VIRY.CZ

Zdravím. Eset mi hlási adware bettersurf.a .Prikladám log Rsit a Mbar.Zároveň by som chcel aj kompl. preventívku,vzhľadom k tomu že od posledného preinštalovania WINu pred rokom ,ešte poriadna kontrola nebola robená.Za posledný rok som kontroloval iba Esetom a Cleanerrom,a odstraňoval mazaním,prípadne zakázanim služby alebo doplnku alebo odinštalovaním,... .Takže nejaké pozostatky nekvalitne odstránenej hávede tam asi(určite) ešte budú.

Logfile of random's system information tool 1.09 (written by random/random)
Run by XYX at 2013-11-23 22:44:58
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 8 GB (11%) free of 72 GB
Total RAM: 4094 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:45:03, on 23. 11. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16736)
Boot mode: Normal

Running processes:
C:\Windows\DAODx.exe
C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe
C:\Program Files (x86)\ASUS\GPU Boost Driver\GpuBoostServer.exe
C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\ASUS\SmartDoctor\SmartDoctor.exe
C:\Program Files (x86)\ASUS\EPU\EPU.exe
C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Gaming Mouse\Tray.exe
C:\Program Files\trend micro\XYX.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [Six Engine] "C:\Program Files (x86)\ASUS\EPU\EPU.exe" -b
O4 - HKLM\..\Run: [VMonitorVMUVC] "C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe" VMUVC
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [TurboV EVO] "C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe" -b
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Gaming Mouse Hid] "C:\Program Files (x86)\Gaming Mouse\hid.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Startup: Obrazovková spinka a spúšťač programu OneNote 2010.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {62789780-B744-11D0-986B-00609731A21D} (Autodesk MapGuide ActiveX Control) - http://195.28.70.134/kapor2/lib/mgaxctrl.cab
O16 - DPF: {A6616B31-4860-41E2-98E3-CA7649AF172F} (Launch Control) - file:///E:/launch.ocx
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: ASDR - Unknown owner - C:\Windows\SysWOW64\ASDR.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Bluetooth Software\btwdins.exe
O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET v5\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10736 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
taskeng.exe {67B5E4C7-EF48-4720-954D-40FEDDDD189C}
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {0B432306-D8DA-4545-A19C-9C6388345358}
taskeng.exe {C628AFE9-E513-4CAA-8922-2FBADC22CFE3}
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\Explorer.EXE
C:\Windows\DAODx.exe
"C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe"
"C:\Program Files (x86)\ASUS\GPU Boost Driver\GpuBoostServer.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\Windows\system32\svchost.exe -k apphost
C:\Windows\SysWOW64\ASDR.exe
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe"
"C:\Program Files\Bluetooth Software\btwdins.exe"
C:\Windows\system32\CISVC.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\ESET\ESET v5\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE" /tsr
"C:\Program Files\ESET\ESET v5\x86\ekrn.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe"
C:\Windows\system32\svchost.exe -k iissvcs
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\ASUS\SmartDoctor\SmartDoctor.exe" /start
"C:\Program Files (x86)\ASUS\EPU\EPU.exe" -b
"C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe" VMUVC
"C:\Program Files (x86)\Gaming Mouse\hid.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Gaming Mouse\Tray.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\XYX\Desktop\RSITx64.exe"
C:\Windows\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\AmiUpdXp.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3864379855-2534496591-635750371-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3864379855-2534496591-635750371-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\XYX\AppData\Roaming\Mozilla\Firefox\Profiles\frlt3c6h.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.google.sk/"
prefs.js - "extensions.enabledItems" - "adtoolbar@firefox.sk:1.1, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:2.0.3, {DDC359D1-844A-42a7-9AA1-88A850A938A8}:2.0.15, {DAC3F861-B30D-40dd-9166-F4E75327FAC7}:1.3.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.152 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.4]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=2.3.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=16.0.1.18]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.1]
"Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.1]
"Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.1]
"Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=16.0.1.18]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@realnetworks.com/npdlplugin;version=1]
"Description"=RealDownloader Plugin
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.152 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nppl3260.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
nppdf32.dll
nppl3260.dll
nprpplugin.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Users\XYX\AppData\Roaming\Mozilla\Firefox\Profiles\frlt3c6h.default\searchplugins\
google-default.xml
torrentz-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-01-21 6723984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-09-15 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-05-14 6307960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-01-16 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-09-15 210856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-03-06 540328]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-01-21 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14 4531320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-01-16 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2011-04-21 1535808]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2011-04-21 1000768]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-01-29 10038304]
"egui"=C:\Program Files\ESET\ESET v5\egui.exe [2011-09-22 4035152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"=C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2010-01-16 717696]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-01-24 3478336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
c:\program files (x86)\real\realplayer\Update\realsched.exe [2013-03-23 295512]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Six Engine"=C:\Program Files (x86)\ASUS\EPU\EPU.exe [2010-03-16 5309056]
"VMonitorVMUVC"=C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe [2008-08-29 143360]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-01-21 91520]
"TurboV EVO"=C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe [2010-07-15 9936512]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"Gaming Mouse Hid"=C:\Program Files (x86)\Gaming Mouse\hid.exe [2010-01-19 428544]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-10-08 766208]

C:\Users\XYX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Obrazovková spinka a spúšťač programu OneNote 2010.lnk - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-01-21 6723984]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-01-21 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.inf - open - "C:\Program Files (x86)\TC UP\PLUGINS\Media\Notepad++\notepad++.exe" "%1"
.inf - install -
.ini - open - "C:\Program Files (x86)\TC UP\PLUGINS\Media\Notepad++\notepad++.exe" "%1"
.js - edit -
.js - open - "C:\Program Files (x86)\TC UP\PLUGINS\Media\HateML\HateML.exe" "%1"
.scr - open - "C:\Program Files (x86)\TC UP\PLUGINS\Media\XnView\xnview.exe" "%1"
.scr - install -
.scr - config -
.txt - open - "C:\Program Files (x86)\TC UP\PLUGINS\Media\Notepad++\notepad++.exe" "%1"

======List of files/folders created in the last 1 month======

2013-11-23 03:09:08 ----ASH---- C:\pagefile.sys
2013-11-23 02:53:23 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-11-23 02:38:08 ----D---- C:\Program Files\trend micro
2013-11-23 02:24:00 ----SHD---- C:\$RECYCLE.BIN
2013-11-23 02:23:58 ----D---- C:\Windows\temp
2013-11-23 02:23:57 ----A---- C:\ComboFix.txt
2013-11-23 02:12:13 ----A---- C:\Windows\zip.exe
2013-11-23 02:12:13 ----A---- C:\Windows\SWSC.exe
2013-11-23 02:12:13 ----A---- C:\Windows\SWREG.exe
2013-11-23 02:12:13 ----A---- C:\Windows\sed.exe
2013-11-23 02:12:13 ----A---- C:\Windows\PEV.exe
2013-11-23 02:12:13 ----A---- C:\Windows\NIRCMD.exe
2013-11-23 02:12:13 ----A---- C:\Windows\MBR.exe
2013-11-23 02:12:13 ----A---- C:\Windows\grep.exe
2013-11-23 02:11:30 ----D---- C:\Qoobox
2013-11-23 02:11:14 ----D---- C:\Windows\erdnt
2013-11-23 01:31:42 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2013-11-23 01:27:24 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2013-11-23 01:03:36 ----D---- C:\rsit
2013-11-23 01:03:36 ----D---- C:\Program Files (x86)\trend micro
2013-11-15 01:31:26 ----D---- C:\Program Files (x86)\Lavalys
2013-11-14 01:59:03 ----D---- C:\Program Files (x86)\BetterSurf
2013-11-12 23:10:33 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-11-12 23:10:33 ----A---- C:\Windows\system32\ieui.dll
2013-11-12 23:10:32 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-11-12 23:10:32 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-11-12 23:10:32 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-11-12 23:10:32 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-11-12 23:10:32 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-12 23:10:32 ----A---- C:\Windows\system32\iesysprep.dll
2013-11-12 23:10:32 ----A---- C:\Windows\system32\iesetup.dll
2013-11-12 23:10:32 ----A---- C:\Windows\system32\iernonce.dll
2013-11-12 23:10:32 ----A---- C:\Windows\system32\ie4uinit.exe
2013-11-12 23:10:31 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-11-12 23:10:31 ----A---- C:\Windows\system32\iertutil.dll
2013-11-12 23:10:30 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-11-12 23:10:30 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-11-12 23:10:30 ----A---- C:\Windows\system32\msfeeds.dll
2013-11-12 23:10:30 ----A---- C:\Windows\system32\jscript.dll
2013-11-12 23:10:29 ----A---- C:\Windows\system32\jscript9.dll
2013-11-12 23:10:28 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-11-12 23:10:27 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-11-12 23:10:27 ----A---- C:\Windows\system32\urlmon.dll
2013-11-12 23:10:26 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-11-12 23:10:26 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-11-12 23:10:26 ----A---- C:\Windows\system32\jsproxy.dll
2013-11-12 23:10:25 ----A---- C:\Windows\system32\wininet.dll
2013-11-12 23:10:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-11-12 23:10:21 ----A---- C:\Windows\system32\ieframe.dll
2013-11-12 23:10:20 ----A---- C:\Windows\system32\mshtml.dll
2013-11-12 23:10:16 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-11-12 23:09:44 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-11-12 23:09:42 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-11-12 23:09:42 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-11-12 23:09:42 ----A---- C:\Windows\system32\tsgqec.dll
2013-11-12 23:09:42 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-11-12 23:09:41 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-11-12 23:09:41 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-11-12 23:09:41 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-11-12 23:09:41 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-11-12 23:09:41 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-11-12 23:09:41 ----A---- C:\Windows\system32\wksprtPS.dll
2013-11-12 23:09:41 ----A---- C:\Windows\system32\wksprt.exe
2013-11-12 23:09:41 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-11-12 23:09:41 ----A---- C:\Windows\system32\mstsc.exe
2013-11-12 23:09:41 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-11-12 23:09:40 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2013-11-12 23:09:40 ----A---- C:\Windows\system32\rdvidcrl.dll
2013-11-12 23:09:40 ----A---- C:\Windows\system32\mstscax.dll
2013-11-12 23:06:28 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2013-11-12 23:06:28 ----A---- C:\Windows\system32\TSWorkspace.dll
2013-11-12 21:23:31 ----A---- C:\Windows\system32\crypt32.dll
2013-11-12 21:23:30 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-11-12 21:23:28 ----A---- C:\Windows\system32\drivers\afd.sys
2013-11-12 21:23:25 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-11-12 21:23:25 ----A---- C:\Windows\system32\authui.dll
2013-11-12 21:23:24 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-11-12 21:23:24 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-11-12 21:23:24 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-12 21:23:24 ----A---- C:\Windows\system32\credui.dll
2013-11-12 21:23:19 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-11-12 21:23:19 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-11-12 21:23:19 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-11-12 21:23:19 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-11-12 21:23:19 ----A---- C:\Windows\system32\sspisrv.dll
2013-11-12 21:23:19 ----A---- C:\Windows\system32\sspicli.dll
2013-11-12 21:23:19 ----A---- C:\Windows\system32\schannel.dll
2013-11-12 21:23:19 ----A---- C:\Windows\system32\secur32.dll
2013-11-12 21:23:19 ----A---- C:\Windows\system32\ncrypt.dll
2013-11-12 21:23:19 ----A---- C:\Windows\system32\lsass.exe
2013-11-12 21:23:19 ----A---- C:\Windows\system32\lsasrv.dll
2013-11-12 21:23:19 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-11-12 21:23:19 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-11-12 21:23:19 ----A---- C:\Windows\system32\drivers\cng.sys
2013-11-12 21:23:17 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-11-12 21:23:17 ----A---- C:\Windows\system32\gdi32.dll
2013-11-12 21:23:15 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-11-12 21:23:15 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-11-12 21:23:15 ----A---- C:\Windows\system32\nshwfp.dll
2013-11-12 21:23:15 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-11-12 21:23:15 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-11-07 11:03:28 ----D---- C:\ProgramData\Steam
2013-11-03 16:33:20 ----D---- C:\ProgramData\ATI
2013-11-03 16:32:47 ----D---- C:\Program Files (x86)\AMD AVT
2013-11-03 16:31:17 ----D---- C:\Program Files\Common Files\ATI Technologies
2013-11-02 21:26:11 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2013-11-02 21:25:39 ----D---- C:\ProgramData\Package Cache
2013-10-29 22:09:28 ----D---- C:\Users\XYX\AppData\Roaming\Thunder Wolves
2013-10-29 22:09:28 ----D---- C:\ProgramData\RELOADED
2013-10-24 19:59:20 ----D---- C:\ProgramData\Oracle
2013-10-24 19:59:04 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-10-24 19:59:00 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-10-24 19:59:00 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-10-24 19:59:00 ----A---- C:\Windows\SYSWOW64\java.exe

======List of files/folders modified in the last 1 month======

2013-11-23 22:43:42 ----D---- C:\Windows\system32\config
2013-11-23 22:43:27 ----D---- C:\Windows\system32\Tasks
2013-11-23 03:13:26 ----D---- C:\Windows\System32
2013-11-23 03:13:26 ----D---- C:\Windows\inf
2013-11-23 03:13:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-11-23 02:53:23 ----D---- C:\ProgramData
2013-11-23 02:38:08 ----RD---- C:\Program Files
2013-11-23 02:23:58 ----D---- C:\Windows
2013-11-23 02:22:42 ----A---- C:\Windows\system.ini
2013-11-23 02:22:37 ----D---- C:\Windows\system32\drivers\etc
2013-11-23 02:22:18 ----D---- C:\Windows\SysWOW64
2013-11-23 02:21:05 ----D---- C:\Windows\SYSWOW64\drivers
2013-11-23 02:21:05 ----D---- C:\Windows\AppPatch
2013-11-23 02:21:04 ----D---- C:\Program Files (x86)\Common Files
2013-11-23 02:16:54 ----D---- C:\Windows\system32\drivers
2013-11-23 01:58:21 ----D---- C:\Windows\Speech
2013-11-23 01:57:20 ----SHD---- C:\System Volume Information
2013-11-23 01:03:36 ----D---- C:\Program Files (x86)
2013-11-20 02:57:46 ----D---- C:\Windows\system32\catroot2
2013-11-20 02:38:48 ----D---- C:\Users\XYX\AppData\Roaming\vlc
2013-11-18 00:27:09 ----D---- C:\Users\XYX\AppData\Roaming\Skype
2013-11-13 22:34:10 ----D---- C:\Windows\system32\wdi
2013-11-12 23:14:30 ----D---- C:\Windows\Prefetch
2013-11-12 23:13:48 ----D---- C:\Windows\winsxs
2013-11-12 23:11:57 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-11-12 23:11:57 ----D---- C:\Windows\SYSWOW64\en-US
2013-11-12 23:11:57 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-11-12 23:11:57 ----D---- C:\Windows\system32\sk-SK
2013-11-12 23:11:57 ----D---- C:\Windows\system32\en-US
2013-11-12 23:11:57 ----D---- C:\Windows\system32\cs-CZ
2013-11-12 23:11:57 ----D---- C:\Program Files\Internet Explorer
2013-11-12 23:11:57 ----D---- C:\Program Files (x86)\Internet Explorer
2013-11-12 23:11:56 ----D---- C:\Windows\SYSWOW64\wbem
2013-11-12 23:11:56 ----D---- C:\Windows\system32\wbem
2013-11-12 23:11:56 ----D---- C:\Windows\system32\drivers\en-US
2013-11-12 23:11:55 ----D---- C:\Windows\system32\DriverStore
2013-11-12 23:10:47 ----D---- C:\Windows\system32\catroot
2013-11-12 23:09:32 ----SHD---- C:\Windows\Installer
2013-11-12 23:09:27 ----D---- C:\ProgramData\Microsoft Help
2013-11-12 23:08:58 ----D---- C:\Windows\system32\MRT
2013-11-12 23:07:35 ----D---- C:\Windows\debug
2013-11-12 23:07:33 ----A---- C:\Windows\system32\MRT.exe
2013-11-12 22:57:15 ----D---- C:\Windows\Minidump
2013-11-11 05:50:16 ----N---- C:\Windows\system32\MpSigStub.exe
2013-11-09 00:10:27 ----D---- C:\Program Files (x86)\Steam
2013-11-07 10:53:24 ----RSD---- C:\Windows\assembly
2013-11-07 09:44:28 ----D---- C:\Windows\system32\LogFiles
2013-11-07 03:01:44 ----RD---- C:\Desktop
2013-11-05 16:36:34 ----D---- C:\Windows\Microsoft.NET
2013-11-05 15:37:27 ----D---- C:\Program Files (x86)\VLC
2013-11-04 17:54:52 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-11-03 16:32:48 ----D---- C:\ProgramData\AMD
2013-11-03 16:32:06 ----D---- C:\Program Files\ATI Technologies
2013-11-03 16:31:17 ----D---- C:\Program Files\Common Files
2013-11-01 23:49:09 ----D---- C:\Windows\rescache
2013-11-01 17:51:18 ----D---- C:\Windows\system32\NDF
2013-11-01 15:32:28 ----D---- C:\ProgramData\Skype
2013-11-01 15:32:27 ----RD---- C:\Program Files (x86)\Skype
2013-11-01 14:15:36 ----RSD---- C:\Windows\Fonts
2013-10-27 13:15:43 ----D---- C:\Windows\Tasks
2013-10-24 19:59:00 ----D---- C:\Program Files (x86)\Java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2011-08-04 62496]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-02-01 564792]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2010-04-22 13440]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-02-01 283200]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-08-04 146432]
R1 EIO64;EIO Driver; C:\Windows\system32\DRIVERS\EIO64.sys [2011-07-02 16384]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2011-08-04 38288]
R2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-08-09 202576]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2011-08-04 187632]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-10-08 12534784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-10-08 619008]
R3 AsusgmsFltr;Gaming Mouse; C:\Windows\system32\drivers\Asusgms.sys [2010-01-11 11520]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-07-05 96256]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-01-29 2260256]
R3 IOMap;IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [2010-02-22 23680]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 usbscan;USB Scanner Driver; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S1 VD_FileDisk;VD_FileDisk; C:\Windows\system32\drivers\VD_FileDisk.sys [2009-10-25 23552]
S2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
S3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\Windows\system32\drivers\asusgsb.sys [2009-02-17 17792]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-01-28 116736]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-03-01 96296]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-03-01 134184]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2008-12-23 36392]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-03-01 21160]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 DIRECTIO;DIRECTIO; \??\C:\Program Files\PerformanceTest\DirectIo64.sys [2012-08-13 25704]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2012-05-28 21832]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 VMUVC;Vimicro Camera Service VMUVC; C:\Windows\System32\Drivers\VMUVC.sys [2008-08-29 197120]
S3 vvftUVC;Vimicro Camera Filter Service VMUVC; C:\Windows\system32\drivers\vvftUVC.sys [2008-07-01 303616]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-10-08 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-10-08 344064]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 ASDR;ASDR; C:\Windows\SysWOW64\ASDR.exe [2009-07-27 61440]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [2010-06-24 109056]
R2 btwdins;Bluetooth Service; C:\Program Files\Bluetooth Software\btwdins.exe [2009-03-01 844328]
R2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2009-07-14 19456]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET v5\x86\ekrn.exe [2011-09-22 974944]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-06-09 75064]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-03-06 39056]
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
R2 TeamViewer6;TeamViewer 6; C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-06-01 2337144]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-08-11 136176]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-08-11 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-01-21 30963576]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-02-01 115608]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-09-06 565672]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

-----------------EOF-----------------

Malwarebytes Anti-Rootkit BETA 1.07.0.1007
http://www.malwarebytes.org

Database version: v2013.10.02.12

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16736
XYX :: XYX-PC [administrator]

23. 11. 2013 2:53:26
mbar-log-2013-11-23 (02-53-26).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged.
Objects scanned: 250647
Time elapsed: 7 minute(s), 20 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

THX.

Zdravim

Na uvod par otazek

Pouzivate legalni operacni system, nejvyssi licence Ultimate zrovna neni bezna.

Na ESET mate radne zakoupenou licenci??

:arrow:Co se tyce ComboFixu, ktery jste pouzil, tak na zaklade licence a pravidel fora ptam, umite s nim pracovat (spusteni, rozlusteni logu, napsani skriptu)?

Licencni podminky ComboFixu hovori jasne "Nikdy by nemel byt pouzit v prostredi bez dozoru zkusene osoby"
Obrázek

Nebezpeci CFka

Je urcen primarne pro radce - jeho svevolnym pouzitim ztracite narok na podporu
Maze stopy po haveti, takze v logu z RSIT neni nic videt
Jeho log je treba dolustit, jelikoz neumi smazat vse - to ovsem tezko zvladnete pokud k tomu nejste vyskolen
CF muze mit bug = sunda Vam system, pokud nevite kam co uklada, jak co obnovit, mate system v kytkam a ceka Vas reinstal
CF taky bohuzel prozatim nekontroluje nektere dulezite knihovny (napr. hal.dll) - ty treba mazou nektere typy haveti (napr. angela) - smaze Vam po restartu hal.dll = nenajede Vam system a jste o radek vyse = reinstal

Licencia WIN7 je síce registovaná na advokátsku kanceláriu,ktorej spolumajiteľkou je sestra,ale počet PC /ntb kt. majú nainštalovanú túto licenciu je v poriadku.Firma kúpila nový PC aj s predinštalovaným WIN7,starý išiel na súčiastky,takže 1 licencia ostala voľná a tú použivame na rodinnom PC namiesto blbej Wisty.
Ku Combofixu: ten som spustil a nechal vytvoriť log ktorý teraz prikladám.Scripty na mazanie,upravy registov,.. , som cez neho nespúšťal,Taký dobrý niesom aby som pre neho vytvoril script,v tom máte pravdu.
K tejto téme ,,BETTER SURF Prosím o kontrolu logu,,tak je to viac žiadosť o tú preventívku ako better surf.Bettersurf napáda webové browsery,a a odstráni sa fyzickým vymazaním priečinka Bettersurf , úplnou odinštaláciou Mozzily a Google Chrome a defaultnými nastaveniami internet explorera.Záložky browserov export - import ,ostatné všetko default.Samozrejme vyčistenie TEMP po odinštalácii brovserov a zmazanie všetkých(nie iba v program files ale všetkých) priečinkov súvisiacich s browsermi.Následne nainštalovať browsery a import záložiek.Vhodná je aj častejšia kontrola ESETom,prípadne dať url betersurf do zakázaných adries esetu.Toto riešenie pre Bettersurf nieje síce na 100% ale iba na 85% no funkčné to je,presnejšie by bolo funkčné keby som do tejto preventívky nezahrnul aj bettersurf.a
Raz za čas však treba urobiť aj poriadnu kontrolu PC o ktorú vás teraz prosím.
ComboFix 13-11-22.01 - XYX . 11. 2013 2:18.1.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.421.1051.18.4094.1995 [GMT 1:00]
Running from: c:\users\XYX\Desktop\ComboFix.exe
AV: ESET Smart Security 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Disabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\FlashPlayerApp.exe
c:\windows\SysWow64\local.txt
.
.
((((((((((((((((((((((((( Files Created from 2013-10-23 to 2013-11-23 )))))))))))))))))))))))))))))))
.
.
2013-11-23 01:22 . 2013-11-23 01:22 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp
2013-11-23 01:22 . 2013-11-23 01:22 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-11-23 00:31 . 2013-11-23 01:01 116440 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2013-11-23 00:27 . 2013-11-23 01:00 91352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2013-11-23 00:03 . 2013-11-23 01:10 -------- d-----w- c:\program files (x86)\trend micro
2013-11-23 00:03 . 2013-11-23 00:03 -------- d-----w- C:\rsit
2013-11-22 22:10 . 2013-11-08 03:12 10285968 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EADE2866-C203-474B-B834-6345B77CCC42}\mpengine.dll
2013-11-15 00:31 . 2013-11-15 00:31 -------- d-----w- c:\program files (x86)\Lavalys
2013-11-14 00:59 . 2013-11-14 00:59 -------- d-----w- c:\program files (x86)\BetterSurf
2013-11-12 22:09 . 2013-10-02 01:10 44544 ----a-w- c:\windows\system32\TsUsbGDCoInstaller.dll
2013-11-12 22:06 . 2013-09-25 02:23 1030144 ----a-w- c:\windows\system32\TSWorkspace.dll
2013-11-12 22:06 . 2013-09-25 01:57 792576 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2013-11-07 10:03 . 2013-11-07 10:03 -------- d-----w- c:\programdata\Steam
2013-11-05 22:29 . 2013-11-06 23:28 -------- d-----w- c:\users\XYX\AppData\Local\Deployment
2013-11-05 22:29 . 2013-11-05 22:29 -------- d-----w- c:\users\XYX\AppData\Local\Apps
2013-11-03 15:33 . 2013-11-03 15:33 -------- d-----w- c:\programdata\ATI
2013-11-03 15:32 . 2013-11-03 15:32 -------- d-----w- c:\program files (x86)\AMD AVT
2013-11-03 15:32 . 2013-11-03 15:32 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2013-11-03 15:31 . 2013-11-03 15:31 -------- d-----w- c:\program files\Common Files\ATI Technologies
2013-11-02 20:26 . 2013-11-02 20:26 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller
2013-11-02 20:26 . 2013-11-02 20:26 -------- d-----w- c:\program files (x86)\Battlelog Web Plugins
2013-11-02 20:25 . 2013-11-07 09:56 -------- d-----w- c:\programdata\Package Cache
2013-10-29 21:09 . 2013-10-29 21:09 -------- d-----w- c:\users\XYX\AppData\Roaming\Thunder Wolves
2013-10-29 21:09 . 2013-10-29 21:09 -------- d-----w- c:\programdata\RELOADED
2013-10-28 22:14 . 2013-10-28 22:14 -------- d-----w- c:\users\XYX\AppData\Local\SKIDROW
2013-10-24 18:59 . 2013-10-24 18:59 -------- d-----w- c:\programdata\Oracle
2013-10-24 18:59 . 2013-10-24 18:59 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-10-24 18:59 . 2013-10-08 05:50 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-21 21:12 . 2012-11-25 12:44 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-12 22:07 . 2011-06-04 19:54 82896128 ----a-w- c:\windows\system32\MRT.exe
2013-11-11 04:50 . 2011-06-02 20:44 267936 ------w- c:\windows\system32\MpSigStub.exe
2013-10-08 14:01 . 2013-10-08 14:01 78432 ----a-w- c:\windows\system32\atimpc64.dll
2013-10-08 14:01 . 2013-10-08 14:01 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2013-10-08 14:01 . 2013-10-08 14:01 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2013-10-08 14:01 . 2013-10-08 14:01 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2013-10-08 14:01 . 2013-10-08 14:01 125824 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2013-10-08 14:01 . 2011-11-10 02:11 142792 ----a-w- c:\windows\system32\atiuxp64.dll
2013-10-08 14:01 . 2013-10-08 14:01 97984 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2013-10-08 14:01 . 2013-10-08 14:01 114488 ----a-w- c:\windows\system32\atiu9p64.dll
2013-10-08 14:01 . 2011-11-10 03:15 1237200 ----a-w- c:\windows\system32\aticfx64.dll
2013-10-08 14:01 . 2013-10-08 14:01 1030128 ----a-w- c:\windows\SysWow64\aticfx32.dll
2013-10-08 14:00 . 2011-11-10 02:51 9464840 ----a-w- c:\windows\system32\atidxx64.dll
2013-10-08 14:00 . 2013-10-08 14:00 8215992 ----a-w- c:\windows\SysWow64\atidxx32.dll
2013-10-08 14:00 . 2013-10-08 14:00 6176008 ----a-w- c:\windows\SysWow64\atiumdva.dll
2013-10-08 14:00 . 2013-10-08 14:00 6189416 ----a-w- c:\windows\SysWow64\atiumdag.dll
2013-10-08 14:00 . 2013-10-08 14:00 6767240 ----a-w- c:\windows\system32\atiumd6a.dll
2013-10-08 14:00 . 2013-10-08 14:00 7256496 ----a-w- c:\windows\system32\atiumd64.dll
2013-10-08 13:58 . 2013-10-08 13:58 12534784 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2013-10-08 13:39 . 2013-10-08 13:39 229376 ----a-w- c:\windows\system32\clinfo.exe
2013-10-08 13:39 . 2013-10-08 13:39 1187342 ----a-w- c:\windows\system32\amdocl_as64.exe
2013-10-08 13:39 . 2013-10-08 13:39 1061902 ----a-w- c:\windows\system32\amdocl_ld64.exe
2013-10-08 13:39 . 2013-10-08 13:39 995342 ----a-w- c:\windows\SysWow64\amdocl_as32.exe
2013-10-08 13:39 . 2013-10-08 13:39 798734 ----a-w- c:\windows\SysWow64\amdocl_ld32.exe
2013-10-08 13:39 . 2013-10-08 13:39 98816 ----a-w- c:\windows\system32\OpenVideo64.dll
2013-10-08 13:38 . 2013-10-08 13:38 83456 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2013-10-08 13:38 . 2013-10-08 13:38 127488 ----a-w- c:\windows\system32\coinst_13.152.1.8.dll
2013-10-08 13:38 . 2013-10-08 13:38 86528 ----a-w- c:\windows\system32\OVDecode64.dll
2013-10-08 13:38 . 2013-10-08 13:38 73216 ----a-w- c:\windows\SysWow64\OVDecode.dll
2013-10-08 13:38 . 2013-10-08 13:38 28192256 ----a-w- c:\windows\system32\amdocl64.dll
2013-10-08 13:36 . 2013-10-08 13:36 23761408 ----a-w- c:\windows\SysWow64\amdocl.dll
2013-10-08 13:34 . 2013-10-08 13:34 63488 ----a-w- c:\windows\system32\OpenCL.dll
2013-10-08 13:34 . 2013-10-08 13:34 57344 ----a-w- c:\windows\SysWow64\OpenCL.dll
2013-10-08 13:17 . 2013-10-08 13:17 25385984 ----a-w- c:\windows\system32\atio6axx.dll
2013-10-08 13:13 . 2013-10-08 13:13 368640 ----a-w- c:\windows\system32\atiapfxx.exe
2013-10-08 13:13 . 2013-10-08 13:13 62464 ----a-w- c:\windows\system32\aticalrt64.dll
2013-10-08 13:13 . 2013-10-08 13:13 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll
2013-10-08 13:13 . 2013-10-08 13:13 55808 ----a-w- c:\windows\system32\aticalcl64.dll
2013-10-08 13:13 . 2013-10-08 13:13 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll
2013-10-08 13:13 . 2013-10-08 13:13 15716352 ----a-w- c:\windows\system32\aticaldd64.dll
2013-10-08 13:09 . 2013-10-08 13:09 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll
2013-10-08 13:00 . 2013-10-08 13:00 21400064 ----a-w- c:\windows\SysWow64\atioglxx.dll
2013-10-08 12:54 . 2013-10-08 12:54 442368 ----a-w- c:\windows\system32\atidemgy.dll
2013-10-08 12:53 . 2013-10-08 12:53 26112 ----a-w- c:\windows\system32\atimuixx.dll
2013-10-08 12:53 . 2013-10-08 12:53 576512 ----a-w- c:\windows\system32\atieclxx.exe
2013-10-08 12:52 . 2013-10-08 12:52 239616 ----a-w- c:\windows\system32\atiesrxx.exe
2013-10-08 12:51 . 2013-10-08 12:51 190976 ----a-w- c:\windows\system32\atitmm64.dll
2013-10-08 12:28 . 2013-10-08 12:28 784384 ----a-w- c:\windows\system32\atiadlxx.dll
2013-10-08 12:28 . 2013-10-08 12:28 594944 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2013-10-08 12:28 . 2013-10-08 12:28 75264 ----a-w- c:\windows\system32\atig6pxx.dll
2013-10-08 12:28 . 2013-10-08 12:28 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2013-10-08 12:28 . 2013-10-08 12:28 69632 ----a-w- c:\windows\system32\atiglpxx.dll
2013-10-08 12:28 . 2013-10-08 12:28 100352 ----a-w- c:\windows\system32\atig6txx.dll
2013-10-08 12:27 . 2013-10-08 12:27 96768 ----a-w- c:\windows\SysWow64\atigktxx.dll
2013-10-08 12:27 . 2013-10-08 12:27 619008 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2013-10-08 12:24 . 2013-10-08 12:24 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2013-10-08 08:50 . 2013-10-08 08:50 51200 ----a-w- c:\windows\system32\kdbsdk64.dll
2013-10-08 08:45 . 2013-10-08 08:45 38912 ----a-w- c:\windows\SysWow64\kdbsdk32.dll
2013-10-05 23:20 . 2013-06-09 16:02 234536 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-10-05 23:20 . 2011-07-29 20:02 234536 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-09-25 02:22 . 2013-11-12 20:23 340992 ----a-w- c:\windows\system32\schannel.dll
2013-09-25 01:57 . 2013-11-12 20:23 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2013-09-15 13:53 . 2013-09-15 13:53 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2013-09-15 13:53 . 2013-09-15 13:53 312744 ----a-w- c:\windows\system32\javaws.exe
2013-09-15 13:53 . 2013-09-15 13:53 189352 ----a-w- c:\windows\system32\javaw.exe
2013-09-15 13:53 . 2013-09-15 13:53 973736 ----a-w- c:\windows\system32\deployJava1.dll
2013-09-15 13:53 . 2013-09-15 13:53 1095080 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-09-15 13:53 . 2013-09-15 13:53 189352 ----a-w- c:\windows\system32\java.exe
2013-09-08 02:30 . 2013-10-08 21:48 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-09-08 02:27 . 2013-10-08 21:48 327168 ----a-w- c:\windows\system32\mswsock.dll
2013-09-08 02:03 . 2013-10-08 21:48 231424 ----a-w- c:\windows\SysWow64\mswsock.dll
2013-09-04 12:12 . 2013-10-08 21:46 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2013-09-04 12:11 . 2013-10-08 21:46 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2013-09-04 12:11 . 2013-10-08 21:46 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-09-04 12:11 . 2013-10-08 21:46 52736 ----a-w- c:\windows\system32\drivers\usbehci.sys
2013-09-04 12:11 . 2013-10-08 21:46 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2013-09-04 12:11 . 2013-10-08 21:46 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2013-09-04 12:11 . 2013-10-08 21:46 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2013-08-29 02:17 . 2013-10-08 21:48 5549504 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-08-29 02:16 . 2013-10-08 21:48 1732032 ----a-w- c:\windows\system32\ntdll.dll
2013-08-29 02:16 . 2013-10-08 21:48 243712 ----a-w- c:\windows\system32\wow64.dll
2013-08-29 02:16 . 2013-10-08 21:48 859648 ----a-w- c:\windows\system32\tdh.dll
2013-08-29 02:13 . 2013-10-08 21:48 878080 ----a-w- c:\windows\system32\advapi32.dll
2013-08-29 01:51 . 2013-10-08 21:48 3969472 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-08-29 01:51 . 2013-10-08 21:48 3914176 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-08-29 01:50 . 2013-10-08 21:48 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-08-29 01:50 . 2013-10-08 21:48 1292192 ----a-w- c:\windows\SysWow64\ntdll.dll
2013-08-29 01:50 . 2013-10-08 21:48 619520 ----a-w- c:\windows\SysWow64\tdh.dll
2013-08-29 01:48 . 2013-10-08 21:48 640512 ----a-w- c:\windows\SysWow64\advapi32.dll
2013-08-29 01:48 . 2013-10-08 21:48 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-08-29 00:49 . 2013-10-08 21:48 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-08-29 00:49 . 2013-10-08 21:48 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-08-29 00:49 . 2013-10-08 21:48 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-08-29 00:49 . 2013-10-08 21:48 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-08-28 01:21 . 2013-10-08 21:48 3155968 ----a-w- c:\windows\system32\win32k.sys
2013-08-28 01:12 . 2013-10-08 21:47 461312 ----a-w- c:\windows\system32\scavengeui.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"="c:\program files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [2010-01-16 717696]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-01-24 3478336]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Six Engine"="c:\program files (x86)\ASUS\EPU\EPU.exe" [2010-03-16 5309056]
"VMonitorVMUVC"="c:\program files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe" [2008-08-29 143360]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-01-21 91520]
"TurboV EVO"="c:\program files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe" [2010-07-15 9936512]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"Gaming Mouse Hid"="c:\program files (x86)\Gaming Mouse\hid.exe" [2010-01-19 428544]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2013-10-08 766208]
.
c:\users\XYX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Obrazovková spinka a spúšťač programu OneNote 2010.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE /tsr [2010-1-21 226176]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R1 VD_FileDisk;VD_FileDisk; [x]
R2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 DIRECTIO;DIRECTIO;c:\program files\PerformanceTest\DirectIo64.sys;c:\program files\PerformanceTest\DirectIo64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bbus.sys [x]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bmdfl.sys [x]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bmdm.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 VMUVC;Vimicro Camera Service VMUVC;c:\windows\system32\Drivers\VMUVC.sys;c:\windows\SYSNATIVE\Drivers\VMUVC.sys [x]
R3 vvftUVC;Vimicro Camera Filter Service VMUVC;c:\windows\system32\drivers\vvftUVC.sys;c:\windows\SYSNATIVE\drivers\vvftUVC.sys [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfp.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S1 EIO64;EIO Driver;c:\windows\system32\DRIVERS\EIO64.sys;c:\windows\SYSNATIVE\DRIVERS\EIO64.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys;c:\windows\SYSNATIVE\DRIVERS\EpfwLWF.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET v5\x86\ekrn.exe;c:\program files\ESET\ESET v5\x86\ekrn.exe [x]
S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [x]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AsusgmsFltr;Gaming Mouse;c:\windows\system32\drivers\Asusgms.sys;c:\windows\SYSNATIVE\drivers\Asusgms.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 IOMap;IOMap;c:\windows\system32\drivers\IOMap64.sys;c:\windows\SYSNATIVE\drivers\IOMap64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ w3svc was
apphost REG_MULTI_SZ apphostsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-11-17 18:21 1210320 ----a-w- c:\program files (x86)\Google\Chrome\Application\31.0.1650.57\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-11-23 c:\windows\Tasks\AmiUpdXp.job
- c:\users\XYX\AppData\Local\SwvUpdater\Updater.exe [2013-08-09 20:23]
.
2013-11-21 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3864379855-2534496591-635750371-1000Core.job
- c:\users\XYX\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-12-07 20:49]
.
2013-11-23 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3864379855-2534496591-635750371-1000UA.job
- c:\users\XYX\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-12-07 20:49]
.
2013-11-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-11 18:49]
.
2013-11-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-11 18:49]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-01-29 10038304]
"egui"="c:\program files\ESET\ESET v5\egui.exe" [2011-09-22 4035152]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.sk/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovať do programu Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&oslať do programu OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - c:\program files\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 213.81.146.10 213.81.146.12
DPF: {A6616B31-4860-41E2-98E3-CA7649AF172F} - file:///E:/launch.ocx
FF - ProfilePath - c:\users\XYX\AppData\Roaming\Mozilla\Firefox\Profiles\frlt3c6h.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.sk/
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-11-14 01:59; xz123@ya456.com; c:\program files (x86)\BetterSurf\ff
.
.
------- File Associations -------
.
.scr=scr
.txt=txt
.
- - - - ORPHANS REMOVED - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
AddRemove-T4EPlayer_Skins - c:\program files (x86)\T4E Player\uninstall.exe
AddRemove-UT2004-Demo - d:\hry\UT2004 v3334 Demo\System\Setup.exe
AddRemove-{76285C16-411A-488A-BCE3-C83CB933D8CF} - c:\program files (x86)\Common Files\EAInstaller\Battlefield 3\Cleanup.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-11-23 02:23:56
ComboFix-quarantined-files.txt 2013-11-23 01:23
.
Pre-Run: 5 066 940 416 bytes free
Post-Run: 12 800 937 984 bytes free
.
- - End Of File - - 296868DCE35C7A8A307462E4C83ED62C
A36C5E4F47E84449FF07ED3517B43A31

Nooo ja si nemyslim ze to bude v poradku

Firma kúpila nový PC aj s predinštalovaným WIN7,starý išiel na súčiastky,takže 1 licencia ostala voľná a tú použivame na rodinnom PC namiesto blbej Wisty.

Pokud je windows predinstalovan, jedna se o tzv OEM verzi, ktera je vazana prave na dany HW, neni mozne jej jen tak prenaset

Neodpovedel jste mi dale, jestli mate na ESET zakoupenou licenci

A proc tedy ComboFix pouzivate a porusujete jeho licenci, se kterou jste mimochodem odsouhlasil??

WIN 7 Ultimate je krabicová OEM verzia ,a Eset je takisto legálny.Ku Combofixu som sa už vyjadril.
A terez mám aj ja 2 otázky na úvod :

Prečo nedáte pri registrácii aj kolonku Máš všetko legálne ano/nie spolu s položkou na pripojenie prílohy s dokladom o zakúpení softu

Pomôžete mi s tou preventívkou-logami alebo budeme pokračovať v písaní o iných témach=zmýlil som si fórum ?

Pokud se vam nelibi odpovidat, nikdo vas tu nenuti byt - tlacitko Odhlasit mate vlevo nahore

My tu pomoci muzeme, nikoliv musime

Na uvod to nedame, pozadavky na legalni system a bezpecnostni SW jsou zcela jasne dany pravidly fora

Ospravedlňujem sa za trošku neprimeranú reakciu.Soft mám legálny,takže ideme už na tú preventívku?

Aktualizujte ESET na verzi 7, pouzivate starou verzi 5

Vidim nainstalovany MBAM, delal jste jim sken?? Mohl bych poprosit o log z nej (zalozka Protokoly)

Stahnete na plochu CKScanner

Spustte a kliknete na Search for files
Po dokonceni skenu kliknete na Save List to File a nasledne OK
Na plose se Vam vytvori log s nazvem ckfiles.txt, jeho obsah mi sem vlozte

Zdravím.V Mbam mám ešte v karanténe niekoľko súborov a registrov,neviem ako dlho sú už tam,a ako staré sú.Výpis o tom ako dlho sú v karanténe sa stratil buď pri čistení Cccleanerom,alebo pri reinštalácii mbam-u.Mbam som reinštaloval,bola to stará verzia,a posledná kontrola mbamom bola už dávno, c.c.a 8mesiacov.Vkladám aspoň screen karantény http://img5.imageshack.us/img5/8688/4u9y.jpg a samozrejme logy:
CKScanner 2.4 - Additional Security Risks - These are not necessarily bad
c:\program files (x86)\tc up\plugins\media\inkscape\python\lib\site-packages\
numpy\f2py\crackfortran.py
scanner sequence 3.NA.11.UICGB0
----- EOF -----

Malwarebytes Anti-Malware (Skúšobná verzia) 1.75.0.1300
http://www.malwarebytes.org

Verzia databázy: v2013.11.25.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16736
XYX :: XYX-PC [administrátor]

Ochrana: Zapnuté

25. 11. 2013 22:22:19
MBAM-log-2013-11-25 (23-33-59).txt

Typ kontroly: Úplná kontrola (C:\|D:\|)
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM | P2P
Možnosti kontroly vypnuté:
Objektov kontrolovaných: 484493
Uplynutý čas: 55 min, 58 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 12
HKCR\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9} (PUP.Software.Updater) -> Žiadna úloha nevykonaná.
HKCR\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476} (PUP.Software.Updater) -> Žiadna úloha nevykonaná.
HKCR\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67} (PUP.Software.Updater) -> Žiadna úloha nevykonaná.
HKCR\Updater.AmiUpd.1 (PUP.Software.Updater) -> Žiadna úloha nevykonaná.
HKCR\Updater.AmiUpd (PUP.Software.Updater) -> Žiadna úloha nevykonaná.
HKCR\CLSID\{6E3C6B04-08FE-43BC-8E50-F90285024DEA} (PUP.Optional.BetterSurf) -> Žiadna úloha nevykonaná.
HKCR\CLSID\{A6FEED89-3BCD-4D19-9DC2-3E613A80A2A4} (PUP.Optional.Amonetize.A) -> Žiadna úloha nevykonaná.
HKCR\TypeLib\{1C1356DA-1E98-4810-A9F6-18D89BD1C0C0} (PUP.Optional.Amonetize.A) -> Žiadna úloha nevykonaná.
HKCR\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7} (PUP.Optional.Amonetize.A) -> Žiadna úloha nevykonaná.
HKCR\AmiBs.Installer.1 (PUP.Optional.Amonetize.A) -> Žiadna úloha nevykonaná.
HKCR\AmiBs.Installer (PUP.Optional.Amonetize.A) -> Žiadna úloha nevykonaná.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96} (PUP.Software.Updater) -> Žiadna úloha nevykonaná.

Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 6
C:\Program Files (x86)\BetterSurf (PUP.Optional.BetterSurf) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\BetterSurf\ch (PUP.Optional.BetterSurf) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\BetterSurf\ff (PUP.Optional.BetterSurf) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\BetterSurf\ff\chrome (PUP.Optional.BetterSurf) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\BetterSurf\ff\chrome\content (PUP.Optional.BetterSurf) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\BetterSurf\ie (PUP.Optional.BetterSurf) -> Žiadna úloha nevykonaná.

Detegované súbory: 9
C:\Program Files (x86)\TC UP\PLUGINS\Tools\Revelation\Revelation.exe (HackTool.Snadboy) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\TC UP\PLUGINS\Tools\Revelation\RevelationHelper.dll (PUP.PWSTool.SnadBoy) -> Žiadna úloha nevykonaná.
C:\Users\XYX\Desktop\ERROR LOGS NOVEMBER 2011\Daemon tools (PUP.Optional.OpenCandy) -> Žiadna úloha nevykonaná.
D:\Instalacky\DTLite4452-0287.exe (PUP.Optional.OpenCandy) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\BetterSurf\ff\build.cmd (PUP.Optional.BetterSurf) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\BetterSurf\ff\chrome.manifest (PUP.Optional.BetterSurf) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\BetterSurf\ff\install.rdf (PUP.Optional.BetterSurf) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\BetterSurf\ff\chrome\content\firefox.js (PUP.Optional.BetterSurf) -> Žiadna úloha nevykonaná.
C:\Program Files (x86)\BetterSurf\ff\chrome\content\overlay.xul (PUP.Optional.BetterSurf) -> Žiadna úloha nevykonaná.

(koniec)

Nyninejsi nalezy MBAMu smazte, objevi se log, ten rad uvidim

V karantene jsou soubory neskodne

Otázky na upresnenie:
1. ,,Nyninejsi nalezy MBAMu smazte,, znamená pre mňa
1.A) že mám zmazať súbor C:\Users\XYX\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\MBAM-log-2013-11-25 (23-33-59).txt ,ktorého obsah už je vložený vyžšie,
alebo 1.B) že mám ručne vymazať priečinky a súbory ktoré mbam našiel a sú zobrazené v tomto už zverejnenom logu?Nálezy tejto kontroly niesú v karanténe,takže ručne by som dokázal vymazať iba priečinky a súbory,no registre by ostali.
alebo 1.C)by som urobil kontrolu znovu,a všetko dal do karentény a potom aj vymazal.
1.D) iné ???

2. ,,Nyninejsi nalezy MBAMu smazte, objevi se log, ten rad uvidim,,
2.a)existuje ešte ďalší-iný log kt. mbam vytvára na nejakom inom mieste v PC okrem C:\Users\XYX\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\MBAM-log-2013-11-25 (23-33-59).txt a c:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Logs\protection-log-2013-11-26.txt .
2.B)Ak existuje alebo ak chcete/chceš iný súbor/y z iného miesta s iným názvom/formátom tak napíš z akého miesta alebo priečinka a približný názov/tvar názvu súboru a príponu súboru.TCup- príkazy- hľadať .. ,nájdem ho a vložím ako text alebo pošlem v zaheslovanom archíve.

3. ,,V karantene jsou soubory neskodne,, Ja mám v karanténa Mbamu iba súbory ktoré sú zobrazené na screene http://img5.imageshack.us/img5/8688/4u9y.jpg .Sú to súbory-registre iba z predchádzajucej starej verzie Mbamu a log ku súborom v karanténe nemám.Možno je tam=v karanténe aj nejaký súbor-register detekovaný tesne po inštalácii novej verzie mbamu. Z novej kontroly nebola žiadna akcia vykonaná pre všetky súbory-registre detekované pri novej=poslednej=horezverejnenej kontrole.
Takže ,,V karantene jsou soubory neskodne,, znamená pre mňa že
3.A) konkrétne súbory v mojom prípade viď screen karantény sú neškodné=nepatria tam =falošný poplach = môžem ich obnoviť
3.B) ako vo všeobecností pri karanténach rôznych AV= že tieto súbory sú tam sú izolované,nedajú sa spúšťať,používať,kopírovať,nerobia ďalšiu škodu

Marek 158 píše:Otázky na upresnenie:
alebo 1.C)by som urobil kontrolu znovu,a všetko dal do karentény a potom aj vymazal.

Toto

Marek 158 píše:2. ,,Nyninejsi nalezy MBAMu smazte, objevi se log, ten rad uvidim

Jak provedete krok vyse, tak vyskoci log

Marek 158 píše: 3.B) ako vo všeobecností pri karanténach rôznych AV= že tieto súbory sú tam sú izolované,nedajú sa spúšťať,používať,kopírovať,nerobia ďalšiu škodu

Toto

Zdravím.Vymazal=odstránil som všetky súbory kt. už boli predtým v karanténe,a aj horezverejnený log mbamu.Tu je screen nájdených hrozieb po najnovšej kontrole http://img824.imageshack.us/img824/4418/ek9g.jpg ,všetky nálezy som dal som dal do karantény.Po výzve na uloženie výpisu-logu,log vložím nakoniec,ma mbam vyzval na súrny reštart.Po reštarte mi zamrzol PC=nenabehol windovs,iba čierna obrazovka,na ktorej bolo iba okno(časť okna) s utilitkou ku grafike Asus smart doctor v záhlaví utilitky ,,(inicializuje sa),, a neskôr ,,(nereaguje),, .Asi po 5minútach bez zmeny som reštartoval ešte raz a PC už nabehol normálne.Všetky hrozby kt. sú na screene http://img824.imageshack.us/img824/4418/ek9g.jpg sú teraz v karanténe mbamu.

Malwarebytes Anti-Malware (Skúšobná verzia) 1.75.0.1300
http://www.malwarebytes.org

Verzia databázy: v2013.11.26.13

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16736
XYX :: XYX-PC [administrátor]

Ochrana: Zapnuté

27. 11. 2013 0:50:02
mbam-log-2013-11-27 (00-50-02).txt

Typ kontroly: Úplná kontrola (C:\|D:\|)
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM | P2P
Možnosti kontroly vypnuté:
Objektov kontrolovaných: 484922
Uplynutý čas: 56 min, 38 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 12
HKCR\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9} (PUP.Software.Updater) -> Pridanie do karantény a zmazanie úspešné.
HKCR\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476} (PUP.Software.Updater) -> Pridanie do karantény a zmazanie úspešné.
HKCR\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67} (PUP.Software.Updater) -> Pridanie do karantény a zmazanie úspešné.
HKCR\Updater.AmiUpd.1 (PUP.Software.Updater) -> Pridanie do karantény a zmazanie úspešné.
HKCR\Updater.AmiUpd (PUP.Software.Updater) -> Pridanie do karantény a zmazanie úspešné.
HKCR\CLSID\{6E3C6B04-08FE-43BC-8E50-F90285024DEA} (PUP.Optional.BetterSurf) -> Pridanie do karantény a zmazanie úspešné.
HKCR\CLSID\{A6FEED89-3BCD-4D19-9DC2-3E613A80A2A4} (PUP.Optional.Amonetize.A) -> Pridanie do karantény a zmazanie úspešné.
HKCR\TypeLib\{1C1356DA-1E98-4810-A9F6-18D89BD1C0C0} (PUP.Optional.Amonetize.A) -> Pridanie do karantény a zmazanie úspešné.
HKCR\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7} (PUP.Optional.Amonetize.A) -> Pridanie do karantény a zmazanie úspešné.
HKCR\AmiBs.Installer.1 (PUP.Optional.Amonetize.A) -> Pridanie do karantény a zmazanie úspešné.
HKCR\AmiBs.Installer (PUP.Optional.Amonetize.A) -> Pridanie do karantény a zmazanie úspešné.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96} (PUP.Software.Updater) -> Pridanie do karantény a zmazanie úspešné.

Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 6
C:\Program Files (x86)\BetterSurf (PUP.Optional.BetterSurf) -> Pridanie do karantény a zmazanie úspešné.
C:\Program Files (x86)\BetterSurf\ch (PUP.Optional.BetterSurf) -> Pridanie do karantény a zmazanie úspešné.
C:\Program Files (x86)\BetterSurf\ff (PUP.Optional.BetterSurf) -> Pridanie do karantény a zmazanie úspešné.
C:\Program Files (x86)\BetterSurf\ff\chrome (PUP.Optional.BetterSurf) -> Pridanie do karantény a zmazanie úspešné.
C:\Program Files (x86)\BetterSurf\ff\chrome\content (PUP.Optional.BetterSurf) -> Pridanie do karantény a zmazanie úspešné.
C:\Program Files (x86)\BetterSurf\ie (PUP.Optional.BetterSurf) -> Pridanie do karantény a zmazanie úspešné.

Detegované súbory: 9
C:\Program Files (x86)\TC UP\PLUGINS\Tools\Revelation\Revelation.exe (HackTool.Snadboy) -> Pridanie do karantény a zmazanie úspešné.
C:\Program Files (x86)\TC UP\PLUGINS\Tools\Revelation\RevelationHelper.dll (PUP.PWSTool.SnadBoy) -> Pridanie do karantény a zmazanie úspešné.
C:\Users\XYX\Desktop\ERROR LOGS NOVEMBER 2011\Daemon tools (PUP.Optional.OpenCandy) -> Pridanie do karantény a zmazanie úspešné.
D:\Instalacky\DTLite4452-0287.exe (PUP.Optional.OpenCandy) -> Pridanie do karantény a zmazanie úspešné.
C:\Program Files (x86)\BetterSurf\ff\build.cmd (PUP.Optional.BetterSurf) -> Pridanie do karantény a zmazanie úspešné.
C:\Program Files (x86)\BetterSurf\ff\chrome.manifest (PUP.Optional.BetterSurf) -> Pridanie do karantény a zmazanie úspešné.
C:\Program Files (x86)\BetterSurf\ff\install.rdf (PUP.Optional.BetterSurf) -> Pridanie do karantény a zmazanie úspešné.
C:\Program Files (x86)\BetterSurf\ff\chrome\content\firefox.js (PUP.Optional.BetterSurf) -> Pridanie do karantény a zmazanie úspešné.
C:\Program Files (x86)\BetterSurf\ff\chrome\content\overlay.xul (PUP.Optional.BetterSurf) -> Pridanie do karantény a zmazanie úspešné.

(koniec)

Poprosim o log dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100

Vkladám logy:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-11-2013 01
Ran by XYX (administrator) on XYX-PC on 29-11-2013 01:06:02
Running from C:\Users\XYX\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Windows\SysWOW64\ASDR.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
(Broadcom Corporation.) C:\Program Files\Bluetooth Software\btwdins.exe
() C:\Windows\DAODx.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHelp.exe
(
ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\GPU Boost Driver\GpuBoostServer.exe
(Microsoft Corporation) C:\Windows\System32\CISVC.EXE
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUSTeK Inc.) C:\Program Files (x86)\ASUS\SmartDoctor\SmartDoctor.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(
ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU\EPU.exe
(Vimicro Corporation) C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe
() C:\Program Files (x86)\Gaming Mouse\hid.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Gaming Mouse\Tray.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(RealNetworks, Inc.) C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
(Microsoft Corporation) C:\Windows\System32\perfmon.exe
(forum.viry.cz) C:\Users\XYX\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10038304 2010-01-29] (Realtek Semiconductor)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [717696 2010-01-16] (Microsoft Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3478336 2012-01-24] (DT Soft Ltd)
HKLM-x32\...\Run: [Six Engine] - C:\Program Files (x86)\ASUS\EPU\EPU.exe [5309056 2010-03-16] (
ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [VMonitorVMUVC] - C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe [143360 2008-08-29] (Vimicro Corporation)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-01-21] (Microsoft Corporation)
HKLM-x32\...\Run: [TurboV EVO] - C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe [9936512 2010-07-15] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Gaming Mouse Hid] - C:\Program Files (x86)\Gaming Mouse\hid.exe [428544 2010-01-19] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-10-08] (Advanced Micro Devices, Inc.)
Startup: C:\Users\XYX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Obrazovková spinka a spúšťač programu OneNote 2010.lnk
ShortcutTarget: Obrazovková spinka a spúšťač programu OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x808EFA547323CC01
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
Toolbar: HKLM-x32 - DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} http://195.28.70.134/kapor2/lib/mgaxctrl.cab
DPF: HKLM-x32 {A6616B31-4860-41E2-98E3-CA7649AF172F} file:///E:/launch.ocx
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.81.146.10 213.81.146.12

FireFox:
========
FF ProfilePath: C:\Users\XYX\AppData\Roaming\Mozilla\Firefox\Profiles\frlt3c6h.default
FF Homepage: hxxp://www.google.sk/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.1.18 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.4.53 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.4.53 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.1.18 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\XYX\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Users\XYX\AppData\Roaming\Mozilla\Firefox\Profiles\frlt3c6h.default\searchplugins\google-default.xml
FF SearchPlugin: C:\Users\XYX\AppData\Roaming\Mozilla\Firefox\Profiles\frlt3c6h.default\searchplugins\torrentz-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\zoznam-sk.xml
FF Extension: Adblock Plus - C:\Users\XYX\AppData\Roaming\Mozilla\Firefox\Profiles\frlt3c6h.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: dta - C:\Users\XYX\AppData\Roaming\Mozilla\Firefox\Profiles\frlt3c6h.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [{DAC3F861-B30D-40dd-9166-F4E75327FAC7}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF HKLM-x32\...\Firefox\Extensions: [xz123@ya456.com] - C:\Program Files (x86)\BetterSurf\ff
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\nprpplugin.dll (RealPlayer)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U17) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
CHR Plugin: (RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (Unity Player) - C:\Users\XYX\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll No File
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\XYX\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_110.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\Windows\SysWOW64\npDeployJava1.dll No File
CHR Extension: (Google Docs) - C:\Users\XYX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\XYX\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\XYX\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (panda dumpling) - C:\Users\XYX\AppData\Local\Google\Chrome\User Data\Default\Extensions\caaclfkfmcnlppkambfehbfhlekhpenf\1.0_0
CHR Extension: (Google Search) - C:\Users\XYX\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (RealDownloader) - C:\Users\XYX\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.1_0
CHR Extension: (Skype Click to Call) - C:\Users\XYX\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.9.0.12585_0
CHR Extension: (Google Wallet) - C:\Users\XYX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Users\XYX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files (x86)\BetterSurf\ch\Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-10-08] (Advanced Micro Devices, Inc.)
R2 ASDR; C:\Windows\SysWOW64\ASDR.exe [61440 2009-07-27] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [109056 2010-06-24] ()
R2 btwdins; C:\Program Files\Bluetooth Software\btwdins.exe [844328 2009-03-01] (Broadcom Corporation.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [75064 2013-06-09] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-03-06] ()
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R3 AsusgmsFltr; C:\Windows\System32\drivers\Asusgms.sys [11520 2010-01-11] (Primax Ltd)
S3 asusgsb; C:\Windows\System32\drivers\asusgsb.sys [17792 2009-02-17] (ASUSTeK Computer Inc.)
S3 DIRECTIO; C:\Program Files\PerformanceTest\DirectIo64.sys [25704 2012-08-13] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-02-01] (DT Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R1 EIO64; C:\Windows\System32\DRIVERS\EIO64.sys [16384 2011-07-02] (ASUSTeK Computer Inc.)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [23680 2010-02-22] (ASUSTeK Computer Inc.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564792 2012-02-01] (Duplex Secure Ltd.)
S1 VD_FileDisk; C:\Windows\System32\Drivers\VD_FileDisk.sys [23552 2009-10-25] (Flint Incorporation)
S3 VMUVC; C:\Windows\System32\Drivers\VMUVC.sys [197120 2008-08-29] (Vimicro Corporation)
S3 vvftUVC; C:\Windows\System32\drivers\vvftUVC.sys [303616 2008-07-01] (Vimicro Corporation)
U3 aqrv63jt; C:\Windows\System32\Drivers\aqrv63jt.sys [0 ] (Advanced Micro Devices)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-11-29 01:06 - 2013-11-29 01:07 - 00022456 _____ C:\Users\XYX\Desktop\FRST.txt
2013-11-29 01:04 - 2013-11-29 01:04 - 00000000 ____D C:\FRST
2013-11-28 23:39 - 2013-11-28 23:39 - 01958850 _____ (Farbar) C:\Users\XYX\Desktop\FRST64.exe
2013-11-28 23:33 - 2013-11-27 21:33 - 00112640 _____ (forum.viry.cz) C:\Users\XYX\Desktop\FRSTLauncher.exe
2013-11-27 19:42 - 2013-11-27 19:42 - 00734720 _____ C:\Users\XYX\Downloads\program-na-34.-cezr.-tyzden.xls
2013-11-25 21:51 - 2013-11-25 21:51 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-25 17:53 - 2013-11-25 17:54 - 00863232 _____ C:\Users\XYX\Downloads\Krskova.ppt
2013-11-24 13:53 - 2013-11-24 13:53 - 00000000 ____D C:\ProgramData\ESET
2013-11-24 13:53 - 2013-11-24 13:53 - 00000000 ____D C:\Program Files\ESET
2013-11-24 13:34 - 2013-11-24 13:34 - 00098662 _____ C:\Users\XYX\Documents\eset export nastavení.xml
2013-11-23 02:53 - 2013-11-23 03:02 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-11-23 02:38 - 2013-11-23 22:45 - 00000000 ____D C:\Program Files\trend micro
2013-11-23 02:38 - 2013-11-23 02:37 - 00935175 _____ C:\Users\XYX\Desktop\RSITx64.exe
2013-11-23 02:23 - 2013-11-23 02:23 - 00022513 _____ C:\ComboFix.txt
2013-11-23 02:12 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-11-23 02:12 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-11-23 02:12 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-11-23 02:12 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-11-23 02:12 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-11-23 02:12 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-11-23 02:12 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-11-23 02:12 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-11-23 02:11 - 2013-11-23 02:23 - 00000000 ____D C:\Windows\erdnt
2013-11-23 02:11 - 2013-11-23 02:23 - 00000000 ____D C:\Qoobox
2013-11-23 01:44 - 2013-11-27 02:23 - 00006002 _____ C:\Windows\PFRO.log
2013-11-23 01:27 - 2013-11-23 03:02 - 00000000 ____D C:\Users\XYX\Desktop\mbar
2013-11-23 01:27 - 2013-11-23 02:53 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-11-23 01:03 - 2013-11-23 02:38 - 00000000 ____D C:\rsit
2013-11-23 01:03 - 2013-11-23 02:34 - 00000000 ____D C:\Program Files (x86)\trend micro
2013-11-15 01:31 - 2013-11-15 01:31 - 00001082 _____ C:\Users\XYX\Desktop\EVEREST Ultimate Edition.lnk
2013-11-15 01:31 - 2013-11-15 01:31 - 00000000 ____D C:\Program Files (x86)\Lavalys
2013-11-12 23:10 - 2013-10-12 09:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-12 23:10 - 2013-10-12 09:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-12 23:10 - 2013-10-12 09:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-12 23:10 - 2013-10-12 09:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-12 23:10 - 2013-10-12 09:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-12 23:10 - 2013-10-12 09:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-12 23:10 - 2013-10-12 09:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-12 23:10 - 2013-10-12 09:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-12 23:10 - 2013-10-12 09:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-12 23:10 - 2013-10-12 09:43 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-12 23:10 - 2013-10-12 09:43 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-12 23:10 - 2013-10-12 09:43 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-12 23:10 - 2013-10-12 09:43 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-12 23:10 - 2013-10-12 09:43 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-12 23:10 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-12 23:10 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-12 23:10 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-12 23:10 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-12 23:10 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-12 23:10 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-12 23:10 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-12 23:10 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-12 23:10 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-12 23:10 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-12 23:10 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-12 23:10 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-12 23:10 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-12 23:10 - 2013-10-12 07:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-12 23:10 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-12 23:10 - 2013-10-12 06:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-12 23:10 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-12 23:09 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-11-12 23:09 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-11-12 23:09 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-11-12 23:09 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-11-12 23:09 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-11-12 23:09 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-11-12 23:09 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-11-12 23:09 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2013-11-12 23:09 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-11-12 23:09 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-11-12 23:09 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-11-12 23:09 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-11-12 23:09 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-11-12 23:09 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-11-12 23:09 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2013-11-12 23:09 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-11-12 23:09 - 2013-10-01 21:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-11-12 23:09 - 2013-10-01 21:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-11-12 23:06 - 2013-09-25 03:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2013-11-12 23:06 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2013-11-12 22:57 - 2013-11-12 22:57 - 00275960 _____ C:\Windows\Minidump\111213-24788-01.dmp
2013-11-12 21:23 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-12 21:23 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-12 21:23 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-12 21:23 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-12 21:23 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-12 21:23 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-12 21:23 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-12 21:23 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-12 21:23 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-12 21:23 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-12 21:23 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-12 21:23 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-12 21:23 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-12 21:23 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-12 21:23 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-12 21:23 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-12 21:23 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-12 21:23 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-12 21:23 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-12 21:23 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-12 21:23 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-12 21:23 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-12 21:23 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-12 21:23 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-12 21:23 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-12 21:23 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-12 21:23 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-12 21:23 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-12 21:23 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-12 21:23 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-07 11:18 - 2013-11-07 11:18 - 00000000 ___SH C:\Users\XYX\AppData\Local\LumaEmu
2013-11-07 11:03 - 2013-11-07 11:03 - 00000000 ____D C:\ProgramData\Steam
2013-11-07 10:53 - 2013-11-07 10:53 - 00017437 _____ C:\Windows\DirectX.log
2013-11-07 10:51 - 2013-11-07 10:51 - 00000521 _____ C:\Users\Public\Desktop\Call of Duty Ghosts.lnk
2013-11-07 09:41 - 2013-11-27 17:07 - 00003954 _____ C:\Windows\setupact.log
2013-11-07 09:41 - 2013-11-07 09:41 - 00000000 _____ C:\Windows\setuperr.log
2013-11-05 23:29 - 2013-11-23 02:24 - 00000000 ____D C:\Users\XYX\AppData\Local\Apps\2.0
2013-11-05 23:29 - 2013-11-07 00:28 - 00000000 ____D C:\Users\XYX\AppData\Local\Deployment
2013-11-05 23:29 - 2013-11-05 23:29 - 00000318 _____ C:\Users\XYX\Desktop\CZShare Manager.appref-ms
2013-11-05 23:29 - 2013-11-05 23:29 - 00000000 ____D C:\Users\XYX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CZShare
2013-11-05 15:37 - 2013-11-05 15:37 - 00000935 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-05 14:53 - 2013-11-05 14:54 - 00000807 _____ C:\Users\XYX\Desktop\Bianka - odkaz.lnk
2013-11-03 22:39 - 2013-11-03 22:39 - 00000000 ____D C:\Users\XYX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2013-11-03 17:18 - 2013-11-03 17:18 - 00000981 _____ C:\Users\XYX\Desktop\bf4.exe - odkaz.lnk
2013-11-03 16:33 - 2013-11-03 16:33 - 00000000 ____D C:\ProgramData\ATI
2013-11-03 16:32 - 2013-11-03 16:32 - 00066505 _____ C:\Windows\SysWOW64\CCCInstall_201311031632329202.log
2013-11-03 16:32 - 2013-11-03 16:32 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-11-03 16:31 - 2013-11-03 16:31 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-11-02 21:37 - 2013-11-02 21:39 - 00000000 ____D C:\Users\XYX\Documents\Battlefield 4
2013-11-02 21:26 - 2013-11-02 21:26 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-02 21:25 - 2013-11-07 10:56 - 00000000 ____D C:\ProgramData\Package Cache
2013-10-28 19:28 - 2013-10-28 19:28 - 00001391 _____ C:\Users\XYX\Desktop\Play Transformers Fall of Cybertron.lnk

==================== One Month Modified Files and Folders =======
2013-11-29 01:07 - 2013-11-29 01:06 - 00022456 _____ C:\Users\XYX\Desktop\FRST.txt
2013-11-29 01:04 - 2013-11-29 01:04 - 00000000 ____D C:\FRST
2013-11-29 01:02 - 2011-06-15 01:02 - 00007635 _____ C:\Users\XYX\AppData\Local\Resmon.ResmonCfg
2013-11-29 00:59 - 2013-11-29 00:59 - 01958850 _____ (Farbar) C:\Users\XYX\Desktop\FRST64.exe
2013-11-29 00:53 - 2013-11-29 00:53 - 00112640 _____ (forum.viry.cz) C:\Users\XYX\Desktop\FRSTLauncher.exe
2013-11-28 22:56 - 2011-08-11 19:49 - 00000930 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-28 22:54 - 2011-12-07 22:43 - 00001034 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3864379855-2534496591-635750371-1000UA.job
2013-11-28 22:54 - 2011-12-07 22:43 - 00001012 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3864379855-2534496591-635750371-1000Core.job
2013-11-28 22:33 - 2011-06-02 20:13 - 01531605 _____ C:\Windows\WindowsUpdate.log
2013-11-28 21:51 - 2009-07-14 05:45 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-28 21:51 - 2009-07-14 05:45 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-28 21:48 - 2011-06-04 21:58 - 00694094 _____ C:\Windows\system32\perfh005.dat
2013-11-28 21:48 - 2011-06-04 21:58 - 00181058 _____ C:\Windows\system32\perfh01B.dat
2013-11-28 21:48 - 2011-06-04 21:58 - 00152866 _____ C:\Windows\system32\perfc005.dat
2013-11-28 21:48 - 2011-06-04 21:58 - 00046852 _____ C:\Windows\system32\perfc01B.dat
2013-11-28 21:48 - 2009-07-14 06:13 - 01885438 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-28 21:44 - 2013-11-07 09:41 - 00004066 _____ C:\Windows\setupact.log
2013-11-28 21:44 - 2012-12-26 19:34 - 00003332 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3864379855-2534496591-635750371-1000
2013-11-28 21:44 - 2012-12-26 19:34 - 00003194 _____ C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3864379855-2534496591-635750371-1000
2013-11-28 21:44 - 2011-08-11 19:49 - 00000926 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-28 21:44 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-28 19:30 - 2013-09-04 22:48 - 00003354 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3864379855-2534496591-635750371-1000
2013-11-28 19:30 - 2013-02-04 10:51 - 00003216 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3864379855-2534496591-635750371-1000
2013-11-27 21:03 - 2013-09-15 16:29 - 00263680 ___SH C:\Users\XYX\Desktop\Thumbs.db
2013-11-27 19:42 - 2013-11-27 19:42 - 00734720 _____ C:\Users\XYX\Downloads\program-na-34.-cezr.-tyzden.xls
2013-11-27 02:23 - 2013-11-23 01:44 - 00006002 _____ C:\Windows\PFRO.log
2013-11-27 02:21 - 2012-06-25 20:16 - 00000000 ____D C:\Users\XYX\AppData\Roaming\vlc
2013-11-27 02:19 - 2011-11-08 21:46 - 00000000 ____D C:\Users\XYX\Desktop\ERROR LOGS NOVEMBER 2011
2013-11-26 01:56 - 2013-05-28 18:41 - 00000000 ____D C:\Users\XYX\Documents\Battlefield 2
2013-11-25 21:51 - 2013-11-25 21:51 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-25 19:38 - 2009-07-14 06:08 - 00032546 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-25 17:54 - 2013-11-25 17:53 - 00863232 _____ C:\Users\XYX\Downloads\Krskova.ppt
2013-11-24 19:52 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-24 13:53 - 2013-11-24 13:53 - 00000000 ____D C:\ProgramData\ESET
2013-11-24 13:53 - 2013-11-24 13:53 - 00000000 ____D C:\Program Files\ESET
2013-11-24 13:34 - 2013-11-24 13:34 - 00098662 _____ C:\Users\XYX\Documents\eset export nastavení.xml
2013-11-23 22:45 - 2013-11-23 02:38 - 00000000 ____D C:\Program Files\trend micro
2013-11-23 03:02 - 2013-11-23 02:53 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-11-23 03:02 - 2013-11-23 01:27 - 00000000 ____D C:\Users\XYX\Desktop\mbar
2013-11-23 02:53 - 2013-11-23 01:27 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-11-23 02:38 - 2013-11-23 01:03 - 00000000 ____D C:\rsit
2013-11-23 02:37 - 2013-11-23 02:38 - 00935175 _____ C:\Users\XYX\Desktop\RSITx64.exe
2013-11-23 02:34 - 2013-11-23 01:03 - 00000000 ____D C:\Program Files (x86)\trend micro
2013-11-23 02:24 - 2013-11-05 23:29 - 00000000 ____D C:\Users\XYX\AppData\Local\Apps\2.0
2013-11-23 02:23 - 2013-11-23 02:23 - 00022513 _____ C:\ComboFix.txt
2013-11-23 02:23 - 2013-11-23 02:11 - 00000000 ____D C:\Windows\erdnt
2013-11-23 02:23 - 2013-11-23 02:11 - 00000000 ____D C:\Qoobox
2013-11-23 02:23 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-11-23 02:22 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-11-23 01:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Speech
2013-11-21 22:12 - 2012-11-25 13:44 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-21 22:12 - 2011-08-12 09:00 - 00000000 ____D C:\Users\XYX\AppData\Local\Adobe
2013-11-21 02:47 - 2013-03-10 13:20 - 00000000 ____D C:\Users\XYX\Desktop\DOWNLOADED FILEs
2013-11-18 00:27 - 2011-06-02 21:55 - 00000000 ____D C:\Users\XYX\AppData\Roaming\Skype
2013-11-17 19:25 - 2011-08-11 19:50 - 00002155 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-15 01:31 - 2013-11-15 01:31 - 00001082 _____ C:\Users\XYX\Desktop\EVEREST Ultimate Edition.lnk
2013-11-15 01:31 - 2013-11-15 01:31 - 00000000 ____D C:\Program Files (x86)\Lavalys
2013-11-12 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sk-SK
2013-11-12 23:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sk-SK
2013-11-12 23:09 - 2011-06-04 20:02 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-12 23:08 - 2013-08-14 18:34 - 00000000 ____D C:\Windows\system32\MRT
2013-11-12 23:07 - 2011-06-04 20:54 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-12 22:57 - 2013-11-12 22:57 - 00275960 _____ C:\Windows\Minidump\111213-24788-01.dmp
2013-11-12 22:57 - 2011-06-05 18:07 - 00000000 ____D C:\Windows\Minidump
2013-11-11 05:50 - 2011-06-02 21:44 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-09 00:10 - 2012-05-03 20:38 - 00000000 ____D C:\Program Files (x86)\Steam
2013-11-07 11:18 - 2013-11-07 11:18 - 00000000 ___SH C:\Users\XYX\AppData\Local\LumaEmu
2013-11-07 11:03 - 2013-11-07 11:03 - 00000000 ____D C:\ProgramData\Steam
2013-11-07 10:56 - 2013-11-02 21:25 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-07 10:53 - 2013-11-07 10:53 - 00017437 _____ C:\Windows\DirectX.log
2013-11-07 10:51 - 2013-11-07 10:51 - 00000521 _____ C:\Users\Public\Desktop\Call of Duty Ghosts.lnk
2013-11-07 09:41 - 2013-11-07 09:41 - 00000000 _____ C:\Windows\setuperr.log
2013-11-07 00:28 - 2013-11-05 23:29 - 00000000 ____D C:\Users\XYX\AppData\Local\Deployment
2013-11-05 23:29 - 2013-11-05 23:29 - 00000318 _____ C:\Users\XYX\Desktop\CZShare Manager.appref-ms
2013-11-05 23:29 - 2013-11-05 23:29 - 00000000 ____D C:\Users\XYX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CZShare
2013-11-05 15:37 - 2013-11-05 15:37 - 00000935 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-05 15:37 - 2013-02-28 23:49 - 00000000 ____D C:\Program Files (x86)\VLC
2013-11-05 14:54 - 2013-11-05 14:53 - 00000807 _____ C:\Users\XYX\Desktop\Bianka - odkaz.lnk
2013-11-04 17:54 - 2011-06-04 23:21 - 01844046 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-11-03 22:39 - 2013-11-03 22:39 - 00000000 ____D C:\Users\XYX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2013-11-03 17:18 - 2013-11-03 17:18 - 00000981 _____ C:\Users\XYX\Desktop\bf4.exe - odkaz.lnk
2013-11-03 16:33 - 2013-11-03 16:33 - 00000000 ____D C:\ProgramData\ATI
2013-11-03 16:32 - 2013-11-03 16:32 - 00066505 _____ C:\Windows\SysWOW64\CCCInstall_201311031632329202.log
2013-11-03 16:32 - 2013-11-03 16:32 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-11-03 16:32 - 2011-07-01 20:58 - 00000000 ____D C:\ProgramData\AMD
2013-11-03 16:32 - 2011-06-02 21:22 - 00000000 ____D C:\Program Files\ATI Technologies
2013-11-03 16:31 - 2013-11-03 16:31 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-11-02 21:39 - 2013-11-02 21:37 - 00000000 ____D C:\Users\XYX\Documents\Battlefield 4
2013-11-02 21:26 - 2013-11-02 21:26 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-02 20:58 - 2011-06-02 21:26 - 00109712 _____ C:\Users\XYX\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-02 12:12 - 2009-07-14 05:45 - 00417616 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-01 17:51 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-11-01 15:32 - 2011-06-02 21:55 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-01 15:32 - 2011-06-02 21:55 - 00000000 ____D C:\ProgramData\Skype
2013-10-31 03:54 - 2013-03-20 22:58 - 00000000 ____D C:\Users\XYX\Desktop\Ak ma nepotrebuješ,vymaž ma
2013-10-29 23:18 - 2013-10-29 23:18 - 00001074 _____ C:\Users\XYX\Desktop\ThunderWolves.exe - odkaz.lnk
2013-10-29 22:09 - 2013-10-29 22:09 - 00000000 ____D C:\Users\XYX\AppData\Roaming\Thunder Wolves
2013-10-28 23:14 - 2011-07-05 14:43 - 00000000 ____D C:\Users\XYX\Documents\My Games
2013-10-28 19:28 - 2013-10-28 19:28 - 00001391 _____ C:\Users\XYX\Desktop\Play Transformers Fall of Cybertron.lnk

Some content of TEMP:
====================
C:\Users\XYX\AppData\Local\Temp\InstHelper.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2013-11-24 19:42

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:70.02 GB) (Free:9.42 GB) NTFS
Drive d: () (Fixed) (Total:526.05 GB) (Free:16.28 GB) NTFS

Available physical RAM: 2675.37 MB
Total physical RAM: 4094.18 MB
Percentage of memory in use: 34%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: 4594DC16)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=70 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=526 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3864379855-2534496591-635750371-1000Core.job => C:\Users\XYX\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3864379855-2534496591-635750371-1000UA.job => C:\Users\XYX\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET personal firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\XYX\Desktop" je 6132 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
"c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot [x]

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-11-2013 01
Ran by XYX at 2013-11-28 01:07:10
Running from C:\Users\XYX\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET personal firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

µTorrent (x32 Version: 3.0.0)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.152)
Adobe Reader X (10.1.8) - Czech (x32 Version: 10.1.8)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.4.144)
AMD Accelerated Video Transcoding (Version: 13.15.100.31008)
AMD Catalyst Control Center (x32 Version: 2013.1008.932.15229)
AMD Catalyst Install Manager (Version: 8.0.915.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2013.1008.932.15229)
AMD Media Foundation Decoders (Version: 1.0.81008.0920)
ASUS PC Diagnostics (x32 Version: 1.1.0)
ASUS Smart Doctor (x32 Version: 5.74)
ASUS VGA Driver (x32 Version: 3.0.0.1)
aTube Catcher (x32 Version: 2.3.570)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (x32 Version: 6.5.5.24)
Battlefield 3™ (x32 Version: 1.0.0.0)
Battlefield 4™ (x32 Version: 1.0.0.0)
Battlelog Web Plugins (x32 Version: 2.3.0)
Call of Duty Ghosts (x32 Version: 1)
Call of Duty Modern Warfare 2 (x32)
Canyon USB2.0 PC Camera (x32 Version: 2008.05.14)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.1008.932.15229)
Catalyst Control Center InstallProxy (x32 Version: 2013.1008.932.15229)
Catalyst Control Center Localization All (x32 Version: 2013.1008.932.15229)
CCC Help Czech (x32 Version: 2013.1008.0931.15229)
CCC Help Danish (x32 Version: 2013.1008.0931.15229)
CCC Help Dutch (x32 Version: 2013.1008.0931.15229)
CCC Help English (x32 Version: 2013.1008.0931.15229)
CCC Help Finnish (x32 Version: 2013.1008.0931.15229)
CCC Help French (x32 Version: 2013.1008.0931.15229)
CCC Help German (x32 Version: 2013.1008.0931.15229)
CCC Help Greek (x32 Version: 2013.1008.0931.15229)
CCC Help Hungarian (x32 Version: 2013.1008.0931.15229)
CCC Help Chinese Standard (x32 Version: 2013.1008.0931.15229)
CCC Help Chinese Traditional (x32 Version: 2013.1008.0931.15229)
CCC Help Italian (x32 Version: 2013.1008.0931.15229)
CCC Help Japanese (x32 Version: 2013.1008.0931.15229)
CCC Help Korean (x32 Version: 2013.1008.0931.15229)
CCC Help Norwegian (x32 Version: 2013.1008.0931.15229)
CCC Help Polish (x32 Version: 2013.1008.0931.15229)
CCC Help Portuguese (x32 Version: 2013.1008.0931.15229)
CCC Help Russian (x32 Version: 2013.1008.0931.15229)
CCC Help Spanish (x32 Version: 2013.1008.0931.15229)
CCC Help Swedish (x32 Version: 2013.1008.0931.15229)
CCC Help Thai (x32 Version: 2013.1008.0931.15229)
CCC Help Turkish (x32 Version: 2013.1008.0931.15229)
ccc-utility64 (Version: 2013.1008.932.15229)
CCleaner (Version: 3.02)
CZShare Manager (HKCU Version: 0.0.1.35)
DAEMON Tools Lite (x32 Version: 4.45.2.0287)
DAEMON Tools Toolbar (x32 Version: 1.1.7.0190)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
EPU (x32 Version: 1.02.20)
ESET Smart Security (Version: 7.0.302.26)
ESN Sonar (x32 Version: 0.70.4)
EVEREST Ultimate Edition v5.50 (x32 Version: 5.50)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
FileAlyzer 2 (x32 Version: 2.0.0.10)
Gaming Mouse (x32 Version: 1.00.0000)
Google Earth (x32 Version: 7.1.1.1888)
Google Chrome (x32 Version: 31.0.1650.57)
Google Update Helper (x32 Version: 1.3.21.165)
GPU Boost Driver (x32 Version: 1.01.15)
HP Deskjet 1000 J110 series Basic Device Software (Version: 21.0.952.0)
HP Deskjet 1000 J110 series Help (x32 Version: 140.0.63.63)
HP Deskjet 1000 J110 series Product Improvement Study (Version: 21.0.952.0)
Ice Age 2 The Meltdown (x32)
Java 7 Update 40 (64-bit) (Version: 7.0.400)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Malwarebytes Anti-Malware verzia 1.75.0.1300 (x32 Version: 1.75.0.1300)
Medal of Honor (TM) (x32 Version: 1.0.0.0)
Medal of Honor Airborne (x32)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Office Access MUI (Slovak) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (Slovak) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Groove MUI (Slovak) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (Slovak) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4734.1000)
Microsoft Office OneNote MUI (Slovak) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (Slovak) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (Slovak) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.4734.1000)
Microsoft Office Proof (Czech) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Hungarian) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Slovak) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (Slovak) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (Slovak) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (Slovak) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (Slovak) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (Slovak) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610)
MirrorMixup 1.08.1 (x32)
Mozilla Firefox 18.0.2 (x86 sk) (x32 Version: 18.0.2)
Mozilla Maintenance Service (x32 Version: 18.0.2)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
Nero 8 Lite 8.3.6.0 (x32 Version: 8.3.6.0)
NVIDIA PhysX (x32 Version: 9.10.0224)
PerformanceTest v8.0 (Version: 8.0.1022.0)
PunkBuster Services (x32 Version: 0.991)
RealDownloader (x32 Version: 1.3.1)
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0)
RealPlayer (x32 Version: 16.0.0)
Realtek Ethernet Controller Driver For Windows 7 (x32 Version: 7.21.531.2010)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6037)
RealUpgrade 1.1 (x32 Version: 1.1.0)
Sanctum (x32)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
Skype Click to Call (x32 Version: 6.9.12585)
Skype™ 6.9 (x32 Version: 6.9.106)
Steam (x32 Version: 1.0.0.0)
swMSM (x32 Version: 12.0.0.1)
T4E Player Skins (x32)
T4E.Live Player 1.1.4 (x32 Version: 1.1.4)
TeamViewer 6 (x32 Version: 6.0.10722)
The KMPlayer (x32 Version: 3.4.0.59)
Total Commander Ultima Prime 5.2.0.0 (x32 Version: 5.2.0.0)
TurboV EVO (x32 Version: 1.02.32)
Unreal Tournament 2004 Demo (x32)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1)
Update for Microsoft Office 2010 (KB2494150) (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
VLC media player 2.0.8 (x32 Version: 2.0.8)
War Thunder Launcher 1.0.1.278 (x32)
WIDCOMM Bluetooth Software (Version: 6.2.0.8000)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
World of Tanks (x32)
XviD MPEG-4 Video Codec (x32)

==================== Restore Points =========================

26-11-2013 13:40:34 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-11-23 02:22 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {2246B540-B738-4F4C-86A6-6BAB0397723B} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation)
Task: {35BEDE75-8B88-44A8-A4E5-CB9614DB503C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-08-11] (Google Inc.)
Task: {36001558-505B-4B2A-935B-B04180776A85} - System32\Tasks\ASUS\RunDAOD => C:\Windows\DAODx.exe [2009-03-30] ()
Task: {3873448A-351E-44C3-B480-984EDDE3B292} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3864379855-2534496591-635750371-1000 => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {3E4C07C9-9FA8-4E44-B17D-3C11CB510F53} - System32\Tasks\ASUS\TurboVHelp => C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHelp.exe [2010-07-07] (ASUSTeK Computer Inc.)
Task: {4AD838EA-740C-48F8-B0D4-2DBD790FAA4F} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3864379855-2534496591-635750371-1000Core => C:\Users\XYX\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-11] (Facebook Inc.)
Task: {4C966792-1050-4149-8012-92B677664DE9} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3864379855-2534496591-635750371-1000 => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {7C7F318C-F84A-43CC-869D-F1A547576AAD} - System32\Tasks\{A098FBED-954C-4001-81B2-9685207469C0} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2013-10-02] (Skype Technologies S.A.)
Task: {7F6F4952-FD4A-4DE9-AA8F-822F07B3D380} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3864379855-2534496591-635750371-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {88836B54-941D-4ABA-8F0E-10493515020A} - System32\Tasks\HPCustParticipation HP Deskjet 1000 J110 series => C:\Program Files\HP\HP Deskjet 1000 J110 series\Bin\HPCustPartic.exe [2010-04-15] (Hewlett-Packard Co.)
Task: {89947453-99A4-4364-8202-A3048D10DC25} - System32\Tasks\{78037583-7AF8-459C-B2A2-1428CF02C6FE} => Firefox.exe http://ui.skype.com/ui/0/6.3.0.107/cs/a ... rogressBar
Task: {970BC06C-C823-4DD2-8F37-13AA7C9AB7B8} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3864379855-2534496591-635750371-1000UA => C:\Users\XYX\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-11] (Facebook Inc.)
Task: {A0468880-CCF5-4265-8150-FE322AAE4F93} - System32\Tasks\ASUS\Gpu Boost Driver => C:\Program Files (x86)\ASUS\GPU Boost Driver\GpuBoostServer.exe [2010-03-27] (
ASUSTeK Computer Inc.)
Task: {AE2CF240-1CA9-4E75-96F4-E64A4CB5660F} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3864379855-2534496591-635750371-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {C14F28B9-FC39-4EED-95E3-3AC1D7FFA4B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-08-11] (Google Inc.)
Task: {CEBDAE27-CB9B-4856-A06B-A089D6D43DC2} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3864379855-2534496591-635750371-1000 => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {EC0D661A-F9FF-4C1E-BF72-E662D9A5482A} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-3864379855-2534496591-635750371-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-03-06] (RealNetworks, Inc.)
Task: {FD1318B1-5697-4CDF-8EF7-3203972CF5A7} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3864379855-2534496591-635750371-1000 => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {FD54F2C2-A7BA-404B-AD1D-7C9A7DE4B442} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {FFB9AC71-B1F2-4265-8634-142430920C9F} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3864379855-2534496591-635750371-1000Core.job => C:\Users\XYX\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3864379855-2534496591-635750371-1000UA.job => C:\Users\XYX\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2010-01-09 19:17 - 2010-01-09 19:17 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2011-06-21 23:22 - 2011-05-28 21:05 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2013-10-08 09:34 - 2013-10-08 09:34 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2011-06-05 18:01 - 2010-02-08 16:19 - 00053248 _____ () C:\Program Files (x86)\ASUS\TurboV EVO\HookKey32.dll
2011-06-05 18:01 - 2010-06-01 09:38 - 00253952 _____ () C:\Program Files (x86)\ASUS\TurboV EVO\pngio.dll
2007-02-28 17:34 - 2007-02-28 17:34 - 00643142 _____ () C:\Program Files (x86)\ASUS\SmartDoctor\aticlocklib.dll
2007-03-13 15:46 - 2007-03-13 15:46 - 00007168 _____ () C:\Program Files (x86)\ASUS\SmartDoctor\VOV32.dll
2011-06-02 23:40 - 2009-04-22 19:20 - 00179712 _____ () C:\Program Files (x86)\ASUS\EPU\ASUSSERVICE.DLL
2011-06-02 23:40 - 2010-01-08 16:17 - 00565248 _____ () C:\Program Files (x86)\ASUS\EPU\pngio.dll
2011-06-02 23:40 - 2010-01-08 16:17 - 00053248 _____ () C:\Program Files (x86)\ASUS\EPU\AsSpindownTimeout.dll
2013-07-13 20:38 - 2008-11-19 16:03 - 00094208 _____ () C:\Program Files (x86)\Gaming Mouse\lan.dll

==================== Alternate Data Streams (whitelisted) =========

==================== Safe Mode (whitelisted) ===================

==================== Faulty Device Manager Devices =============

Name: AODDriver4.2
Description: AODDriver4.2
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AODDriver4.2
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (11/24/2013 07:44:24 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Dependent Assembly rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (11/24/2013 07:44:15 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (11/24/2013 07:44:04 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (11/24/2013 01:54:05 PM) (Source: Google Update) (User: XYX-PC)
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned

Error: (11/24/2013 01:30:52 PM) (Source: MsiInstaller) (User: XYX-PC)
Description: Product: ESET Smart Security -- Chyba 1316. Pri pokuse o čítanie zo súboru D:\Hry instalacky\eins1892.msi došlo k sieťovej chybe

Error: (11/24/2013 01:28:11 PM) (Source: MsiInstaller) (User: XYX-PC)
Description: Product: ESET Smart Security -- Chyba 1316. Pri pokuse o čítanie zo súboru D:\Hry instalacky\eins1892.msi došlo k sieťovej chybe

Error: (11/24/2013 01:15:44 PM) (Source: MsiInstaller) (User: XYX-PC)
Description: Product: ESET Smart Security -- Chyba 1406. Nie je možné zapísať hodnotu ArchiveEnable do kľúča \Software\ESET\ESET Security\CurrentVersion\Scanners\01010101\Default. Systémova chyba . Presvedčte sa, či máte ku kľúču dostatočný prístup, alebo sa obráťte na pracovníkov odbornej pomoci.

System errors:
=============
Error: (11/27/2013 07:38:00 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (11/27/2013 07:37:50 PM) (Source: Service Control Manager) (User: )
Description: Počas čakania na odpoveď transakcie od služby ShellHWDetection bol dosiahnutý časový limit (30000 ms).

Error: (11/27/2013 05:08:14 PM) (Source: Service Control Manager) (User: )
Description: Nasledujúce ovládače pre spustenie zavedenia alebo spustenie systému zlyhali pri načítaní:
VD_FileDisk

Error: (11/27/2013 05:07:55 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby AODDriver4.2 zlyhalo kvôli nasledujúcej chybe:
%%2

Error: (11/27/2013 02:31:00 AM) (Source: Service Control Manager) (User: )
Description: Nasledujúce ovládače pre spustenie zavedenia alebo spustenie systému zlyhali pri načítaní:
VD_FileDisk

Error: (11/27/2013 02:31:00 AM) (Source: Service Control Manager) (User: )
Description: Spustenie služby AODDriver4.2 zlyhalo kvôli nasledujúcej chybe:
%%2

Error: (11/27/2013 02:30:42 AM) (Source: Service Control Manager) (User: )
Description: Spustenie služby AODDriver4.2 zlyhalo kvôli nasledujúcej chybe:
%%2

Error: (11/27/2013 02:30:39 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 2:23:16 on ‎27. ‎11. ‎2013 was unexpected.

Error: (11/27/2013 02:24:50 AM) (Source: Service Control Manager) (User: )
Description: Služba ESET Service sa pri spustení zablokovala.

Error: (11/27/2013 02:24:42 AM) (Source: Service Control Manager) (User: )
Description: Počas čakania na odpoveď transakcie od služby eventlog bol dosiahnutý časový limit (30000 ms).

Microsoft Office Sessions:
=========================
Error: (11/24/2013 07:44:24 PM) (Source: SideBySide)(User: )
Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{EA1FAE0F-2354-4E32-B423-ABAE8E358F91}\recordingmanager.exe

Error: (11/24/2013 07:44:15 PM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\filealyzer 2\DelZip179.dllc:\program files (x86)\filealyzer 2\DelZip179.dll8

Error: (11/24/2013 07:44:04 PM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\TC UP\PLUGINS\Media\SiMail\DelphiZip.dllc:\program files (x86)\TC UP\PLUGINS\Media\SiMail\DelphiZip.dll8

Error: (11/24/2013 01:30:52 PM) (Source: MsiInstaller)(User: XYX-PC)
Description: Product: ESET Smart Security -- Chyba 1316. Pri pokuse o čítanie zo súboru D:\Hry instalacky\eins1892.msi došlo k sieťovej chybe(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (11/24/2013 01:28:11 PM) (Source: MsiInstaller)(User: XYX-PC)
Description: Product: ESET Smart Security -- Chyba 1316. Pri pokuse o čítanie zo súboru D:\Hry instalacky\eins1892.msi došlo k sieťovej chybe(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (11/24/2013 01:15:44 PM) (Source: MsiInstaller)(User: XYX-PC)
Description: Product: ESET Smart Security -- Chyba 1406. Nie je možné zapísať hodnotu ArchiveEnable do kľúča \Software\ESET\ESET Security\CurrentVersion\Scanners\01010101\Default. Systémova chyba . Presvedčte sa, či máte ku kľúču dostatočný prístup, alebo sa obráťte na pracovníkov odbornej pomoci.(NULL)(NULL)(NULL)(NULL)(NULL)

CodeIntegrity Errors:
===================================
Date: 2013-11-28 21:42:16.791
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vd_filedisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-11-28 21:42:16.691
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vd_filedisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-11-27 17:07:50.725
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vd_filedisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-11-27 17:07:50.491
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vd_filedisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-11-27 02:30:35.881
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vd_filedisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-11-27 02:30:35.647
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vd_filedisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-11-27 02:23:12.616
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vd_filedisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-11-27 02:23:12.382
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vd_filedisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-11-26 19:45:42.725
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vd_filedisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-11-26 19:45:42.491
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vd_filedisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-11-26 19:37:50.819
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vd_filedisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-11-26 19:37:50.585
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vd_filedisk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Percentage of memory in use: 34%
Total physical RAM: 4094.18 MB
Available physical RAM: 2675.37 MB
Total Pagefile: 8186.54 MB
Available Pagefile: 6440.14 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:70.02 GB) (Free:9.42 GB) NTFS
Drive d: () (Fixed) (Total:526.05 GB) (Free:16.28 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: 4594DC16)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=70 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=526 GB) - (Type=07 NTFS)

==================== End Of Log ============================

VIRY.CZ

BETTER SURF Prosím o kontrolu logu

BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Proím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu

Re: BETTER SURF Prosím o kontrolu logu