VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

vyskakování reklam

https://forum.viry.cz:443/viewtopic.php?t=142406

Stránka 2 z 2

Re: vyskakování reklam

Napsal: 18 led 2015 13:13
od marty210
a tedy se zeptam kterej z těch antiviru je lepší?

Re: vyskakování reklam

Napsal: 18 led 2015 13:39
od altrok
to je dost relativni otazka, na kterou Vam kazdy odpovi jinak... muj nazor (ovlivneny sledovanim porovnavacich testu) hovori pro ESET Smart Security, ktery je placeny... crackovat vysoce nedoporucuju (uz z logiky veci... upravovat bezpecnostni software, ktery dohlizi na vsechny procesy v PC? stale mu duveruju?). Pak existuji neplacene antiviry, kde si dlouhodobe nejlepe vede avast! Free. Rozhodnuti necham na Vas, jen mi dejte vedet, pro co jste se rozhodl :)

Re: vyskakování reklam

Napsal: 18 led 2015 13:59
od marty210
CompCare je placenej taky, no upřímě se bojhim aby při zpoplatnění ESETU nevznikl problem jako při zakoupení licence k AVASTU KTEREJ mě po zaplacení nepustil vůbec na net bo nenechal sítové prvky vubec naběhnout a blokoval je a pomohlo až uplne odinstalovaní ( další problem s Avastem :D) a obnova systemu kdy byl avast ještě free verze :(

Ale rozhodnu se pro eset


tady je ten log v nouzpovem režimu

nScan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-01-2015
Ran by ASUS X75A (administrator) on PC-ASUS on 18-01-2015 13:51:07
Running from C:\Users\ASUS X75A\Downloads
Loaded Profiles: ASUS X75A (Available profiles: ASUS X75A)
Platform: Windows 8 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_257.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_257.exe
(Farbar) C:\Users\ASUS X75A\Downloads\FRST64(1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [366720 2012-07-02] (Alcor Micro Corp.)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [764032 2012-08-10] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-08-10] (Qualcomm Atheros Commnucations)
HKLM\...\Run: [ASUSQuickGesture(x86)] => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe [20352 2012-08-05] (ASUSTeK Computer Inc.)
HKLM\...\Run: [ASUSTPLoader(x64)] => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe [169856 2012-08-05] (AsusTek)
HKLM\...\Run: [ASUSQuickGesture(x64)] => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe [22400 2012-08-05] (ASUSTeK Computer Inc.)
HKLM\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [90832 2012-06-07] (ASUS)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595336 2014-10-01] (ESET)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5264016 2012-08-16] (VIA)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [F-Secure Hoster (48873)] => C:\Program Files (x86)\CompCare Internet Security\fshoster32.exe [167608 2012-11-21] (F-Secure Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [F-Secure Manager] => C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\Common\FSM32.EXE [310208 2013-03-21] (F-Secure Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\ASUSWSLoader.exe [63296 2014-01-15] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22065760 2014-10-01] (Skype Technologies S.A.)
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\ASUS X75A\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\ASUS X75A\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\MountPoints2: {30b2925d-f047-11e2-be7c-dc85de3ee3f9} - "F:\setup_vmb_lite.exe" /checkApplicationPresence
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\MountPoints2: {ef335dca-efd1-11e2-be7b-dc85de3ee3f9} - "F:\setup_vmb_lite.exe" /checkApplicationPresence
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\MountPoints2: {ef335e91-efd1-11e2-be7b-dc85de3ee3f9} - "F:\setup_vmb_lite.exe" /checkApplicationPresence
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\MountPoints2: {ef335efd-efd1-11e2-be7b-dc85de3ee3f9} - "G:\setup_vmb_lite.exe" /checkApplicationPresence
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.1.265\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.1.265\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.1.265\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO: ASUS Browser Extension x64 -> {78234974-0C4B-4111-BDEB-D9A104418772} -> C:\Program Files (x86)\ASUS\ASUS Smart Gesture\install\x64\BrowserExtension64.dll (ASUSTeK Computer Inc.)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: ASUS Browser Extension x86 -> {78234974-0C4B-4111-BDEB-D9A104418771} -> C:\Program Files (x86)\ASUS\ASUS Smart Gesture\install\x86\BrowserExtension.dll (ASUSTeK Computer Inc.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37

FireFox:
========
FF ProfilePath: C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default
FF Homepage: https://www.google.cz/webhp?hl=cs
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll ()
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\searchplugins\inbox-search.xml
FF SearchPlugin: C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\searchplugins\warxtreme.xml
FF Extension: Avira Browser Safety - C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\Extensions\abs@avira.com [2014-12-11]
FF Extension: Český slovník pro kontrolu pravopisu - C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\Extensions\cs@dictionaries.addons.mozilla.org [2014-11-11]
FF Extension: Search App by Ask - C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\Extensions\toolbar_AVIRA-SP@apn.ask.com.xpi [2014-08-06]
FF Extension: Google Translator for Firefox - C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\Extensions\translator@zoli.bod.xpi [2015-01-05]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-12-09]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

Chrome:
=======
CHR Profile: C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Search App by Ask) - C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaafhgaihilbkellglkpeiegabpjem [2014-11-28]
CHR Extension: (Avira Browser Safety) - C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2014-11-28]
CHR Extension: (Skype Click to Call) - C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-11-28]
CHR Extension: (Peněženka Google) - C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-25]
CHR HKLM\...\Chrome\Extension: [aaaaafhgaihilbkellglkpeiegabpjem] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaafhgaihilbkellglkpeiegabpjem.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [aaaaafhgaihilbkellglkpeiegabpjem] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaafhgaihilbkellglkpeiegabpjem.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - No Path
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
S2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSWinService.exe [71680 2014-01-15] (ASUS Cloud Corporation) [File not signed]
S2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-10] (Qualcomm Atheros Commnucations)
S2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
S2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S2 ClassicShellService; C:\Program Files\Classic Shell\ClassicShellService.exe [68608 2013-06-29] (IvoSoft) [File not signed]
S2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2449592 2014-11-12] (Microsoft Corporation)
S2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2014-10-01] (ESET)
S2 fshoster; C:\Program Files (x86)\CompCare Internet Security\fshoster32.exe [167608 2012-11-21] (F-Secure Corporation)
S3 FSMA; C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\Common\FSMA32.EXE [211904 2013-03-21] (F-Secure Corporation)
S2 FSORSPClient; C:\Program Files (x86)\CompCare Internet Security\apps\CCF_Reputation\fsorsp.exe [60352 2013-07-19] (F-Secure Corporation)
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27792 2012-08-14] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16032 2014-09-22] (Microsoft Corporation)
S2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-10] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [50848 2012-08-05] (ASUS Corporation)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-10] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
S1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET)
S1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
S2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [158968 2014-10-10] (ESET)
S3 F-Secure Gatekeeper; C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [207400 2014-11-18] (F-Secure Corporation)
S1 F-Secure HIPS; C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\HIPS\drivers\fshs.sys [71112 2014-11-18] (F-Secure Corporation)
R0 fsbts; C:\Windows\System32\Drivers\fsbts.sys [56016 2013-07-19] ()
R0 fsbts; C:\Windows\SysWOW64\Drivers\fsbts.sys [41024 2013-07-18] ()
S3 fsni; C:\Program Files (x86)\CompCare Internet Security\apps\CCF_Scanning\fsni64.sys [80832 2013-04-25] (F-Secure Corporation)
S1 fsvista; C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [13248 2013-03-21] ()
S3 huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [213504 2011-07-12] (Huawei Technologies Co., Ltd.)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
U0 msahci; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-18 13:51 - 2015-01-18 13:52 - 00018094 _____ () C:\Users\ASUS X75A\Downloads\FRST.txt
2015-01-18 13:51 - 2015-01-18 13:51 - 00000000 ____D () C:\FRST
2015-01-18 13:50 - 2015-01-18 13:50 - 02126336 _____ (Farbar) C:\Users\ASUS X75A\Downloads\FRST64(1).exe
2015-01-18 12:52 - 2015-01-18 12:52 - 02082536 _____ () C:\Users\ASUS X75A\Downloads\FRST64.exe
2015-01-17 18:13 - 2015-01-17 18:13 - 00318240 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-17 18:12 - 2015-01-17 18:12 - 00000314 _____ () C:\Windows\PFRO.log
2015-01-17 17:26 - 2015-01-17 17:26 - 02186752 _____ () C:\Users\ASUS X75A\Desktop\adwcleaner_4.108 (1).exe
2015-01-17 17:19 - 2015-01-17 17:20 - 02186752 _____ () C:\Users\ASUS X75A\Downloads\adwcleaner_4.108.exe
2015-01-17 17:04 - 2015-01-17 18:11 - 00000000 ____D () C:\AdwCleaner
2015-01-17 15:12 - 2015-01-17 15:12 - 00013511 _____ () C:\Users\ASUS X75A\Documents\hijackthis.log
2015-01-17 15:09 - 2015-01-17 15:11 - 00013511 _____ () C:\Users\ASUS X75A\Downloads\hijackthis.log
2015-01-17 15:08 - 2015-01-17 15:10 - 242515689 _____ () C:\Users\ASUS X75A\Downloads\atheros_ar5xxx_ar9xxx_wireless_drv_1000276_win.zip
2015-01-17 15:08 - 2015-01-17 15:08 - 00388608 _____ (Trend Micro Inc.) C:\Users\ASUS X75A\Downloads\hijackthis.exe
2015-01-17 15:07 - 2015-01-17 15:07 - 02388828 _____ () C:\Users\ASUS X75A\Downloads\driver_setup(1).exe
2015-01-17 15:06 - 2015-01-17 15:06 - 02444308 _____ () C:\Users\ASUS X75A\Downloads\driver_setup.exe
2015-01-17 15:01 - 2014-08-25 08:32 - 00093899 _____ () C:\Users\ASUS X75A\Desktop\athwb.cat
2015-01-17 15:00 - 2015-01-17 15:00 - 02253954 _____ () C:\Users\ASUS X75A\Downloads\win81-10.0.0.298-whql.zip
2015-01-17 14:43 - 2015-01-17 14:43 - 29308326 _____ () C:\Users\ASUS X75A\Downloads\checkdrive.exe
2015-01-17 14:25 - 2015-01-17 14:25 - 13164544 _____ (Reimage®) C:\TRANSLATE
2015-01-17 14:00 - 2015-01-17 14:00 - 00000000 ____D () C:\rei
2015-01-17 13:58 - 2015-01-17 13:59 - 00000898 _____ () C:\Users\Public\Desktop\Pokračovat v instalaci Reimage Repair.lnk
2015-01-17 13:58 - 2015-01-17 13:58 - 00775968 _____ (Reimage®) C:\Users\ASUS X75A\Downloads\ReimageRepair.exe
2015-01-17 13:56 - 2015-01-17 13:58 - 01189700 _____ () C:\Users\ASUS X75A\Downloads\RSITx64(1).exe
2015-01-17 13:38 - 2015-01-17 13:38 - 00647576 _____ () C:\Users\ASUS X75A\Downloads\setup (1).exe
2015-01-17 13:37 - 2015-01-17 13:37 - 00627136 _____ () C:\Users\ASUS X75A\Downloads\setup.exe
2015-01-17 13:07 - 2015-01-17 13:07 - 00684612 _____ (Swearware) C:\Users\ASUS X75A\Downloads\dds.exe
2015-01-17 13:07 - 2015-01-17 13:07 - 00681692 _____ (Swearware) C:\Users\ASUS X75A\Downloads\dds(2).exe
2015-01-17 13:07 - 2015-01-17 13:07 - 00658332 _____ (Swearware) C:\Users\ASUS X75A\Downloads\dds(1).exe
2015-01-14 21:41 - 2014-11-05 07:40 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-01-14 21:41 - 2014-11-05 07:39 - 01024512 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-01-14 21:41 - 2014-11-01 07:28 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-01-14 21:41 - 2014-10-29 15:21 - 00499008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2015-01-14 21:41 - 2014-10-27 23:10 - 00390841 _____ () C:\Windows\system32\ApnDatabase.xml
2015-01-14 21:40 - 2014-12-19 07:48 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 21:40 - 2014-12-19 05:35 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 21:40 - 2014-12-11 08:35 - 06973248 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 21:40 - 2014-12-11 07:51 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 21:40 - 2014-12-06 08:53 - 00458240 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-01-14 21:40 - 2014-12-06 08:53 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-01-14 21:40 - 2014-12-06 08:52 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-01-14 21:40 - 2014-12-06 08:52 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 21:40 - 2014-12-06 08:52 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-01-14 21:40 - 2014-12-06 08:51 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-01-14 21:40 - 2014-12-06 08:51 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-01-14 21:40 - 2014-12-06 08:50 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-01-14 21:40 - 2014-12-06 07:10 - 00355840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-01-14 21:40 - 2014-12-06 07:10 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-01-14 21:40 - 2014-12-06 07:09 - 00332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-01-14 21:40 - 2014-12-06 07:09 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-14 21:40 - 2014-11-27 03:40 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-01-14 21:40 - 2014-11-27 02:28 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-01-14 21:40 - 2014-11-15 07:06 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-01-14 21:40 - 2014-11-15 06:13 - 03286016 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-01-14 21:40 - 2014-11-15 06:13 - 01623552 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-01-14 21:40 - 2014-11-15 06:13 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-01-14 21:40 - 2014-11-15 06:13 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-01-14 21:40 - 2014-11-15 06:13 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-01-14 21:40 - 2014-11-15 06:13 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-01-14 21:40 - 2014-11-15 06:13 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-01-14 21:40 - 2014-11-15 06:12 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-01-14 21:40 - 2014-11-15 04:54 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-01-14 21:40 - 2014-11-15 04:53 - 00630272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-01-14 21:40 - 2014-11-15 04:53 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-01-14 21:40 - 2014-11-15 04:53 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-01-13 11:55 - 2015-01-13 11:56 - 00110647 _____ (forum.viry.cz) C:\Users\ASUS X75A\Downloads\VerzeOS.exe
2015-01-13 02:57 - 2015-01-13 02:57 - 01090448 _____ () C:\Users\ASUS X75A\Downloads\RSIT(1).exe
2015-01-13 02:57 - 2015-01-13 02:57 - 01071468 _____ () C:\Users\ASUS X75A\Downloads\RSIT.exe
2015-01-13 02:56 - 2015-01-13 02:56 - 01160996 _____ () C:\Users\ASUS X75A\Downloads\RSITx64.exe
2015-01-13 02:55 - 2015-01-13 02:55 - 00109720 _____ () C:\Users\ASUS X75A\Downloads\FRSTLauncher.exe
2015-01-13 02:52 - 2015-01-13 02:52 - 00111180 _____ () C:\Users\ASUS X75A\Desktop\FRSTLaunchr.exe
2015-01-13 02:51 - 2015-01-13 02:51 - 01079148 _____ () C:\Users\ASUS X75A\Desktop\FRST.exe
2015-01-13 02:50 - 2015-01-13 02:51 - 02102388 _____ () C:\Users\ASUS X75A\Desktop\FRST64.exe
2015-01-09 18:20 - 2015-01-09 18:19 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-01-09 18:19 - 2015-01-09 18:19 - 00000000 ____D () C:\Program Files\Java
2015-01-09 18:13 - 2015-01-09 18:13 - 00003166 _____ () C:\Windows\System32\Tasks\{AA932BF8-B977-4FB0-8C80-A8E95339770E}
2015-01-09 18:00 - 2015-01-09 18:00 - 01135161 _____ () C:\Users\ASUS X75A\Downloads\js15-CoreGuide.zip
2015-01-09 17:38 - 2015-01-09 17:38 - 36968497 _____ () C:\Users\ASUS X75A\Downloads\Xilisoft Video Converter Ultimate v7.7.2 build 20130217_by_Bodo10_for_WarXtreme.com.rar
2015-01-09 12:50 - 2015-01-09 12:50 - 73478809 _____ (Mediatronic Pty Ltd) C:\Users\ASUS X75A\Downloads\MediaCoder-0.8.32.5660.exe
2015-01-09 12:47 - 2015-01-09 12:47 - 01222364 _____ () C:\Users\ASUS X75A\Downloads\FreemakeVideoConverterSetup(1).exe
2015-01-09 12:47 - 2015-01-09 12:47 - 00003198 _____ () C:\Windows\System32\Tasks\{992A18ED-F5AD-4D75-B64E-854220E98994}
2015-01-09 12:45 - 2015-01-09 12:45 - 00000000 ____D () C:\Program Files (x86)\Freemake
2015-01-09 12:44 - 2015-01-09 12:44 - 01270544 _____ (Ellora Assets Corporation ) C:\Users\ASUS X75A\Downloads\FreemakeVideoConverterSetup.exe
2015-01-09 12:40 - 2015-01-09 12:40 - 03150673 _____ () C:\Users\ASUS X75A\Downloads\MP4Cam2AVI_v2.99.zip
2015-01-09 12:39 - 2015-01-09 12:39 - 61952793 _____ () C:\Users\ASUS X75A\Downloads\ffactory-setup.exe
2015-01-09 12:35 - 2015-01-09 12:35 - 00000438 _____ () C:\Users\ASUS X75A\Desktop\mp4toavi.ini
2015-01-09 12:31 - 2015-01-09 12:31 - 07574976 _____ () C:\Users\ASUS X75A\Downloads\Pazera_Free_MP4_to_AVI_Converter_PORTABLE.zip
2015-01-08 15:54 - 2015-01-08 15:54 - 02164381 _____ (Nodus Technologies s.r.o. ) C:\Users\ASUS X75A\Downloads\Uloz.to_Uploader-setup(1).exe
2015-01-08 15:54 - 2015-01-08 15:54 - 02054709 _____ (Nodus Technologies s.r.o. ) C:\Users\ASUS X75A\Downloads\Uloz.to_Uploader-setup.exe
2015-01-06 02:19 - 2015-01-06 02:19 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\ESET
2015-01-06 02:08 - 2015-01-06 02:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-01-06 02:08 - 2015-01-06 02:08 - 00000000 ____D () C:\ProgramData\ESET
2015-01-06 02:08 - 2015-01-06 02:08 - 00000000 ____D () C:\Program Files\ESET
2015-01-06 01:47 - 2015-01-06 07:55 - 00000000 ____D () C:\Program Files (x86)\3dd46960-4892-4ccd-9463-21b8850fdf26
2015-01-05 22:13 - 2015-01-05 22:19 - 1184405148 _____ () C:\Users\ASUS X75A\Downloads\vesely-zivot-na-vs-kolejich-byxxxpornxx.sex.xxx.porno.avi
2015-01-05 15:05 - 2015-01-05 15:05 - 00065991 _____ () C:\Users\ASUS X75A\Downloads\Hunger-Games---Síla-vzdoru-část-1-cz-avi
2015-01-05 13:33 - 2015-01-06 02:22 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\23263
2015-01-05 13:03 - 2015-01-05 13:03 - 00000000 ____D () C:\ProgramData\DivX
2015-01-05 13:02 - 2015-01-18 13:28 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Roaming\Seznam.cz
2015-01-05 13:02 - 2015-01-05 13:02 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2015-01-05 13:01 - 2015-01-18 13:41 - 00001716 _____ () C:\Windows\Tasks\BPHHWDS.job
2015-01-05 13:01 - 2015-01-18 13:41 - 00001368 _____ () C:\Windows\Tasks\SRIBA.job
2015-01-05 13:01 - 2015-01-06 07:55 - 00000000 ____D () C:\Program Files (x86)\6997e350-fa77-4b01-a7b1-c2e9f0e1d6b8
2015-01-05 13:01 - 2015-01-05 13:02 - 00004380 _____ () C:\Windows\System32\Tasks\SRIBA
2015-01-05 13:01 - 2015-01-05 13:01 - 00004728 _____ () C:\Windows\System32\Tasks\BPHHWDS
2015-01-04 13:39 - 2014-11-27 12:33 - 209746019 _____ () C:\Users\ASUS X75A\Desktop\Dva a půl chlapa X (23) - Krávy, připravte se na pastvu.Dva a pul chlapa S10E23 - Kravy, pripravte se na pastvu.Lovok.DVB-T.x264.mp4
2015-01-04 13:21 - 2015-01-04 13:37 - 384017668 _____ () C:\Users\ASUS X75A\Downloads\Dva-a-půl-chlapa-10.-série-(cz)-[enalan].rar
2015-01-03 09:43 - 2015-01-03 10:50 - 00005803 _____ () C:\Users\ASUS X75A\AppData\Local\MRDownloader.err
2015-01-03 09:38 - 2015-01-03 14:49 - 00002864 _____ () C:\Users\ASUS X75A\AppData\Local\MRDownloader.nast
2015-01-03 09:37 - 2015-01-09 21:55 - 00000000 ____D () C:\Users\ASUS X75A\downland
2015-01-03 09:37 - 2015-01-03 09:37 - 00911360 _____ (Megarapid.cz) C:\Users\ASUS X75A\Downloads\MRDownloader.exe
2015-01-01 16:27 - 2015-01-01 16:27 - 01761992 _____ (ESET) C:\Users\ASUS X75A\Downloads\eset_nod32_antivirus_live_installer_.exe
2015-01-01 16:08 - 2015-01-01 16:12 - 1005870218 _____ () C:\Users\ASUS X75A\Downloads\xxx Group Oslava narozenin.mp4
2014-12-31 09:41 - 2014-12-31 09:43 - 179879229 _____ () C:\Users\ASUS X75A\Downloads\Czech Garden Party 1 - Part 3.mp4
2014-12-31 09:41 - 2014-12-31 09:42 - 190445193 _____ () C:\Users\ASUS X75A\Downloads\Czech Garden Party 1 - Part 2.mp4
2014-12-28 11:08 - 2014-12-28 11:11 - 547357310 _____ () C:\Users\ASUS X75A\Downloads\dad1.avi
2014-12-28 11:08 - 2014-12-28 11:11 - 547035328 _____ () C:\Users\ASUS X75A\Downloads\dad2.avi
2014-12-25 15:45 - 2015-01-03 20:21 - 00000000 ____D () C:\Windows\Minidump
2014-12-22 19:23 - 2014-12-22 19:28 - 1116679309 _____ () C:\Users\ASUS X75A\Downloads\eulqra.rar

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-18 13:47 - 2012-07-26 06:26 - 00786432 ___SH () C:\Windows\system32\config\BBI
2015-01-18 13:42 - 2013-07-18 17:17 - 00000972 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-18 13:42 - 2013-07-15 17:09 - 00000387 _____ () C:\Users\ASUS X75A\AppData\Roaming\sp_data.sys
2015-01-18 13:41 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-18 13:35 - 2012-09-30 07:37 - 01383657 _____ () C:\Windows\WindowsUpdate.log
2015-01-18 13:25 - 2013-07-15 17:14 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2743304896-2029139293-3538452155-1001
2015-01-18 13:16 - 2014-03-09 10:16 - 00000654 _____ () C:\Windows\Tasks\Scheduled scanning task.job
2015-01-18 13:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2015-01-17 18:18 - 2012-09-30 07:19 - 00000000 ____D () C:\Windows\SysWOW64\Atheros_L1e
2015-01-17 18:08 - 2013-07-18 17:17 - 00000976 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-17 17:41 - 2013-07-19 16:09 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-17 17:21 - 2013-07-27 20:23 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\CrashDumps
2015-01-17 17:21 - 2013-07-19 09:35 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Roaming\Media Player Classic
2015-01-17 17:11 - 2014-02-28 14:33 - 00000000 ____D () C:\ProgramData\Apple Computer
2015-01-17 17:10 - 2014-05-26 22:23 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2015-01-17 17:10 - 2014-01-26 13:43 - 00000000 ____D () C:\Program Files (x86)\Giovanni Software
2015-01-17 17:10 - 2013-07-19 09:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox
2015-01-17 17:05 - 2014-09-14 18:45 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\Adobe
2015-01-17 15:33 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache
2015-01-17 15:09 - 2013-07-15 17:07 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\VirtualStore
2015-01-17 14:24 - 2014-10-16 09:56 - 00000000 ____D () C:\Users\ASUS X75A\Downloads\Gameforge Live
2015-01-17 11:10 - 2013-07-18 17:18 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-17 10:11 - 2014-03-09 10:16 - 00003428 _____ () C:\Windows\System32\Tasks\Scheduled scanning task
2015-01-15 21:41 - 2012-07-26 08:59 - 00000000 ____D () C:\Windows\CbsTemp
2015-01-15 21:37 - 2013-08-14 20:36 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-15 21:22 - 2013-07-16 07:52 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-13 19:41 - 2013-07-19 16:09 - 00003802 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-09 18:23 - 2013-11-18 18:58 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-09 18:21 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-08 16:07 - 2013-07-19 16:56 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\JDownloader 0.9
2015-01-06 07:55 - 2013-07-18 17:44 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-01-06 07:55 - 2012-09-30 07:19 - 00000000 ____D () C:\Program Files (x86)\AmIcoSingLun
2015-01-06 00:28 - 2014-11-14 20:32 - 00714176 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-06 00:28 - 2014-11-14 20:32 - 00106440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-05 12:40 - 2013-11-18 18:58 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-05 12:39 - 2014-02-01 22:43 - 00272296 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2015-01-05 12:39 - 2014-02-01 22:43 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2015-01-05 12:39 - 2014-02-01 22:43 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2015-01-04 15:59 - 2012-08-02 19:06 - 00727488 _____ () C:\Windows\system32\perfh005.dat
2015-01-04 15:59 - 2012-08-02 19:06 - 00148006 _____ () C:\Windows\system32\perfc005.dat
2015-01-04 15:59 - 2012-07-26 08:28 - 01714430 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-03 20:21 - 2013-07-19 16:12 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\MediaMonkey
2015-01-03 09:38 - 2013-07-15 17:06 - 00000000 ____D () C:\Users\ASUS X75A
2014-12-27 16:31 - 2014-01-18 22:53 - 00000000 ____D () C:\Users\ASUS X75A\Desktop\Within Temptation - Hydra (2014)
2014-12-22 19:21 - 2013-07-18 17:34 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-12-22 19:13 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent

==================== Files in the root of some directories =======
2013-07-15 17:09 - 2015-01-18 13:42 - 0000387 _____ () C:\Users\ASUS X75A\AppData\Roaming\sp_data.sys
2015-01-03 09:43 - 2015-01-03 10:50 - 0005803 _____ () C:\Users\ASUS X75A\AppData\Local\MRDownloader.err
2015-01-03 09:38 - 2015-01-03 14:49 - 0002864 _____ () C:\Users\ASUS X75A\AppData\Local\MRDownloader.nast
2013-11-18 20:55 - 2013-11-18 20:55 - 0000017 _____ () C:\Users\ASUS X75A\AppData\Local\resmon.resmoncfg
2012-08-04 18:37 - 2012-07-30 07:03 - 0000217 _____ () C:\ProgramData\SetStretch.cmd
2012-08-04 18:37 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe

Files to move or delete:
====================
C:\ProgramData\SetStretch.exe


Some content of TEMP:
====================
C:\Users\ASUS X75A\AppData\Local\Temp\Quarantine.exe
C:\Users\ASUS X75A\AppData\Local\Temp\sqlite3.dll
C:\Users\ASUS X75A\AppData\Local\Temp\sqlite3.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-10 22:12

==================== End Of Log ============================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-01-2015
Ran by ASUS X75A at 2015-01-18 13:54:35
Running from C:\Users\ASUS X75A\Downloads
Boot Mode: Safe Mode (with Networking)
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Ochrana počítače (Disabled - Up to date) {15414183-282E-D62C-CA37-EF24860A2F17}
AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Ochrana počítače (Disabled - Up to date) {AE20A067-0E14-D9A2-F087-D456FD8D65AA}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.257 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.3.133 - Adobe Systems, Inc.)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.2.117.01506 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.2.117.01506 - Alcor Micro Corp.) Hidden
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.8 - ASUS)
ASUS InstantOn (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 3.0.2 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.4 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.8 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.0.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 1.0.29 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.03.0002 - ASUS)
ASUS Tutor (HKLM-x32\...\{58172D66-2F69-4215-9AEC-ED8196023736}) (Version: 1.0.6 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.4 - ASUS)
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.)
ASUSDVD (x32 Version: 10.0.4126.52 - CyberLink Corp.) Hidden
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.10.168 - ASUSTEK)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0022 - ASUS)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.06 - Piriform)
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Classic Shell (HKLM\...\{FEA1590B-540A-41FC-A95C-664493C82A21}) (Version: 3.6.8 - IvoSoft)
CompCare (HKLM-x32\...\F-Secure ServiceEnabler 48873) (Version: 1.62.373.0 - F-Secure Corporation)
CompCare (x32 Version: 1.62.373.0 - F-Secure Corporation) Hidden
Computer Security 12.62.110.0 (release) (x32 Version: 12.62.110.0 - F-Secure Corporation) Hidden
ESET NOD32 Antivirus (HKLM\...\{AB1AA952-0F66-42B2-B8B0-6B94FC500132}) (Version: 8.0.304.1 - ESET, spol s r. o.)
F-Secure CCF Reputation (x32 Version: 1.0.25.1756 - F-Secure) Hidden
F-Secure CCF Scanning 1.23.124.8831 (release) (x32 Version: 1.23.124.8831 - F-Secure Corporation) Hidden
F-Secure Network CCF 1.02.115 (x32 Version: 1.02.115 - F-Secure Corporation) Hidden
Gameforge Live 2.0.5 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.5 - Gameforge)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2828 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation)
Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation)
JDownloader 0.9 (HKLM-x32\...\jdownloader09) (Version: 0.9 - AppWork GmbH)
K-Lite Codec Pack 9.9.5 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 9.9.5 - )
K-Lite Codec Pack 9.9.5 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.9.5 - )
MediaMonkey 3.2 (HKLM-x32\...\MediaMonkey_is1) (Version: 3.2 - Ventis Media Inc.)
Metin2 (HKLM-x32\...\Metin2_is1) (Version: - Gameforge 4D GmbH)
Microsoft Office 2013 pro domácnosti - cs-cz (HKLM\...\HomeStudentRetail - cs-cz) (Version: 15.0.4675.1003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\SkyDriveSetup.exe) (Version: 17.0.2003.1112 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 cs) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 cs)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Online Safety 2.63.170.284 (x32 Version: 2.63.170.284 - F-Secure Corporation) Hidden
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.206 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Seznam Software (HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\SeznamInstall) (Version: - Seznam.cz)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.19617 - TeamViewer)
VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.1.265 - ASUS Cloud Corporation)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Driver Package - ASUS (ATP) Mouse (07/28/2012 1.0.0.108) (HKLM\...\9B634C8DF2662B6B0212BF0B7547894BF2B5359F) (Version: 07/28/2012 1.0.0.108 - ASUS)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2743304896-2029139293-3538452155-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\ASUS X75A\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2743304896-2029139293-3538452155-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\ASUS X75A\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2743304896-2029139293-3538452155-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\ASUS X75A\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2743304896-2029139293-3538452155-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\ASUS X75A\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2743304896-2029139293-3538452155-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\ASUS X75A\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

02-01-2015 08:49:53 Windows Update
03-01-2015 16:16:34 Odebráno: ESET NOD32 Antivirus
07-01-2015 08:34:40 Windows Update
09-01-2015 18:39:27 Removed Java 8 Update 25
13-01-2015 10:38:32 Windows Update
17-01-2015 10:21:38 Windows Update
17-01-2015 12:43:19 Operace obnovení

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {04E27DA4-FBAE-423D-84B6-2879CAC4E92A} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-11-04] (Microsoft Corporation)
Task: {10B8F962-984F-473B-91E1-131BCC877152} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-07-25] (ASUSTeK Computer Inc.)
Task: {2333F64B-99C6-4852-A10E-E4875B4C602F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {2BA14FBD-ADAD-493F-A246-588C3C2A5576} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-04] (ASUS)
Task: {31906085-A0C6-4586-92E9-61295E6D52BA} - System32\Tasks\Scheduled scanning task => C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\Anti-Virus\fsav.exe [2013-03-21] (F-Secure Corporation)
Task: {4716BC98-8DCB-418B-9473-95D02864E9E1} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {4AB62B43-CC24-4949-BD5D-5FEC15E811B4} - System32\Tasks\{992A18ED-F5AD-4D75-B64E-854220E98994} => pcalua.exe -a "C:\Users\ASUS X75A\Downloads\FreemakeVideoConverterSetup(1).exe" -d "C:\Users\ASUS X75A\Downloads"
Task: {71556C00-D099-451D-8923-06A0F09D6068} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-18] (Google Inc.)
Task: {7346B115-5BF0-42DE-B22A-7D261B6C76C1} - System32\Tasks\{AA932BF8-B977-4FB0-8C80-A8E95339770E} => pcalua.exe -a "C:\Users\ASUS X75A\Downloads\jxpiinstall(2).exe" -d "C:\Users\ASUS X75A\Downloads"
Task: {845E6481-6347-4395-A41E-6F39C6CEC7B1} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-01-15] (Microsoft Corporation)
Task: {86C2AFE2-D41A-4EE7-885D-A1D68A1C5A8B} - System32\Tasks\BPHHWDS => C:\Users\ASUS X75A\AppData\Roaming\BPHHWDS.exe <==== ATTENTION
Task: {9636A9E4-8A3D-4B1B-94F0-B37770E5C7F4} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-07-24] (ASUSTek Computer Inc.)
Task: {96A07880-6AE4-4444-842E-CCF0E9BD5C88} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {9B921708-0FAB-4824-8CA9-776F72F970F2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {B24AA8FE-D0AD-41FF-8493-382E3EBB6023} - System32\Tasks\SRIBA => C:\Users\ASUS X75A\AppData\Roaming\SRIBA.exe <==== ATTENTION
Task: {D8A7F937-293E-4A9C-87FE-BE2E8420ED72} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-13] (Adobe Systems Incorporated)
Task: {DE8AC42D-F9A2-4FA1-80B0-9DC98D1CF414} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-18] (Google Inc.)
Task: {FEAB1CFB-94A8-4941-9D14-762D213AB9A0} - System32\Tasks\ASUS InstantOn Config => C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [2012-08-06] (ASUS)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\BPHHWDS.job => C:\Users\ASUS X75A\AppData\Roaming\BPHHWDS.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Scheduled scanning task.job => C:\PROGRA~2\COMPCA~1\apps\COMPUT~1\ANTI-V~1\fsav.exe
Task: C:\Windows\Tasks\SRIBA.job => C:\Users\ASUS X75A\AppData\Roaming\SRIBA.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-12-09 14:54 - 2014-12-09 14:54 - 03758192 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "Zune Launcher"
HKLM\...\StartupApproved\Run32: => "MobileBroadband"
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\StartupApproved\Run: => "iLivid"

========================= Accounts: ==========================

Administrator (S-1-5-21-2743304896-2029139293-3538452155-500 - Administrator - Disabled)
ASUS X75A (S-1-5-21-2743304896-2029139293-3538452155-1001 - Administrator - Enabled) => C:\Users\ASUS X75A
Guest (S-1-5-21-2743304896-2029139293-3538452155-501 - Limited - Enabled)

==================== Faulty Device Manager Devices =============

Name: Qualcomm Atheros AR9485WB-EG Wireless Network Adapter
Description: Qualcomm Atheros AR9485WB-EG Wireless Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications Inc.
Service: athr
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (01/18/2015 00:16:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:16:26Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:15:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:15:56Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:15:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:15:26Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:14:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:14:56Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:14:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:14:26Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:13:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:13:56Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:13:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:13:26Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:12:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:12:56Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:12:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:12:26Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:11:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:11:56Z. Kód chyby: 0x80040154


System errors:
=============
Error: (01/18/2015 01:53:06 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Prohledávání počítačů závisí na službě Server, která neuspěla při spuštění v důsledku následující chyby:
%%1068

Error: (01/18/2015 01:53:06 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Prohledávání počítačů závisí na službě Server, která neuspěla při spuštění v důsledku následující chyby:
%%1068

Error: (01/18/2015 01:53:06 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Prohledávání počítačů závisí na službě Server, která neuspěla při spuštění v důsledku následující chyby:
%%1068

Error: (01/18/2015 01:53:05 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Prohledávání počítačů závisí na službě Server, která neuspěla při spuštění v důsledku následující chyby:
%%1068

Error: (01/18/2015 01:53:05 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Prohledávání počítačů závisí na službě Server, která neuspěla při spuštění v důsledku následující chyby:
%%1068

Error: (01/18/2015 01:53:05 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Prohledávání počítačů závisí na službě Server, která neuspěla při spuštění v důsledku následující chyby:
%%1068

Error: (01/18/2015 01:49:04 PM) (Source: DCOM) (EventID: 10005) (User: pc-asus)
Description: 1084ShellHWDetectionNení k dispozici{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/18/2015 01:48:58 PM) (Source: DCOM) (EventID: 10005) (User: pc-asus)
Description: 1084ShellHWDetectionNení k dispozici{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/18/2015 01:48:53 PM) (Source: DCOM) (EventID: 10005) (User: pc-asus)
Description: 1084ShellHWDetectionNení k dispozici{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/18/2015 01:48:44 PM) (Source: DCOM) (EventID: 10005) (User: pc-asus)
Description: 1084ShellHWDetectionNení k dispozici{DD522ACC-F821-461A-A407-50B198B896DC}


Microsoft Office Sessions:
=========================
Error: (01/18/2015 00:16:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:16:26Z

Error: (01/18/2015 00:15:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:15:56Z

Error: (01/18/2015 00:15:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:15:26Z

Error: (01/18/2015 00:14:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:14:56Z

Error: (01/18/2015 00:14:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:14:26Z

Error: (01/18/2015 00:13:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:13:56Z

Error: (01/18/2015 00:13:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:13:26Z

Error: (01/18/2015 00:12:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:12:56Z

Error: (01/18/2015 00:12:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:12:26Z

Error: (01/18/2015 00:11:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:11:56Z


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU B970 @ 2.30GHz
Percentage of memory in use: 22%
Total physical RAM: 3979.81 MB
Available physical RAM: 3092.64 MB
Total Pagefile: 8075.81 MB
Available Pagefile: 7252.77 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:279.01 GB) (Free:149.11 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Data) (Fixed) (Total:398.18 GB) (Free:397.53 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: F97C441A)

Partition: GPT Partition Type.

==================== End Of Log ============================

Re: vyskakování reklam

Napsal: 18 led 2015 14:20
od altrok
marty210 píše:AVASTU KTEREJ mě po zaplacení nepustil vůbec na net bo nenechal sítové prvky vubec naběhnout a blokoval je a pomohlo až uplne odinstalovaní ( další problem s Avastem :D) a obnova systemu kdy byl avast ještě free verze :(
o takovem problemu slysim poprve... kazdopadne ESET Smart Security (ale i NOD32, ktery prave mate) nabizi 30 denni trial plnohodnotne verze programu na vyzkouseni, takze v tomto pripade by problem byt nemel.

log je z nouzoveho rezimu, takze predpokladam, ze v normalnim vyhodil chybu viz prvni prispevek? ale konecne mam konkretnejsi obraz Vaseho PC :thumbsup:

pokud nepouzivate, odinstalujte Skype Click to Call a Seznam Software - listicka, postak atd.
zacneme zlehka cistit...

  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CloseProcesses:
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\ASUS X75A\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\ASUS X75A\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\MountPoints2: {30b2925d-f047-11e2-be7c-dc85de3ee3f9} - "F:\setup_vmb_lite.exe" /checkApplicationPresence
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\MountPoints2: {ef335dca-efd1-11e2-be7b-dc85de3ee3f9} - "F:\setup_vmb_lite.exe" /checkApplicationPresence
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\MountPoints2: {ef335e91-efd1-11e2-be7b-dc85de3ee3f9} - "F:\setup_vmb_lite.exe" /checkApplicationPresence
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\MountPoints2: {ef335efd-efd1-11e2-be7b-dc85de3ee3f9} - "G:\setup_vmb_lite.exe" /checkApplicationPresence
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

FF SearchPlugin: C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\searchplugins\inbox-search.xml
FF SearchPlugin: C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\searchplugins\warxtreme.xml
FF Extension: Avira Browser Safety - C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\Extensions\abs@avira.com [2014-12-11]
FF Extension: Search App by Ask - C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\Extensions\toolbar_AVIRA-SP@apn.ask.com.xpi [2014-08-06]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

CHR Extension: (Search App by Ask) - C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaafhgaihilbkellglkpeiegabpjem [2014-11-28]
CHR Extension: (Avira Browser Safety) - C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2014-11-28]
CHR HKLM\...\Chrome\Extension: [aaaaafhgaihilbkellglkpeiegabpjem] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaafhgaihilbkellglkpeiegabpjem.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [aaaaafhgaihilbkellglkpeiegabpjem] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaafhgaihilbkellglkpeiegabpjem.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - No Path

S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
U0 msahci; No ImagePath

2015-01-17 17:26 - 2015-01-17 17:26 - 02186752 _____ () C:\Users\ASUS X75A\Desktop\adwcleaner_4.108 (1).exe
2015-01-17 17:19 - 2015-01-17 17:20 - 02186752 _____ () C:\Users\ASUS X75A\Downloads\adwcleaner_4.108.exe
2015-01-17 17:04 - 2015-01-17 18:11 - 00000000 ____D () C:\AdwCleaner
2013-07-15 17:09 - 2015-01-18 13:42 - 0000387 _____ () C:\Users\ASUS X75A\AppData\Roaming\sp_data.sys
2012-08-04 18:37 - 2012-07-30 07:03 - 0000217 _____ () C:\ProgramData\SetStretch.cmd
2012-08-04 18:37 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe

Task: {86C2AFE2-D41A-4EE7-885D-A1D68A1C5A8B} - System32\Tasks\BPHHWDS => C:\Users\ASUS X75A\AppData\Roaming\BPHHWDS.exe <==== ATTENTION
Task: {B24AA8FE-D0AD-41FF-8493-382E3EBB6023} - System32\Tasks\SRIBA => C:\Users\ASUS X75A\AppData\Roaming\SRIBA.exe <==== ATTENTION
Task: C:\Windows\Tasks\BPHHWDS.job => C:\Users\ASUS X75A\AppData\Roaming\BPHHWDS.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Scheduled scanning task.job => C:\PROGRA~2\COMPCA~1\apps\COMPUT~1\ANTI-V~1\fsav.exe
Task: C:\Windows\Tasks\SRIBA.job => C:\Users\ASUS X75A\AppData\Roaming\SRIBA.exe <==== ATTENTION
C:\Users\ASUS X75A\AppData\Roaming\BPHHWDS.exe
C:\Users\ASUS X75A\AppData\Roaming\SRIBA.exe

Folder: C:\Users\ASUS X75A\AppData\Local\23263
Hosts:
EmptyTemp:
End

Re: vyskakování reklam

Napsal: 18 led 2015 14:52
od marty210
ted po restartu de spustit už v normálním režimu

tady je ten fixlog

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-01-2015
Ran by ASUS X75A at 2015-01-18 14:39:35 Run:1
Running from C:\Users\ASUS X75A\Desktop
Loaded Profiles: ASUS X75A (Available profiles: ASUS X75A)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\ASUS X75A\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\ASUS X75A\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\MountPoints2: {30b2925d-f047-11e2-be7c-dc85de3ee3f9} - "F:\setup_vmb_lite.exe" /checkApplicationPresence
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\MountPoints2: {ef335dca-efd1-11e2-be7b-dc85de3ee3f9} - "F:\setup_vmb_lite.exe" /checkApplicationPresence
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\MountPoints2: {ef335e91-efd1-11e2-be7b-dc85de3ee3f9} - "F:\setup_vmb_lite.exe" /checkApplicationPresence
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\MountPoints2: {ef335efd-efd1-11e2-be7b-dc85de3ee3f9} - "G:\setup_vmb_lite.exe" /checkApplicationPresence
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

FF SearchPlugin: C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\searchplugins\inbox-search.xml
FF SearchPlugin: C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\searchplugins\warxtreme.xml
FF Extension: Avira Browser Safety - C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\Extensions\abs@avira.com [2014-12-11]
FF Extension: Search App by Ask - C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\Extensions\toolbar_AVIRA-SP@apn.ask.com.xpi [2014-08-06]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

CHR Extension: (Search App by Ask) - C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaafhgaihilbkellglkpeiegabpjem [2014-11-28]
CHR Extension: (Avira Browser Safety) - C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2014-11-28]
CHR HKLM\...\Chrome\Extension: [aaaaafhgaihilbkellglkpeiegabpjem] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaafhgaihilbkellglkpeiegabpjem.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [aaaaafhgaihilbkellglkpeiegabpjem] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaafhgaihilbkellglkpeiegabpjem.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - No Path

S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
U0 msahci; No ImagePath

2015-01-17 17:26 - 2015-01-17 17:26 - 02186752 _____ () C:\Users\ASUS X75A\Desktop\adwcleaner_4.108 (1).exe
2015-01-17 17:19 - 2015-01-17 17:20 - 02186752 _____ () C:\Users\ASUS X75A\Downloads\adwcleaner_4.108.exe
2015-01-17 17:04 - 2015-01-17 18:11 - 00000000 ____D () C:\AdwCleaner
2013-07-15 17:09 - 2015-01-18 13:42 - 0000387 _____ () C:\Users\ASUS X75A\AppData\Roaming\sp_data.sys
2012-08-04 18:37 - 2012-07-30 07:03 - 0000217 _____ () C:\ProgramData\SetStretch.cmd
2012-08-04 18:37 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe

Task: {86C2AFE2-D41A-4EE7-885D-A1D68A1C5A8B} - System32\Tasks\BPHHWDS => C:\Users\ASUS X75A\AppData\Roaming\BPHHWDS.exe <==== ATTENTION
Task: {B24AA8FE-D0AD-41FF-8493-382E3EBB6023} - System32\Tasks\SRIBA => C:\Users\ASUS X75A\AppData\Roaming\SRIBA.exe <==== ATTENTION
Task: C:\Windows\Tasks\BPHHWDS.job => C:\Users\ASUS X75A\AppData\Roaming\BPHHWDS.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Scheduled scanning task.job => C:\PROGRA~2\COMPCA~1\apps\COMPUT~1\ANTI-V~1\fsav.exe
Task: C:\Windows\Tasks\SRIBA.job => C:\Users\ASUS X75A\AppData\Roaming\SRIBA.exe <==== ATTENTION
C:\Users\ASUS X75A\AppData\Roaming\BPHHWDS.exe
C:\Users\ASUS X75A\AppData\Roaming\SRIBA.exe

Folder: C:\Users\ASUS X75A\AppData\Local\23263
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => value deleted successfully.
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => value deleted successfully.
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => value deleted successfully.
"HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{30b2925d-f047-11e2-be7c-dc85de3ee3f9}" => Key deleted successfully.
HKCR\CLSID\{30b2925d-f047-11e2-be7c-dc85de3ee3f9} => Key not found.
"HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ef335dca-efd1-11e2-be7b-dc85de3ee3f9}" => Key deleted successfully.
HKCR\CLSID\{ef335dca-efd1-11e2-be7b-dc85de3ee3f9} => Key not found.
"HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ef335e91-efd1-11e2-be7b-dc85de3ee3f9}" => Key deleted successfully.
HKCR\CLSID\{ef335e91-efd1-11e2-be7b-dc85de3ee3f9} => Key not found.
"HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ef335efd-efd1-11e2-be7b-dc85de3ee3f9}" => Key deleted successfully.
HKCR\CLSID\{ef335efd-efd1-11e2-be7b-dc85de3ee3f9} => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => Key deleted successfully.
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => Key not found.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\searchplugins\inbox-search.xml => Moved successfully.
C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\searchplugins\warxtreme.xml => Moved successfully.
C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\Extensions\abs@avira.com => Moved successfully.
C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\Extensions\toolbar_AVIRA-SP@apn.ask.com.xpi => Moved successfully.
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com => value deleted successfully.
C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaafhgaihilbkellglkpeiegabpjem => Moved successfully.
C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => Moved successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaafhgaihilbkellglkpeiegabpjem" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\aaaaafhgaihilbkellglkpeiegabpjem" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk" => Key deleted successfully.
EagleX64 => Service deleted successfully.
msahci => Service deleted successfully.
C:\Users\ASUS X75A\Desktop\adwcleaner_4.108 (1).exe => Moved successfully.
C:\Users\ASUS X75A\Downloads\adwcleaner_4.108.exe => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\ASUS X75A\AppData\Roaming\sp_data.sys => Moved successfully.
C:\ProgramData\SetStretch.cmd => Moved successfully.
C:\ProgramData\SetStretch.exe => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{86C2AFE2-D41A-4EE7-885D-A1D68A1C5A8B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{86C2AFE2-D41A-4EE7-885D-A1D68A1C5A8B}" => Key deleted successfully.
C:\Windows\System32\Tasks\BPHHWDS => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BPHHWDS" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B24AA8FE-D0AD-41FF-8493-382E3EBB6023}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B24AA8FE-D0AD-41FF-8493-382E3EBB6023}" => Key deleted successfully.
C:\Windows\System32\Tasks\SRIBA => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SRIBA" => Key deleted successfully.
C:\Windows\Tasks\BPHHWDS.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\Scheduled scanning task.job => Moved successfully.
C:\Windows\Tasks\SRIBA.job => Moved successfully.
"C:\Users\ASUS X75A\AppData\Roaming\BPHHWDS.exe" => File/Directory not found.
"C:\Users\ASUS X75A\AppData\Roaming\SRIBA.exe" => File/Directory not found.

========================= Folder: C:\Users\ASUS X75A\AppData\Local\23263 ========================

2015-01-05 13:33 - 2015-01-05 13:33 - 0000001 _____ () C:\Users\ASUS X75A\AppData\Local\23263\status.cfg
2015-01-05 13:33 - 2015-01-06 01:33 - 0003105 _____ () C:\Users\ASUS X75A\AppData\Local\23263\Updater.xml

====== End of Folder: ======

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 446.3 MB temporary data.


The system needed a reboot.

==== End of Fixlog 14:40:02 ====

Re: vyskakování reklam

Napsal: 18 led 2015 15:06
od altrok
Vyborne :thumbsup:

Odinstalujte jedno z antivirovych reseni a ponechte jen jedno. Pak dejte novy log z FRST (frst.txt i addition.txt) - pri druhem a dalsim spusteni FRST musite explicitne zatrhnout volbu Addition.txt

Re: vyskakování reklam

Napsal: 18 led 2015 17:43
od marty210
Tak tady to je

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-01-2015
Ran by ASUS X75A (administrator) on PC-ASUS on 18-01-2015 16:50:00
Running from C:\Users\ASUS X75A\Desktop
Loaded Profiles: ASUS X75A (Available profiles: ASUS X75A)
Platform: Windows 8 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IvoSoft) C:\Program Files\Classic Shell\ClassicShellService.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSWinService.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSPanel.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_257.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_257.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(F-Secure Corporation) C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\Common\FSLAUNCH.EXE
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.17074_none_6233bc1f5106b696\TiWorker.exe
(Farbar) C:\Users\ASUS X75A\Desktop\FRST64(1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [366720 2012-07-02] (Alcor Micro Corp.)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [764032 2012-08-10] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-08-10] (Qualcomm Atheros Commnucations)
HKLM\...\Run: [ASUSQuickGesture(x86)] => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe [20352 2012-08-05] (ASUSTeK Computer Inc.)
HKLM\...\Run: [ASUSTPLoader(x64)] => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe [169856 2012-08-05] (AsusTek)
HKLM\...\Run: [ASUSQuickGesture(x64)] => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe [22400 2012-08-05] (ASUSTeK Computer Inc.)
HKLM\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [90832 2012-06-07] (ASUS)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595336 2014-10-01] (ESET)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5264016 2012-08-16] (VIA)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\ASUSWSLoader.exe [63296 2014-01-15] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22065760 2014-10-01] (Skype Technologies S.A.)
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\RunOnce: [SeznamInstall-uninstall:358f0d583f4b2d70c1a1a5b93caceb1e] => C:\Users\ASUS X75A\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [534528 2015-01-18] () <===== ATTENTION
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.1.265\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.1.265\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.1.265\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO: ASUS Browser Extension x64 -> {78234974-0C4B-4111-BDEB-D9A104418772} -> C:\Program Files (x86)\ASUS\ASUS Smart Gesture\install\x64\BrowserExtension64.dll (ASUSTeK Computer Inc.)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: ASUS Browser Extension x86 -> {78234974-0C4B-4111-BDEB-D9A104418771} -> C:\Program Files (x86)\ASUS\ASUS Smart Gesture\install\x86\BrowserExtension.dll (ASUSTeK Computer Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37

FireFox:
========
FF ProfilePath: C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default
FF Homepage: https://www.google.cz/webhp?hl=cs
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll ()
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Český slovník pro kontrolu pravopisu - C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\Extensions\cs@dictionaries.addons.mozilla.org [2014-11-11]
FF Extension: Google Translator for Firefox - C:\Users\ASUS X75A\AppData\Roaming\Mozilla\Firefox\Profiles\a1g2r2b4.default\Extensions\translator@zoli.bod.xpi [2015-01-05]

Chrome:
=======
CHR Profile: C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Peněženka Google) - C:\Users\ASUS X75A\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-25]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSWinService.exe [71680 2014-01-15] (ASUS Cloud Corporation) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-10] (Qualcomm Atheros Commnucations)
R2 ClassicShellService; C:\Program Files\Classic Shell\ClassicShellService.exe [68608 2013-06-29] (IvoSoft) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2449592 2014-11-12] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27792 2012-08-14] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16032 2014-09-22] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-10] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [50848 2012-08-05] (ASUS Corporation)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-10] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [158968 2014-10-10] (ESET)
S3 huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [213504 2011-07-12] (Huawei Technologies Co., Ltd.)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R4 F-Secure HIPS; \??\C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\HIPS\drivers\fshs.sys [X]
R4 fsvista; \??\C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-18 16:41 - 2015-01-18 16:41 - 00004161 _____ () C:\Windows\FSGKIAIN.log
2015-01-18 16:40 - 2015-01-18 16:41 - 23687038 _____ () C:\Windows\FSISU.log
2015-01-18 16:40 - 2015-01-18 16:41 - 00250552 _____ () C:\Windows\FSUNINST.log
2015-01-18 16:40 - 2015-01-18 16:41 - 00243740 _____ () C:\Windows\FSDEPH.log
2015-01-18 16:40 - 2015-01-18 16:41 - 00024427 _____ () C:\Windows\uninstaller.log
2015-01-18 16:40 - 2015-01-18 16:40 - 00033596 _____ () C:\Windows\fsavunin.log
2015-01-18 16:40 - 2015-01-18 16:40 - 00006656 _____ () C:\Windows\FSSSINST.log
2015-01-18 16:40 - 2015-01-18 16:40 - 00005740 _____ () C:\Windows\FSSCINST.log
2015-01-18 16:40 - 2015-01-18 16:40 - 00001939 _____ () C:\Windows\FSLDIN.LOG
2015-01-18 16:40 - 2015-01-18 16:40 - 00001533 _____ () C:\Windows\FSGUIINS.LOG
2015-01-18 16:40 - 2015-01-18 16:40 - 00001461 _____ () C:\Windows\FSGEMINST.LOG
2015-01-18 16:40 - 2015-01-18 16:40 - 00000884 _____ () C:\Windows\daasunin.LOG
2015-01-18 16:40 - 2015-01-18 16:40 - 00000723 _____ () C:\Windows\fstnbins.LOG
2015-01-18 16:40 - 2015-01-18 16:40 - 00000278 _____ () C:\Windows\fsgadget.log
2015-01-18 16:40 - 2015-01-18 16:40 - 00000070 _____ () C:\Windows\fsavunin_2.log
2015-01-18 14:54 - 2015-01-18 14:58 - 00030858 _____ () C:\Users\ASUS X75A\Desktop\Addition.txt
2015-01-18 14:49 - 2015-01-18 16:50 - 00016373 _____ () C:\Users\ASUS X75A\Desktop\FRST.txt
2015-01-18 14:46 - 2015-01-18 14:46 - 00000359 _____ () C:\Users\ASUS X75A\AppData\Roaming\sp_data.sys
2015-01-18 13:54 - 2015-01-18 13:56 - 00024856 _____ () C:\Users\ASUS X75A\Downloads\Addition.txt
2015-01-18 13:51 - 2015-01-18 16:50 - 00000000 ____D () C:\FRST
2015-01-18 13:51 - 2015-01-18 13:59 - 00037614 _____ () C:\Users\ASUS X75A\Downloads\FRST.txt
2015-01-18 13:50 - 2015-01-18 13:50 - 02126336 _____ (Farbar) C:\Users\ASUS X75A\Desktop\FRST64(1).exe
2015-01-18 12:52 - 2015-01-18 12:52 - 02082536 _____ () C:\Users\ASUS X75A\Downloads\FRST64.exe
2015-01-17 18:13 - 2015-01-17 18:13 - 00318240 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-17 18:12 - 2015-01-18 14:44 - 00000986 _____ () C:\Windows\PFRO.log
2015-01-17 15:12 - 2015-01-17 15:12 - 00013511 _____ () C:\Users\ASUS X75A\Documents\hijackthis.log
2015-01-17 15:09 - 2015-01-17 15:11 - 00013511 _____ () C:\Users\ASUS X75A\Downloads\hijackthis.log
2015-01-17 15:08 - 2015-01-17 15:10 - 242515689 _____ () C:\Users\ASUS X75A\Downloads\atheros_ar5xxx_ar9xxx_wireless_drv_1000276_win.zip
2015-01-17 15:08 - 2015-01-17 15:08 - 00388608 _____ (Trend Micro Inc.) C:\Users\ASUS X75A\Downloads\hijackthis.exe
2015-01-17 15:07 - 2015-01-17 15:07 - 02388828 _____ () C:\Users\ASUS X75A\Downloads\driver_setup(1).exe
2015-01-17 15:06 - 2015-01-17 15:06 - 02444308 _____ () C:\Users\ASUS X75A\Downloads\driver_setup.exe
2015-01-17 15:01 - 2014-08-25 08:32 - 00093899 _____ () C:\Users\ASUS X75A\Desktop\athwb.cat
2015-01-17 15:00 - 2015-01-17 15:00 - 02253954 _____ () C:\Users\ASUS X75A\Downloads\win81-10.0.0.298-whql.zip
2015-01-17 14:43 - 2015-01-17 14:43 - 29308326 _____ () C:\Users\ASUS X75A\Downloads\checkdrive.exe
2015-01-17 14:25 - 2015-01-17 14:25 - 13164544 _____ (Reimage®) C:\TRANSLATE
2015-01-17 14:00 - 2015-01-17 14:00 - 00000000 ____D () C:\rei
2015-01-17 13:58 - 2015-01-17 13:58 - 00775968 _____ (Reimage®) C:\Users\ASUS X75A\Downloads\ReimageRepair.exe
2015-01-17 13:56 - 2015-01-17 13:58 - 01189700 _____ () C:\Users\ASUS X75A\Downloads\RSITx64(1).exe
2015-01-17 13:38 - 2015-01-17 13:38 - 00647576 _____ () C:\Users\ASUS X75A\Downloads\setup (1).exe
2015-01-17 13:37 - 2015-01-17 13:37 - 00627136 _____ () C:\Users\ASUS X75A\Downloads\setup.exe
2015-01-17 13:07 - 2015-01-17 13:07 - 00684612 _____ (Swearware) C:\Users\ASUS X75A\Downloads\dds.exe
2015-01-17 13:07 - 2015-01-17 13:07 - 00681692 _____ (Swearware) C:\Users\ASUS X75A\Downloads\dds(2).exe
2015-01-17 13:07 - 2015-01-17 13:07 - 00658332 _____ (Swearware) C:\Users\ASUS X75A\Downloads\dds(1).exe
2015-01-14 21:41 - 2014-11-05 07:40 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-01-14 21:41 - 2014-11-05 07:39 - 01024512 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-01-14 21:41 - 2014-11-01 07:28 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-01-14 21:41 - 2014-10-29 15:21 - 00499008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2015-01-14 21:41 - 2014-10-27 23:10 - 00390841 _____ () C:\Windows\system32\ApnDatabase.xml
2015-01-14 21:40 - 2014-12-19 07:48 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 21:40 - 2014-12-19 05:35 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 21:40 - 2014-12-11 08:35 - 06973248 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 21:40 - 2014-12-11 07:51 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 21:40 - 2014-12-06 08:53 - 00458240 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-01-14 21:40 - 2014-12-06 08:53 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-01-14 21:40 - 2014-12-06 08:52 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-01-14 21:40 - 2014-12-06 08:52 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 21:40 - 2014-12-06 08:52 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-01-14 21:40 - 2014-12-06 08:51 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-01-14 21:40 - 2014-12-06 08:51 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-01-14 21:40 - 2014-12-06 08:50 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-01-14 21:40 - 2014-12-06 07:10 - 00355840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-01-14 21:40 - 2014-12-06 07:10 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-01-14 21:40 - 2014-12-06 07:09 - 00332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-01-14 21:40 - 2014-12-06 07:09 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-14 21:40 - 2014-11-27 03:40 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-01-14 21:40 - 2014-11-27 02:28 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-01-14 21:40 - 2014-11-15 07:06 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-01-14 21:40 - 2014-11-15 06:13 - 03286016 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-01-14 21:40 - 2014-11-15 06:13 - 01623552 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-01-14 21:40 - 2014-11-15 06:13 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-01-14 21:40 - 2014-11-15 06:13 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-01-14 21:40 - 2014-11-15 06:13 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-01-14 21:40 - 2014-11-15 06:13 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-01-14 21:40 - 2014-11-15 06:13 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-01-14 21:40 - 2014-11-15 06:12 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-01-14 21:40 - 2014-11-15 04:54 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-01-14 21:40 - 2014-11-15 04:53 - 00630272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-01-14 21:40 - 2014-11-15 04:53 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-01-14 21:40 - 2014-11-15 04:53 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-01-13 11:55 - 2015-01-13 11:56 - 00110647 _____ (forum.viry.cz) C:\Users\ASUS X75A\Downloads\VerzeOS.exe
2015-01-13 02:57 - 2015-01-13 02:57 - 01090448 _____ () C:\Users\ASUS X75A\Downloads\RSIT(1).exe
2015-01-13 02:57 - 2015-01-13 02:57 - 01071468 _____ () C:\Users\ASUS X75A\Downloads\RSIT.exe
2015-01-13 02:56 - 2015-01-13 02:56 - 01160996 _____ () C:\Users\ASUS X75A\Downloads\RSITx64.exe
2015-01-13 02:55 - 2015-01-13 02:55 - 00109720 _____ () C:\Users\ASUS X75A\Downloads\FRSTLauncher.exe
2015-01-13 02:52 - 2015-01-13 02:52 - 00111180 _____ () C:\Users\ASUS X75A\Desktop\FRSTLaunchr.exe
2015-01-13 02:51 - 2015-01-13 02:51 - 01079148 _____ () C:\Users\ASUS X75A\Desktop\FRST.exe
2015-01-13 02:50 - 2015-01-13 02:51 - 02102388 _____ () C:\Users\ASUS X75A\Desktop\FRST64.exe
2015-01-09 18:20 - 2015-01-09 18:19 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-01-09 18:19 - 2015-01-09 18:19 - 00000000 ____D () C:\Program Files\Java
2015-01-09 18:13 - 2015-01-09 18:13 - 00003166 _____ () C:\Windows\System32\Tasks\{AA932BF8-B977-4FB0-8C80-A8E95339770E}
2015-01-09 18:00 - 2015-01-09 18:00 - 01135161 _____ () C:\Users\ASUS X75A\Downloads\js15-CoreGuide.zip
2015-01-09 17:38 - 2015-01-09 17:38 - 36968497 _____ () C:\Users\ASUS X75A\Downloads\Xilisoft Video Converter Ultimate v7.7.2 build 20130217_by_Bodo10_for_WarXtreme.com.rar
2015-01-09 12:50 - 2015-01-09 12:50 - 73478809 _____ (Mediatronic Pty Ltd) C:\Users\ASUS X75A\Downloads\MediaCoder-0.8.32.5660.exe
2015-01-09 12:47 - 2015-01-09 12:47 - 01222364 _____ () C:\Users\ASUS X75A\Downloads\FreemakeVideoConverterSetup(1).exe
2015-01-09 12:47 - 2015-01-09 12:47 - 00003198 _____ () C:\Windows\System32\Tasks\{992A18ED-F5AD-4D75-B64E-854220E98994}
2015-01-09 12:45 - 2015-01-09 12:45 - 00000000 ____D () C:\Program Files (x86)\Freemake
2015-01-09 12:44 - 2015-01-09 12:44 - 01270544 _____ (Ellora Assets Corporation ) C:\Users\ASUS X75A\Downloads\FreemakeVideoConverterSetup.exe
2015-01-09 12:40 - 2015-01-09 12:40 - 03150673 _____ () C:\Users\ASUS X75A\Downloads\MP4Cam2AVI_v2.99.zip
2015-01-09 12:39 - 2015-01-09 12:39 - 61952793 _____ () C:\Users\ASUS X75A\Downloads\ffactory-setup.exe
2015-01-09 12:35 - 2015-01-09 12:35 - 00000438 _____ () C:\Users\ASUS X75A\Desktop\mp4toavi.ini
2015-01-09 12:31 - 2015-01-09 12:31 - 07574976 _____ () C:\Users\ASUS X75A\Downloads\Pazera_Free_MP4_to_AVI_Converter_PORTABLE.zip
2015-01-08 15:54 - 2015-01-08 15:54 - 02164381 _____ (Nodus Technologies s.r.o. ) C:\Users\ASUS X75A\Downloads\Uloz.to_Uploader-setup(1).exe
2015-01-08 15:54 - 2015-01-08 15:54 - 02054709 _____ (Nodus Technologies s.r.o. ) C:\Users\ASUS X75A\Downloads\Uloz.to_Uploader-setup.exe
2015-01-06 02:19 - 2015-01-06 02:19 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\ESET
2015-01-06 02:08 - 2015-01-06 02:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-01-06 02:08 - 2015-01-06 02:08 - 00000000 ____D () C:\ProgramData\ESET
2015-01-06 02:08 - 2015-01-06 02:08 - 00000000 ____D () C:\Program Files\ESET
2015-01-06 01:47 - 2015-01-06 07:55 - 00000000 ____D () C:\Program Files (x86)\3dd46960-4892-4ccd-9463-21b8850fdf26
2015-01-05 22:13 - 2015-01-05 22:19 - 1184405148 _____ () C:\Users\ASUS X75A\Downloads\vesely-zivot-na-vs-kolejich-byxxxpornxx.sex.xxx.porno.avi
2015-01-05 15:05 - 2015-01-05 15:05 - 00065991 _____ () C:\Users\ASUS X75A\Downloads\Hunger-Games---Síla-vzdoru-část-1-cz-avi
2015-01-05 13:33 - 2015-01-06 02:22 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\23263
2015-01-05 13:03 - 2015-01-05 13:03 - 00000000 ____D () C:\ProgramData\DivX
2015-01-05 13:02 - 2015-01-18 14:49 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Roaming\Seznam.cz
2015-01-05 13:02 - 2015-01-18 14:43 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2015-01-05 13:01 - 2015-01-06 07:55 - 00000000 ____D () C:\Program Files (x86)\6997e350-fa77-4b01-a7b1-c2e9f0e1d6b8
2015-01-04 13:39 - 2014-11-27 12:33 - 209746019 _____ () C:\Users\ASUS X75A\Desktop\Dva a půl chlapa X (23) - Krávy, připravte se na pastvu.Dva a pul chlapa S10E23 - Kravy, pripravte se na pastvu.Lovok.DVB-T.x264.mp4
2015-01-04 13:21 - 2015-01-04 13:37 - 384017668 _____ () C:\Users\ASUS X75A\Downloads\Dva-a-půl-chlapa-10.-série-(cz)-[enalan].rar
2015-01-03 09:43 - 2015-01-03 10:50 - 00005803 _____ () C:\Users\ASUS X75A\AppData\Local\MRDownloader.err
2015-01-03 09:38 - 2015-01-03 14:49 - 00002864 _____ () C:\Users\ASUS X75A\AppData\Local\MRDownloader.nast
2015-01-03 09:37 - 2015-01-09 21:55 - 00000000 ____D () C:\Users\ASUS X75A\downland
2015-01-03 09:37 - 2015-01-03 09:37 - 00911360 _____ (Megarapid.cz) C:\Users\ASUS X75A\Downloads\MRDownloader.exe
2015-01-01 16:27 - 2015-01-01 16:27 - 01761992 _____ (ESET) C:\Users\ASUS X75A\Downloads\eset_nod32_antivirus_live_installer_.exe
2015-01-01 16:08 - 2015-01-01 16:12 - 1005870218 _____ () C:\Users\ASUS X75A\Downloads\xxx Group Oslava narozenin.mp4
2014-12-31 09:41 - 2014-12-31 09:43 - 179879229 _____ () C:\Users\ASUS X75A\Downloads\Czech Garden Party 1 - Part 3.mp4
2014-12-31 09:41 - 2014-12-31 09:42 - 190445193 _____ () C:\Users\ASUS X75A\Downloads\Czech Garden Party 1 - Part 2.mp4
2014-12-28 11:08 - 2014-12-28 11:11 - 547357310 _____ () C:\Users\ASUS X75A\Downloads\dad1.avi
2014-12-28 11:08 - 2014-12-28 11:11 - 547035328 _____ () C:\Users\ASUS X75A\Downloads\dad2.avi
2014-12-25 15:45 - 2015-01-03 20:21 - 00000000 ____D () C:\Windows\Minidump
2014-12-22 19:23 - 2014-12-22 19:28 - 1116679309 _____ () C:\Users\ASUS X75A\Downloads\eulqra.rar

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-18 16:49 - 2013-07-15 17:14 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2743304896-2029139293-3538452155-1001
2015-01-18 16:49 - 2012-09-30 07:37 - 01449925 _____ () C:\Windows\WindowsUpdate.log
2015-01-18 16:45 - 2013-07-18 17:21 - 00000000 ____D () C:\Program Files (x86)\CompCare Internet Security
2015-01-18 16:45 - 2013-07-18 17:19 - 00000000 ____D () C:\ProgramData\F-Secure
2015-01-18 16:41 - 2013-07-19 16:09 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-18 16:02 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2015-01-18 14:44 - 2014-03-09 10:16 - 00000654 _____ () C:\Windows\Tasks\Scheduled scanning task.job
2015-01-18 14:44 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-18 14:42 - 2014-09-19 11:17 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-01-18 14:39 - 2014-03-09 10:16 - 00003428 _____ () C:\Windows\System32\Tasks\Scheduled scanning task
2015-01-18 14:39 - 2013-07-27 20:23 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\CrashDumps
2015-01-18 14:01 - 2012-07-26 06:26 - 00786432 ___SH () C:\Windows\system32\config\BBI
2015-01-17 18:18 - 2012-09-30 07:19 - 00000000 ____D () C:\Windows\SysWOW64\Atheros_L1e
2015-01-17 17:21 - 2013-07-19 09:35 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Roaming\Media Player Classic
2015-01-17 17:11 - 2014-02-28 14:33 - 00000000 ____D () C:\ProgramData\Apple Computer
2015-01-17 17:10 - 2014-05-26 22:23 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2015-01-17 17:10 - 2014-01-26 13:43 - 00000000 ____D () C:\Program Files (x86)\Giovanni Software
2015-01-17 17:10 - 2013-07-19 09:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox
2015-01-17 17:05 - 2014-09-14 18:45 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\Adobe
2015-01-17 15:33 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache
2015-01-17 15:09 - 2013-07-15 17:07 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\VirtualStore
2015-01-17 14:24 - 2014-10-16 09:56 - 00000000 ____D () C:\Users\ASUS X75A\Downloads\Gameforge Live
2015-01-17 11:10 - 2013-07-18 17:18 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-15 21:41 - 2012-07-26 08:59 - 00000000 ____D () C:\Windows\CbsTemp
2015-01-15 21:37 - 2013-08-14 20:36 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-15 21:22 - 2013-07-16 07:52 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-13 19:41 - 2013-07-19 16:09 - 00003802 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-09 18:23 - 2013-11-18 18:58 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-09 18:21 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-08 16:07 - 2013-07-19 16:56 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\JDownloader 0.9
2015-01-06 07:55 - 2013-07-18 17:44 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-01-06 07:55 - 2012-09-30 07:19 - 00000000 ____D () C:\Program Files (x86)\AmIcoSingLun
2015-01-06 00:28 - 2014-11-14 20:32 - 00714176 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-06 00:28 - 2014-11-14 20:32 - 00106440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-05 12:40 - 2013-11-18 18:58 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-05 12:39 - 2014-02-01 22:43 - 00272296 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2015-01-05 12:39 - 2014-02-01 22:43 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2015-01-05 12:39 - 2014-02-01 22:43 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2015-01-04 15:59 - 2012-08-02 19:06 - 00727488 _____ () C:\Windows\system32\perfh005.dat
2015-01-04 15:59 - 2012-08-02 19:06 - 00148006 _____ () C:\Windows\system32\perfc005.dat
2015-01-04 15:59 - 2012-07-26 08:28 - 01714430 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-03 20:21 - 2013-07-19 16:12 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\MediaMonkey
2015-01-03 09:38 - 2013-07-15 17:06 - 00000000 ____D () C:\Users\ASUS X75A
2014-12-27 16:31 - 2014-01-18 22:53 - 00000000 ____D () C:\Users\ASUS X75A\Desktop\Within Temptation - Hydra (2014)
2014-12-22 19:21 - 2013-07-18 17:34 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-12-22 19:13 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent

==================== Files in the root of some directories =======
2015-01-18 14:46 - 2015-01-18 14:46 - 0000359 _____ () C:\Users\ASUS X75A\AppData\Roaming\sp_data.sys
2015-01-03 09:43 - 2015-01-03 10:50 - 0005803 _____ () C:\Users\ASUS X75A\AppData\Local\MRDownloader.err
2015-01-03 09:38 - 2015-01-03 14:49 - 0002864 _____ () C:\Users\ASUS X75A\AppData\Local\MRDownloader.nast
2013-11-18 20:55 - 2013-11-18 20:55 - 0000017 _____ () C:\Users\ASUS X75A\AppData\Local\resmon.resmoncfg

Files to move or delete:
====================
C:\Users\ASUS X75A\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


Some content of TEMP:
====================
C:\Users\ASUS X75A\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-10 22:12

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-01-2015
Ran by ASUS X75A at 2015-01-18 16:53:56
Running from C:\Users\ASUS X75A\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.257 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.3.133 - Adobe Systems, Inc.)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.2.117.01506 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.2.117.01506 - Alcor Micro Corp.) Hidden
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.8 - ASUS)
ASUS InstantOn (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 3.0.2 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.4 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.8 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.0.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 1.0.29 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.03.0002 - ASUS)
ASUS Tutor (HKLM-x32\...\{58172D66-2F69-4215-9AEC-ED8196023736}) (Version: 1.0.6 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.4 - ASUS)
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.)
ASUSDVD (x32 Version: 10.0.4126.52 - CyberLink Corp.) Hidden
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.10.168 - ASUSTEK)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0022 - ASUS)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.06 - Piriform)
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Classic Shell (HKLM\...\{FEA1590B-540A-41FC-A95C-664493C82A21}) (Version: 3.6.8 - IvoSoft)
ESET NOD32 Antivirus (HKLM\...\{AB1AA952-0F66-42B2-B8B0-6B94FC500132}) (Version: 8.0.304.1 - ESET, spol s r. o.)
Gameforge Live 2.0.5 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.5 - Gameforge)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2828 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation)
Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation)
JDownloader 0.9 (HKLM-x32\...\jdownloader09) (Version: 0.9 - AppWork GmbH)
K-Lite Codec Pack 9.9.5 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 9.9.5 - )
K-Lite Codec Pack 9.9.5 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.9.5 - )
MediaMonkey 3.2 (HKLM-x32\...\MediaMonkey_is1) (Version: 3.2 - Ventis Media Inc.)
Metin2 (HKLM-x32\...\Metin2_is1) (Version: - Gameforge 4D GmbH)
Microsoft Office 2013 pro domácnosti - cs-cz (HKLM\...\HomeStudentRetail - cs-cz) (Version: 15.0.4675.1003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\SkyDriveSetup.exe) (Version: 17.0.2003.1112 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 cs) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 cs)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.206 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.19617 - TeamViewer)
VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.1.265 - ASUS Cloud Corporation)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Driver Package - ASUS (ATP) Mouse (07/28/2012 1.0.0.108) (HKLM\...\9B634C8DF2662B6B0212BF0B7547894BF2B5359F) (Version: 07/28/2012 1.0.0.108 - ASUS)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2743304896-2029139293-3538452155-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\ASUS X75A\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2743304896-2029139293-3538452155-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\ASUS X75A\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2743304896-2029139293-3538452155-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\ASUS X75A\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2743304896-2029139293-3538452155-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\ASUS X75A\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2743304896-2029139293-3538452155-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\ASUS X75A\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

02-01-2015 08:49:53 Windows Update
03-01-2015 16:16:34 Odebráno: ESET NOD32 Antivirus
07-01-2015 08:34:40 Windows Update
09-01-2015 18:39:27 Removed Java 8 Update 25
13-01-2015 10:38:32 Windows Update
17-01-2015 10:21:38 Windows Update
17-01-2015 12:43:19 Operace obnovení
18-01-2015 14:41:39 Removed Skype Click to Call

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 06:26 - 2015-01-18 14:39 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {04E27DA4-FBAE-423D-84B6-2879CAC4E92A} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-11-04] (Microsoft Corporation)
Task: {10B8F962-984F-473B-91E1-131BCC877152} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-07-25] (ASUSTeK Computer Inc.)
Task: {2333F64B-99C6-4852-A10E-E4875B4C602F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {2BA14FBD-ADAD-493F-A246-588C3C2A5576} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-04] (ASUS)
Task: {31906085-A0C6-4586-92E9-61295E6D52BA} - System32\Tasks\Scheduled scanning task => C:\PROGRA~2\COMPCA~1\apps\COMPUT~1\ANTI-V~1\fsav.exe
Task: {4716BC98-8DCB-418B-9473-95D02864E9E1} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {4AB62B43-CC24-4949-BD5D-5FEC15E811B4} - System32\Tasks\{992A18ED-F5AD-4D75-B64E-854220E98994} => pcalua.exe -a "C:\Users\ASUS X75A\Downloads\FreemakeVideoConverterSetup(1).exe" -d "C:\Users\ASUS X75A\Downloads"
Task: {71556C00-D099-451D-8923-06A0F09D6068} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-18] (Google Inc.)
Task: {7346B115-5BF0-42DE-B22A-7D261B6C76C1} - System32\Tasks\{AA932BF8-B977-4FB0-8C80-A8E95339770E} => pcalua.exe -a "C:\Users\ASUS X75A\Downloads\jxpiinstall(2).exe" -d "C:\Users\ASUS X75A\Downloads"
Task: {845E6481-6347-4395-A41E-6F39C6CEC7B1} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-01-15] (Microsoft Corporation)
Task: {9636A9E4-8A3D-4B1B-94F0-B37770E5C7F4} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-07-24] (ASUSTek Computer Inc.)
Task: {96A07880-6AE4-4444-842E-CCF0E9BD5C88} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {9B921708-0FAB-4824-8CA9-776F72F970F2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {D8A7F937-293E-4A9C-87FE-BE2E8420ED72} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-13] (Adobe Systems Incorporated)
Task: {DE8AC42D-F9A2-4FA1-80B0-9DC98D1CF414} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-18] (Google Inc.)
Task: {FEAB1CFB-94A8-4941-9D14-762D213AB9A0} - System32\Tasks\ASUS InstantOn Config => C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [2012-08-06] (ASUS)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Scheduled scanning task.job => C:\PROGRA~2\COMPCA~1\apps\COMPUT~1\ANTI-V~1\fsav.exe

==================== Loaded Modules (whitelisted) =============

2012-08-04 10:34 - 2012-08-04 10:34 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2014-03-15 10:59 - 2014-05-20 08:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2013-07-16 07:04 - 2013-07-16 07:04 - 00176048 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2012-08-10 18:28 - 2012-08-10 18:28 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2012-08-10 18:23 - 2012-08-10 18:23 - 00021504 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\cs-CZ\BtTray.cs-CZ.dll
2012-08-23 10:23 - 2012-08-15 18:52 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2012-09-30 07:21 - 2012-08-16 11:04 - 00078480 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2012-09-30 07:21 - 2012-08-16 11:04 - 00386192 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2014-01-14 10:51 - 2014-01-14 10:51 - 00091648 _____ () C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\ASUSWSHomeCloudAPI.dll
2012-03-08 03:27 - 2012-03-08 03:27 - 00016384 _____ () C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\ACVsWin.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-06-07 14:12 - 2012-06-07 14:12 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2012-09-30 07:18 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-12-09 14:54 - 2014-12-09 14:54 - 03758192 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "Zune Launcher"
HKLM\...\StartupApproved\Run32: => "MobileBroadband"
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\StartupApproved\Run: => "iLivid"

========================= Accounts: ==========================

Administrator (S-1-5-21-2743304896-2029139293-3538452155-500 - Administrator - Disabled)
ASUS X75A (S-1-5-21-2743304896-2029139293-3538452155-1001 - Administrator - Enabled) => C:\Users\ASUS X75A
Guest (S-1-5-21-2743304896-2029139293-3538452155-501 - Limited - Enabled)

==================== Faulty Device Manager Devices =============

Name: Qualcomm Atheros AR9485WB-EG Wireless Network Adapter
Description: Qualcomm Atheros AR9485WB-EG Wireless Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications Inc.
Service: athr
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (01/18/2015 02:48:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Explorer.EXE verze 6.2.9200.16628 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 524

Čas spuštění: 01d03324f2e560c6

Čas ukončení: 0

Cesta k aplikaci: C:\Windows\Explorer.EXE

ID hlášení: 8c4b037f-9f18-11e4-bed6-dc85de3ee3f9

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (01/18/2015 02:39:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 34.0.5.5443, časové razítko: 0x5475dd5d
Název chybujícího modulu: mozalloc.dll, verze: 34.0.5.5443, časové razítko: 0x5475d664
Kód výjimky: 0x80000003
Posun chyby: 0x00001425
ID chybujícího procesu: 0x754
Čas spuštění chybující aplikace: 0xplugin-container.exe0
Cesta k chybující aplikaci: plugin-container.exe1
Cesta k chybujícímu modulu: plugin-container.exe2
ID zprávy: plugin-container.exe3
Úplný název chybujícího balíčku: plugin-container.exe4
ID aplikace související s chybujícím balíčkem: plugin-container.exe5

Error: (01/18/2015 02:39:07 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/18/2015 02:39:06 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro 1 se nezdařilo. Chyba v souboru manifestu nebo zásady 2 na řádku 3.
Neplatná syntaxe XML.

Error: (01/18/2015 02:03:28 PM) (Source: FSecure-FSecure-F-Secure Management Agent) (EventID: 103) (User: )
Description: 1 2015-01-18 14:03:28+02:00 PC-ASUS PC-ASUS\ASUS X75A F-Secure Management Agent
F-Secure Management Agent encountered an internal failure. It cannot monitor the status of a module or a plug-in and it may not be functional until the computer is restarted. If you see this message frequently, contact the system administrator or reinstall F-Secure products.

Error: (01/18/2015 00:16:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:16:26Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:15:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:15:56Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:15:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:15:26Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:14:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:14:56Z. Kód chyby: 0x80040154

Error: (01/18/2015 00:14:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2114-12-25T11:14:26Z. Kód chyby: 0x80040154


System errors:
=============
Error: (01/18/2015 04:49:24 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): Qualcomm Atheros Communications Inc. driver update for Qualcomm Atheros AR9485WB-EG Wireless Network Adapter.

Error: (01/18/2015 04:49:24 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070103): Qualcomm Atheros Communications Inc. - WLAN - Qualcomm Atheros AR9485WB-EG Wireless Network Adapter.

Error: (01/18/2015 02:45:37 PM) (Source: DCOM) (EventID: 10016) (User: pc-asus)
Description: specifické pro aplikaciMístníSpuštění{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}pc-asusASUS X75AS-1-5-21-2743304896-2029139293-3538452155-1001LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (01/18/2015 02:45:36 PM) (Source: DCOM) (EventID: 10016) (User: pc-asus)
Description: specifické pro aplikaciMístníSpuštění{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}pc-asusASUS X75AS-1-5-21-2743304896-2029139293-3538452155-1001LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (01/18/2015 02:45:36 PM) (Source: DCOM) (EventID: 10016) (User: pc-asus)
Description: specifické pro aplikaciMístníSpuštění{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}pc-asusASUS X75AS-1-5-21-2743304896-2029139293-3538452155-1001LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (01/18/2015 02:45:36 PM) (Source: DCOM) (EventID: 10016) (User: pc-asus)
Description: specifické pro aplikaciMístníSpuštění{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}pc-asusASUS X75AS-1-5-21-2743304896-2029139293-3538452155-1001LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (01/18/2015 02:45:35 PM) (Source: DCOM) (EventID: 10016) (User: pc-asus)
Description: specifické pro aplikaciMístníSpuštění{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}pc-asusASUS X75AS-1-5-21-2743304896-2029139293-3538452155-1001LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (01/18/2015 02:45:35 PM) (Source: DCOM) (EventID: 10016) (User: pc-asus)
Description: specifické pro aplikaciMístníSpuštění{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}pc-asusASUS X75AS-1-5-21-2743304896-2029139293-3538452155-1001LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (01/18/2015 02:39:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ZAtheros Bt&Wlan Coex Agent byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/18/2015 02:39:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) ME Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Microsoft Office Sessions:
=========================
Error: (01/18/2015 02:48:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Explorer.EXE6.2.9200.1662852401d03324f2e560c60C:\Windows\Explorer.EXE8c4b037f-9f18-11e4-bed6-dc85de3ee3f9

Error: (01/18/2015 02:39:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe34.0.5.54435475dd5dmozalloc.dll34.0.5.54435475d664800000030000142575401d033232eb2d1b1C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll70507c66-9f17-11e4-bed5-dc85de3ee3f9

Error: (01/18/2015 02:39:07 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: C:\Users\ASUS X75A\Downloads\driver_setup(1).exeC:\Users\ASUS X75A\Downloads\driver_setup(1).exe0

Error: (01/18/2015 02:39:06 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: C:\Users\ASUS X75A\Downloads\driver_setup.exeC:\Users\ASUS X75A\Downloads\driver_setup.exe0

Error: (01/18/2015 02:03:28 PM) (Source: FSecure-FSecure-F-Secure Management Agent) (EventID: 103) (User: )
Description: 1 2015-01-18 14:03:28+02:00 PC-ASUS PC-ASUS\ASUS X75A F-Secure Management Agent
F-Secure Management Agent encountered an internal failure. It cannot monitor the status of a module or a plug-in and it may not be functional until the computer is restarted. If you see this message frequently, contact the system administrator or reinstall F-Secure products.

Error: (01/18/2015 00:16:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:16:26Z

Error: (01/18/2015 00:15:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:15:56Z

Error: (01/18/2015 00:15:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:15:26Z

Error: (01/18/2015 00:14:56 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:14:56Z

Error: (01/18/2015 00:14:26 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: 0x800401542114-12-25T11:14:26Z


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU B970 @ 2.30GHz
Percentage of memory in use: 44%
Total physical RAM: 3979.81 MB
Available physical RAM: 2194.3 MB
Total Pagefile: 8075.81 MB
Available Pagefile: 6040.68 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:279.01 GB) (Free:149.95 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Data) (Fixed) (Total:398.18 GB) (Free:397.53 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: F97C441A)

Partition: GPT Partition Type.

==================== End Of Log ============================

Re: vyskakování reklam

Napsal: 18 led 2015 19:13
od altrok
  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CloseProcesses:
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\RunOnce: [SeznamInstall-uninstall:358f0d583f4b2d70c1a1a5b93caceb1e] => C:\Users\ASUS X75A\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [534528 2015-01-18] () <===== ATTENTION

R4 F-Secure HIPS; \??\C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\HIPS\drivers\fshs.sys [X]
R4 fsvista; \??\C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [X]

2015-01-18 14:54 - 2015-01-18 14:58 - 00030858 _____ () C:\Users\ASUS X75A\Desktop\Addition.txt
2015-01-18 14:49 - 2015-01-18 16:50 - 00016373 _____ () C:\Users\ASUS X75A\Desktop\FRST.txt
2015-01-18 14:46 - 2015-01-18 14:46 - 00000359 _____ () C:\Users\ASUS X75A\AppData\Roaming\sp_data.sys
2015-01-18 13:54 - 2015-01-18 13:56 - 00024856 _____ () C:\Users\ASUS X75A\Downloads\Addition.txt
2015-01-17 15:12 - 2015-01-17 15:12 - 00013511 _____ () C:\Users\ASUS X75A\Documents\hijackthis.log
2015-01-17 15:09 - 2015-01-17 15:11 - 00013511 _____ () C:\Users\ASUS X75A\Downloads\hijackthis.log
2015-01-17 15:08 - 2015-01-17 15:08 - 00388608 _____ (Trend Micro Inc.) C:\Users\ASUS X75A\Downloads\hijackthis.exe
2015-01-17 13:56 - 2015-01-17 13:58 - 01189700 _____ () C:\Users\ASUS X75A\Downloads\RSITx64(1).exe
2015-01-17 13:07 - 2015-01-17 13:07 - 00684612 _____ (Swearware) C:\Users\ASUS X75A\Downloads\dds.exe
2015-01-17 13:07 - 2015-01-17 13:07 - 00681692 _____ (Swearware) C:\Users\ASUS X75A\Downloads\dds(2).exe
2015-01-17 13:07 - 2015-01-17 13:07 - 00658332 _____ (Swearware) C:\Users\ASUS X75A\Downloads\dds(1).exe
2015-01-13 11:55 - 2015-01-13 11:56 - 00110647 _____ (forum.viry.cz) C:\Users\ASUS X75A\Downloads\VerzeOS.exe
2015-01-13 02:57 - 2015-01-13 02:57 - 01090448 _____ () C:\Users\ASUS X75A\Downloads\RSIT(1).exe
2015-01-13 02:57 - 2015-01-13 02:57 - 01071468 _____ () C:\Users\ASUS X75A\Downloads\RSIT.exe
2015-01-13 02:56 - 2015-01-13 02:56 - 01160996 _____ () C:\Users\ASUS X75A\Downloads\RSITx64.exe
2015-01-13 02:55 - 2015-01-13 02:55 - 00109720 _____ () C:\Users\ASUS X75A\Downloads\FRSTLauncher.exe
2015-01-13 02:52 - 2015-01-13 02:52 - 00111180 _____ () C:\Users\ASUS X75A\Desktop\FRSTLaunchr.exe
2015-01-05 13:33 - 2015-01-06 02:22 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\23263
2015-01-18 16:45 - 2013-07-18 17:21 - 00000000 ____D () C:\Program Files (x86)\CompCare Internet Security
2015-01-18 16:45 - 2013-07-18 17:19 - 00000000 ____D () C:\ProgramData\F-Secure

Task: {31906085-A0C6-4586-92E9-61295E6D52BA} - System32\Tasks\Scheduled scanning task => C:\PROGRA~2\COMPCA~1\apps\COMPUT~1\ANTI-V~1\fsav.exe
Task: {4AB62B43-CC24-4949-BD5D-5FEC15E811B4} - System32\Tasks\{992A18ED-F5AD-4D75-B64E-854220E98994} => pcalua.exe -a "C:\Users\ASUS X75A\Downloads\FreemakeVideoConverterSetup(1).exe" -d "C:\Users\ASUS X75A\Downloads"
Task: {7346B115-5BF0-42DE-B22A-7D261B6C76C1} - System32\Tasks\{AA932BF8-B977-4FB0-8C80-A8E95339770E} => pcalua.exe -a "C:\Users\ASUS X75A\Downloads\jxpiinstall(2).exe" -d "C:\Users\ASUS X75A\Downloads"
Task: C:\Windows\Tasks\Scheduled scanning task.job => C:\PROGRA~2\COMPCA~1\apps\COMPUT~1\ANTI-V~1\fsav.exe

Folder: C:\Program Files (x86)\3dd46960-4892-4ccd-9463-21b8850fdf26
Hosts:
EmptyTemp:
End

Re: vyskakování reklam

Napsal: 18 led 2015 20:15
od marty210
tady to je

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-01-2015 01
Ran by ASUS X75A at 2015-01-18 20:04:27 Run:2
Running from C:\Users\ASUS X75A\Desktop
Loaded Profiles: ASUS X75A (Available profiles: ASUS X75A)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\...\RunOnce: [SeznamInstall-uninstall:358f0d583f4b2d70c1a1a5b93caceb1e] => C:\Users\ASUS X75A\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [534528 2015-01-18] () <===== ATTENTION

R4 F-Secure HIPS; \??\C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\HIPS\drivers\fshs.sys [X]
R4 fsvista; \??\C:\Program Files (x86)\CompCare Internet Security\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [X]

2015-01-18 14:54 - 2015-01-18 14:58 - 00030858 _____ () C:\Users\ASUS X75A\Desktop\Addition.txt
2015-01-18 14:49 - 2015-01-18 16:50 - 00016373 _____ () C:\Users\ASUS X75A\Desktop\FRST.txt
2015-01-18 14:46 - 2015-01-18 14:46 - 00000359 _____ () C:\Users\ASUS X75A\AppData\Roaming\sp_data.sys
2015-01-18 13:54 - 2015-01-18 13:56 - 00024856 _____ () C:\Users\ASUS X75A\Downloads\Addition.txt
2015-01-17 15:12 - 2015-01-17 15:12 - 00013511 _____ () C:\Users\ASUS X75A\Documents\hijackthis.log
2015-01-17 15:09 - 2015-01-17 15:11 - 00013511 _____ () C:\Users\ASUS X75A\Downloads\hijackthis.log
2015-01-17 15:08 - 2015-01-17 15:08 - 00388608 _____ (Trend Micro Inc.) C:\Users\ASUS X75A\Downloads\hijackthis.exe
2015-01-17 13:56 - 2015-01-17 13:58 - 01189700 _____ () C:\Users\ASUS X75A\Downloads\RSITx64(1).exe
2015-01-17 13:07 - 2015-01-17 13:07 - 00684612 _____ (Swearware) C:\Users\ASUS X75A\Downloads\dds.exe
2015-01-17 13:07 - 2015-01-17 13:07 - 00681692 _____ (Swearware) C:\Users\ASUS X75A\Downloads\dds(2).exe
2015-01-17 13:07 - 2015-01-17 13:07 - 00658332 _____ (Swearware) C:\Users\ASUS X75A\Downloads\dds(1).exe
2015-01-13 11:55 - 2015-01-13 11:56 - 00110647 _____ (forum.viry.cz) C:\Users\ASUS X75A\Downloads\VerzeOS.exe
2015-01-13 02:57 - 2015-01-13 02:57 - 01090448 _____ () C:\Users\ASUS X75A\Downloads\RSIT(1).exe
2015-01-13 02:57 - 2015-01-13 02:57 - 01071468 _____ () C:\Users\ASUS X75A\Downloads\RSIT.exe
2015-01-13 02:56 - 2015-01-13 02:56 - 01160996 _____ () C:\Users\ASUS X75A\Downloads\RSITx64.exe
2015-01-13 02:55 - 2015-01-13 02:55 - 00109720 _____ () C:\Users\ASUS X75A\Downloads\FRSTLauncher.exe
2015-01-13 02:52 - 2015-01-13 02:52 - 00111180 _____ () C:\Users\ASUS X75A\Desktop\FRSTLaunchr.exe
2015-01-05 13:33 - 2015-01-06 02:22 - 00000000 ____D () C:\Users\ASUS X75A\AppData\Local\23263
2015-01-18 16:45 - 2013-07-18 17:21 - 00000000 ____D () C:\Program Files (x86)\CompCare Internet Security
2015-01-18 16:45 - 2013-07-18 17:19 - 00000000 ____D () C:\ProgramData\F-Secure

Task: {31906085-A0C6-4586-92E9-61295E6D52BA} - System32\Tasks\Scheduled scanning task => C:\PROGRA~2\COMPCA~1\apps\COMPUT~1\ANTI-V~1\fsav.exe
Task: {4AB62B43-CC24-4949-BD5D-5FEC15E811B4} - System32\Tasks\{992A18ED-F5AD-4D75-B64E-854220E98994} => pcalua.exe -a "C:\Users\ASUS X75A\Downloads\FreemakeVideoConverterSetup(1).exe" -d "C:\Users\ASUS X75A\Downloads"
Task: {7346B115-5BF0-42DE-B22A-7D261B6C76C1} - System32\Tasks\{AA932BF8-B977-4FB0-8C80-A8E95339770E} => pcalua.exe -a "C:\Users\ASUS X75A\Downloads\jxpiinstall(2).exe" -d "C:\Users\ASUS X75A\Downloads"
Task: C:\Windows\Tasks\Scheduled scanning task.job => C:\PROGRA~2\COMPCA~1\apps\COMPUT~1\ANTI-V~1\fsav.exe

Folder: C:\Program Files (x86)\3dd46960-4892-4ccd-9463-21b8850fdf26
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-2743304896-2029139293-3538452155-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\SeznamInstall-uninstall:358f0d583f4b2d70c1a1a5b93caceb1e => value deleted successfully.
F-Secure HIPS => Unable to stop service
F-Secure HIPS => Service deleted successfully.
fsvista => Unable to stop service
fsvista => Service deleted successfully.
C:\Users\ASUS X75A\Desktop\Addition.txt => Moved successfully.
C:\Users\ASUS X75A\Desktop\FRST.txt => Moved successfully.
C:\Users\ASUS X75A\AppData\Roaming\sp_data.sys => Moved successfully.
C:\Users\ASUS X75A\Downloads\Addition.txt => Moved successfully.
C:\Users\ASUS X75A\Documents\hijackthis.log => Moved successfully.
C:\Users\ASUS X75A\Downloads\hijackthis.log => Moved successfully.
C:\Users\ASUS X75A\Downloads\hijackthis.exe => Moved successfully.
C:\Users\ASUS X75A\Downloads\RSITx64(1).exe => Moved successfully.
C:\Users\ASUS X75A\Downloads\dds.exe => Moved successfully.
C:\Users\ASUS X75A\Downloads\dds(2).exe => Moved successfully.
C:\Users\ASUS X75A\Downloads\dds(1).exe => Moved successfully.
C:\Users\ASUS X75A\Downloads\VerzeOS.exe => Moved successfully.
C:\Users\ASUS X75A\Downloads\RSIT(1).exe => Moved successfully.
C:\Users\ASUS X75A\Downloads\RSIT.exe => Moved successfully.
C:\Users\ASUS X75A\Downloads\RSITx64.exe => Moved successfully.
C:\Users\ASUS X75A\Downloads\FRSTLauncher.exe => Moved successfully.
"C:\Users\ASUS X75A\Desktop\FRSTLaunchr.exe" => File/Directory not found.
C:\Users\ASUS X75A\AppData\Local\23263 => Moved successfully.
C:\Program Files (x86)\CompCare Internet Security => Moved successfully.
C:\ProgramData\F-Secure => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{31906085-A0C6-4586-92E9-61295E6D52BA}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{31906085-A0C6-4586-92E9-61295E6D52BA}" => Key deleted successfully.
C:\Windows\System32\Tasks\Scheduled scanning task => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled scanning task" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4AB62B43-CC24-4949-BD5D-5FEC15E811B4}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4AB62B43-CC24-4949-BD5D-5FEC15E811B4}" => Key deleted successfully.
C:\Windows\System32\Tasks\{992A18ED-F5AD-4D75-B64E-854220E98994} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{992A18ED-F5AD-4D75-B64E-854220E98994}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7346B115-5BF0-42DE-B22A-7D261B6C76C1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7346B115-5BF0-42DE-B22A-7D261B6C76C1}" => Key deleted successfully.
C:\Windows\System32\Tasks\{AA932BF8-B977-4FB0-8C80-A8E95339770E} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{AA932BF8-B977-4FB0-8C80-A8E95339770E}" => Key deleted successfully.
C:\Windows\Tasks\Scheduled scanning task.job => Moved successfully.

========================= Folder: C:\Program Files (x86)\3dd46960-4892-4ccd-9463-21b8850fdf26 ========================


====== End of Folder: ======

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 144.4 MB temporary data.


The system needed a reboot.

==== End of Fixlog 20:05:05 ====

Re: vyskakování reklam

Napsal: 18 led 2015 20:20
od altrok
Otestujte poradne PC a dejte vedet, zda jsou jeste nejake problemy :)

Re: vyskakování reklam

Napsal: 18 led 2015 20:47
od marty210
ted mi jen eset vyhazuje tuhle hrozbu, jinak zatím bez obtíží

C:\FRST\Quarantine\C\AdwCleaner\Quarantine\C\Program Files (x86)\Internet Speed Checker\ff56bca6-7345-480e-9f7d-7100a9988219.xpi.vir » ZIP » extensionData/plugins/91.js - JS/Toolbar.Crossrider.B potenciálně nechtěná aplikace - výběr akce byl odložen na konec kontroly počítače

Re: vyskakování reklam

Napsal: 18 led 2015 20:52
od altrok
Quarantine = karantena... nalez je v karantene -> neskodny

Pokud s PC nebudou zadne problemy, smazeme pouzite nastroje, cimz zmizi i tato polozka... ale jeste testujte :D
Všechny časy jsou v UTC+01:00
Stránka 2 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz