VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

policia sr

https://forum.viry.cz:443/viewtopic.php?t=133161

Stránka 1 z 1

policia sr

Napsal: 03 říj 2013 14:34
od martinsos
ahojte po restarte pc mi nabehol tento virus nejde spustit ani safe mode (pc sa zapne normalne aj tak) hned po nabehnuti plochy naskoci obrazovka virusu nic sa neda robit nepusti ma to ani do spravcu procesov , konkretne tento typ pyta 100e

je nejaka moznost okrem reinstalu winu?

Re: policia sr

Napsal: 03 říj 2013 15:27
od martinsos
Podarilo sa mi dostať do nudzoveho režimu spravil som čistku s hitmanom a aj malware. Zatial to už nenaskakuje , čo mám ešte porobiť?


Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Verzia databázy: v2013.10.03.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Martin :: MARTIN-PC [administrátor]

Ochrana: Vypnuté

3. 10. 2013 16:18:48
mbam-log-2013-10-03 (16-18-48).txt

Typ kontroly: Rýchla kontrola
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 235111
Uplynutý čas: 6 min, 1 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 0
(Škodlivé položky neboli zistené)

Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 0
(Škodlivé položky neboli zistené)

Detegované súbory: 1
C:\Users\Martin\AppData\Local\Temp\tpljvafiffkugohpsph.bfg (Trojan.Winlock.NR) -> Pridanie do karantény a zmazanie úspešné.

(koniec)

Re: policia sr

Napsal: 03 říj 2013 21:25
od vyosek
Zdravim :)

:arrow: Poprosim o log z FRSTL http://forum.viry.cz/viewtopic.php?f=13&t=133100

Re: policia sr

Napsal: 04 říj 2013 07:12
od martinsos
Ahoj , díky jednalo sa o tú novšiu verziu s prezidentom :) Najprv ma to nechelo pustiť ani do safe mode , no potom ma to na x krat pustilo ,stiahol som a spustil ten hitman with kickstarter ,našlo mi to nejaké veci , vymazal som a od vtedy je pc v pohode, no neviem či niečo po tom víre v PC neostalo , tak posielam log.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by Martin (administrator) on MARTIN-PC on 04-10-2013 08:02:43
Running from C:\Users\Martin\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(MSI CO.,LTD.) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7233640 2011-06-24] (Realtek Semiconductor)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2185032 2009-10-19] (CANON INC.)
HKLM\...\Run: [CanonSolutionMenu] - C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [767312 2009-09-04] (CANON INC.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-07-27] (NVIDIA Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)
HKCU\...\Run: [Google Update] - C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-05-13] (Google Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [Super-Charger] - C:\Program Files (x86)\MSI\Super-Charger\StartSuperCharger.exe [303104 2011-01-25] (TODO: <Company name>)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-09-17] (Apple Inc.)
AppInit_DLLs: C:\PROGRA~1\NVIDIA~1\NVSTRE~1\rxinput.dll [653600 2013-07-27] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\PROGRA~2\NVIDIA~1\NVSTRE~1\rxinput.dll [593696 2013-07-27] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP =
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 85.237.225.250 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\dsn6dm7q.default-1340042378436
FF NetworkProxy: "backup.ftp", ""
FF NetworkProxy: "backup.ftp_port", 0
FF NetworkProxy: "backup.socks", ""
FF NetworkProxy: "backup.socks_port", 1
FF NetworkProxy: "backup.ssl", ""
FF NetworkProxy: "backup.ssl_port", 0
FF NetworkProxy: "ftp", "194.30.144.10"
FF NetworkProxy: "ftp_port", 80
FF NetworkProxy: "gopher", "194.30.144.10"
FF NetworkProxy: "gopher_port", 80
FF NetworkProxy: "http", "194.30.144.10"
FF NetworkProxy: "http_port", 80
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "194.30.144.10"
FF NetworkProxy: "socks_port", 80
FF NetworkProxy: "ssl", "194.30.144.10"
FF NetworkProxy: "ssl_port", 80
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @live.heroesandgenerals.com/npretox - C:\Program Files (x86)\Heroes & Generals\live\npretoxlive.dll (Reto-Moto ApS)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Martin\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Martin\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Martin\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Games\trials\datapack\orbit\npuplaypc.dll (Ubisoft)
FF Plugin HKCU: http://www.floatingminds.com/Tunnelers - C:\Games\Tunnelers\npTunnelers.dll No File
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: google - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\dsn6dm7q.default-1340042378436\Extensions\google@hitachi.com.xpi
FF Extension: olddefaultimagestyle - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\dsn6dm7q.default-1340042378436\Extensions\olddefaultimagestyle@dagger2-addons.mozilla.org.xpi
FF Extension: No Name - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\dsn6dm7q.default-1340042378436\Extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi
FF Extension: No Name - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\dsn6dm7q.default-1340042378436\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi
FF Extension: No Name - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\dsn6dm7q.default-1340042378436\Extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi
FF Extension: No Name - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\dsn6dm7q.default-1340042378436\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
S4 Guard.Mail.ru; C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe [1564368 2012-01-14] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14984480 2013-07-27] (NVIDIA Corporation)
R2 OMSI download service; C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [90112 2009-04-30] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-04-13] ()

