_is4A0D.exe
C:\Users\Vladicek\AppData\Local\Temp\~7ED1.exe
C:\Users\Vladicek\AppData\Local\Temp\~B08C.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Vladicek\Desktop" je 701 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
log z frst-adwCleaner - stale se opakujici havet
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
log z frst-adwCleaner - stale se opakujici havet
- Přílohy
-
- Addition.rar
- (5.65 KiB) Staženo 63 x
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: log z frst-adwCleaner - stale se opakujici havet
Zdravím!
Jak je na tom váš oper. systém s legalitou?
Jak je na tom váš oper. systém s legalitou?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: log z frst-adwCleaner - stale se opakujici havet
Tento ntb neni muj ale pochazi z prodejny repasovanych pocitacu kde prodavaji i s predinstalovanymi win 7. Ale vic nevim. Myslite ze je problem v cracknutych windows?
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: log z frst-adwCleaner - stale se opakujici havet
To ani ne, nicméně my se tu nezabýváme nelegálním softwarem. Ten je vždy upraven a může se chovat jinak, než originál. SW policie nejsme. Zkusíme tento postup:
Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
a klikněte na >Prohledat<. Dejte oba logy.CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*loader* /s
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: log z frst-adwCleaner - stale se opakujici havet
viz priloha
dekuji
dekuji
- Přílohy
-
- logy.rar
- (33.84 KiB) Staženo 77 x
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: log z frst-adwCleaner - stale se opakujici havet
Nemýlil jsem se, váš oper. systém není originál. Z toho důvodu podle pravidel nemohu pokračoat: http://forum.viry.cz/viewtopic.php?f=12&t=115512 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: log z frst-adwCleaner - stale se opakujici havet
# AdwCleaner v6.042 - Log vytvořen 26/01/2017 v 20:14:35
# Aktualizováno dne 06/01/2017 z Malwarebytes
# Databáze : 2017-01-26.2 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Jan - DESKTOP-3RABBJS
# Spuštěno z : C:\Users\Jan\Desktop\adwcleaner_6.042 (1).exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
Služba nalezena: swdumon
***** [ Složky ] *****
Nebyly nalezeny žádné škodlivé složky.
***** [ Soubory ] *****
Soubor nalezen: C:\WINDOWS\SysNative\drivers\swdumon.sys
***** [ DLL ] *****
Nebyly nalezeny žádné škodlivé DLL.
***** [ WMI ] *****
Nebyly nalezeny žádné škodlivé klíče.
***** [ Zástupci ] *****
Žádný infikovaný zástupce nenalezen.
***** [ Naplánované úlohy ] *****
Žádná nebezpečná úloha nenalezena.
***** [ Registry ] *****
Klíč nalezen: HKLM\SOFTWARE\SlimWare Utilities Inc
***** [ Internetové prohlížeče ] *****
Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium.
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1429 Bajty] - [02/01/2017 15:02:56]
C:\AdwCleaner\AdwCleaner[C2].txt - [1164 Bajty] - [03/01/2017 19:18:45]
C:\AdwCleaner\AdwCleaner[C3].txt - [1385 Bajty] - [21/01/2017 15:44:17]
C:\AdwCleaner\AdwCleaner[C4].txt - [2007 Bajty] - [24/01/2017 16:56:47]
C:\AdwCleaner\AdwCleaner[C5].txt - [1835 Bajty] - [24/01/2017 17:00:56]
C:\AdwCleaner\AdwCleaner[C6].txt - [2052 Bajty] - [24/01/2017 20:33:53]
C:\AdwCleaner\AdwCleaner[S0].txt - [1679 Bajty] - [02/01/2017 15:02:30]
C:\AdwCleaner\AdwCleaner[S1].txt - [1511 Bajty] - [03/01/2017 19:18:16]
C:\AdwCleaner\AdwCleaner[S2].txt - [3341 Bajty] - [04/01/2017 13:45:46]
C:\AdwCleaner\AdwCleaner[S3].txt - [1732 Bajty] - [21/01/2017 15:43:55]
C:\AdwCleaner\AdwCleaner[S4].txt - [2107 Bajty] - [24/01/2017 16:56:39]
C:\AdwCleaner\AdwCleaner[S5].txt - [2021 Bajty] - [24/01/2017 17:00:49]
C:\AdwCleaner\AdwCleaner[S6].txt - [2167 Bajty] - [24/01/2017 17:02:37]
C:\AdwCleaner\AdwCleaner[S7].txt - [2238 Bajty] - [24/01/2017 20:33:45]
C:\AdwCleaner\AdwCleaner[S8].txt - [2230 Bajty] - [26/01/2017 20:14:35]
########## EOF - C:\AdwCleaner\AdwCleaner[S8].txt - [2303 Bajty] ##########
# Aktualizováno dne 06/01/2017 z Malwarebytes
# Databáze : 2017-01-26.2 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Jan - DESKTOP-3RABBJS
# Spuštěno z : C:\Users\Jan\Desktop\adwcleaner_6.042 (1).exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
Služba nalezena: swdumon
***** [ Složky ] *****
Nebyly nalezeny žádné škodlivé složky.
***** [ Soubory ] *****
Soubor nalezen: C:\WINDOWS\SysNative\drivers\swdumon.sys
***** [ DLL ] *****
Nebyly nalezeny žádné škodlivé DLL.
***** [ WMI ] *****
Nebyly nalezeny žádné škodlivé klíče.
***** [ Zástupci ] *****
Žádný infikovaný zástupce nenalezen.
***** [ Naplánované úlohy ] *****
Žádná nebezpečná úloha nenalezena.
***** [ Registry ] *****
Klíč nalezen: HKLM\SOFTWARE\SlimWare Utilities Inc
***** [ Internetové prohlížeče ] *****
Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium.
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1429 Bajty] - [02/01/2017 15:02:56]
C:\AdwCleaner\AdwCleaner[C2].txt - [1164 Bajty] - [03/01/2017 19:18:45]
C:\AdwCleaner\AdwCleaner[C3].txt - [1385 Bajty] - [21/01/2017 15:44:17]
C:\AdwCleaner\AdwCleaner[C4].txt - [2007 Bajty] - [24/01/2017 16:56:47]
C:\AdwCleaner\AdwCleaner[C5].txt - [1835 Bajty] - [24/01/2017 17:00:56]
C:\AdwCleaner\AdwCleaner[C6].txt - [2052 Bajty] - [24/01/2017 20:33:53]
C:\AdwCleaner\AdwCleaner[S0].txt - [1679 Bajty] - [02/01/2017 15:02:30]
C:\AdwCleaner\AdwCleaner[S1].txt - [1511 Bajty] - [03/01/2017 19:18:16]
C:\AdwCleaner\AdwCleaner[S2].txt - [3341 Bajty] - [04/01/2017 13:45:46]
C:\AdwCleaner\AdwCleaner[S3].txt - [1732 Bajty] - [21/01/2017 15:43:55]
C:\AdwCleaner\AdwCleaner[S4].txt - [2107 Bajty] - [24/01/2017 16:56:39]
C:\AdwCleaner\AdwCleaner[S5].txt - [2021 Bajty] - [24/01/2017 17:00:49]
C:\AdwCleaner\AdwCleaner[S6].txt - [2167 Bajty] - [24/01/2017 17:02:37]
C:\AdwCleaner\AdwCleaner[S7].txt - [2238 Bajty] - [24/01/2017 20:33:45]
C:\AdwCleaner\AdwCleaner[S8].txt - [2230 Bajty] - [26/01/2017 20:14:35]
########## EOF - C:\AdwCleaner\AdwCleaner[S8].txt - [2303 Bajty] ##########
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: log z frst-adwCleaner - stale se opakujici havet
2Jan55: Založte si, prosím, vlastní topic. Děkujeme.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?