Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

asi nějaký vir

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
zdeny.m
Návštěvník
Návštěvník
Příspěvky: 74
Registrován: 29 lis 2004 18:54
Bydliště: Holýšov
Kontaktovat uživatele:
Kontaktovat uživatele zdeny.m

asi nějaký vir

#1 Příspěvek od zdeny.m »

na PC mi vyskakují okna hxxps://jsn.donecore.net jak toto odstranit
Upravil p29
Nahoru
Uživatelský avatar
Pavuk29
VIP in memoriam
VIP in memoriam
Příspěvky: 6953
Registrován: 31 říj 2003 08:26
Bydliště: Banská Bystrica
Kontaktovat uživatele:
Kontaktovat uživatele Pavuk29

Re: asi nějaký vir

#2 Příspěvek od Pavuk29 »

Nedavaj sem zive linky.
------------------------------------------------------------------------------------------------------------------------------
:!: PLS NEPISTE MI SZ, NA ICQ A MAILY S OTAZKAMI, PISTE DO FORA :!: :spam:
------------------------------------------------------------------------------------------------------------------------------
V pripadne akutnych problemov s chodom fora, :207: pripadne s inymi uzivatelmi, :whip: kontaktujte ma na ICQ alebo mailom :31: na pavuk29 zavinac forum.viry.cz. Byvam pri pocitaci casto aj ked nie som online na fore.
http://www.icq.com/people/267560078/
:183: hotline: http://forum.viry.cz/viewtopic.php?f=12&t=116821
:!: pravidla fora: http://forum.viry.cz/viewtopic.php?f=12&t=5601
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: asi nějaký vir

#3 Příspěvek od vyosek »

Zdravim :)

:arrow: Jelikoz nevime o Vasem PC nic a z kristalove koule se spatne vesti, navic je uz vecer a tma a tak neni nic videt :o

:arrow: Ale dosti legracek, kouknem na to :wink: Dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=24&t=130784 - navod Vas povede...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
zdeny.m
Návštěvník
Návštěvník
Příspěvky: 74
Registrován: 29 lis 2004 18:54
Bydliště: Holýšov
Kontaktovat uživatele:
Kontaktovat uživatele zdeny.m

Re: asi nějaký vir

#4 Příspěvek od zdeny.m »

omlouvám se zde je log

Logfile of random's system information tool 1.09 (written by random/random)
Run by Zdenek at 2013-11-25 18:51:42
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 71 GB (45%) free of 157 GB
Total RAM: 8119 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:51:44, on 25.11.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Users\Zdenek\AppData\Local\FilesFrog Update Checker\update_checker.exe
C:\Users\Zdenek\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe
C:\Program Files (x86)\SiteRanker\SiteRankTray.exe
C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
C:\Users\Zdenek\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Windows\SysWOW64\jmdp\stij.exe
C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Program Files\trend micro\Zdenek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source= ... 1380301100
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source= ... 1380301100
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?utm_source= ... 1380301100
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UsProvider Class - {539F76FD-084E-4858-86D5-62F02F54AE86} - C:\Program Files (x86)\Minibar\Minibar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapbho.dll
O2 - BHO: AppGraffiti - {6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} - C:\PROGRA~2\APPGRA~1\APPGRA~1.DLL
O2 - BHO: BetterSrf - {8271B5D6-76D3-4ABF-AEB3-1721161C76BC} - C:\Program Files (x86)\Better-Surf\ie\BetterSrf.dll
O2 - BHO: MinibarBHO - {AA74D58F-ACD0-450D-A85E-6C04B171C044} - C:\Program Files (x86)\Minibar\Minibar.dll
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O4 - HKLM\..\Run: [SiteRanker] "C:\Program Files (x86)\SiteRanker\SiteRankTray.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [PCOP Tray] C:\Program Files (x86)\PC Optimizer Pro\Pcoptimizerpro.exe TRAY=1
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Zdenek\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [SDP] C:\Users\Zdenek\AppData\Local\FilesFrog Update Checker\update_checker.exe /auto
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-302 303 305 306 Series"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Zdenek\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Zdenek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [Apps Hat] C:\Users\Zdenek\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Zdenek\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O9 - Extra button: Visit AppsHat.com - {AAA38851-3CFF-475F-B5E0-720D3645E4A5} - C:\Program Files (x86)\Minibar\Minibar.dll
O9 - Extra button: @C:\Program Files\Motorola\Bluetooth\Resources\csy.dll,-247 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\Motorola\Bluetooth\Resources\csy.dll,-247 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWOW64\skype4com.dll
O20 - AppInit_DLLs:
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Bluetooth Device Manager - Motorola Solutions, Inc. - C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
O23 - Service: Bluetooth Low Energy Service - Motorola Solutions, Inc. - C:\Program Files\Motorola\Bluetooth\LEsrv.exe
O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files\Motorola\Bluetooth\audiosrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files\Motorola\Bluetooth\obexsrv.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IBUpdaterService - Unknown owner - C:\Windows\system32\dmwu.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\REALTEK\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Realtek11nSU - Realtek - C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update LemurLeap - LemurLeap - C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe
O23 - Service: Util LemurLeap - LemurLeap - C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12276 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service
taskeng.exe {CDCD2860-4A23-4C66-B451-CFFF40CFB581}
"C:\Program Files (x86)\Realtek\RtkDashClientInstaller\RtkDashClient.exe" /hw
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming
"C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files\Motorola\Bluetooth\btmshell.dll",TrayApp
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe"
"C:\Users\Zdenek\AppData\Local\FilesFrog Update Checker\update_checker.exe" /auto
"C:\Windows\System32\spool\drivers\x64\3\E_IATIIKE.EXE" /EPT "EPLTarget\P0000000000000000" /M "XP-302 303 305 306 Series"
"C:\Users\Zdenek\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe"
"C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe"
"C:\Program Files (x86)\SiteRanker\SiteRankTray.exe"
"C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe"
"C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe"
"C:\Program Files\Motorola\Bluetooth\audiosrv.exe"
"C:\Program Files\Motorola\Bluetooth\obexsrv.exe"
szndesktop.exe default start
"C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe"
C:\Windows\system32\dmwu.exe
"C:\Users\Zdenek\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe "-220617533383648443-1713553037-2181050312053667273827246722-2094091541684543869
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
KHALMNPR.EXE /API
"C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe"
"C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtWlan.exe" /H
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2014\avgemca.exe"
"C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe"
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=349bc436-8ad9-4d09-9995-170badb84478 /coreSdkOptions=4108 /logConfFile="C:\Windows\TEMP\96458453-c799-424d-a85c-867ba15fec4d-102c-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\"
"C:\Program Files\Motorola\Bluetooth\LEsrv.exe"
C:\Windows\system32\EscSvc64.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\SysWOW64\jmdp\stij.exe"
"C:\Windows\System32\ljkb\stij.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe" -Embedding
ctfmon.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\REALTEK\Realtek USB 2.0 Card Reader\RIconMan.exe"
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" http://www.qvo6.com/?utm_source=b&utm_m ... 1379782194
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=752.a399f00.1818807443 "C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\extensions\{97A78363-B868-4B48-AC91-A783A31215AF}\plugins\npMinibarPlugin.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 752 "\\.\pipe\gecko-crash-server-pipe.752" plugin
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=752.1438c900.814242571 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 752 "\\.\pipe\gecko-crash-server-pipe.752" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe" --proxy-stub-channel=Flash6716.5B02DC68.24783 --host-broker-channel=Flash6716.5B02DC68.15351 --host-pid=6716 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe" --channel=6784.003AF214.560231853 --proxy-stub-channel=Flash6716.5B02DC68.24783 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll" --host-npapi-version=27 --type=renderer
"C:\Users\Zdenek\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Zdenek\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AmiUpdXp.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000UA.job
C:\Windows\tasks\ROC_JAN2013_TB_rmv.job
C:\Windows\tasks\RtlDashSrvStart.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.sweetpacks-search.com/?barid=&src=10&"
prefs.js - "keyword.URL" - "http://mysearch.sweetpacks.com?src=6&barid=&&q="

"{336D0C35-8A85-403a-B9D2-65C292C39087}"=C:\Program Files\Web Assistant\Firefox


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@virtools.com/3DviaPlayer]
"Description"=3Dvia Player For Mozilla Based Broswer
"Path"=C:\Program Files (x86)\Virtools\3D Life Player\npvirtools.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


C:\Program Files (x86)\Mozilla Firefox\searchplugins\
avg-secure-search.xml
delta-homes.xml
qvo6.xml

C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\extensions\
AppGraffiti@AppGraffiti.com
donottrackplus@abine.com
ffxtlbr@incredibar.com
{97A78363-B868-4B48-AC91-A783A31215AF}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\searchplugins\
ask-web-search.xml
firmycz.xml
mapycz.xml
my-web-search.xml
MyStart Search.xml
MyStart.xml
sweetim.xml
Sweetpacks Search.xml
zbocz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}]
AppGraffiti - C:\PROGRA~2\APPGRA~1\APPGRA~2.DLL [2013-10-11 1660584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26 431104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2013-02-21 436464]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419c3-dad0-4df1-ac37-22c72ad81878}]
LemurLeap - C:\Program Files (x86)\LemurLeap\LemurLeapbho.dll [2013-08-31 149280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}]
AppGraffiti - C:\PROGRA~2\APPGRA~1\APPGRA~1.DLL [2013-10-11 1035944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}]
Better-Surf - C:\Program Files (x86)\Better-Surf\ie\BetterSrf.dll [2013-11-25 86016]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044}]
MinibarBHO - C:\Program Files (x86)\Minibar\Minibar.dll [2013-02-26 331264]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2013-02-21 367344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26 431104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorUpdater"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe []
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2013-02-21 2991856]
"BTMTrayAgent"=C:\Program Files\Motorola\Bluetooth\btmshell.dll [2011-07-19 33909808]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-01-31 36352]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-09 167744]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-08-09 392512]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-09 417088]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-03-29 13513288]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-03-08 1278024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\Zdenek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-01-16 138096]
"SDP"=C:\Users\Zdenek\AppData\Local\FilesFrog Update Checker\update_checker.exe [2013-01-31 201808]
"EPLTarget\P0000000000000000"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE [2012-02-29 283232]
"cz.seznam.software.autoupdate"=C:\Users\Zdenek\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Zdenek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
"Apps Hat"=C:\Users\Zdenek\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [2012-10-26 202752]
"Google Update"=C:\Users\Zdenek\AppData\Local\Google\Update\GoogleUpdate.exe [2013-10-10 116648]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SiteRanker"=C:\Program Files (x86)\SiteRanker\SiteRankTray.exe [2013-10-04 1059328]
"SweetIM"=C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [2012-10-04 115032]
"Sweetpacks Communicator"=C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe [2012-08-15 231768]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2011-10-31 1058400]
"NUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2011-09-16 115048]
"PCOP Tray"=C:\Program Files (x86)\PC Optimizer Pro\Pcoptimizerpro.exe [2009-03-25 3502080]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2014\avgui.exe [2013-10-07 4908592]
"BtTray"=C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2012-10-23 374024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-09 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2013-02-08 68848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-11-25 18:45:33 ----D---- C:\Program Files\trend micro
2013-11-25 18:45:32 ----D---- C:\rsit
2013-11-25 18:09:50 ----A---- C:\autoexec.bat
2013-11-25 18:07:45 ----D---- C:\sh4ldr
2013-11-25 18:07:45 ----D---- C:\Program Files\Enigma Software Group
2013-11-25 18:07:06 ----D---- C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-25 15:00:10 ----D---- C:\Program Files (x86)\Better-Surf
2013-11-19 12:53:38 ----A---- C:\Windows\system32\IEUDINIT.EXE
2013-11-19 12:48:53 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-11-19 12:48:51 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-19 12:48:49 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-11-19 12:48:49 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-11-19 12:48:49 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-11-19 12:48:49 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-11-19 12:48:49 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-11-19 12:48:49 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-11-19 12:48:49 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2013-11-19 12:48:49 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-11-19 12:48:49 ----A---- C:\Windows\system32\elshyph.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\url.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-11-19 12:48:48 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2013-11-19 12:48:47 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-11-19 12:48:47 ----A---- C:\Windows\system32\jsIntl.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\wininet.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\urlmon.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-11-19 12:48:46 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-19 12:48:46 ----A---- C:\Windows\system32\msrating.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\msls31.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\mshtmler.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\msfeedssync.exe
2013-11-19 12:48:46 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\jsproxy.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\jscript9diag.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\jscript9.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\ieui.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\iesysprep.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\iertutil.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\ieframe.dll
2013-11-19 12:48:46 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\wextract.exe
2013-11-19 12:48:45 ----A---- C:\Windows\system32\webcheck.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\vbscript.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\url.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\pngfilt.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\occache.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\mshtmled.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\MshtmlDac.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\mshtml.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\mshta.exe
2013-11-19 12:48:45 ----A---- C:\Windows\system32\msfeeds.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\licmgr10.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\jscript.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\inseng.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\imgutil.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\iexpress.exe
2013-11-19 12:48:45 ----A---- C:\Windows\system32\ieUnatt.exe
2013-11-19 12:48:45 ----A---- C:\Windows\system32\iesetup.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\iernonce.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\iepeers.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\ieetwproxystub.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\ieetwcollector.exe
2013-11-19 12:48:45 ----A---- C:\Windows\system32\iedkcs32.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\ieapfltr.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\ieapfltr.dat
2013-11-19 12:48:45 ----A---- C:\Windows\system32\ie4uinit.exe
2013-11-19 12:48:45 ----A---- C:\Windows\system32\icardie.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\dxtrans.dll
2013-11-19 12:48:45 ----A---- C:\Windows\system32\dxtmsft.dll
2013-11-17 14:41:34 ----D---- C:\Windows\SYSWOW64\RTCOM
2013-11-17 14:41:34 ----D---- C:\Program Files\Realtek
2013-11-17 14:41:05 ----A---- C:\Windows\system32\WavesGUILib64.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\tossaeapo64.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\toseaeapo64.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\tosasfapo64.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\tosade.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\tepeqapo64.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\tadefxapo264.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\tadefxapo.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\SRSWOW64.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\SRSTSX64.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\SRSTSH64.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\SRSHP64.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\sltech64.dll
2013-11-17 14:41:05 ----A---- C:\Windows\system32\slprp64.dll
2013-11-17 14:41:04 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2013-11-17 14:41:04 ----A---- C:\Windows\system32\slcnt64.dll
2013-11-17 14:41:04 ----A---- C:\Windows\system32\sl3apo64.dll
2013-11-17 14:41:04 ----A---- C:\Windows\system32\SFSS_APO.dll
2013-11-17 14:41:04 ----A---- C:\Windows\system32\SFNHK64.dll
2013-11-17 14:41:04 ----A---- C:\Windows\system32\SFCOM64.dll
2013-11-17 14:41:04 ----A---- C:\Windows\system32\SFAPO64.dll
2013-11-17 14:41:04 ----A---- C:\Windows\system32\RtPgEx64.dll
2013-11-17 14:41:04 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2013-11-17 14:41:04 ----A---- C:\Windows\system32\RTKSMSettingsIPC.dll
2013-11-17 14:41:04 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2013-11-17 14:41:04 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2013-11-17 14:41:03 ----A---- C:\Windows\system32\RTKSMlfx.dll
2013-11-17 14:41:03 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2013-11-17 14:41:03 ----A---- C:\Windows\system32\RtkCfg64.dll
2013-11-17 14:41:03 ----A---- C:\Windows\system32\RtkAPO64.dll
2013-11-17 14:41:02 ----A---- C:\Windows\system32\RtkApi64.dll
2013-11-17 14:41:02 ----A---- C:\Windows\system32\RTEEP64A.dll
2013-11-17 14:41:02 ----A---- C:\Windows\system32\RTEEL64A.dll
2013-11-17 14:41:02 ----A---- C:\Windows\system32\RTEEG64A.dll
2013-11-17 14:41:02 ----A---- C:\Windows\system32\RTEED64A.dll
2013-11-17 14:41:02 ----A---- C:\Windows\system32\RtDataProc64.dll
2013-11-17 14:41:02 ----A---- C:\Windows\system32\RTCOM64.dll
2013-11-17 14:41:02 ----A---- C:\Windows\system32\RP3DHT64.dll
2013-11-17 14:41:02 ----A---- C:\Windows\system32\RP3DAA64.dll
2013-11-17 14:41:02 ----A---- C:\Windows\system32\RCoRes64.dat
2013-11-17 14:41:02 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2013-11-17 14:41:01 ----A---- C:\Windows\system32\RCoInstII64.dll
2013-11-17 14:41:00 ----A---- C:\Windows\system32\R4EEP64A.dll
2013-11-17 14:41:00 ----A---- C:\Windows\system32\R4EEL64A.dll
2013-11-17 14:41:00 ----A---- C:\Windows\system32\R4EEG64A.dll
2013-11-17 14:41:00 ----A---- C:\Windows\system32\R4EED64A.dll
2013-11-17 14:41:00 ----A---- C:\Windows\system32\R4EEA64A.dll
2013-11-17 14:40:59 ----A---- C:\Windows\system32\MISS_APO.dll
2013-11-17 14:40:58 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-11-17 14:40:58 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2013-11-17 14:40:58 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2013-11-17 14:40:57 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2013-11-17 14:40:57 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2013-11-17 14:40:56 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2013-11-17 14:40:56 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2013-11-17 14:40:56 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2013-11-17 14:40:56 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2013-11-17 14:40:56 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-17 14:40:56 ----A---- C:\Windows\system32\KAAPORT64.dll
2013-11-17 14:40:54 ----A---- C:\Windows\system32\FMAPO64.dll
2013-11-17 14:40:54 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2013-11-17 14:40:54 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2013-11-17 14:40:54 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2013-11-17 14:40:54 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2013-11-17 14:40:54 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2013-11-17 14:40:54 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2013-11-17 14:40:54 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2013-11-17 14:40:54 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2013-11-17 14:40:54 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2013-11-17 14:40:53 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2013-11-17 14:40:53 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2013-11-17 14:40:53 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2013-11-17 14:40:53 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2013-11-17 14:40:53 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2013-11-17 14:40:53 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2013-11-17 14:40:53 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-17 14:40:53 ----A---- C:\Windows\system32\AERTAR64.dll
2013-11-17 14:40:53 ----A---- C:\Windows\system32\AERTAC64.dll
2013-11-17 13:46:04 ----D---- C:\Program Files (x86)\Ralink Corporation
2013-11-16 14:08:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-11-14 17:42:04 ----D---- C:\Program Files (x86)\BetterSurf
2013-11-13 07:08:15 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-11-13 07:08:15 ----A---- C:\Windows\system32\crypt32.dll
2013-11-13 07:08:13 ----A---- C:\Windows\system32\drivers\afd.sys
2013-11-13 07:08:12 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-11-13 07:08:12 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-11-13 07:08:12 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-11-13 07:08:12 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 07:08:12 ----A---- C:\Windows\system32\credui.dll
2013-11-13 07:08:12 ----A---- C:\Windows\system32\authui.dll
2013-11-13 07:08:06 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-11-13 07:08:06 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-11-13 07:08:06 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-11-13 07:08:06 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-11-13 07:08:06 ----A---- C:\Windows\system32\sspisrv.dll
2013-11-13 07:08:06 ----A---- C:\Windows\system32\sspicli.dll
2013-11-13 07:08:06 ----A---- C:\Windows\system32\schannel.dll
2013-11-13 07:08:06 ----A---- C:\Windows\system32\secur32.dll
2013-11-13 07:08:06 ----A---- C:\Windows\system32\ncrypt.dll
2013-11-13 07:08:06 ----A---- C:\Windows\system32\lsass.exe
2013-11-13 07:08:06 ----A---- C:\Windows\system32\lsasrv.dll
2013-11-13 07:08:06 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-11-13 07:08:06 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-11-13 07:08:06 ----A---- C:\Windows\system32\drivers\cng.sys
2013-11-13 07:08:02 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-11-13 07:08:02 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-11-13 07:08:02 ----A---- C:\Windows\system32\gdi32.dll
2013-11-13 07:08:01 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-11-13 07:08:01 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-11-13 07:08:01 ----A---- C:\Windows\system32\nshwfp.dll
2013-11-13 07:08:01 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-11-06 17:18:48 ----D---- C:\Program Files (x86)\Mozilla Firefox.bak

======List of files/folders modified in the last 1 month======

2013-11-25 18:49:51 ----D---- C:\ProgramData\eSafe
2013-11-25 18:48:52 ----D---- C:\ProgramData\MFAData
2013-11-25 18:47:47 ----D---- C:\Windows\temp
2013-11-25 18:45:35 ----D---- C:\Windows\Prefetch
2013-11-25 18:45:33 ----RD---- C:\Program Files
2013-11-25 18:08:41 ----SHD---- C:\Windows\Installer
2013-11-25 18:07:46 ----D---- C:\Config.Msi
2013-11-25 18:07:34 ----SHD---- C:\System Volume Information
2013-11-25 18:07:06 ----D---- C:\Windows
2013-11-25 18:07:05 ----D---- C:\Program Files (x86)\Common Files
2013-11-25 15:17:24 ----D---- C:\Windows\system32\config
2013-11-25 15:04:09 ----D---- C:\Users\Zdenek\AppData\Roaming\Seznam.cz
2013-11-25 15:02:54 ----D---- C:\Windows\system32\FxsTmp
2013-11-25 15:00:10 ----RD---- C:\Program Files (x86)
2013-11-25 14:59:24 ----D---- C:\Program Files (x86)\SiteRanker
2013-11-25 14:59:09 ----A---- C:\Windows\SYSWOW64\bscs.ini
2013-11-24 13:00:33 ----D---- C:\Windows\rescache
2013-11-19 22:58:42 ----D---- C:\Windows\winsxs
2013-11-19 22:57:10 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-11-19 22:57:09 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-11-19 22:57:09 ----D---- C:\Windows\system32\sk-SK
2013-11-19 22:57:08 ----D---- C:\Windows\system32\cs-CZ
2013-11-19 22:57:07 ----D---- C:\Program Files (x86)\Internet Explorer
2013-11-19 22:57:06 ----D---- C:\Windows\SYSWOW64\migration
2013-11-19 22:57:06 ----D---- C:\Program Files\Internet Explorer
2013-11-19 22:57:04 ----D---- C:\Windows\SYSWOW64\en-US
2013-11-19 22:57:04 ----D---- C:\Windows\SysWOW64
2013-11-19 22:57:01 ----D---- C:\Windows\system32\migration
2013-11-19 22:57:01 ----D---- C:\Windows\PolicyDefinitions
2013-11-19 22:57:00 ----D---- C:\Windows\system32\en-US
2013-11-19 22:56:59 ----D---- C:\Windows\System32
2013-11-19 12:53:38 ----D---- C:\Windows\Logs
2013-11-19 12:53:14 ----D---- C:\Windows\system32\catroot
2013-11-19 12:51:38 ----D---- C:\Windows\system32\catroot2
2013-11-17 14:41:55 ----HD---- C:\Program Files (x86)\Temp
2013-11-17 14:41:34 ----D---- C:\Windows\system32\drivers
2013-11-17 14:41:32 ----D---- C:\Windows\inf
2013-11-17 14:41:28 ----D---- C:\Windows\system32\DriverStore
2013-11-17 14:40:52 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-11-17 14:03:48 ----D---- C:\Program Files\Google
2013-11-17 14:03:48 ----D---- C:\Program Files (x86)\Google
2013-11-17 14:02:19 ----D---- C:\Program Files (x86)\AVG
2013-11-17 14:02:02 ----D---- C:\Windows\system32\Tasks
2013-11-17 14:01:01 ----D---- C:\ProgramData\Google
2013-11-17 14:00:45 ----D---- C:\Program Files (x86)\SweetIM
2013-11-17 13:58:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-11-17 13:55:28 ----D---- C:\ProgramData\GlarySoft
2013-11-17 13:55:27 ----D---- C:\Users\Zdenek\AppData\Roaming\GlarySoft
2013-11-17 13:55:11 ----D---- C:\Windows\Tasks
2013-11-17 13:46:14 ----D---- C:\Windows\SYSWOW64\drivers
2013-11-17 13:39:44 ----D---- C:\Program Files (x86)\PC Optimizer Pro
2013-11-17 13:38:41 ----D---- C:\Program Files (x86)\HandyUpdater
2013-11-17 13:36:02 ----D---- C:\ProgramData
2013-11-17 13:33:23 ----D---- C:\ProgramData\AVG2014
2013-11-17 13:29:20 ----HD---- C:\$AVG
2013-11-17 13:07:13 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-10 20:40:36 ----D---- C:\Users\Zdenek\AppData\Roaming\Mozilla
2013-10-30 23:57:37 ----D---- C:\ProgramData\firebird

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-09-02 192824]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-09-02 294712]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-08-20 123704]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-09-08 31544]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-01-31 652784]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-01-31 28656]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2013-09-25 148792]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-09-02 241464]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-09-02 212280]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2013-08-01 251192]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 RtDashPt;Realtek DASH Protocol Driver; C:\Windows\system32\DRIVERS\RtDashPt.sys [2011-09-19 38504]
R3 BtAudioBusSrv;IVT Bluetooth Audio Bus Service; C:\Windows\System32\Drivers\BtAudioBus.sys [2011-07-01 22536]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\Windows\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-09 12312896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-03-29 3379272]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2013-01-03 77192]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2013-01-03 61832]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2013-01-03 43400]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2012-08-27 107912]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2012-08-27 226696]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2012-08-29 243712]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-12-27 805088]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2012-05-22 694416]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTMCOM;Bluetooth Serial Port; C:\Windows\System32\Drivers\btmcom.sys [2011-02-22 52736]
S3 BTMUSB;Motorola Bluetooth Radio Service; C:\Windows\System32\Drivers\btmusb.sys [2011-07-25 684416]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2013-10-03 3538480]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2013-09-25 301152]
R2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2012-11-20 1616136]
R2 Bluetooth Low Energy Service;Bluetooth Low Energy Service; C:\Program Files\Motorola\Bluetooth\LEsrv.exe [2011-07-20 591920]
R2 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files\Motorola\Bluetooth\audiosrv.exe [2011-07-20 1250352]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files\Motorola\Bluetooth\obexsrv.exe [2011-06-17 786992]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EpsonBidirectionalService;EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [2006-12-19 94208]
R2 EpsonScanSvc;Epson Scanner Service; C:\Windows\system32\EscSvc64.exe [2011-12-12 135824]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-01-31 15344]
R2 IBUpdaterService;IBUpdaterService; C:\Windows\system32\dmwu.exe [2013-10-15 1754928]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\REALTEK\Realtek USB 2.0 Card Reader\RIconMan.exe [2012-09-07 2464400]
R2 Realtek11nSU;Realtek11nSU; C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe [2010-04-16 36864]
R2 Util LemurLeap;Util LemurLeap; C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe [2013-10-03 65312]
R3 Bluetooth Device Manager;Bluetooth Device Manager; C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe [2011-07-20 4187696]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2012-10-23 146184]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-03-13 1028096]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-16 116648]
S2 Update LemurLeap;Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [2013-10-03 65312]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09 257416]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-03-13 647680]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-16 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-19 111616]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2013-02-08 359664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-16 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-08-06 1255736]
S4 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe [2012-09-05 234776]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: asi nějaký vir

#5 Příspěvek od vyosek »

:arrow: Stahnete Shortcut Cleaner http://www.bleepingcomputer.com/downloa ... t-cleaner/
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Spustte tradicne dvouklikem
  • Probehne skenovani a pak se objevi log, pripadne bude ulozen v miste spusteni jako sc-cleaner.txt, ten sem vlozte
:arrow: Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
  • Ulozte nejlepe na plochu
  • Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
  • Probehne vytvoreni zalohy a nasledne prohledavani
  • Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte
:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
zdeny.m
Návštěvník
Návštěvník
Příspěvky: 74
Registrován: 29 lis 2004 18:54
Bydliště: Holýšov
Kontaktovat uživatele:
Kontaktovat uživatele zdeny.m

Re: asi nějaký vir

#6 Příspěvek od zdeny.m »

Searching for Hijacked Shortcuts:

Searching C:\Users\Zdenek\AppData\Roaming\Microsoft\Windows\Start Menu\

Searching C:\ProgramData\Microsoft\Windows\Start Menu\

Searching C:\Users\Zdenek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\

Searching C:\Users\Public\Desktop\

Searching C:\Users\Zdenek\Desktop


0 bad shortcuts found.

Program finished at: 11/25/2013 07:08:12 PM
Execution time: 0 hours(s), 0 minute(s), and 0 seconds(s)



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Ultimate x64
Ran by Zdenek on po 25.11.2013 at 19:07:21,76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values




~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\sim-packages
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\extension.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{0E45512E-5B95-4C8C-9393-64ED0470E8D2}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{23119123-0854-469D-807A-171568457991}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{0E45512E-5B95-4C8C-9393-64ED0470E8D2}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\appgraffiti
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bi
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\im
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\iminstaller
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\powerpack
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\somoto
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\wnlt
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yourfiledownloader
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1565823262-305046286-3171751142-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1565823262-305046286-3171751142-1000\Software\web assistant
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\web assistant
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\wnlt
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appgraffiti.appgraffitijs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\products\3192aa38321c641458dbdaf83979d193
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mediaplayer.graphicsutils
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mediaplayer.graphicsutils.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mgmediaplayer.gifanimator
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\mgmediaplayer.gifanimator.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\updater.amiupd.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\sweetim.exe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\filesfrog update checker
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\wnlt
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{11bf46c6-b3de-48bd-bf70-3ad85cab80b5}_is1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6f6a5334-78e9-4d9b-8182-8b41ea8c39ef}_is1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{83aa2913-c123-4146-85bd-ad8f93971d39}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{953aa732-9afb-49c9-84a4-7f96ca0a08da}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{99c91fc5-db5b-4aa0-bb70-5d89c5a4df96}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{a0c9df2b-89b5-4483-8983-18a68200f1b4}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B2468513CA2D6943A1A233CD3F88CE7
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\babylon
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\app24x7help_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\app24x7help_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\au__rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\au__rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\bundlesweetimsetup_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\bundlesweetimsetup_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\incredibar_installer_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\incredibar_installer_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\incredibartoolbar_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\incredibartoolbar_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\mybabylontb_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\mybabylontb_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\sweetim_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\sweetim_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\sweetpacksupdatemanager_rasmancs
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{00839F78-38E4-478C-9BA4-DCC9A067A6E9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{a5b9c0f5-5616-47cd-a95f-e43b488faccf}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\microsoft\Internet Explorer\SearchScopes\{a5b9c0f5-5616-47cd-a95f-e43b488faccf}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044}



~~~ Files

Successfully deleted: [File] C:\Windows\Tasks\amiupdxp.job
Successfully deleted: [File] "C:\Users\Zdenek\appdata\locallow\SkwConfig.bin"
Failed to delete: [File] "C:\Windows\system32\dmwu.exe"
Failed to delete: [File] "C:\Windows\system32\ImHttpComm.dll"



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\babylon"
Successfully deleted: [Folder] "C:\ProgramData\esafe"
Successfully deleted: [Folder] "C:\ProgramData\sweetim"
Successfully deleted: [Folder] "C:\Users\Zdenek\AppData\Roaming\babylon"
Successfully deleted: [Folder] "C:\Users\Zdenek\AppData\Roaming\videodownloadconverter_4z"
Successfully deleted: [Folder] "C:\Users\Zdenek\AppData\Roaming\yourfiledownloader"
Failed to delete: [Folder] "C:\Users\Zdenek\appdata\local\appshat mobile apps"
Successfully deleted: [Folder] "C:\Users\Zdenek\appdata\local\filesfrog update checker"
Successfully deleted: [Folder] "C:\Users\Zdenek\appdata\local\iac"
Successfully deleted: [Folder] "C:\Users\Zdenek\appdata\local\minibar"
Successfully deleted: [Folder] "C:\Users\Zdenek\appdata\local\swvupdater"
Successfully deleted: [Folder] "C:\Users\Zdenek\appdata\local\webplayer"
Successfully deleted: [Folder] "C:\Users\Zdenek\appdata\locallow\appgraffiti"
Successfully deleted: [Folder] "C:\Users\Zdenek\appdata\locallow\babylontoolbar"
Successfully deleted: [Folder] "C:\Users\Zdenek\appdata\locallow\minibar"
Successfully deleted: [Folder] "C:\Users\Zdenek\appdata\locallow\siteranker"
Successfully deleted: [Folder] "C:\Program Files (x86)\appgraffiti"
Successfully deleted: [Folder] "C:\Program Files (x86)\driver-soft"
Failed to delete: [Folder] "C:\Program Files (x86)\lemurleap"
Successfully deleted: [Folder] "C:\Program Files (x86)\minibar"
Successfully deleted: [Folder] "C:\Program Files (x86)\pc optimizer pro"
Successfully deleted: [Folder] "C:\Program Files (x86)\siteranker"
Successfully deleted: [Folder] "C:\Program Files (x86)\sweetim"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\appgraffiti"
Successfully deleted: [Folder] "C:\Users\Zdenek\AppData\Roaming\microsoft\windows\start menu\programs\filesfrog update checker"
Successfully deleted: [Folder] "C:\Windows\syswow64\arfc"
Failed to delete: [Folder] "C:\Windows\syswow64\jmdp"
Successfully deleted: [Folder] "C:\Windows\syswow64\wnlt"
Failed to delete: [Folder] "C:\Windows\system32\ljkb"



~~~ FireFox

Successfully deleted: [File] C:\user.js
Successfully deleted: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\qvo6.xml"
Successfully deleted: [File] C:\Users\Zdenek\AppData\Roaming\mozilla\firefox\profiles\rix60fgr.default\user.js
Successfully deleted: [File] C:\Users\Zdenek\AppData\Roaming\mozilla\firefox\profiles\rix60fgr.default\extensions\{eee6c361-6118-11dc-9c72-001320c79847}.xpi
Successfully deleted: [File] C:\Users\Zdenek\AppData\Roaming\mozilla\firefox\profiles\rix60fgr.default\searchplugins\ask-web-search.xml
Successfully deleted: [File] C:\Users\Zdenek\AppData\Roaming\mozilla\firefox\profiles\rix60fgr.default\searchplugins\my-web-search.xml
Successfully deleted: [File] C:\Users\Zdenek\AppData\Roaming\mozilla\firefox\profiles\rix60fgr.default\searchplugins\mystart search.xml
Successfully deleted: [File] C:\Users\Zdenek\AppData\Roaming\mozilla\firefox\profiles\rix60fgr.default\searchplugins\sweetim.xml
Successfully deleted: [Folder] C:\Users\Zdenek\AppData\Roaming\mozilla\firefox\profiles\rix60fgr.default\sweetpackstoolbardata
Successfully deleted: [Folder] C:\Users\Zdenek\AppData\Roaming\mozilla\firefox\profiles\rix60fgr.default\extensions\appgraffiti@appgraffiti.com
Successfully deleted: [Folder] C:\Users\Zdenek\AppData\Roaming\mozilla\firefox\profiles\rix60fgr.default\extensions\ffxtlbr@incredibar.com
Successfully deleted: [Folder] C:\Users\Zdenek\AppData\Roaming\mozilla\firefox\profiles\rix60fgr.default\extensions\{97a78363-b868-4b48-ac91-a783a31215af}
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions\\siteranker@siteranker.com
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\{336d0c35-8a85-403a-b9d2-65c292c39087}
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{336d0c35-8a85-403a-b9d2-65c292c39087}
Successfully deleted the following from C:\Users\Zdenek\AppData\Roaming\mozilla\firefox\profiles\rix60fgr.default\prefs.js

user_pref("browser.newtab.url", "hxxp://www.sweetpacks-search.com/?barid=&src=97&");
user_pref("browser.search.defaultenginename", "Sweetpacks Search");
user_pref("browser.search.order.1", "qvo6");
user_pref("browser.search.selectedEngine", "Sweetpacks Search");
user_pref("browser.startup.homepage", "hxxp://www.sweetpacks-search.com/?barid=&src=10&");
user_pref("extensions.foxcub.prev.HP", "hxxp://home.mywebsearch.com/index.jhtml?ptb=58D8B759-D835-411B-9F7A-856CEAE0632E&n=77fc41ca&p2=^HJ^xdm007^YY^cz&si=CJjn4JiTorUCFQq5zAod
user_pref("extensions.foxcub.prev.KWD", "hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=A9066A18-F18B-4AD2-A53A-5294D2035E2B&n=77fcbc0a&ind=2013051914&p2=^Y
user_pref("extensions.foxcub.prev.search.selected", "Sweetpacks Search");
user_pref("extensions.incredibar.actvtyRptTime", "1363193745669");
user_pref("extensions.incredibar.admin", false);
user_pref("extensions.incredibar.aflt", "orgnl");
user_pref("extensions.incredibar.afterInstallRpt", "sent");
user_pref("extensions.incredibar.cntry", "CZ");
user_pref("extensions.incredibar.dfltLng", "EN");
user_pref("extensions.incredibar.dfltSrch", false);
user_pref("extensions.incredibar.dfltlng", "EN");
user_pref("extensions.incredibar.dfltsrch", "false");
user_pref("extensions.incredibar.did", "10671");
user_pref("extensions.incredibar.envrmnt", "production");
user_pref("extensions.incredibar.excTlbr", false);
user_pref("extensions.incredibar.hdrMd5", "22D420CC02ED4FB20DCA34B5B51DC2A1");
user_pref("extensions.incredibar.hmpg", false);
user_pref("extensions.incredibar.hrdid", "e402c1aa00000000000074de2b8afc07");
user_pref("extensions.incredibar.id", "e402c1aa00000000000074de2b8afc07");
user_pref("extensions.incredibar.installerproductid", "26");
user_pref("extensions.incredibar.instlDay", "15561");
user_pref("extensions.incredibar.instlRef", "");
user_pref("extensions.incredibar.instlday", "15561");
user_pref("extensions.incredibar.instlref", "");
user_pref("extensions.incredibar.isDcmntCmplt", true);
user_pref("extensions.incredibar.isdcmntcmplt", "false");
user_pref("extensions.incredibar.keywordurl", "");
user_pref("extensions.incredibar.lastVrsnTs", "");
user_pref("extensions.incredibar.mntrvrsn", "1.2.0");
user_pref("extensions.incredibar.newTab", false);
user_pref("extensions.incredibar.newtab", "false");
user_pref("extensions.incredibar.newtaburl", "");
user_pref("extensions.incredibar.noFFXTlbr", false);
user_pref("extensions.incredibar.ppd", "77777208");
user_pref("extensions.incredibar.prdct", "incredibar");
user_pref("extensions.incredibar.productid", "26");
user_pref("extensions.incredibar.prtnrId", "Incredibar");
user_pref("extensions.incredibar.prtnrid", "Incredibar");
user_pref("extensions.incredibar.sg", "free");
user_pref("extensions.incredibar.smplGrp", "free");
user_pref("extensions.incredibar.smplgrp", "free");
user_pref("extensions.incredibar.srch", "");
user_pref("extensions.incredibar.srchprvdr", "");
user_pref("extensions.incredibar.tlbrId", "base");
user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6OyKwBFqkr&loc=IB_TB&i=26&search=");
user_pref("extensions.incredibar.tlbrid", "base");
user_pref("extensions.incredibar.tlbrsrchurl", "hxxp://mystart.Incredibar.com/?a=6OyKwBFqkr&loc=IB_TB&i=26&search=");
user_pref("extensions.incredibar.upn2", "6OyKwBFqkr");
user_pref("extensions.incredibar.upn2n", "92261902137121763");
user_pref("extensions.incredibar.vrsn", "1.5.11.14");
user_pref("extensions.incredibar.vrsnTs", "1.5.11.1419:06:13");
user_pref("extensions.incredibar.vrsni", "1.5.11.14");
user_pref("extensions.incredibar.vrsnts", "1.5.11.1419:06:13");
user_pref("extensions.kango.storage.minibar.config", "{\"name\":\"Apps Hat\",\"description\":\"Apps Hat\",\"button\":{\"tooltip\":\"Visit AppsHat.com\",\"icon\":\"hxxp://www.b
user_pref("extensions.kango.storage.ui.button.iconCache", "\"data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABMAAAATCAYAAAByUDbMAAADlElEQVQ4jb3S3U9adxwG8F/BuooQAQscXj0cOIC8nANU
user_pref("extensions.mywebsearch.prevDefaultEngine", "AVG Secure Search");
user_pref("extensions.mywebsearch.prevKwdEnabled", true);
user_pref("extensions.mywebsearch.prevKwdURL", "hxxp://isearch.avg.com/search?cid=%7B00937876-deda-43ed-80e9-71aa75092991%7D&mid=635edbf6d53c47d0b10d0196dc862880-edc1c2cc54de2
user_pref("extensions.mywebsearch.prevSelectedEngine", "Google");
user_pref("extensions.toolbar.mindspark._4zMembers_.homepage", "hxxp://home.mywebsearch.com/index.jhtml?ptb=58D8B759-D835-411B-9F7A-856CEAE0632E&n=77fc41ca&p2=^HJ^xdm007^YY^cz
user_pref("extensions.toolbar.mindspark._4zMembers_.hp.enabled", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.hp.lastGuardTime", 1710922071);
user_pref("extensions.toolbar.mindspark._4zMembers_.hp.numGuards", 1);
user_pref("extensions.toolbar.mindspark._4zMembers_.initialized", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.installation.contextKey", "");
user_pref("extensions.toolbar.mindspark._4zMembers_.installation.installDate", "2013020618");
user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerId", "^HJ^xdm007^YY^cz");
user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerSubId", "CJjn4JiTorUCFQq5zAodAn8AGQ");
user_pref("extensions.toolbar.mindspark._4zMembers_.installation.success", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.installation.toolbarId", "58D8B759-D835-411B-9F7A-856CEAE0632E");
user_pref("extensions.toolbar.mindspark._4zMembers_.lastActivePing", "1384690397407");
user_pref("extensions.toolbar.mindspark._4zMembers_.options.defaultSearch", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.options.homePageEnabled", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.options.keywordEnabled", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.options.tabEnabled", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.searchHistory", "");
user_pref("extensions.toolbar.mindspark._4zMembers_.weather.location", "10001");
user_pref("extensions.toolbar.mindspark._64Members_.BUTTON_STRUCTURE", "[{\"b\":212156802,\"c\":\"mindspark.magnify\",\"p\":\"L.0\"},{\"b\":212156803,\"c\":\"mindspark.enterse
user_pref("extensions.toolbar.mindspark._64Members_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=A0DA83BD-C7CE-41DD-AB62-A26E1271B347&n=77fd5916&p2=^XP^xdm221^YYA^cz&si=
user_pref("extensions.toolbar.mindspark._64Members_.hp.enabled", true);
user_pref("extensions.toolbar.mindspark._64Members_.initialized", true);
user_pref("extensions.toolbar.mindspark._64Members_.installation.contextKey", "");
user_pref("extensions.toolbar.mindspark._64Members_.installation.installDate", "2013092118");
user_pref("extensions.toolbar.mindspark._64Members_.installation.partnerId", "^XP^xdm221^YYA^cz");
user_pref("extensions.toolbar.mindspark._64Members_.installation.partnerSubId", "CD4823");
user_pref("extensions.toolbar.mindspark._64Members_.installation.success", true);
user_pref("extensions.toolbar.mindspark._64Members_.installation.toolbarId", "A0DA83BD-C7CE-41DD-AB62-A26E1271B347");
user_pref("extensions.toolbar.mindspark._64Members_.lastActivePing", "1384690397485");
user_pref("extensions.toolbar.mindspark._64Members_.lastKnownVersion", "5.40.2.28887");
user_pref("extensions.toolbar.mindspark._64Members_.options.defaultSearch", true);
user_pref("extensions.toolbar.mindspark._64Members_.options.homePageEnabled", true);
user_pref("extensions.toolbar.mindspark._64Members_.options.keywordEnabled", true);
user_pref("extensions.toolbar.mindspark._64Members_.options.tabEnabled", true);
user_pref("extensions.toolbar.mindspark._64Members_.toolbarCollapsed", false);
user_pref("extensions.toolbar.mindspark._64Members_.weather.location", "10001");
user_pref("extensions.toolbar.mindspark._65Members_.homepage", "hxxp://home.mywebsearch.com/index.jhtml?ptb=A9066A18-F18B-4AD2-A53A-5294D2035E2B&n=77fcbc0a&p2=^Y6^xdm007^YY^cz
user_pref("extensions.toolbar.mindspark._65Members_.hp.enabled", false);
user_pref("extensions.toolbar.mindspark._65Members_.hp.lastGuardTime", 1097711183);
user_pref("extensions.toolbar.mindspark._65Members_.hp.numGuards", 1);
user_pref("extensions.toolbar.mindspark._65Members_.initialized", true);
user_pref("extensions.toolbar.mindspark._65Members_.installation.contextKey", "");
user_pref("extensions.toolbar.mindspark._65Members_.installation.installDate", "2013051914");
user_pref("extensions.toolbar.mindspark._65Members_.installation.partnerId", "^Y6^xdm007^YY^cz");
user_pref("extensions.toolbar.mindspark._65Members_.installation.partnerSubId", "CP_vo7STorcCFQeW3god6SEAUQ");
user_pref("extensions.toolbar.mindspark._65Members_.installation.success", true);
user_pref("extensions.toolbar.mindspark._65Members_.installation.toolbarId", "A9066A18-F18B-4AD2-A53A-5294D2035E2B");
user_pref("extensions.toolbar.mindspark._65Members_.lastActivePing", "1384690397454");
user_pref("extensions.toolbar.mindspark._65Members_.options.defaultSearch", true);
user_pref("extensions.toolbar.mindspark._65Members_.options.homePageEnabled", true);
user_pref("extensions.toolbar.mindspark._65Members_.options.keywordEnabled", true);
user_pref("extensions.toolbar.mindspark._65Members_.options.tabEnabled", true);
user_pref("extensions.toolbar.mindspark._65Members_.weather.location", "10001");
user_pref("extensions.toolbar.mindspark.hp.enabled", false);
user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "");
user_pref("extensions.toolbar.mindspark.lastInstalled", "televisionfanatic@mindspark.com");
user_pref("keyword.URL", "hxxp://mysearch.sweetpacks.com?src=6&barid=&&q=");
user_pref("sweetim.toolbar.RevertDialog.enable", "false");
user_pref("sweetim.toolbar.UserSelectedSaveSettings", "true");
user_pref("sweetim.toolbar.Visibility.VisibilityGuardLastUnHide", "0");
user_pref("sweetim.toolbar.Visibility.enable", "true");
user_pref("sweetim.toolbar.Visibility.intervaldays", "7");
user_pref("sweetim.toolbar.cargo", "3.1010000.10005");
user_pref("sweetim.toolbar.cda.DisableOveride.enable", "true");
user_pref("sweetim.toolbar.cda.HideOveride.enable", "true");
user_pref("sweetim.toolbar.cda.RemoveOveride.enable", "true");
user_pref("sweetim.toolbar.cda.returnValue", "disable");
user_pref("sweetim.toolbar.dialogs.0.enable", "true");
user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-handler.js");
user_pref("sweetim.toolbar.dialogs.0.height", "335");
user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog");
user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;");
user_pref("sweetim.toolbar.dialogs.0.url", "hxxp://www.sweetim.com/simffbar/options_remote ... crg=$cargo;");
user_pref("sweetim.toolbar.dialogs.0.width", "761");
user_pref("sweetim.toolbar.dialogs.1.enable", "true");
user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-handler.js");
user_pref("sweetim.toolbar.dialogs.1.height", "300");
user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog");
user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog");
user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html");
user_pref("sweetim.toolbar.dialogs.1.width", "500");
user_pref("sweetim.toolbar.dialogs.2.enable", "true");
user_pref("sweetim.toolbar.dialogs.2.handler", "chrome://sim_toolbar_package/content/cdadialog-handler.js");
user_pref("sweetim.toolbar.dialogs.2.height", "150");
user_pref("sweetim.toolbar.dialogs.2.id", "id_dialog_hide_disable_remove");
user_pref("sweetim.toolbar.dialogs.2.title", "Option Dialog");
user_pref("sweetim.toolbar.dialogs.2.url", "hxxp://www.sweetim.com/simffbar/simcdadialog.asp");
user_pref("sweetim.toolbar.dialogs.2.width", "530");
user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*|.*.facebook.com/.*|.*.google.com/.*|.*.google.co.in/.*|.*.google.com.br/.*|.*.google.es/.*|.*.youtube
user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
user_pref("sweetim.toolbar.keywordUrlGuard.enable", "false");
user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
user_pref("sweetim.toolbar.mode.debug", "false");
user_pref("sweetim.toolbar.newtab.created", "false");
user_pref("sweetim.toolbar.newtab.enable", "false");
user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
user_pref("sweetim.toolbar.previous.keyword.URL", "");
user_pref("sweetim.toolbar.rc.url", "hxxp://www.sweetim.com/simffbar/rc.html?toolba ... crg=$cargo;");
user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true");
user_pref("sweetim.toolbar.scripts.0.callback", "simVerification");
user_pref("sweetim.toolbar.scripts.0.domain-blacklist", "");
user_pref("sweetim.toolbar.scripts.0.domain-whitelist", "hxxp://(www.|apps.)?facebook\\.com.*");
user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb");
user_pref("sweetim.toolbar.scripts.0.enable", "false");
user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb");
user_pref("sweetim.toolbar.scripts.0.url", "hxxp://sc.sweetim.com/apps/in/fb/infb.js");
user_pref("sweetim.toolbar.scripts.1.addcontextdiv", "true");
user_pref("sweetim.toolbar.scripts.1.callback", "simVerification");
user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
user_pref("sweetim.toolbar.scripts.1.domain-whitelist", "hxxps://(www.|apps.)?facebook\\.com.*");
user_pref("sweetim.toolbar.scripts.1.elementid", "id_script_sim_fb");
user_pref("sweetim.toolbar.scripts.1.enable", "false");
user_pref("sweetim.toolbar.scripts.1.id", "id_script_fb_hxxpS");
user_pref("sweetim.toolbar.scripts.1.url", "hxxps://sc.sweetim.com/apps/in/fb/infb.js");
user_pref("sweetim.toolbar.scripts.2.addcontextdiv", "false");
user_pref("sweetim.toolbar.scripts.2.callback", "");
user_pref("sweetim.toolbar.scripts.2.domain-blacklist", ".*.google..*|.*.bing..*|.*.live..*|.*.msn..*|.*.yahoo..*|.*.youtube.com.*|.*ask.com.*|.*.sweetim.com.*");
user_pref("sweetim.toolbar.scripts.2.domain-whitelist", "");
user_pref("sweetim.toolbar.scripts.2.elementid", "id_predict_include_script");
user_pref("sweetim.toolbar.scripts.2.enable", "false");
user_pref("sweetim.toolbar.scripts.2.id", "id_script_prad");
user_pref("sweetim.toolbar.scripts.2.url", "hxxp://cdn1.certified-apps.com/scripts/shared/enable.js?si=3104&tid=chff1");
user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engine=\"hxxp://*google.*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://sear
user_pref("sweetim.toolbar.search.history.capacity", "10");
user_pref("sweetim.toolbar.searchguard.enable", "false");
user_pref("sweetim.toolbar.searchguard.initialized_by_rc", "true");
user_pref("sweetim.toolbar.simapp_id", "{AF85E2B7-2C0F-11E2-9AB3-D0DF9A62C173}");
user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com/?st=6&barid={AF85E2B7-2C0F-11E2-9AB3-D0DF9A62C173}");
user_pref("sweetim.toolbar.version", "1.9.0.0");
user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_referrer", "hxxp://isearch.avg.com/tab?cid=%7B00937876-deda-43ed-80e9-71aa75092991%7D&mid=635edbf6d53c47d0b10d
user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_temp_referer", "hxxp://isearch.avg.com/tab?cid=%7B00937876-deda-43ed-80e9-71aa75092991%7D&mid=635edbf6d53c47d0
user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_whiteList", "{\"search.babylon.com\":\"q\",\"search.sweetim.com\":\"q\",\"search.imesh.net\":\"q\",\"www.searc
Emptied folder: C:\Users\Zdenek\AppData\Roaming\mozilla\firefox\profiles\rix60fgr.default\minidumps [468 files]



~~~ Chrome

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 25.11.2013 at 19:11:36,75
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Nahoru
zdeny.m
Návštěvník
Návštěvník
Příspěvky: 74
Registrován: 29 lis 2004 18:54
Bydliště: Holýšov
Kontaktovat uživatele:
Kontaktovat uživatele zdeny.m

Re: asi nějaký vir

#7 Příspěvek od zdeny.m »

# AdwCleaner v3.013 - Report created 25/11/2013 at 19:17:29
# Updated 24/11/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Zdenek - ACER
# Running from : C:\Users\Zdenek\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : IBUpdaterService

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiteRanker
Folder Deleted : C:\Program Files (x86)\BetterSurf
Folder Deleted : C:\Windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
Folder Deleted : C:\Windows\SysWOW64\jmdp
Folder Deleted : C:\Program Files\~Web Assistant
Folder Deleted : C:\Windows\System32\ljkb
Folder Deleted : C:\Users\Zdenek\AppData\Local\Temp\eIntaller
Folder Deleted : C:\Users\Zdenek\AppData\Roaming\eUpdate
Folder Deleted : C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\TelevisionFanatic
Folder Deleted : C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
File Deleted : C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\Extensions\firefox@lemurleap.info.xpi
File Deleted : C:\Windows\System32\dmwu.exe
File Deleted : C:\Windows\System32\ImhxxpComm.dll
File Deleted : C:\Users\Zdenek\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\Zdenek\Desktop\Search The Web.url
File Deleted : C:\Users\Zdenek\Desktop\sweetpcfix.url
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\delta-homes.xml
File Deleted : C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\searchplugins\MyStart.xml
File Deleted : C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\searchplugins\Sweetpacks Search.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\user.js
File Deleted : C:\Windows\System32\Tasks\Your File Updater

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASMANCS
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{539F76FD-084E-4858-86D5-62F02F54AE86}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{60EACC1A-33FA-443D-9846-17B28E2C9BDB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB02BC6B-B0F0-4074-99E6-884B70FCB6AE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F13D3582-1359-4F8F-9A48-EF3AE9F5701C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C66A678D-5E6C-4AF9-8F57-C6192F42CF74}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C66A678D-5E6C-4AF9-8F57-C6192F42CF74}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{539F76FD-084E-4858-86D5-62F02F54AE86}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{17B10E59-09E1-4C39-A738-6774D7AB7778}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1AD2049E-E483-4425-8555-8E0775ACB631}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2D73F2D0-2FAB-458E-977D-2F9050E0ED60}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{36B445BF-1B84-466A-A623-A360A8CFF8C3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3E9469AF-E866-4476-B767-810630F1F6E7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{47700C35-9E3E-4DAD-934C-0CE28A87237C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6CBF5C01-C876-481B-867E-111CB1D2A7D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{716E443D-7CAA-44F1-866B-F45D00E712CC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{72063D77-7590-4DA9-A7F8-F5ECAF3632C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7FC87AC5-FA93-476E-A32C-A941229DED0B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D97143C2-4282-496B-BDC4-7EC852F1497C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Deleted : HKCU\Software\Microsoft\Babylon
Key Deleted : HKCU\Software\SiteRanker
Key Deleted : HKCU\Software\Webplayer
Key Deleted : HKCU\Software\wnlt
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\Software\AppGraffiti
Key Deleted : HKLM\Software\delta-homesSoftware
Key Deleted : HKLM\Software\eSafeSecControl
Key Deleted : HKLM\Software\Minibar
Key Deleted : HKLM\Software\qvo6Software
Key Deleted : HKLM\Software\Web Assistant
Key Deleted : HKLM\Software\YourFileDownloader
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AppsHat Mobile Apps
Key Deleted : HKLM\Software\Classes\Installer\Features\237AA359BFA99C94484AF769ACA080AD
Key Deleted : HKLM\Software\Classes\Installer\Features\3192AA38321C641458DBDAF83979D193
Key Deleted : HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B
Key Deleted : HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
Key Deleted : HKLM\Software\Classes\Installer\Products\237AA359BFA99C94484AF769ACA080AD
Key Deleted : HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B
Key Deleted : HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v25.0.1 (cs)

[ File : C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\prefs.js ]

Line Deleted : user_pref("extensions.kango.storage.hatterApps", "{}");
Line Deleted : user_pref("extensions.kango.storage.hatterPEligible", "true");
Line Deleted : user_pref("extensions.kango.storage.m2_k1", "0");
Line Deleted : user_pref("extensions.kango.storage.m2_k2", "70");
Line Deleted : user_pref("extensions.kango.storage.m2_k3", "1385328861521");
Line Deleted : user_pref("extensions.kango.storage.m2_k4", "0");
Line Deleted : user_pref("extensions.kango.storage.m2_k5", "1385402880497");
Line Deleted : user_pref("extensions.kango.storage.minibar.config", "{\"name\":\"Apps Hat\",\"description\":\"Apps Hat\",\"button\":{\"tooltip\":\"Visit AppsHat.com\",\"icon\":\"hxxp://www.bigspeedpro.com/button/%af[...]
Line Deleted : user_pref("extensions.kango.storage.nero_options", "\"{\\\"m1\\\":{\\\"ads\\\":{\\\"n1\\\":{\\\"url\\\":\\\"//ulayout.com/nero/hatter/google_post_results_728x90.html?aff_slug=appshat\\\",\\\"width\\\"[...]
Line Deleted : user_pref("extensions.kango.storage.ui.button.iconCache", "\"data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABMAAAATCAYAAAByUDbMAAADlElEQVQ4jb3S3U9adxwG8F/BuooQAQscXj0cOIC8nANUPYjoHDClvqAoZ04gpqsZKmrUV[...]
Line Deleted : user_pref("extensions.toolbar.mindspark._64Members_.BUTTON_STRUCTURE", "[{\"b\":212156802,\"c\":\"mindspark.magnify\",\"p\":\"L.0\"},{\"b\":212156803,\"c\":\"mindspark.entersearchterms\",\"p\":\"L.0.0[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Line Deleted : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Line Deleted : user_pref("sweetim.toolbar.scripts.0.domain-whitelist", "hxxp://(www.|apps.)?facebook\\.com.*");
Line Deleted : user_pref("sweetim.toolbar.scripts.1.domain-whitelist", "hxxps://(www.|apps.)?facebook\\.com.*");
Line Deleted : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engine=\"hxxp://*google.*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://search.yahoo.com/*\" param=\"[...]
Line Deleted : user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_whiteList", "{\"search.babylon.com\":\"q\",\"search.sweetim.com\":\"q\",\"search.imesh.net\":\"q\",\"www.search-results.com\":\"q\",\"h[...]

-\\ Google Chrome v31.0.1650.57

[ File : C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : icon_url
Deleted : search_url
Deleted : keyword

*************************

AdwCleaner[R0].txt - [11946 octets] - [25/11/2013 19:16:37]
AdwCleaner[S0].txt - [11894 octets] - [25/11/2013 19:17:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [11955 octets] ##########
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: asi nějaký vir

#8 Příspěvek od vyosek »

:arrow: Poprosim nyni o log z FRSTLauncheru dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
zdeny.m
Návštěvník
Návštěvník
Příspěvky: 74
Registrován: 29 lis 2004 18:54
Bydliště: Holýšov
Kontaktovat uživatele:
Kontaktovat uživatele zdeny.m

Re: asi nějaký vir

#9 Příspěvek od zdeny.m »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-11-2013 01
Ran by Zdenek at 2013-11-25 22:49:26
Running from C:\Users\Zdenek\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}

==================== Installed Programs ======================

3DVIA player 5.0.0.20 (x32 Version: 5.0.20)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212)
AbiWord 2.8.6 (x32 Version: 2.8.6)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Reader X (10.1.6) - Czech (x32 Version: 10.1.6)
ATI Catalyst Install Manager (Version: 3.0.765.0)
AVG 2014 (Version: 14.0.3629)
AVG 2014 (Version: 14.0.4158)
AVG 2014 (Version: 2014.0.4158)
CCleaner (Version: 4.06)
Cisco EAP-FAST Module (x32 Version: 2.2.14)
Cisco LEAP Module (x32 Version: 1.0.19)
Cisco PEAP Module (x32 Version: 1.1.6)
Driver Genius (x32 Version: 12.0)
Epson Connect Printer Setup (x32 Version: 1.1.1)
Epson Easy Photo Print 2 (x32 Version: 2.3.2.0)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (x32 Version: 1.00.0000)
Epson Event Manager (x32 Version: 3.01.0000)
EPSON Scan (x32)
EPSON XP-205 207 Series Printer Uninstall
EpsonNet Print (x32 Version: 2.5.00)
eReg (x32 Version: 1.20.138.34)
ESET Online Scanner v3 (x32)
Facebook Messenger 2.1.4814.0 (x32 Version: 2.1.4814.0)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
FileHippo.com Update Checker (x32)
Free Media Player 2.0.7 (x32 Version: 2.0.7)
Google Earth Plug-in (x32 Version: 7.1.1.1888)
Google Chrome (x32 Version: 31.0.1650.57)
Google Talk Plugin (x32 Version: 4.9.1.16010)
Google Update Helper (x32 Version: 1.3.21.165)
GotClip Downloader (x32)
Intel(R) Processor Graphics (x32 Version: 8.15.10.2827)
Intel(R) Rapid Storage Technology (Version: 12.0.0.1083)
LemurLeap 3.0.0 (Version: 3.0.0)
Logitech SetPoint 6.52 (Version: 6.52.74)
McAfee Security Scan Plus (x32 Version: 3.0.285.6)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (Version: 4.0.30319)
Microsoft Office Excel Viewer (x32 Version: 12.0.6219.1000)
Microsoft Office Word Viewer 2003 (x32 Version: 11.0.8173.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Windows SDK for Windows 7 (7.1) (Version: 7.1.30514)
Microsoft Windows SDK for Windows 7 (7.1) (Version: 7.1.7600.0.30514)
MiniTool Partition Wizard Home Edition 7.5 (x32)
Motorola Bluetooth (Version: 4.0.14.324)
Mozilla Firefox 25.0.1 (x86 cs) (x32 Version: 25.0.1)
Mozilla Maintenance Service (x32 Version: 25.0.1)
Odinstalace tiskárny EPSON XP-302 303 305 306 Series
Online TV Player 5 (x32)
PC Štítky (x32)
Print Envelope 3.2.0.5 (x32 Version: 3.2.0.5)
Příručka pro síť EPSON XP-205 207 Series (x32)
Příručka pro síť EPSON XP-302 303 305 306 Series (x32)
Ralink Bluetooth Stack64 (Version: 9.0.727.3)
Realtek Ethernet Controller Driver (x32 Version: 7.67.1226.2012)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6873)
Realtek USB 2.0 Card Reader (x32 Version: 6.2.8400.30143)
REALTEK Wireless LAN Driver (x32 Version: 1.00.10.0824)
REALTEK Wireless LAN Driver and Utility (x32 Version: 1.00.0175)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.39.0)
RtkDashClientInstaller (x32 Version: 1.0.9)
RuneScape Launcher 1.2.2 (x32 Version: 1.2.2)
Seznam Software (HKCU)
Software Updater (x32 Version: 4.1.1)
SpyHunter (Version: 4.16.5.4290)
TeamSpeak 3 Client (x32 Version: 3.0.10)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Uživatelská příručka EPSON XP-205 207 Series (x32)
Uživatelská příručka EPSON XP-302 303 305 306 Series (x32)
Visual Studio 2008 x64 Redistributables (x32 Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (x32 Version: 14.0.0.1)
VLC media player 2.0.2 (x32 Version: 2.0.2)
WinRAR 4.20 (64-bit) (Version: 4.20.0)
World of Tanks v.0.8.0 (x32)
World of Warplanes (x32)
Základní uživatelská příručka EPSON XP-302 303 305 306 Series (x32)

==================== Restore Points =========================

17-11-2013 12:18:42 Removed AVG 2014
17-11-2013 12:20:01 Removed AVG 2014
17-11-2013 12:23:29 Installed AVG 2014
17-11-2013 12:27:49 Installed AVG 2014
17-11-2013 12:45:42 Installed Ralink Bluetooth Stack64.
17-11-2013 12:59:29 Removed Internet Explorer Toolbar 4.6 by SweetPacks
17-11-2013 13:01:37 Odebráno: AVG PC TuneUp
17-11-2013 13:02:20 Removed AVG PC TuneUp Language Pack (en-US)
19-11-2013 11:46:46 Windows Update
25-11-2013 17:07:10 Installed SpyHunter

==================== Hosts content: ==========================

2009-07-14 03:34 - 2012-12-17 22:37 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {099C3D9E-1481-4B12-987A-CF198F90020C} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000Core => C:\Users\Zdenek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-01-16] (Facebook Inc.)
Task: {0F2E0483-D636-43A2-8F21-284741E7B5A3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000UA => C:\Users\Zdenek\AppData\Local\Google\Update\GoogleUpdate.exe [2013-10-10] (Google Inc.)
Task: {1C4636F0-497E-42DE-ACF0-860F85354A91} - \Your File Updater No Task File
Task: {1D7DC0CB-6665-4375-ADAF-8A58AFBBF00D} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation)
Task: {27E644DA-8ECD-41EC-86A2-2C27E62F1CA6} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000UA => C:\Users\Zdenek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-01-16] (Facebook Inc.)
Task: {32A39260-E37D-4611-A6DE-A5CC34044B33} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09] (Adobe Systems Incorporated)
Task: {46920A92-C5B1-40DA-B301-9BC21AE930A7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-16] (Google Inc.)
Task: {80F0B736-0BD9-4881-92BE-FAB06BEF7D39} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03] (Adobe Systems Incorporated)
Task: {C6F80637-29FE-4877-A1B1-38EE1ED1C6FB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-16] (Google Inc.)
Task: {CE587703-879C-44CF-880D-9356AFC5F1CB} - System32\Tasks\RtlDashSrvStart => C:\Program Files (x86)\REALTEK\RtkDashClientInstaller\RtkDashClient.exe [2011-09-22] (Realtek Semiconductor Corporation)
Task: {EDD7103A-4A39-4288-85B1-AE220EB1F3F0} - System32\Tasks\ROC_JAN2013_TB_rmv => C:\Program Files (x86)\AVG Secure Search\PostInstall\ROC.exe
Task: {FA5FCAB0-5EC6-446B-AA34-623360FF3587} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000Core => C:\Users\Zdenek\AppData\Local\Google\Update\GoogleUpdate.exe [2013-10-10] (Google Inc.)
Task: {FE90B697-C579-4830-AD18-7F7A2082701F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000Core.job => C:\Users\Zdenek\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000UA.job => C:\Users\Zdenek\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000Core.job => C:\Users\Zdenek\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000UA.job => C:\Users\Zdenek\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job => C:\Program Files (x86)\AVG Secure Search\PostInstall\ROC.exe
Task: C:\Windows\Tasks\RtlDashSrvStart.job => C:\Program Files (x86)\Realtek\RtkDashClientInstaller\RtkDashClient.exe

==================== Loaded Modules (whitelisted) =============

2012-10-23 17:31 - 2012-10-23 17:31 - 00029960 _____ () C:\Windows\system32\BsTrace.dll
2013-09-21 17:49 - 2013-04-15 12:32 - 00060416 _____ () C:\Users\Zdenek\AppData\Roaming\Seznam.cz\bin\24133libfoxloader-x64.dll
2012-01-10 20:12 - 2012-01-10 20:12 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-10-23 17:30 - 2012-10-23 17:30 - 00053000 _____ () C:\Windows\SysWOW64\BlueSoleilCSps.dll
2013-09-21 17:49 - 2013-03-25 15:39 - 00894968 _____ () C:\Users\Zdenek\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
2013-09-21 17:49 - 2013-03-29 12:37 - 00059384 _____ () C:\Users\Zdenek\AppData\Roaming\Seznam.cz\bin\24133libfoxloader.dll
2012-08-05 21:47 - 2009-12-09 20:20 - 00126976 _____ () C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\EnumDevLib.dll
2012-10-23 17:31 - 2012-10-23 17:31 - 00079624 _____ () C:\Windows\system32\BsProfilefunc.dll
2012-10-23 17:31 - 2012-10-23 17:31 - 00363784 _____ () C:\Windows\system32\BsExtendFunc.dll
2013-11-16 14:08 - 2013-11-16 14:08 - 03363952 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-10-09 11:03 - 2013-10-09 11:03 - 16233864 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: Myš Microsoft pro port PS/2
Description: Myš Microsoft pro port PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (11/25/2013 07:24:06 PM) (Source: Service Control Manager) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2013-03-13 17:52:01.611
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-03-13 17:52:01.455
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-03-13 17:50:45.413
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-03-13 17:50:45.293
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-03-13 17:43:37.650
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-03-13 17:43:37.494
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-03-13 17:42:24.391
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-03-13 17:42:24.271
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-03-13 17:32:30.665
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-03-13 17:32:30.446
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\igdkmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 33%
Total physical RAM: 8119.11 MB
Available physical RAM: 5391.88 MB
Total Pagefile: 16236.4 MB
Available Pagefile: 13268.25 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (New Volume) (Fixed) (Total:153.54 GB) (Free:68.82 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:312.11 GB) (Free:257.63 GB) NTFS
Drive e: (INTEX_DVD) (CDROM) (Total:1.88 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: DFC41DB4)
Partition 1: (Active) - (Size=154 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=312 GB) - (Type=07 NTFS)

==================== End Of Log ============================
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: asi nějaký vir

#10 Příspěvek od vyosek »

:arrow: Jeste mi sem dejte log FRST.txt

:arrow: Trvate na antiviru AVG - u nas neni moc obliben - vysoka zatez systemu, slabsi detekce :?:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
zdeny.m
Návštěvník
Návštěvník
Příspěvky: 74
Registrován: 29 lis 2004 18:54
Bydliště: Holýšov
Kontaktovat uživatele:
Kontaktovat uživatele zdeny.m

Re: asi nějaký vir

#11 Příspěvek od zdeny.m »

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-11-2013 01
Ran by Zdenek (administrator) on ACER on 26-11-2013 15:23:48
Running from C:\Users\Zdenek\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\REALTEK\RtkDashClientInstaller\RtkDashClient.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIIKE.EXE
(Motorola Solutions, Inc.) C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
(Motorola Solutions, Inc.) C:\Program Files\Motorola\Bluetooth\audiosrv.exe
(Motorola Solutions, Inc.) C:\Program Files\Motorola\Bluetooth\obexsrv.exe
(Realtek) C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe
() C:\Users\Zdenek\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Zdenek\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(LemurLeap) C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(LemurLeap) C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe
(Motorola Solutions, Inc.) C:\Program Files\Motorola\Bluetooth\LEsrv.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(Motorola Solutions, Inc.) C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\REALTEK\Realtek USB 2.0 Card Reader\RIconMan.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IARNIKE.EXE
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_FINVIKE.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Farbar) C:\Users\Zdenek\Downloads\FRST64(2).exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SpywareTerminatorUpdater] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [2991856 2013-02-21] (Logitech, Inc.)
HKLM\...\Run: [BTMTrayAgent] - rundll32.exe "C:\Program Files\Motorola\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13513288 2013-03-29] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1278024 2013-03-08] (Realtek Semiconductor)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
HKCU\...\Run: [Facebook Update] - C:\Users\Zdenek\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-01-16] (Facebook Inc.)
HKCU\...\Run: [EPLTarget\P0000000000000000] - C:\Windows\System32\spool\drivers\x64\3\E_IATIIKE.EXE [283232 2012-02-29] (SEIKO EPSON CORPORATION)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\Zdenek\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\Zdenek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKCU\...\Run: [Google Update] - C:\Users\Zdenek\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-10-10] (Google Inc.)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe [1058400 2011-10-31] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [PCOP Tray] - C:\Program Files (x86)\PC Optimizer Pro\Pcoptimizerpro.exe TRAY=1
HKLM-x32\...\Run: [seznam-listicka-distribuce] - "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [BtTray] - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [374024 2012-10-23] (IVT Corporation)
AppInit_DLLs-x32: [ ] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {289B4B4C-98E1-4F9F-9B8C-EE7508DBBBF3} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
SearchScopes: HKCU - {2BBDDA97-82B6-4294-A357-9F2FA93A771F} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
SearchScopes: HKCU - {598AA6D5-844A-4B56-A62E-AE73E4DCF1BA} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKCU - {60AFEBE2-0A96-42D7-8A4B-B67DFB7D77A8} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
SearchScopes: HKCU - {979FC880-5641-4A81-86DE-BB02F0C8637B} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {9AB1C92A-A973-4F06-9ACD-7DFAB3CEF82B} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKCU - {A7571F8F-6238-4AFB-BB07-D1F707D3439B} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKCU - {CA0E1381-2251-4D21-A9A3-D7DEE3E922C7} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\EPSON Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapBHO.dll (LemurLeap)
BHO-x32: Better-Surf - {8271B5D6-76D3-4ABF-AEB3-1721161C76BC} - C:\Program Files (x86)\Better-Surf\ie\BetterSrf.dll ()
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\EPSON Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWOW64\skype4com.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @virtools.com/3DviaPlayer - C:\Program Files (x86)\Virtools\3D Life Player\npvirtools.dll (Dassault Systèmes)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Zdenek\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Zdenek\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Zdenek\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Zdenek\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Zdenek\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Zdenek\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Zdenek\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF SearchPlugin: C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\searchplugins\firmycz.xml
FF SearchPlugin: C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\searchplugins\mapycz.xml
FF SearchPlugin: C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\searchplugins\zbocz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: DoNotTrackMe - C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\Extensions\donottrackplus@abine.com
FF Extension: Seznam lištička - C:\Users\Zdenek\AppData\Roaming\Mozilla\Firefox\Profiles\rix60fgr.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF HKLM-x32\...\Firefox\Extensions: [xz123@ya456.com] - C:\Program Files (x86)\BetterSurf\ff
FF HKLM-x32\...\Firefox\Extensions: [12x3q@3244516.com] - C:\Program Files (x86)\Better-Surf\ff
FF Extension: Better-Surf - C:\Program Files (x86)\Better-Surf\ff

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (Seznam Li\u0161ti\u010Dka - Email) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig\1.3.13_0
CHR Extension: (Seznam Li\u0161ti\u010Dka - Slovn\u00EDk) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd\1.2.13_0
CHR Extension: (YouTube) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (BetterSurf) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\dedmngkbaffkenlfdcbganndoghblmap\1.0_0
CHR Extension: (Logitech SetPoint) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\edaibbiobngpbmeonadpbfafbkimjbdd\6.52.74_1
CHR Extension: (LemurLeap) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof\1.0.0_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Seznam Li\u0161ti\u010Dka - Rychl\u00E1 volba) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.5.14_0
CHR Extension: (Gmail) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR Extension: (BetterSrf) - C:\Users\Zdenek\AppData\Local\Google\Chrome\User Data\Default\Extensions\poheodfamflhhhdcmjfeggbgigeefaco\1.1_0
CHR HKLM-x32\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files (x86)\BetterSurf\ch\Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [edaibbiobngpbmeonadpbfafbkimjbdd] - C:\ProgramData\Logitech\LogiSmoothChromeExt.crx
CHR HKLM-x32\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
CHR HKLM-x32\...\Chrome\Extension: [poheodfamflhhhdcmjfeggbgigeefaco] - C:\Program Files (x86)\Better-Surf\ch\Chrome.crx

==================== Services (Whitelisted) =================

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1616136 2012-11-20] (IVT Corporation)
R2 Bluetooth Low Energy Service; C:\Program Files\Motorola\Bluetooth\LEsrv.exe [591920 2011-07-20] (Motorola Solutions, Inc.)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [146184 2012-10-23] (IVT Corporation)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
R2 IconMan_R; C:\Program Files (x86)\REALTEK\Realtek USB 2.0 Card Reader\RIconMan.exe [2464400 2012-09-07] (Realsil Microelectronics Inc.)
S4 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe [234776 2012-09-05] (McAfee, Inc.)
R2 Realtek11nSU; C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek)
R2 Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [65312 2013-10-03] (LemurLeap)
R2 Util LemurLeap; C:\Program Files (x86)\LemurLeap\bin\utilLemurLeap.exe [65312 2013-10-03] (LemurLeap)

==================== Drivers (Whitelisted) ====================

R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [240920 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [194872 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [22536 2011-07-01] (IVT Corporation)
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2012-06-18] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12384 2012-06-18] ()
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-26 15:23 - 2013-11-26 15:23 - 01958474 _____ (Farbar) C:\Users\Zdenek\Downloads\FRST64(2).exe
2013-11-25 22:49 - 2013-11-25 22:50 - 00018043 _____ C:\Users\Zdenek\Downloads\Addition.txt
2013-11-25 22:48 - 2013-11-26 15:23 - 00019595 _____ C:\Users\Zdenek\Downloads\FRST.txt
2013-11-25 22:47 - 2013-11-25 22:47 - 01958474 _____ (Farbar) C:\Users\Zdenek\Downloads\FRST64(1).exe
2013-11-25 19:16 - 2013-11-25 19:17 - 00000000 ____D C:\AdwCleaner
2013-11-25 19:14 - 2013-11-25 19:14 - 01091882 _____ C:\Users\Zdenek\Downloads\adwcleaner.exe
2013-11-25 19:11 - 2013-11-25 19:11 - 00034469 _____ C:\Users\Zdenek\Desktop\JRT.txt
2013-11-25 19:02 - 2013-11-25 19:02 - 01034531 _____ (Thisisu) C:\Users\Zdenek\Downloads\JRT.exe
2013-11-25 19:02 - 2013-11-25 19:02 - 00000000 ____D C:\Windows\ERUNT
2013-11-25 18:59 - 2013-11-25 19:08 - 00001794 _____ C:\sc-cleaner.txt
2013-11-25 18:59 - 2013-11-25 18:59 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\Zdenek\Downloads\sc-cleaner.exe
2013-11-25 18:59 - 2013-11-25 18:59 - 00000000 ____D C:\Users\Zdenek\Desktop\sc-cleaner
2013-11-25 18:45 - 2013-11-25 18:51 - 00000000 ____D C:\Program Files\trend micro
2013-11-25 18:45 - 2013-11-25 18:45 - 00935175 _____ C:\Users\Zdenek\Downloads\RSITx64.exe
2013-11-25 18:45 - 2013-11-25 18:45 - 00000000 ____D C:\rsit
2013-11-25 18:09 - 2013-11-25 18:09 - 00000000 _____ C:\autoexec.bat
2013-11-25 18:07 - 2013-11-25 18:07 - 00002266 _____ C:\Users\Zdenek\Desktop\SpyHunter.lnk
2013-11-25 18:07 - 2013-11-25 18:07 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-25 18:07 - 2013-11-25 18:07 - 00000000 ____D C:\Users\Zdenek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2013-11-25 18:07 - 2013-11-25 18:07 - 00000000 ____D C:\sh4ldr
2013-11-25 18:07 - 2013-11-25 18:07 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-25 18:05 - 2013-11-25 18:05 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Zdenek\Downloads\SpyHunter-Installer.exe
2013-11-25 15:00 - 2013-11-25 15:00 - 00000000 ____D C:\Program Files (x86)\Better-Surf
2013-11-19 12:53 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-19 12:48 - 2013-11-19 12:48 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-19 12:48 - 2013-11-19 12:48 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-19 12:48 - 2013-11-19 12:48 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-19 12:48 - 2013-11-19 12:48 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-19 12:48 - 2013-11-19 12:48 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-19 12:48 - 2013-11-19 12:48 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-19 12:48 - 2013-11-19 12:48 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-19 12:48 - 2013-11-19 12:48 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-19 12:48 - 2013-11-19 12:48 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-19 12:48 - 2013-11-19 12:48 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-19 12:48 - 2013-11-19 12:48 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-19 12:47 - 2013-11-19 12:53 - 00010730 _____ C:\Windows\IE11_main.log
2013-11-18 12:03 - 2013-11-18 12:03 - 00384529 _____ C:\Users\Zdenek\Downloads\Lista_centrum.exe
2013-11-18 12:03 - 2013-06-27 10:59 - 00000000 ____D C:\Users\Zdenek\Downloads\firefox
2013-11-17 17:31 - 2013-11-17 17:31 - 02100226 _____ C:\Users\Zdenek\Downloads\fingers.avi
2013-11-17 14:41 - 2013-11-17 14:41 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-11-17 14:41 - 2013-11-17 14:41 - 00000000 ____D C:\Program Files\Realtek
2013-11-17 14:41 - 2013-03-29 21:42 - 03379272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2013-11-17 14:41 - 2013-03-29 18:04 - 21170176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2013-11-17 14:41 - 2013-03-29 17:52 - 00914992 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2013-11-17 14:41 - 2013-03-29 17:10 - 00449481 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-11-17 14:41 - 2013-03-27 16:57 - 00135240 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2013-11-17 14:41 - 2013-03-26 17:06 - 02797128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2013-11-17 14:41 - 2013-03-26 15:40 - 03693128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2013-11-17 14:41 - 2013-03-26 14:38 - 01659464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2013-11-17 14:41 - 2013-03-25 17:32 - 03180264 _____ C:\Windows\system32\Drivers\rtvienna.dat
2013-11-17 14:41 - 2013-03-20 13:16 - 02102040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2013-11-17 14:41 - 2013-03-15 19:34 - 04957976 _____ (A-volute) C:\Windows\system32\RTKSMlfx.dll
2013-11-17 14:41 - 2013-03-15 19:33 - 00887640 _____ (A-Volute) C:\Windows\system32\RTKSMSettingsIPC.dll
2013-11-17 14:41 - 2013-03-12 18:16 - 00613448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2013-11-17 14:41 - 2013-02-27 05:37 - 00823072 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2013-11-17 14:41 - 2013-02-27 05:37 - 00633632 _____ (SRS Labs, Inc.) C:\Windows\system32\sltech64.dll
2013-11-17 14:41 - 2013-02-27 05:37 - 00517408 _____ (SRS Labs, Inc.) C:\Windows\system32\sl3apo64.dll
2013-11-17 14:41 - 2013-02-27 05:37 - 00213792 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2013-11-17 14:41 - 2013-02-21 17:26 - 00858032 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2013-11-17 14:41 - 2013-02-21 17:26 - 00148912 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2013-11-17 14:41 - 2013-02-21 17:25 - 00569256 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2013-11-17 14:41 - 2013-02-20 18:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2013-11-17 14:41 - 2013-02-19 18:52 - 00991816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2013-11-17 14:41 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2013-11-17 14:41 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2013-11-17 14:41 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2013-11-17 14:41 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2013-11-17 14:41 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2013-11-17 14:41 - 2012-01-30 11:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2013-11-17 14:41 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2013-11-17 14:41 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2013-11-17 14:41 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2013-11-17 14:41 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2013-11-17 14:41 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2013-11-17 14:41 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2013-11-17 14:41 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2013-11-17 14:41 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2013-11-17 14:41 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2013-11-17 14:41 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2013-11-17 14:41 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2013-11-17 14:41 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2013-11-17 14:41 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2013-11-17 14:41 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2013-11-17 14:41 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2013-11-17 14:41 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2013-11-17 14:41 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2013-11-17 14:41 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2013-11-17 14:41 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2013-11-17 14:41 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2013-11-17 14:40 - 2013-03-26 17:04 - 02734624 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2013-11-17 14:40 - 2013-03-23 03:43 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2013-11-17 14:40 - 2013-03-20 13:17 - 09123608 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2013-11-17 14:40 - 2013-03-20 13:16 - 01900312 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2013-11-17 14:40 - 2013-03-20 13:16 - 00910104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2013-11-17 14:40 - 2013-03-08 12:51 - 00904752 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2013-11-17 14:40 - 2013-02-28 13:10 - 14021912 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2013-11-17 14:40 - 2013-02-28 13:10 - 02032408 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2013-11-17 14:40 - 2013-01-17 19:32 - 00719640 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2013-11-17 14:40 - 2012-12-12 11:17 - 00395208 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2013-11-17 14:40 - 2012-10-02 14:41 - 00501192 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2013-11-17 14:40 - 2012-10-02 14:41 - 00487368 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2013-11-17 14:40 - 2012-10-02 14:41 - 00415688 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2013-11-17 14:40 - 2012-09-10 20:06 - 00612728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2013-11-17 14:40 - 2012-07-15 21:13 - 00394616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-11-17 14:40 - 2012-06-20 17:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-17 14:40 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2013-11-17 14:40 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2013-11-17 14:40 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2013-11-17 14:40 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2013-11-17 14:40 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2013-11-17 14:40 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2013-11-17 14:40 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2013-11-17 14:40 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2013-11-17 14:40 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2013-11-17 14:40 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2013-11-17 14:40 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2013-11-17 14:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2013-11-17 14:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2013-11-17 14:40 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2013-11-17 14:40 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-17 13:53 - 2013-11-17 13:53 - 00000000 ____D C:\Users\Zdenek\AppData\Local\bluesoleil
2013-11-17 13:47 - 2013-11-17 13:47 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_BtL2caScoIf_01009.Wdf
2013-11-17 13:46 - 2013-11-17 13:46 - 00000000 ____D C:\Program Files (x86)\Ralink Corporation
2013-11-17 13:45 - 2013-11-17 13:48 - 00000032 _____ C:\Windows\0
2013-11-17 13:45 - 2013-11-17 13:45 - 00000000 _____ C:\Windows\system32\0
2013-11-17 13:32 - 2013-11-26 15:15 - 00000987 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-11-17 13:17 - 2013-11-17 13:17 - 04436544 _____ (AVG Technologies) C:\Users\Zdenek\Downloads\avg_free_stb_all_2014_4158.exe
2013-11-16 14:08 - 2013-11-25 19:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-13 07:08 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 07:08 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 07:08 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 07:08 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 07:08 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 07:08 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 07:08 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 07:08 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 07:08 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 07:08 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 07:08 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 07:08 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 07:08 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 07:08 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 07:08 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 07:08 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 07:08 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 07:08 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 07:08 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 07:08 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 07:08 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 07:08 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 07:08 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 07:08 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 07:08 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 07:08 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 07:08 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 07:08 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 07:08 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 07:08 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-09 19:35 - 2013-11-25 22:40 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000UA.job
2013-11-09 19:35 - 2013-11-25 19:40 - 00000914 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000Core.job
2013-11-09 19:35 - 2013-11-09 19:35 - 00003938 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000UA
2013-11-09 19:35 - 2013-11-09 19:35 - 00003542 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000Core
2013-11-06 17:18 - 2013-11-16 18:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox.bak
2013-11-05 21:55 - 2013-11-05 21:55 - 00150808 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgdiska.sys
2013-11-04 21:52 - 2013-11-04 21:52 - 00240920 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdrivera.sys
2013-10-31 23:00 - 2013-10-31 23:00 - 00212280 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx64.sys
2013-10-31 22:49 - 2013-10-31 22:49 - 00294712 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgloga.sys
2013-10-30 23:47 - 2013-10-30 23:48 - 04687865 _____ (Mgr. Radovan Kraus ) C:\Users\Zdenek\Downloads\TiskObalek_CZ_3214.exe

==================== One Month Modified Files and Folders =======

2013-11-26 15:24 - 2013-11-25 22:48 - 00019595 _____ C:\Users\Zdenek\Downloads\FRST.txt
2013-11-26 15:23 - 2013-11-26 15:23 - 01958474 _____ (Farbar) C:\Users\Zdenek\Downloads\FRST64(2).exe
2013-11-26 15:15 - 2013-11-17 13:32 - 00000987 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-11-26 15:15 - 2012-08-10 21:01 - 00000000 ____D C:\ProgramData\MFAData
2013-11-26 15:10 - 2009-07-14 05:45 - 00010016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-26 15:10 - 2009-07-14 05:45 - 00010016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-26 15:09 - 2013-09-21 17:48 - 00000000 ____D C:\Users\Zdenek\AppData\Roaming\Seznam.cz
2013-11-26 15:08 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-11-26 15:06 - 2013-08-16 17:56 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-26 15:04 - 2013-08-16 17:56 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-26 15:04 - 2013-01-23 15:32 - 00000354 _____ C:\Windows\Tasks\ROC_JAN2013_TB_rmv.job
2013-11-26 15:04 - 2012-10-23 17:34 - 00000816 _____ C:\Windows\SysWOW64\bscs.ini
2013-11-26 15:04 - 2012-08-10 19:50 - 00000308 _____ C:\Windows\Tasks\RtlDashSrvStart.job
2013-11-26 15:03 - 2013-08-17 22:16 - 00011515 _____ C:\Windows\setupact.log
2013-11-26 15:03 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-25 22:56 - 2012-08-05 18:19 - 01756833 _____ C:\Windows\WindowsUpdate.log
2013-11-25 22:50 - 2013-11-25 22:49 - 00018043 _____ C:\Users\Zdenek\Downloads\Addition.txt
2013-11-25 22:47 - 2013-11-25 22:47 - 01958474 _____ (Farbar) C:\Users\Zdenek\Downloads\FRST64(1).exe
2013-11-25 22:40 - 2013-11-09 19:35 - 00000966 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000UA.job
2013-11-25 22:03 - 2012-08-06 20:53 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-25 20:49 - 2012-11-28 07:00 - 00000932 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000UA.job
2013-11-25 19:49 - 2013-09-21 17:48 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-11-25 19:40 - 2013-11-09 19:35 - 00000914 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000Core.job
2013-11-25 19:17 - 2013-11-25 19:16 - 00000000 ____D C:\AdwCleaner
2013-11-25 19:17 - 2013-11-16 14:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-25 19:14 - 2013-11-25 19:14 - 01091882 _____ C:\Users\Zdenek\Downloads\adwcleaner.exe
2013-11-25 19:11 - 2013-11-25 19:11 - 00034469 _____ C:\Users\Zdenek\Desktop\JRT.txt
2013-11-25 19:08 - 2013-11-25 18:59 - 00001794 _____ C:\sc-cleaner.txt
2013-11-25 19:02 - 2013-11-25 19:02 - 01034531 _____ (Thisisu) C:\Users\Zdenek\Downloads\JRT.exe
2013-11-25 19:02 - 2013-11-25 19:02 - 00000000 ____D C:\Windows\ERUNT
2013-11-25 18:59 - 2013-11-25 18:59 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\Zdenek\Downloads\sc-cleaner.exe
2013-11-25 18:59 - 2013-11-25 18:59 - 00000000 ____D C:\Users\Zdenek\Desktop\sc-cleaner
2013-11-25 18:59 - 2012-08-07 18:49 - 00001140 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-25 18:59 - 2012-08-05 18:26 - 00001403 _____ C:\Users\Zdenek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-25 18:51 - 2013-11-25 18:45 - 00000000 ____D C:\Program Files\trend micro
2013-11-25 18:45 - 2013-11-25 18:45 - 00935175 _____ C:\Users\Zdenek\Downloads\RSITx64.exe
2013-11-25 18:45 - 2013-11-25 18:45 - 00000000 ____D C:\rsit
2013-11-25 18:09 - 2013-11-25 18:09 - 00000000 _____ C:\autoexec.bat
2013-11-25 18:07 - 2013-11-25 18:07 - 00002266 _____ C:\Users\Zdenek\Desktop\SpyHunter.lnk
2013-11-25 18:07 - 2013-11-25 18:07 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-25 18:07 - 2013-11-25 18:07 - 00000000 ____D C:\Users\Zdenek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2013-11-25 18:07 - 2013-11-25 18:07 - 00000000 ____D C:\sh4ldr
2013-11-25 18:07 - 2013-11-25 18:07 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-25 18:05 - 2013-11-25 18:05 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Zdenek\Downloads\SpyHunter-Installer.exe
2013-11-25 17:49 - 2012-11-28 07:00 - 00000910 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000Core.job
2013-11-25 15:00 - 2013-11-25 15:00 - 00000000 ____D C:\Program Files (x86)\Better-Surf
2013-11-24 13:00 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-19 22:57 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sk-SK
2013-11-19 22:57 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sk-SK
2013-11-19 22:57 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-19 12:53 - 2013-11-19 12:47 - 00010730 _____ C:\Windows\IE11_main.log
2013-11-19 12:48 - 2013-11-19 12:48 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-19 12:48 - 2013-11-19 12:48 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-19 12:48 - 2013-11-19 12:48 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-19 12:48 - 2013-11-19 12:48 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-19 12:48 - 2013-11-19 12:48 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-19 12:48 - 2013-11-19 12:48 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-19 12:48 - 2013-11-19 12:48 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-19 12:48 - 2013-11-19 12:48 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-19 12:48 - 2013-11-19 12:48 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-19 12:48 - 2013-11-19 12:48 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-19 12:48 - 2013-11-19 12:48 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-19 12:48 - 2013-11-19 12:48 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-19 12:48 - 2013-11-19 12:48 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-18 12:03 - 2013-11-18 12:03 - 00384529 _____ C:\Users\Zdenek\Downloads\Lista_centrum.exe
2013-11-17 17:31 - 2013-11-17 17:31 - 02100226 _____ C:\Users\Zdenek\Downloads\fingers.avi
2013-11-17 14:42 - 2013-08-17 22:16 - 00034172 _____ C:\Windows\PFRO.log
2013-11-17 14:41 - 2013-11-17 14:41 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-11-17 14:41 - 2013-11-17 14:41 - 00000000 ____D C:\Program Files\Realtek
2013-11-17 14:40 - 2012-08-05 21:47 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-17 14:25 - 2013-10-13 13:10 - 00002193 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-17 14:03 - 2012-08-06 20:53 - 00000000 ____D C:\Program Files\Google
2013-11-17 14:03 - 2012-08-06 20:53 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-17 14:02 - 2012-08-10 21:10 - 00000000 ____D C:\Program Files (x86)\AVG
2013-11-17 14:01 - 2012-08-06 20:53 - 00000000 ____D C:\Users\Zdenek\AppData\Local\Google
2013-11-17 14:01 - 2012-08-06 20:53 - 00000000 ____D C:\ProgramData\Google
2013-11-17 13:58 - 2009-07-26 19:41 - 00632314 _____ C:\Windows\system32\perfh005.dat
2013-11-17 13:58 - 2009-07-26 19:41 - 00122466 _____ C:\Windows\system32\perfc005.dat
2013-11-17 13:58 - 2009-07-14 06:13 - 01473720 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-17 13:55 - 2013-08-17 18:17 - 00000000 ____D C:\ProgramData\GlarySoft
2013-11-17 13:55 - 2013-08-17 18:09 - 00000075 _____ C:\DiskDefrag.log
2013-11-17 13:55 - 2013-08-17 18:09 - 00000000 ____D C:\Users\Zdenek\AppData\Roaming\GlarySoft
2013-11-17 13:53 - 2013-11-17 13:53 - 00000000 ____D C:\Users\Zdenek\AppData\Local\bluesoleil
2013-11-17 13:48 - 2013-11-17 13:45 - 00000032 _____ C:\Windows\0
2013-11-17 13:47 - 2013-11-17 13:47 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_BtL2caScoIf_01009.Wdf
2013-11-17 13:46 - 2013-11-17 13:46 - 00000000 ____D C:\Program Files (x86)\Ralink Corporation
2013-11-17 13:45 - 2013-11-17 13:45 - 00000000 _____ C:\Windows\system32\0
2013-11-17 13:38 - 2013-09-21 17:50 - 00000000 ____D C:\Program Files (x86)\HandyUpdater
2013-11-17 13:37 - 2012-08-05 18:26 - 00000000 ___RD C:\Users\Zdenek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-17 13:33 - 2013-10-14 18:17 - 00000000 ____D C:\ProgramData\AVG2014
2013-11-17 13:29 - 2012-08-11 10:20 - 00000000 ___HD C:\$AVG
2013-11-17 13:20 - 2013-10-14 18:15 - 00000000 ____D C:\Users\Zdenek\AppData\Local\Avg2014
2013-11-17 13:17 - 2013-11-17 13:17 - 04436544 _____ (AVG Technologies) C:\Users\Zdenek\Downloads\avg_free_stb_all_2014_4158.exe
2013-11-17 13:07 - 2012-08-07 18:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-16 18:04 - 2013-11-06 17:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox.bak
2013-11-10 20:40 - 2012-08-07 19:18 - 00000000 ____D C:\Users\Zdenek\AppData\Roaming\Mozilla
2013-11-10 18:41 - 2013-06-27 10:37 - 00003725 _____ C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
2013-11-09 19:35 - 2013-11-09 19:35 - 00003938 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000UA
2013-11-09 19:35 - 2013-11-09 19:35 - 00003542 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1565823262-305046286-3171751142-1000Core
2013-11-05 21:55 - 2013-11-05 21:55 - 00150808 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgdiska.sys
2013-11-04 21:52 - 2013-11-04 21:52 - 00240920 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdrivera.sys
2013-10-31 23:00 - 2013-10-31 23:00 - 00212280 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx64.sys
2013-10-31 22:49 - 2013-10-31 22:49 - 00294712 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgloga.sys
2013-10-30 23:57 - 2013-05-19 13:25 - 00000000 ____D C:\ProgramData\firebird
2013-10-30 23:48 - 2013-10-30 23:47 - 04687865 _____ (Mgr. Radovan Kraus ) C:\Users\Zdenek\Downloads\TiskObalek_CZ_3214.exe
2013-10-30 23:47 - 2013-10-06 11:21 - 00000000 ____D C:\Users\Zdenek\AbiSuite

Files to move or delete:
====================
C:\Users\Zdenek\Ccleaner Business Edition.exe
C:\Users\Zdenek\jagex_cl_runescape_LIVE.dat
C:\Users\Zdenek\random.dat


Some content of TEMP:
====================
C:\Users\Zdenek\AppData\Local\Temp\Better-Surf.exe
C:\Users\Zdenek\AppData\Local\Temp\BetterSurf.exe
C:\Users\Zdenek\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
C:\Users\Zdenek\AppData\Local\Temp\GotClipDownloader_Setup.exe
C:\Users\Zdenek\AppData\Local\Temp\oi_{FAD6B096-5332-4820-8961-7B214D3EEA12}.exe
C:\Users\Zdenek\AppData\Local\Temp\run.exe
C:\Users\Zdenek\AppData\Local\Temp\setup.exe
C:\Users\Zdenek\AppData\Local\Temp\SHSetup.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-22 12:19

==================== End Of Log ============================
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: asi nějaký vir

#12 Příspěvek od vyosek »

Proc jste nepostupoval podle navodu??? my si je nepiseme jen tak pro sebe a z nudy...
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
zdeny.m
Návštěvník
Návštěvník
Příspěvky: 74
Registrován: 29 lis 2004 18:54
Bydliště: Holýšov
Kontaktovat uživatele:
Kontaktovat uživatele zdeny.m

Re: asi nějaký vir

#13 Příspěvek od zdeny.m »

omlouvám se ale nevím kde jsem udelal chybu,ale děkuji za váš promarněný čas
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: asi nějaký vir

#14 Příspěvek od vyosek »

:arrow: V prve rade, FRST ma byt stazeny na plochu
Running from C:\Users\Zdenek\Downloads
:arrow: Za druhe, vubec jste nestahl ten FRSTLauncher :?:

:arrow: Takze to zkuste znovu a lepe :)
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
zdeny.m
Návštěvník
Návštěvník
Příspěvky: 74
Registrován: 29 lis 2004 18:54
Bydliště: Holýšov
Kontaktovat uživatele:
Kontaktovat uživatele zdeny.m

Re: asi nějaký vir

#15 Příspěvek od zdeny.m »

dobře necham to zitra na syana asi to nedam přeji dobrou noc
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“