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-06-28] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-06-28] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-06-28] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-04-12] (DT Soft Ltd)
R3 ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [32512 2013-10-03] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39712 2013-05-14] (NVIDIA Corporation)
S3 RivaTuner64; C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [19952 2012-01-01] ()
S3 RivaTuner64; C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [19952 2012-01-01] ()
S3 s1039bus; C:\Windows\System32\DRIVERS\s1039bus.sys [127600 2010-03-15] (MCCI Corporation)
S3 s1039mdfl; C:\Windows\System32\DRIVERS\s1039mdfl.sys [19568 2010-03-15] (MCCI Corporation)
S3 s1039mdm; C:\Windows\System32\DRIVERS\s1039mdm.sys [161904 2010-03-15] (MCCI Corporation)
S3 s1039mgmt; C:\Windows\System32\DRIVERS\s1039mgmt.sys [141424 2010-03-15] (MCCI Corporation)
S3 s1039nd5; C:\Windows\System32\DRIVERS\s1039nd5.sys [34416 2010-03-15] (MCCI Corporation)
S3 s1039obex; C:\Windows\System32\DRIVERS\s1039obex.sys [137328 2010-03-15] (MCCI Corporation)
S3 s1039unic; C:\Windows\System32\DRIVERS\s1039unic.sys [158320 2010-03-15] (MCCI Corporation)
R1 VD_FileDisk; C:\Windows\System32\Drivers\VD_FileDisk.sys [30312 2011-01-26] (CaptainFlint Software)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-04 08:02 - 2013-10-04 08:02 - 00000000 ____D C:\FRST
2013-10-04 08:01 - 2013-10-04 08:01 - 00112128 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
2013-10-04 07:53 - 2013-10-04 07:53 - 01954124 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2013-10-04 07:10 - 2013-10-04 07:54 - 133921577 _____ C:\Users\Martin\Downloads\8081.rar
2013-10-03 21:00 - 2013-10-03 21:00 - 48130994 _____ C:\Users\Martin\Desktop\t-55 in serbian service article.rar
2013-10-03 20:59 - 2013-10-03 21:00 - 14934677 _____ C:\Users\Martin\Desktop\Type 2 Ka Mi article.rar
2013-10-03 20:59 - 2013-10-03 20:59 - 21472646 _____ C:\Users\Martin\Desktop\Tiger I initial article.rar
2013-10-03 17:34 - 2013-10-03 17:34 - 00448512 _____ (OldTimer Tools) C:\Users\Martin\Downloads\TFC.exe
2013-10-03 17:15 - 2013-10-03 17:15 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-03 17:14 - 2013-10-03 17:14 - 04369632 _____ (Piriform Ltd) C:\Users\Martin\Downloads\ccsetup406.exe
2013-10-03 16:08 - 2013-10-03 16:08 - 00003440 _____ C:\Windows\system32\.crusader
2013-10-03 16:02 - 2013-10-03 16:10 - 00032512 _____ C:\Windows\system32\Drivers\hitmanpro37.sys
2013-10-03 15:59 - 2013-10-03 16:08 - 00000000 ____D C:\ProgramData\HitmanPro
2013-10-03 15:58 - 2013-10-03 15:59 - 09879648 _____ (SurfRight B.V.) C:\Users\Martin\Downloads\HitmanPro_x64.exe
2013-10-03 15:22 - 2013-10-03 15:22 - 00016196 ____T C:\ProgramData\gbq.exe
2013-10-03 15:02 - 2013-10-03 15:54 - 95025368 ____T C:\ProgramData\retr2mq.pff
2013-10-03 15:02 - 2013-10-03 15:46 - 00000000 _____ C:\ProgramData\retr2mq.ctrl
2013-10-01 07:49 - 2013-10-01 07:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-29 08:14 - 2013-10-03 21:07 - 00000000 ____D C:\Users\Martin\Desktop\Type 2 Ka Mi article
2013-09-29 08:13 - 2013-10-03 21:14 - 00000000 ____D C:\Users\Martin\Desktop\Tiger I initial article
2013-09-29 08:10 - 2013-10-03 21:08 - 00000000 ____D C:\Users\Martin\Desktop\t-55 in serbian service article
2013-09-27 17:07 - 2013-09-27 17:08 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-09-27 17:07 - 2013-09-27 17:08 - 00000000 ____D C:\Program Files\iTunes
2013-09-27 17:07 - 2013-09-27 17:08 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-09-27 17:07 - 2013-09-27 17:07 - 00000000 ____D C:\Program Files\iPod
2013-09-27 17:04 - 2013-09-27 17:04 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-09-22 07:13 - 2013-09-22 07:48 - 00000000 ____D C:\Users\Martin\Desktop\Death Sentence - Soundtrack - 2007
2013-09-22 07:10 - 2013-09-22 07:10 - 00020996 _____ C:\Users\Martin\Downloads\[torrent.cd].[OST]_Death_Sentence_(2007).torrent
2013-09-22 07:10 - 2013-09-22 07:10 - 00015751 _____ C:\Users\Martin\Downloads\[kickass.to]death.sentence.soundtrack.torrent
2013-09-22 07:01 - 2013-09-22 07:04 - 59468473 _____ C:\Users\Martin\Downloads\OST-Death-Sentence---Soundtrack.rar
2013-09-15 19:46 - 2013-09-15 19:50 - 1801151653 _____ C:\Users\Martin\Documents\Firefox 23.0.1 (sk) - 2013-09-15.pcv
2013-09-15 19:36 - 2013-10-01 12:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-15 19:35 - 2013-09-15 19:35 - 22948136 _____ (Mozilla) C:\Users\Martin\Desktop\Firefox Setup 23.0.1.exe
2013-09-15 06:54 - 2013-09-15 06:54 - 00000000 ____D C:\Users\Martin\Desktop\hummwv
2013-09-13 11:04 - 2013-09-13 11:04 - 00001233 _____ C:\Users\Martin\Desktop\WorldOfWarplanes - odkaz.lnk
2013-09-10 13:54 - 2013-09-10 13:54 - 00000000 ____D C:\Users\Martin\Desktop\2013_09_10
2013-09-09 20:39 - 2013-09-11 09:40 - 00000000 ____D C:\Users\Martin\Desktop\T 90
2013-09-09 07:29 - 2013-09-09 07:29 - 00000905 _____ C:\Users\Public\Desktop\AIMP3.lnk
2013-09-07 06:39 - 2013-09-07 06:39 - 00000000 ____D C:\Users\Martin\Desktop\Modely predane na ebay
2013-09-04 08:53 - 2013-09-04 08:53 - 00001414 _____ C:\Users\Martin\Desktop\Rome2 - odkaz.lnk
2013-09-04 07:36 - 2013-09-04 07:53 - 00000000 ____D C:\Users\Martin\Downloads\Total War Rome II
2013-09-04 07:35 - 2013-09-04 07:35 - 00020138 _____ C:\Users\Martin\Downloads\[CzT]Total_War_Rome_II_DLC_2013_CZ_.torrent
2013-09-04 07:31 - 2013-09-04 07:31 - 00000000 ____D C:\Users\Martin\Downloads\Total.War.ROME.II-RELOADED

==================== One Month Modified Files and Folders =======

2013-10-04 08:02 - 2013-10-04 08:02 - 00000000 ____D C:\FRST
2013-10-04 08:02 - 2013-05-20 12:47 - 00000950 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000UA.job
2013-10-04 08:01 - 2013-10-04 08:01 - 00112128 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
2013-10-04 07:54 - 2013-10-04 07:10 - 133921577 _____ C:\Users\Martin\Downloads\8081.rar
2013-10-04 07:53 - 2013-10-04 07:53 - 01954124 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2013-10-04 07:43 - 2013-05-13 12:28 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-04 07:43 - 2013-05-13 12:28 - 00000932 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-04 07:38 - 2011-12-22 09:59 - 00003932 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-04 07:38 - 2011-12-22 09:59 - 00003680 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-04 07:18 - 2013-04-14 09:03 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-04 07:08 - 2009-07-14 06:45 - 00017136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-04 07:08 - 2009-07-14 06:45 - 00017136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-04 07:05 - 2009-07-14 07:13 - 00779034 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-04 07:04 - 2011-12-17 18:26 - 01953120 _____ C:\Windows\WindowsUpdate.log
2013-10-04 07:01 - 2013-03-03 09:31 - 00029472 _____ C:\Windows\setupact.log
2013-10-04 07:00 - 2011-12-17 18:37 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-04 07:00 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-03 21:14 - 2013-09-29 08:13 - 00000000 ____D C:\Users\Martin\Desktop\Tiger I initial article
2013-10-03 21:08 - 2013-09-29 08:10 - 00000000 ____D C:\Users\Martin\Desktop\t-55 in serbian service article
2013-10-03 21:07 - 2013-09-29 08:14 - 00000000 ____D C:\Users\Martin\Desktop\Type 2 Ka Mi article
2013-10-03 21:00 - 2013-10-03 21:00 - 48130994 _____ C:\Users\Martin\Desktop\t-55 in serbian service article.rar
2013-10-03 21:00 - 2013-10-03 20:59 - 14934677 _____ C:\Users\Martin\Desktop\Type 2 Ka Mi article.rar
2013-10-03 20:59 - 2013-10-03 20:59 - 21472646 _____ C:\Users\Martin\Desktop\Tiger I initial article.rar
2013-10-03 17:47 - 2013-03-18 14:22 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-10-03 17:34 - 2013-10-03 17:34 - 00448512 _____ (OldTimer Tools) C:\Users\Martin\Downloads\TFC.exe
2013-10-03 17:31 - 2009-07-14 07:08 - 00032596 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-03 17:15 - 2013-10-03 17:15 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-03 17:15 - 2011-12-28 09:45 - 00000000 ____D C:\Program Files\CCleaner
2013-10-03 17:14 - 2013-10-03 17:14 - 04369632 _____ (Piriform Ltd) C:\Users\Martin\Downloads\ccsetup406.exe
2013-10-03 16:28 - 2013-03-08 09:03 - 00009014 _____ C:\Windows\PFRO.log
2013-10-03 16:10 - 2013-10-03 16:02 - 00032512 _____ C:\Windows\system32\Drivers\hitmanpro37.sys
2013-10-03 16:08 - 2013-10-03 16:08 - 00003440 _____ C:\Windows\system32\.crusader
2013-10-03 16:08 - 2013-10-03 15:59 - 00000000 ____D C:\ProgramData\HitmanPro
2013-10-03 16:08 - 2013-08-10 12:14 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rise Of The Reds Beta 1.8
2013-10-03 16:08 - 2013-04-20 15:50 - 00000000 ____D C:\Users\Martin\Downloads\Pressure R
2013-10-03 16:08 - 2011-12-17 18:28 - 00000000 ___RD C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-03 15:59 - 2013-10-03 15:58 - 09879648 _____ (SurfRight B.V.) C:\Users\Martin\Downloads\HitmanPro_x64.exe
2013-10-03 15:54 - 2013-10-03 15:02 - 95025368 ____T C:\ProgramData\retr2mq.pff
2013-10-03 15:46 - 2013-10-03 15:02 - 00000000 _____ C:\ProgramData\retr2mq.ctrl
2013-10-03 15:22 - 2013-10-03 15:22 - 00016196 ____T C:\ProgramData\gbq.exe
2013-10-03 15:18 - 2013-03-11 20:49 - 00000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2013-10-02 09:02 - 2013-05-20 12:47 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000Core.job
2013-10-01 12:48 - 2013-09-15 19:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-01 07:50 - 2011-12-17 19:27 - 00000000 ____D C:\Users\Martin\AppData\Local\Mozilla
2013-10-01 07:49 - 2013-10-01 07:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-30 15:13 - 2013-08-15 18:40 - 00000000 ____D C:\Users\Martin\Desktop\m 22 locust
2013-09-27 19:17 - 2011-12-17 19:37 - 00000000 ___RD C:\Users\Martin\Desktop\modely
2013-09-27 17:11 - 2013-04-26 16:52 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-09-27 17:10 - 2013-04-26 16:54 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Apple Computer
2013-09-27 17:08 - 2013-09-27 17:07 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-09-27 17:08 - 2013-09-27 17:07 - 00000000 ____D C:\Program Files\iTunes
2013-09-27 17:08 - 2013-09-27 17:07 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-09-27 17:08 - 2013-04-26 16:53 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-09-27 17:07 - 2013-09-27 17:07 - 00000000 ____D C:\Program Files\iPod
2013-09-27 17:06 - 2011-12-17 18:44 - 00000000 ___RD C:\Users\Martin\Desktop\Programy
2013-09-27 17:04 - 2013-09-27 17:04 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-09-26 18:03 - 2011-12-17 19:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Mozilla
2013-09-26 15:22 - 2012-05-03 17:50 - 00000000 ___RD C:\Users\Martin\Desktop\Hry
2013-09-22 07:55 - 2013-02-25 14:24 - 00000000 ____D C:\Users\Martin\AppData\Roaming\AIMP3
2013-09-22 07:51 - 2011-12-17 19:29 - 00000000 ____D C:\Users\Martin\AppData\Roaming\uTorrent
2013-09-22 07:48 - 2013-09-22 07:13 - 00000000 ____D C:\Users\Martin\Desktop\Death Sentence - Soundtrack - 2007
2013-09-22 07:10 - 2013-09-22 07:10 - 00020996 _____ C:\Users\Martin\Downloads\[torrent.cd].[OST]_Death_Sentence_(2007).torrent
2013-09-22 07:10 - 2013-09-22 07:10 - 00015751 _____ C:\Users\Martin\Downloads\[kickass.to]death.sentence.soundtrack.torrent
2013-09-22 07:04 - 2013-09-22 07:01 - 59468473 _____ C:\Users\Martin\Downloads\OST-Death-Sentence---Soundtrack.rar
2013-09-19 05:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-09-15 19:50 - 2013-09-15 19:46 - 1801151653 _____ C:\Users\Martin\Documents\Firefox 23.0.1 (sk) - 2013-09-15.pcv
2013-09-15 19:35 - 2013-09-15 19:35 - 22948136 _____ (Mozilla) C:\Users\Martin\Desktop\Firefox Setup 23.0.1.exe
2013-09-15 06:54 - 2013-09-15 06:54 - 00000000 ____D C:\Users\Martin\Desktop\hummwv
2013-09-13 18:08 - 2011-12-18 11:41 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2013-09-13 11:04 - 2013-09-13 11:04 - 00001233 _____ C:\Users\Martin\Desktop\WorldOfWarplanes - odkaz.lnk
2013-09-11 09:40 - 2013-09-09 20:39 - 00000000 ____D C:\Users\Martin\Desktop\T 90
2013-09-11 09:18 - 2013-03-07 21:00 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-11 09:18 - 2013-03-07 21:00 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-09-11 09:18 - 2013-02-23 17:05 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-10 13:55 - 2013-08-16 20:29 - 00000000 ____D C:\Users\Martin\Desktop\Colné konanie
2013-09-10 13:54 - 2013-09-10 13:54 - 00000000 ____D C:\Users\Martin\Desktop\2013_09_10
2013-09-10 13:52 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-09-09 07:29 - 2013-09-09 07:29 - 00000905 _____ C:\Users\Public\Desktop\AIMP3.lnk
2013-09-09 07:29 - 2013-02-25 14:24 - 00000000 ____D C:\Program Files (x86)\AIMP3
2013-09-07 06:39 - 2013-09-07 06:39 - 00000000 ____D C:\Users\Martin\Desktop\Modely predane na ebay
2013-09-04 08:53 - 2013-09-04 08:53 - 00001414 _____ C:\Users\Martin\Desktop\Rome2 - odkaz.lnk
2013-09-04 08:38 - 2011-12-17 22:44 - 00000000 ____D C:\Games
2013-09-04 07:53 - 2013-09-04 07:36 - 00000000 ____D C:\Users\Martin\Downloads\Total War Rome II
2013-09-04 07:35 - 2013-09-04 07:35 - 00020138 _____ C:\Users\Martin\Downloads\[CzT]Total_War_Rome_II_DLC_2013_CZ_.torrent
2013-09-04 07:31 - 2013-09-04 07:31 - 00000000 ____D C:\Users\Martin\Downloads\Total.War.ROME.II-RELOADED

Files to move or delete:
====================
C:\ProgramData\gbq.exe
C:\ProgramData\retr2mq.ctrl
C:\ProgramData\retr2mq.pff


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-03 12:35




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:931.41 GB) (Free:109.49 GB) NTFS
Drive e: (RAYMAN_LEGENDS) (CDROM) (Total:5.65 GB) (Free:0 GB) CDFS

Available physical RAM: 5915.59 MB
Total physical RAM: 8162.05 MB
Percentage of memory in use: 27%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: F8EB21A7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000Core.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000UA.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 28_09_2013 (06)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Martin\Desktop" je 37545 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Re: policia sr

Napsal: 04 říj 2013 07:13
od martinsos
A ešte ten druhý addition

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-10-2013
Ran by Martin at 2013-10-04 08:03:04
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

µTorrent (x32 Version: 3.1.3)
0 A.D. (HKCU Version: r13332-alpha)
3DMark 11 (x32 Version: 1.0.3)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
ACFanControl v0.72
Adobe AIR (x32 Version: 3.7.0.1530)
Adobe Community Help (x32 Version: 3.4.980)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.168)
Adobe Photoshop CS5.1 (x32 Version: 12.1)
Adobe Reader X (10.1.7) - Czech (x32 Version: 10.1.7)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.0.112)
Adobe Story (x32 Version: 1.0.571)
aerofly FS (x32 Version: 1.0.0.1)
Age of Empires II HD (c) Microsoft Studios version 1 (x32 Version: 1)
Age of Empires III (x32 Version: 1.00.0000)
Age of Mythology Gold Edition 1.00 (x32)
AIMP3 (x32 Version: v3.51.1288, 07.08.2013)
AirportMadness4 (x32 Version: 1.01)
Aktualizácie NVIDIA 7.2.17 (Version: 7.2.17)
Alien Spidy (x32)
Angry Birds Rio (x32 Version: 1.1.0)
Angry Birds Space (x32 Version: 1.0.0)
Any Video Converter 3.3.9 (x32)
Apple Application Support (x32 Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (x32 Version: 2.1.3.127)
Armády Exiga (x32 Version: 1.00.0000)
Assassin's Creed (R) III (x32 Version: 1.01)
Assassin's Creed Revelations (x32 Version: 1.01)
Auslogics Disk Defrag (x32 Version: version 3.4)
avast! Free Antivirus (x32 Version: 8.0.1489.0)
Bad Piggies (x32 Version: 1.0.0)
Ballance (x32)
BioShock Infinite (x32)
Bitcoin (HKCU Version: 0.8.1)
Bonjour (Version: 3.0.0.10)
Call of Duty Black Ops 2 (x32 Version: 1.0)
Call of Duty Modern Warfare 2 (x32)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.7)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: 1.6)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32)
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: 1.7)
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32)
Call of Juarez Gunslinger (c) Ubisoft version 1 (x32 Version: 1)
Canon Easy-WebPrint EX (x32)
Canon MP Navigator EX 3.0 (x32)
Canon MP250 series MP Drivers
Canon MP250 series User Registration (x32)
Canon Utilities CameraWindow DC 8 (x32 Version: 8.3.0.6)
Canon Utilities CameraWindow Launcher (x32 Version: 7.5.0.2)
Canon Utilities Easy-PhotoPrint EX (x32)
Canon Utilities My Printer (x32)
Canon Utilities MyCamera (x32 Version: 7.4.0.2)
Canon Utilities Solution Menu (x32)
Canon Utilities ZoomBrowser EX (x32 Version: 6.6.0.23)
Canon ZoomBrowser EX Memory Card Utility (x32 Version: 1.4.0.4)
CCleaner (Version: 4.06)
Citadels (x32)
Cities XL 2012 (x32 Version: 1.0.0)
CloneCD (x32)
Command & Conquer 3 (x32 Version: 1.00.0000)
Command & Conquer Generals (x32 Version: 0.50.0000)
Command & Conquer™ Red Alert™ 3 (x32 Version: 1.0.1.0)
Command & Conquer™ Red Alert™ 3 Uprising (x32 Version: 1.0.1.0)
Command and ConquerTM Generals Zero Hour (x32 Version: 1.00.0000)
Company of Heroes (x32 Version: 1.0.0.78)
Company of Heroes 2 (x32 Version: 1)
Core Temp 1.0 RC2 (Version: 1.0)
CPUID HWMonitor 1.18
Crysis(R) (x32 Version: 1.21.0000)
DAEMON Tools Lite (x32 Version: 4.45.4.0314)
Dead Island Riptide (c) Deep Silver version 1 (x32 Version: 1)
Don't Starve (x32)
DuckTales Remastered (x32 Version: 1)
Empire Earth II (x32)
Empire Earth II Gold Edition (x32)
Fairground 2 Version 1.0 (x32)
Far Cry 3 (x32 Version: 1.01)
ffdshow v1.2.4453 [2012-05-21] (x32 Version: 1.2.4453.0)
Fraps (x32)
Futuremark SystemInfo (x32 Version: 4.6.0)
Google Earth (x32 Version: 7.1.1.1888)
Google Talk Plugin (x32 Version: 4.7.0.15362)
Google Update Helper (x32 Version: 1.3.21.165)
Grand Theft Auto IV (x32 Version: 1.0.0013.131)
GRID 2 (c) Codemasters version 1 (x32 Version: 1)
GTA IV + EFLC version 1.5 (x32 Version: 1.5)
GTA San Andreas (x32 Version: 1.00.00001)
GTA2 (x32 Version: 1.00.001)
Guard.ICQ (x32)
Gunpoint (x32 Version: 2.0.0.0)
Hamsterball 3.6 (x32)
HD Tune Pro 4.01 (x32)
Heroes & Generals (x32 Version: 1.0.4.6)
High-Definition Video Playback (x32 Version: 11.1.10400.2.65)
ICQ7.7 (x32 Version: 7.7)
Inkscape 0.48.3.1 (x32 Version: 0.48.3.1)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144)
iTunes (Version: 11.1.0.126)
Java 7 Update 17 (64-bit) (Version: 7.0.170)
Java 7 Update 17 (x32 Version: 7.0.170)
Java Auto Updater (x32 Version: 2.1.9.0)
JavaFX 2.1.1 (x32 Version: 2.1.1)
K-Lite Codec Pack 8.0.0 (Full) (x32 Version: 8.0.0)
Kula World (pSX 1.13 emulation) (x32)
Malwarebytes Anti-Malware verzia 1.75.0.1300 (x32 Version: 1.75.0.1300)
Max Payne 2 (x32 Version: 1.0.97)
Max Payne 3 (x32 Version: 1.0.0.0)
Men of War (Remove Only) (x32 Version: 1.0.2.0)
Men of War: Condemned Heroes (Remove Only) (x32 Version: 1.0.0.0)
Metro: Last Light (x32)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office Access MUI (Slovak) 2007 (x32 Version: 12.0.4518.1039)
Microsoft Office Excel MUI (Slovak) 2007 (x32 Version: 12.0.4518.1039)
Microsoft Office InfoPath MUI (Slovak) 2007 (x32 Version: 12.0.4518.1039)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (Slovak) 2007 (x32 Version: 12.0.4518.1039)
Microsoft Office PowerPoint MUI (Slovak) 2007 (x32 Version: 12.0.4518.1039)
Microsoft Office Professional Plus 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proof (Czech) 2007 (x32 Version: 12.0.4518.1026)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proof (Hungarian) 2007 (x32 Version: 12.0.4518.1033)
Microsoft Office Proof (Slovak) 2007 (x32 Version: 12.0.4518.1039)
Microsoft Office Proofing (Slovak) 2007 (x32 Version: 12.0.4518.1039)
Microsoft Office Publisher MUI (Slovak) 2007 (x32 Version: 12.0.4518.1039)
Microsoft Office Shared 64-bit MUI (Slovak) 2007 (Version: 12.0.4518.1039)
Microsoft Office Shared MUI (Slovak) 2007 (x32 Version: 12.0.4518.1039)
Microsoft Office Word MUI (Slovak) 2007 (x32 Version: 12.0.4518.1039)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft XNA Framework Redistributable 4.0 Refresh (x32 Version: 4.0.30901.0)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
MozBackup 1.5.1 (x32)
Mozilla Firefox 24.0 (x86 sk) (x32 Version: 24.0)
Mozilla Maintenance Service (x32 Version: 24.0)
MSI Afterburner 1.6.0 (x32 Version: 1.6.0)
MSVCRT Redists (Version: 1.0)
MSVCRT Redists (x32 Version: 1.0)
MSXML4 Parser (x32 Version: 1.0.0)
Nero 11 (x32 Version: 11.0.15500)
Nero 11 Cliparts (x32 Version: 11.0.11200.12.0)
Nero 11 Disc Menus 1 (x32 Version: 11.0.11200.12.0)
Nero 11 Disc Menus 2 (x32 Version: 11.0.11200.12.0)
Nero 11 Disc Menus 3 (x32 Version: 11.0.11200.12.0)
Nero 11 Disc Menus Basic (x32 Version: 11.0.11200.12.0)
Nero 11 Effects Basic (x32 Version: 11.0.11200.12.0)
Nero 11 Image Samples (x32 Version: 11.0.11200.12.0)
Nero 11 Kwik Themes 1 (x32 Version: 11.0.11200.12.0)
Nero 11 Kwik Themes 2 (x32 Version: 11.0.11200.12.0)
Nero 11 Kwik Themes 3 (x32 Version: 11.0.11200.12.0)
Nero 11 Kwik Themes 4 (x32 Version: 11.0.11200.12.0)
Nero 11 Kwik Themes Basic (x32 Version: 11.0.11200.12.0)
Nero 11 PiP Effects 1 (x32 Version: 11.0.11200.12.0)
Nero 11 PiP Effects Basic (x32 Version: 11.0.11300.12.0)
Nero 11 Video Samples (x32 Version: 11.0.11200.12.0)
Nero 11 Video Transitions 1 (x32 Version: 11.0.11200.12.0)
Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0)
Nero BackItUp 11 (x32 Version: 6.0.16000.13.100)
Nero BackItUp 11 Help (CHM) (x32 Version: 11.0.10200)
Nero Backup Drivers (Version: 1.0.10000.1.0)
Nero Burning ROM 11 (x32 Version: 11.0.12200.23.100)
Nero Burning ROM 11 Help (CHM) (x32 Version: 11.0.10300)
Nero ControlCenter 11 (x32 Version: 11.0.12300.0.23)
Nero ControlCenter 11 Help (CHM) (x32 Version: 11.0.10300)
Nero Core Components 11 (x32 Version: 11.0.15000.1.12)
Nero CoverDesigner 11 (x32 Version: 6.0.10800.11.100)
Nero CoverDesigner 11 Help (CHM) (x32 Version: 11.0.10300)
Nero Express 11 (x32 Version: 11.0.11700.23.100)
Nero Express 11 Help (CHM) (x32 Version: 11.0.10300)
Nero Kwik Media (x32 Version: 1.10.19300.93.100)
Nero Kwik Media Help (CHM) (x32 Version: 11.0.10200)
Nero Recode 11 (x32 Version: 5.0.13300.32.100)
Nero Recode 11 Help (CHM) (x32 Version: 11.0.10300)
Nero RescueAgent 11 (x32 Version: 4.0.10600.10.100)
Nero RescueAgent 11 Help (CHM) (x32 Version: 11.0.10400)
Nero SoundTrax 11 (x32 Version: 5.0.10400.4.100)
Nero SoundTrax 11 Help (CHM) (x32 Version: 11.0.10400)
Nero Update (x32 Version: 11.0.10623.22.0)
Nero Video 11 (x32 Version: 8.0.14000.21.100)
Nero Video 11 Help (CHM) (x32 Version: 11.0.10300)
Nero WaveEditor 11 (x32 Version: 6.0.10800.5.100)
Nero WaveEditor 11 Help (CHM) (x32 Version: 11.0.10400)
nero.prerequisites.msi (x32 Version: 11.0.20007)
NVIDIA 3D Vision radič ovládača 320.49 (Version: 320.49)
NVIDIA GeForce Experience 1.6 (Version: 1.6)
NVIDIA Grafický ovládač 320.49 (Version: 320.49)
NVIDIA Install Application (Version: 2.1002.131.854)
NVIDIA Ovládač 3D Vision 320.49 (Version: 320.49)
NVIDIA Ovládač zvuku HD 1.3.24.2 (Version: 1.3.24.2)
NVIDIA PhysX (x32 Version: 9.13.0604)
NVIDIA Softvér systému s podporou technológie PhysX 9.13.0604 (Version: 9.13.0604)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.2049)
NVIDIA Update Components (Version: 7.2.17)
NVIDIA Virtual Audio 1.2.1 (Version: 1.2.1)
OCCT 4.4.0 (x32 Version: 4.4.0)
OLYMP 12.01.00 (x32 Version: 12.01.00)
OMEGA 15.01.00 (x32 Version: 15.01.00)
OpenAL (x32)
Opera 12.16 (x32 Version: 12.16.1860)
Ovládací panel NVIDIA 320.49 (Version: 320.49)
Ovladače videa společnosti Pinnacle (Version: 12.1.0.030)
Path of Exile (x32 Version: 0.10.0.22571)
PDF Settings CS5 (x32 Version: 10.0)
Pinnacle Studio 15 (x32 Version: 15.0.0.7593)
Port Royale 3 (x32 Version: 1.0.0.0)
Pressure (x32)
PunkBuster Services (x32 Version: 0.991)
PxMergeModule (x32 Version: 1.00.0000)
QuickTime (x32 Version: 7.74.80.86)
Rayman Legends (x32 Version: 1)
Rayman Origins (x32 Version: 1.00)
RCT3 - Custom Scenery and CTR Installer (x32)
Realtek Ethernet Controller Driver (x32 Version: 7.46.610.2011)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6402)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.34.0)
Reus (x32 Version: 2.0.0.10)
Revo Uninstaller 1.94 (x32 Version: 1.94)
RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition (x32 Version: v2.24 MSI Master Overclocking Arena 2009 edition)
Rockstar Games Social Club (x32 Version: 1.0.9.5)
RollerCoaster Tycoon 3 Platinum (x32 Version: 1.00.000)
ROTR ECA Beta 1.8 (HKCU)
SeaTools for Windows (x32 Version: 1.2.0.7)
Shank 2 (x32 Version: 1.0.0.0)
SHIELD Streaming (Version: 1.05.19)
Skype™ 6.3 (x32 Version: 6.3.105)
SniperGhostWarrior2 version 3.4.1.4621 (x32 Version: 3.4.1.4621)
Sony Ericsson PC Suite 6.011.00 (x32 Version: 6.011.00)
Sony Ericsson Update Engine (x32 Version: 2.12.8.23)
Sony PC Companion 2.10.136 (x32 Version: 2.10.136)
SpeedFan (remove only) (x32)
Spin Tires (x32 Version: 1.0.1)
StarCraft II (x32 Version: 1.0.0.16117)
Street Fighter X Tekken (x32 Version: 1.0.0.0)
Super-Charger (x32)
swMSM (x32 Version: 12.0.0.1)
TeamSpeak 3 Client (x32)
The Walking Dead Survival Instinct (c) Activision version 1 (x32 Version: 1)
Thunder Wolves version 1 (x32 Version: 1)
Tombraider (x32)
Total Commander Ultima Prime 5.6.0.0 (x32 Version: 5.6.0.0)
Total War Rome II CZ version 1.0.0. (x32 Version: 1.0.0.)
Toxic Bunny HD 1.1.0.2 (x32)
Tropico 4 1.00 (HKCU Version: 1.00)
Tunnelers (HKCU Version: 1.0.0)
Uplay (x32 Version: 2.0)
Vegas Pro 11.0 (x32 Version: 11.0.370)
VLC media player 2.0.5 (x32 Version: 2.0.5)
War Thunder Launcher 1.0.1.143 (x32)
Wargame AirLand Battle (c) Focus Home Interactive version RLD! (x32 Version: RLD!)
welcome (x32 Version: 11.0.21500.0.4)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8)
Windows Movie Maker 2.6 (x32 Version: 2.6.4037.0)
WinRAR archiver (x32)
World in Conflict (x32 Version: 1.0.0.0)
World of Tanks v.0.7.1 (x32)
World of Warcraft (x32 Version: 3.2.2.10505)
World of Warplanes (x32)
Worms Clan Wars (x32)
Ynor9's Control Room 1.0.0 (x32 Version: 1.0.0)
Yu-Gi-Oh! Power of Chaos KAIBA THE REVENGE (x32 Version: 1.00.0000)
Yu-Gi-Oh! Power of Chaos YUGI THE DESTINY (x32 Version: 1.00.0000)

==================== Restore Points =========================

19-09-2013 04:51:36 Plánovaný kontrolný bod
26-09-2013 13:50:59 Plánovaný kontrolný bod

==================== Hosts content: ==========================

2013-03-11 21:08 - 2011-04-24 23:58 - 00001211 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 3dns.adobe.com 3dns-1.adobe.com 3dns-2.adobe.com 3dns-3.adobe.com 3dns-4.adobe.com activate.adobe.com activate-sea.adobe.com activate-sjc0.adobe.com activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com activate.wip2.adobe.com activate.wip3.adobe.com activate.wip4.adobe.com adobe-dns.adobe.com adobe-dns-1.adobe.com adobe-dns-2.adobe.com adobe-dns-3.adobe.com adobe-dns-4.adobe.com
127.0.0.1 adobeereg.com practivate.adobe practivate.adobe.com practivate.adobe.newoa practivate.adobe.ntp practivate.adobe.ipp ereg.adobe.com ereg.wip.adobe.com ereg.wip1.adobe.com
127.0.0.1 ereg.wip2.adobe.com ereg.wip3.adobe.com ereg.wip4.adobe.com hl2rcv.adobe.com wip.adobe.com wip1.adobe.com wip2.adobe.com wip3.adobe.com wip4.adobe.com
127.0.0.1 www.adobeereg.com wwis-dubc1-vip60.adobe.com www.wip.adobe.com www.wip1.adobe.com
127.0.0.1 www.wip2.adobe.com www.wip3.adobe.com www.wip4.adobe.com wwis-dubc1-vip60.adobe.com crl.verisign.net CRL.VERISIGN.NET ood.opsource.net


==================== Scheduled Tasks (whitelisted) =============

Task: {2967A601-2B9F-459B-B199-67C4916BBB7A} - System32\Tasks\{30D2381A-B121-4A1F-A5C9-69BA03EA0B22} => C:\Games\AoE 3\age3.exe
Task: {2BF31C02-D317-4574-8501-2DCC22F4F9FD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000UA => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [2013-05-13] (Google Inc.)
Task: {52952CF5-E65B-4F03-80B5-6629D3C3090E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000Core => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [2013-05-13] (Google Inc.)
Task: {6A9A8F85-B81C-47A3-838D-A32C959F0C55} - System32\Tasks\{645DB949-0643-42C0-A2CE-6A7F1F5634A1} => C:\Games\RED ALERT 2\Ra2.exe
Task: {818A4327-597A-4C95-BB79-E7740CAB613E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-11] (Adobe Systems Incorporated)
Task: {857904AE-FD3B-4FA6-BF36-7020FCFBE3E3} - System32\Tasks\{849EE670-69C4-472B-A9BF-2DD3A249AEDA} => C:\Games\AoE 3\age3.exe
Task: {8F8108CB-434A-449E-80AB-E04946E5EC1B} - System32\Tasks\{5ED8B851-4A17-4BB3-BB33-5CDDF1FB8D4B} => E:\Install.exe
Task: {945B01D3-C050-40CD-A3A9-EA92148781AE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-22] (Google Inc.)
Task: {A4DCC823-F57D-4F73-8183-FB6970148E39} - System32\Tasks\AdobeAAMUpdater-1.0-Martin-PC-Martin => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15] (Adobe Systems Incorporated)
Task: {A5BFAD91-44D9-490E-8BB5-39CBFD448DB4} - System32\Tasks\{993D4D0B-CC58-401A-B5F4-7A9827C5BDC2} => E:\Install.exe
Task: {B3103E84-8C08-4380-8D03-6BBB6C2EF452} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-05-09] (AVAST Software)
Task: {C2CF6437-0DEE-4656-9B4B-839F21AEE5A3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-22] (Google Inc.)
Task: {E42E006F-2221-4CE3-8186-72BC5B710A17} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000Core.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000UA.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2011-12-17 18:43 - 2006-12-11 03:14 - 00043008 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2013-10-04 07:02 - 2013-10-03 19:15 - 02104320 _____ () C:\Program Files\AVAST Software\Avast\defs\13100301\algo.dll
2013-01-28 13:08 - 2013-01-28 13:08 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-01-28 13:08 - 2013-01-28 13:08 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-10-01 07:49 - 2013-10-01 07:49 - 03279768 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-09-11 09:18 - 2013-09-11 09:18 - 16177544 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/04/2013 07:05:38 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/04/2013 07:05:38 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/04/2013 07:01:41 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (10/04/2013 07:01:41 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcUnregistering VAD endpoint [0]

Error: (10/04/2013 07:01:41 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (10/04/2013 07:01:19 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD endpoint registered successfully [0]

Error: (10/03/2013 05:53:44 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/03/2013 05:53:44 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/03/2013 05:47:56 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (10/03/2013 05:47:56 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcUnregistering VAD endpoint [0]


System errors:
=============
Error: (10/04/2013 07:00:17 AM) (Source: Application Popup) (User: )
Description: Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).

Error: (10/03/2013 05:46:48 PM) (Source: Application Popup) (User: )
Description: Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).

Error: (10/03/2013 05:36:27 PM) (Source: Application Popup) (User: )
Description: Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).

Error: (10/03/2013 05:35:01 PM) (Source: Service Control Manager) (User: )
Description: Služba NVIDIA Stereoscopic 3D Driver Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (10/03/2013 05:31:43 PM) (Source: Application Popup) (User: )
Description: Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).

Error: (10/03/2013 05:06:57 PM) (Source: Application Popup) (User: )
Description: Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).

Error: (10/03/2013 04:28:29 PM) (Source: Application Popup) (User: )
Description: Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).

Error: (10/03/2013 04:15:55 PM) (Source: Service Control Manager) (User: )
Description: Služba Windows Update sa pri spustení zablokovala.

Error: (10/03/2013 04:10:40 PM) (Source: Service Control Manager) (User: )
Description: Služba HitmanPro 3.7 Crusader (Boot) bola ukončená s chybou služby %%0.

Error: (10/03/2013 04:10:08 PM) (Source: Application Popup) (User: )
Description: Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2012-10-16 18:00:16.506
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-10-16 18:00:16.491
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-10-16 18:00:16.491
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-10-16 18:00:16.491
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-10-16 17:55:43.553
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-10-16 17:55:43.537
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-10-16 17:55:43.537
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-10-16 17:55:43.537
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-10-16 16:38:40.063
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-10-16 16:38:40.048
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 27%
Total physical RAM: 8162.05 MB
Available physical RAM: 5915.59 MB
Total Pagefile: 16322.31 MB
Available Pagefile: 13942.47 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:109.49 GB) NTFS
Drive e: (RAYMAN_LEGENDS) (CDROM) (Total:5.65 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: F8EB21A7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Re: policia sr

Napsal: 04 říj 2013 21:28
od vyosek
:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)
HKCU\...\Run: [Google Update] - C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-05-13] (Google Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-09-17] (Apple Inc.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 
SearchScopes: HKLM - DefaultScope value is missing.

FF NetworkProxy: "backup.ftp", ""
FF NetworkProxy: "backup.ftp_port", 0
FF NetworkProxy: "backup.socks", ""
FF NetworkProxy: "backup.socks_port", 1
FF NetworkProxy: "backup.ssl", ""
FF NetworkProxy: "backup.ssl_port", 0
FF NetworkProxy: "ftp", "194.30.144.10"
FF NetworkProxy: "ftp_port", 80
FF NetworkProxy: "gopher", "194.30.144.10"
FF NetworkProxy: "gopher_port", 80
FF NetworkProxy: "http", "194.30.144.10"
FF NetworkProxy: "http_port", 80
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "194.30.144.10"
FF NetworkProxy: "socks_port", 80
FF NetworkProxy: "ssl", "194.30.144.10"
FF NetworkProxy: "ssl_port", 80
FF NetworkProxy: "type", 0
FF Plugin HKCU: http://www.floatingminds.com/Tunnelers - C:\Games\Tunnelers\npTunnelers.dll No File

S4 Guard.Mail.ru; C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe [1564368 2012-01-14] ()

2013-10-03 15:22 - 2013-10-03 15:22 - 00016196 ____T C:\ProgramData\gbq.exe
2013-10-03 15:02 - 2013-10-03 15:54 - 95025368 ____T C:\ProgramData\retr2mq.pff
2013-10-03 15:02 - 2013-10-03 15:46 - 00000000 _____ C:\ProgramData\retr2mq.ctrl
C:\Program Files (x86)\Guard-ICQ

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000Core.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000UA.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe

Hosts:
CMD: shutdown /r /f /t 2
End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt

Re: policia sr

Napsal: 05 říj 2013 11:57
od martinsos
Vykonané , log :)
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-10-2013
Ran by Martin at 2013-10-05 12:53:44 Run:1
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)
HKCU\...\Run: [Google Update] - C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-05-13] (Google Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-09-17] (Apple Inc.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP =
SearchScopes: HKLM - DefaultScope value is missing.

FF NetworkProxy: "backup.ftp", ""
FF NetworkProxy: "backup.ftp_port", 0
FF NetworkProxy: "backup.socks", ""
FF NetworkProxy: "backup.socks_port", 1
FF NetworkProxy: "backup.ssl", ""
FF NetworkProxy: "backup.ssl_port", 0
FF NetworkProxy: "ftp", "194.30.144.10"
FF NetworkProxy: "ftp_port", 80
FF NetworkProxy: "gopher", "194.30.144.10"
FF NetworkProxy: "gopher_port", 80
FF NetworkProxy: "http", "194.30.144.10"
FF NetworkProxy: "http_port", 80
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "194.30.144.10"
FF NetworkProxy: "socks_port", 80
FF NetworkProxy: "ssl", "194.30.144.10"
FF NetworkProxy: "ssl_port", 80
FF NetworkProxy: "type", 0
FF Plugin HKCU: http://www.floatingminds.com/Tunnelers - C:\Games\Tunnelers\npTunnelers.dll No File

S4 Guard.Mail.ru; C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe [1564368 2012-01-14] ()

2013-10-03 15:22 - 2013-10-03 15:22 - 00016196 ____T C:\ProgramData\gbq.exe
2013-10-03 15:02 - 2013-10-03 15:54 - 95025368 ____T C:\ProgramData\retr2mq.pff
2013-10-03 15:02 - 2013-10-03 15:46 - 00000000 _____ C:\ProgramData\retr2mq.ctrl
C:\Program Files (x86)\Guard-ICQ

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000Core.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000UA.job => C:\Users\Martin\AppData\Local\Google\Update\GoogleUpdate.exe

Hosts:
CMD: shutdown /r /f /t 2
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AdobeCS5.5ServiceManager => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\APSDaemon => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
Firefox Proxy settings were reset.
HKCU\Software\MozillaPlugins\http://www.floatingminds.com/Tunnelers => Key not found.
C:\Games\Tunnelers\npTunnelers.dll not found.
Guard.Mail.ru => Service deleted successfully.
C:\ProgramData\gbq.exe => Moved successfully.
C:\ProgramData\retr2mq.pff => Moved successfully.
C:\ProgramData\retr2mq.ctrl => Moved successfully.
C:\Program Files (x86)\Guard-ICQ => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3230957621-2435849253-962487880-1000UA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========


========= End of CMD: =========


==== End of Fixlog ====

Re: policia sr

Napsal: 05 říj 2013 21:35
od vyosek
Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|

Re: policia sr

Napsal: 06 říj 2013 08:34
od martinsos
Ok myslím , že je všetko vporiadku , neostalo tam teda po tom víre nič? :)
ďakujem

Re: policia sr

Napsal: 06 říj 2013 21:59
od vyosek
Ne ne, PC by mel byt jiz cisty :idea:

Nemate zac, rad jsem pomohl :worship: Zase nekdy Obrázek

A na zaklade Pravidla o zamykani temat :lock:
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz