Prosím o kontrolu logu! Nevyžádané reklamy atd...

Zpráva

flash8 · #1 Příspěvek od **flash8** » 21 led 2014 20:44

Dobrý den,

prosím o kontrolu logu. V prohlížečích mám nevyžádané reklamy a při vyhledávání se mi občas stránka přesměruje na úplně jinou.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-01-2014
Ran by HP (administrator) on PROBOOK on 21-01-2014 20:30:00
Running from C:\Users\HP\Desktop
Windows 8 (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
() C:\Program Files (x86)\Browsebeyond\updateBrowsebeyond.exe
() C:\Program Files (x86)\Browsebeyond\bin\utilBrowsebeyond.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPUsageTrack.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Somoto) C:\Users\HP\AppData\Local\FilesFrog Update Checker\update_checker.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
() C:\Program Files (x86)\HP HD Webcam Driver\Monitor.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
() C:\Users\HP\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\HP\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
() C:\Users\HP\AppData\Local\Temp\UsageTemp.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Desktop.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [BtPreLoad] - C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-08-20] ()
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-08-06] (IDT, Inc.)
HKLM-x32\...\Run: [PDF Complete] - C:\Program Files (x86)\PDF Complete\pdfsty.exe [684064 2012-07-17] (PDF Complete Inc)
HKLM-x32\...\Run: [HP HD Webcam Driver_Monitor] - C:\Program Files (x86)\HP HD Webcam Driver\monitor.exe [303480 2012-07-26] ()
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] - c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1778640 2014-01-11] (APN)
HKLM-x32\...\Run: [QLBController] - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [337184 2013-07-31] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
HKLM-x32\...\Run: [UsageTemp] - C:\Users\HP\AppData\Local\Temp\UsageTemp.exe [1305824 2014-01-17] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-01-14] (Hewlett-Packard)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\HP\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [SDP] - C:\Users\HP\AppData\Local\FilesFrog Update Checker\update_checker.exe [201808 2013-01-31] (Somoto)
HKCU\...\Run: [AppsHat] - C:\Users\HP\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [202752 2012-10-26] ()
HKCU\...\Run: [iLivid] - "C:\Users\HP\AppData\Local\iLivid\iLivid.exe" -autorun
HKCU\...\Run: [NextLive] - C:\Users\HP\AppData\Roaming\newnext.me\nengine.dll [1283584 2013-11-14] (NewNextDotMe)
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\HP\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\Administrator\...\Run: [Power2GoExpress8] - c:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1707120 2012-07-24] (CyberLink Corp.)
AppInit_DLLs: C:\Program => File Not Found
AppInit_DLLs: Files => File Not Found
AppInit_DLLs-x32: C:\Program => File Not Found
AppInit_DLLs-x32: Files => File Not Found
Lsa: [Notification Packages] DPPassFilter scecli

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com/?o=APN10645A& ... 81-220&t=4
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
URLSearchHook: HKCU - UsProvider Class - {539F76FD-084E-4858-86D5-62F02F54AE86} - C:\Program Files (x86)\Minibar\Minibar.dll (KangoExtensions)
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKCU - {47AE1BA9-0BD1-44F4-88AE-45F8F7B605EF} URL = http://www.basicserve.com/?prt=bscsrvli ... earchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: MinibarBHO - {AA74D58F-ACD0-450D-A85E-6C04B171C044} - C:\Program Files (x86)\Minibar\Minibar.dll (KangoExtensions)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: Browsebeyond - {f04a89fa-d7e3-4fbd-9569-502b4cad4347} - C:\Program Files (x86)\Browsebeyond\Browsebeyondbho.dll (Browsebeyond)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Chrome DigitalPersona Agent) - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll (DigitalPersona, Inc.)
CHR Extension: (Ask Toolbar) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaajpkhjdkhhnkmgfjodbkfpbmibkkk [2013-11-10]
CHR Extension: (AT_CarolineGardner) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\afkokbgipcdcikgmabbljlliffelepdk [2013-09-27]
CHR Extension: (Duolingo) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2013-09-27]
CHR Extension: (Dokumenty Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-27]
CHR Extension: (Disk Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-27]
CHR Extension: (BeFunky Photo Editor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apfkepiiddolifkgjmfdgpnipgnfejab [2013-09-27]
CHR Extension: (Seznam Li\u0161ti\u010Dka - Email) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2013-09-27]
CHR Extension: (Seznam Li\u0161ti\u010Dka - Slovn\u00EDk) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2013-09-27]
CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-27]
CHR Extension: (Vyhled\u00E1v\u00E1n\u00ED Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-27]
CHR Extension: (Color Changer for Facebook) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheljpcbhldkdiabdemaflamgfnbpnkd [2013-09-27]
CHR Extension: (Vzd\u00E1len\u00E1 plocha Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2013-09-27]
CHR Extension: (Picditor Photo Editor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggdplhaiiohpkafnlhlfikiomnboacoi [2013-09-27]
CHR Extension: (Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\hoihofapbdnldlhecnhefifbcddgdkhm [2013-09-27]
CHR Extension: (This Exquisite Forest) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\illikembakcokcfifcbkneafjjjnckkd [2013-09-28]
CHR Extension: (Dropbox) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2013-09-27]
CHR Extension: (Roomstyler 3D planner) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfnniehafojoidolddmhfnpnbiolbppi [2013-09-28]
CHR Extension: (Formul\u00E1\u0159e Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhknlonaankphkkbnmjdlpehkinifeeg [2013-09-27]
CHR Extension: (Browsebeyond) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jldbooabopmhfgjpnlaobgfdlkmpbdna [2014-01-08]
CHR Extension: (Autodesk Homestyler) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2013-09-28]
CHR Extension: (Skype Click to Call) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-09-28]
CHR Extension: (VLC Links) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihecgifecjdmjjmkgnobfpladefgige [2014-01-08]
CHR Extension: (Onlive Clock) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\moddbcckaikhdnigidfcmaeelcobchpm [2013-09-29]
CHR Extension: (AppsHat) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpcknfcdcgpffjddjeceioobdelceffo [2013-09-29]
CHR Extension: (DigitalPersona Extension) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncffjdbbodifgldkcbhmiiljfcnbgjab [2013-09-27]
CHR Extension: (Pen\u011B\u017Eenka Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-27]
CHR Extension: (Todo.ly) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\obhefmbclkekanpjjpkbciloojcmpkap [2013-09-27]
CHR Extension: (Seznam Li\u0161ti\u010Dka - Rychl\u00E1 volba) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2013-09-27]
CHR Extension: (TV France - Regarder T\u00E9l\u00E9vision) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbchiajonfncphfgplcmdojihhlbffbd [2013-09-29]
CHR Extension: (Televize Online) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcfeebemepipakkhapnhljbcdkagkloh [2013-09-27]
CHR Extension: (Gmail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-27]
CHR HKLM-x32\...\Chrome\Extension: [aaaajpkhjdkhhnkmgfjodbkfpbmibkkk] - C:\ProgramData\AskPartnerNetwork\Toolbar\ORJ-V7\CRX\ToolbarCR.crx [2014-01-11]
CHR HKLM-x32\...\Chrome\Extension: [jldbooabopmhfgjpnlaobgfdlkmpbdna] - C:\Program Files (x86)\Browsebeyond\jldbooabopmhfgjpnlaobgfdlkmpbdna.crx [2013-12-07]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
CHR HKLM-x32\...\Chrome\Extension: [mihecgifecjdmjjmkgnobfpladefgige] - C:\Users\HP\AppData\Local\VLC Links\extension.crx [2013-05-21]
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\dpchrome.crx [2012-08-25]

==================== Services (Whitelisted) =================

U2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2014-01-11] (APN LLC.)
U2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-20] (Qualcomm Atheros Commnucations)
U2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [488824 2012-08-24] (DigitalPersona, Inc.)
U3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477088 2012-08-01] (Hewlett-Packard Company)
U2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-07-31] (Hewlett-Packard Company)
U3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
U2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2013-11-10] (Intel Corporation)
U2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-11-10] (Intel Corporation)
U3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
U2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1134624 2012-07-17] (PDF Complete Inc)
U2 Update Browsebeyond; C:\Program Files (x86)\Browsebeyond\updateBrowsebeyond.exe [97056 2014-01-17] ()
U2 Util Browsebeyond; C:\Program Files (x86)\Browsebeyond\bin\utilBrowsebeyond.exe [97056 2014-01-17] ()
U2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
U2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-20] (Atheros)
U2 DatamngrCoordinator; C:\Program Files (x86)\Movies Toolbar\Datamngr\DatamngrCoordinator.exe [x]

==================== Drivers (Whitelisted) ====================

U3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-20] (Qualcomm Atheros)
U3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
U1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
U3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [64832 2012-07-25] (Hewlett-Packard Company)
U3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
U3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
U3 NETwNe64; C:\Windows\system32\DRIVERS\NETwNe64.sys [11400192 2012-06-02] (Intel Corporation)
U3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
U3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-15] (Synaptics Incorporated)
U3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-15] (Synaptics Incorporated)
U3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1062008 2012-08-03] (Sunplus)
U3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-01-21 20:30 - 2014-01-21 20:30 - 00024843 _____ C:\Users\HP\Desktop\FRST.txt
2014-01-21 20:29 - 2014-01-21 20:29 - 00000000 ____D C:\FRST
2014-01-21 20:28 - 2014-01-21 20:29 - 02077184 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2014-01-21 20:27 - 2014-01-21 20:27 - 00112640 _____ (forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe
2014-01-21 20:25 - 2014-01-21 20:25 - 00112640 _____ (forum.viry.cz) C:\Users\HP\Downloads\Nepotvrzeno 635627.crdownload
2014-01-21 10:15 - 2014-01-21 10:15 - 00000000 ___RD C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-01-20 10:43 - 2014-01-20 10:43 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2014-01-20 10:36 - 2014-01-20 10:41 - 71809242 _____ C:\Users\HP\Downloads\PowerPointViewer.exe
2014-01-20 10:26 - 2014-01-20 10:29 - 00000000 ____D C:\ProgramData\FormOffice
2014-01-20 10:26 - 2014-01-20 10:26 - 00000000 ____D C:\ProgramData\Microsoft NT Ident
2014-01-20 10:26 - 2001-07-24 17:23 - 00139264 _____ (Soft&Control Technology) C:\Windows\SysWOW64\FODBCLib.dll
2014-01-20 10:24 - 2014-01-20 10:26 - 11565968 _____ (Martin Roubec ) C:\Users\HP\Downloads\FormOfficeInstallSINGLE.exe
2014-01-20 10:20 - 2014-01-20 10:23 - 00000000 ____D C:\Program Files (x86)\EmEditor
2014-01-20 10:19 - 2014-01-20 10:19 - 03284480 _____ C:\Users\HP\Downloads\emed804epx.msi
2014-01-20 10:15 - 2014-01-20 10:16 - 04903502 _____ (Herisoft ) C:\Users\HP\Downloads\HERIEditor.exe
2014-01-20 09:48 - 2014-01-20 10:42 - 00000000 ____D C:\Program Files (x86)\MSECache
2014-01-20 09:21 - 2014-01-20 09:26 - 77738888 _____ (Microsoft Corporation) C:\Users\HP\Downloads\ExcelViewer.exe
2014-01-20 09:19 - 2014-01-20 09:19 - 00327129 _____ C:\Users\HP\Downloads\htmltabulka.zip
2014-01-20 09:18 - 2014-01-20 09:18 - 00052109 _____ C:\Users\HP\Downloads\proffiword (1).zip
2014-01-20 09:17 - 2014-01-20 09:17 - 00052109 _____ C:\Users\HP\Downloads\proffiword.zip
2014-01-20 07:59 - 2014-01-20 07:59 - 00015088 _____ C:\Users\HP\Downloads\tabulka ve Word - NEW DREAMS 2.dotx
2014-01-20 07:30 - 2014-01-20 07:30 - 00000000 ____D C:\Users\HP\AppData\Roaming\TeamViewer
2014-01-20 02:54 - 2014-01-20 02:55 - 00000000 ____D C:\Users\HP\Desktop\JAZYKY
2014-01-19 23:01 - 2014-01-20 10:46 - 00020992 _____ C:\Users\HP\Downloads\MOC tabulka pro Hanku - kopie 2.xls
2014-01-19 22:59 - 2014-01-19 22:58 - 00020992 _____ C:\Users\HP\Downloads\MOC tabulka pro Hanku - kopie.xls
2014-01-19 15:44 - 2014-01-19 15:44 - 00001178 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-19 15:44 - 2014-01-19 15:44 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-19 15:42 - 2014-01-19 15:43 - 07243968 _____ (TeamViewer GmbH) C:\Users\HP\Downloads\TeamViewer_Setup (1).exe
2014-01-19 15:38 - 2014-01-19 15:42 - 07243968 _____ (TeamViewer GmbH) C:\Users\HP\Downloads\TeamViewer_Setup.exe
2014-01-19 15:16 - 2014-01-19 15:17 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HP\Downloads\SpyHunter-Installer (1).exe
2014-01-19 15:16 - 2014-01-19 15:16 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HP\Downloads\SpyHunter-Installer.exe
2014-01-17 20:37 - 2013-10-31 06:56 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2014-01-17 20:37 - 2013-10-31 06:56 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2014-01-17 20:37 - 2013-10-31 05:01 - 00550400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2014-01-17 20:37 - 2013-10-31 04:42 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2014-01-17 20:37 - 2013-10-28 06:50 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-01-17 20:37 - 2013-10-28 05:05 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-01-17 20:37 - 2013-10-13 21:49 - 00100696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2014-01-17 20:37 - 2013-08-27 06:21 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-01-17 20:37 - 2013-08-27 06:19 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-01-17 20:37 - 2013-08-26 23:29 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-01-17 20:37 - 2013-08-26 23:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-01-17 20:36 - 2013-12-07 07:37 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-01-17 20:36 - 2013-12-07 07:37 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-17 20:36 - 2013-12-07 06:15 - 00562688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-01-17 20:36 - 2013-12-07 06:15 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-09 17:34 - 2014-01-09 17:34 - 00000654 _____ C:\HP – zástupce.lnk
2014-01-09 10:07 - 2014-01-09 10:07 - 00003190 _____ C:\Windows\System32\Tasks\{45865322-63C8-45E8-AD19-C7BCFE014DE7}
2014-01-08 15:42 - 2014-01-08 15:42 - 00003078 _____ C:\Windows\System32\Tasks\{F5F0F618-A16E-4EA6-A675-4E7B54AD1A9B}
2014-01-08 05:51 - 2014-01-08 05:51 - 00000000 ____D C:\ProgramData\BrowserProtect
2014-01-08 05:51 - 2014-01-08 05:51 - 00000000 ____D C:\ProgramData\Browser Manager
2014-01-08 05:51 - 2014-01-08 05:51 - 00000000 ____D C:\ProgramData\BitGuard
2014-01-08 01:05 - 2014-01-08 01:05 - 00000000 ____D C:\Users\HP\AppData\Roaming\Mozilla
2014-01-08 01:04 - 2014-01-21 10:10 - 00000000 ____D C:\Program Files (x86)\BasicServe
2014-01-08 01:04 - 2014-01-08 01:07 - 00000000 ____D C:\ProgramData\BasicServe
2014-01-08 01:04 - 2014-01-08 01:05 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2014-01-08 01:04 - 2014-01-08 01:04 - 00000000 _____ C:\ProgramData\383b3c36203d32_c
2014-01-08 01:02 - 2014-01-21 19:08 - 00000000 ____D C:\Users\HP\AppData\Roaming\newnext.me
2014-01-08 01:02 - 2014-01-08 15:43 - 00000000 ____D C:\Users\HP\AppData\Local\Mobogenie
2014-01-08 01:02 - 2014-01-08 15:24 - 00000908 _____ C:\Users\HP\daemonprocess.txt
2014-01-08 01:02 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\Documents\Mobogenie
2014-01-08 01:02 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\AppData\Local\genienext
2014-01-08 01:02 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\AppData\Local\cache
2014-01-08 01:02 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\.android
2014-01-08 01:01 - 2014-01-21 20:14 - 00000288 _____ C:\Windows\Tasks\SpeedUpMyPC Maintenance.job
2014-01-08 01:01 - 2014-01-21 10:14 - 00000282 _____ C:\Windows\Tasks\SpeedUpMyPC Startup.job
2014-01-08 01:01 - 2014-01-08 01:01 - 00003182 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance
2014-01-08 01:01 - 2014-01-08 01:01 - 00002486 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Startup
2014-01-08 01:01 - 2014-01-08 01:01 - 00000000 ____D C:\Program Files (x86)\Uniblue
2014-01-08 00:58 - 2014-01-08 17:32 - 00000000 ____D C:\Program Files (x86)\Browsebeyond
2014-01-08 00:58 - 2014-01-08 00:58 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (9).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (8).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (7).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (6).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (5).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (4).exe
2014-01-08 00:55 - 2014-01-08 15:44 - 00000000 ____D C:\Users\HP\AppData\Local\Torch
2014-01-08 00:47 - 2014-01-08 00:47 - 01751600 _____ (Bandoo Media Inc) C:\Users\HP\Downloads\iLividSetup-r706-n-bc.exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup.exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (3).exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (2).exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (1).exe
2014-01-06 12:40 - 2014-01-06 13:19 - 584340348 _____ C:\Users\HP\Downloads\Cert a dilino (2009) avi-J.B..avi
2014-01-06 00:27 - 2014-01-06 01:21 - 813115392 _____ C:\Users\HP\Downloads\Hobit Šmakova dračí poušť - Hobit Smaugova pustatina -The Hobbit The Desolation of Smaug (2013) cz dabing.avi
2014-01-05 19:29 - 2014-01-05 19:29 - 01352192 _____ C:\Users\HP\Downloads\Vyjm. slova.ppt
2014-01-05 19:26 - 2014-01-05 19:26 - 00696832 _____ C:\Users\HP\Downloads\pol (1).pps
2014-01-05 19:19 - 2014-01-05 19:20 - 00696832 _____ C:\Users\HP\Downloads\pol.pps
2014-01-05 19:17 - 2014-01-05 19:17 - 00320000 _____ C:\Users\HP\Downloads\vyjmenovana-slova-l.ppt
2014-01-02 12:42 - 2014-01-02 12:42 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-12-24 11:55 - 2013-12-24 14:19 - 1794025384 _____ C:\Users\HP\Downloads\Vanocni-koleda-2009-CZ-Dabing.avi
2013-12-24 11:19 - 2013-12-24 11:43 - 185837271 _____ C:\Users\HP\Downloads\Vánoční-koleda.avi

==================== One Month Modified Files and Folders =======

2014-01-21 20:30 - 2014-01-21 20:30 - 00024843 _____ C:\Users\HP\Desktop\FRST.txt
2014-01-21 20:29 - 2014-01-21 20:29 - 00000000 ____D C:\FRST
2014-01-21 20:29 - 2014-01-21 20:28 - 02077184 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2014-01-21 20:29 - 2013-09-27 08:43 - 00000000 ____D C:\Users\HP\AppData\Roaming\Skype
2014-01-21 20:27 - 2014-01-21 20:27 - 00112640 _____ (forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe
2014-01-21 20:25 - 2014-01-21 20:25 - 00112640 _____ (forum.viry.cz) C:\Users\HP\Downloads\Nepotvrzeno 635627.crdownload
2014-01-21 20:14 - 2014-01-08 01:01 - 00000288 _____ C:\Windows\Tasks\SpeedUpMyPC Maintenance.job
2014-01-21 20:02 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\sru
2014-01-21 19:51 - 2013-09-27 04:35 - 00000960 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-21 19:08 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\AppData\Roaming\newnext.me
2014-01-21 11:27 - 2012-09-22 03:22 - 01614781 _____ C:\Windows\WindowsUpdate.log
2014-01-21 10:18 - 2013-09-27 11:13 - 00000000 ____D C:\Users\HP\AppData\Roaming\Seznam.cz
2014-01-21 10:18 - 2013-09-26 21:32 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2042962140-1557458149-3897266398-1002
2014-01-21 10:15 - 2014-01-21 10:15 - 00000000 ___RD C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-01-21 10:14 - 2014-01-08 01:01 - 00000282 _____ C:\Windows\Tasks\SpeedUpMyPC Startup.job
2014-01-21 10:14 - 2013-09-27 04:35 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-21 10:12 - 2012-09-09 06:14 - 00000000 ____D C:\ProgramData\PDFC
2014-01-21 10:11 - 2013-12-19 10:25 - 00459184 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-21 10:11 - 2013-11-16 15:25 - 00000336 _____ C:\Windows\Tasks\HPCeeScheduleForHP.job
2014-01-21 10:11 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-21 10:10 - 2014-01-08 01:04 - 00000000 ____D C:\Program Files (x86)\BasicServe
2014-01-21 10:10 - 2012-08-01 22:23 - 00021958 _____ C:\Windows\PFRO.log
2014-01-21 10:10 - 2012-07-26 06:26 - 00524288 ___SH C:\Windows\system32\config\BBI
2014-01-21 10:09 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\WinStore
2014-01-20 12:00 - 2013-10-01 08:45 - 00124112 _____ C:\Users\HP\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-20 10:46 - 2014-01-19 23:01 - 00020992 _____ C:\Users\HP\Downloads\MOC tabulka pro Hanku - kopie 2.xls
2014-01-20 10:43 - 2014-01-20 10:43 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2014-01-20 10:42 - 2014-01-20 09:48 - 00000000 ____D C:\Program Files (x86)\MSECache
2014-01-20 10:42 - 2012-09-09 06:18 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2014-01-20 10:41 - 2014-01-20 10:36 - 71809242 _____ C:\Users\HP\Downloads\PowerPointViewer.exe
2014-01-20 10:29 - 2014-01-20 10:26 - 00000000 ____D C:\ProgramData\FormOffice
2014-01-20 10:26 - 2014-01-20 10:26 - 00000000 ____D C:\ProgramData\Microsoft NT Ident
2014-01-20 10:26 - 2014-01-20 10:24 - 11565968 _____ (Martin Roubec ) C:\Users\HP\Downloads\FormOfficeInstallSINGLE.exe
2014-01-20 10:23 - 2014-01-20 10:20 - 00000000 ____D C:\Program Files (x86)\EmEditor
2014-01-20 10:23 - 2013-09-26 21:22 - 00000000 ___RD C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-20 10:19 - 2014-01-20 10:19 - 03284480 _____ C:\Users\HP\Downloads\emed804epx.msi
2014-01-20 10:17 - 2013-09-27 04:14 - 00000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2014-01-20 10:16 - 2014-01-20 10:15 - 04903502 _____ (Herisoft ) C:\Users\HP\Downloads\HERIEditor.exe
2014-01-20 09:26 - 2014-01-20 09:21 - 77738888 _____ (Microsoft Corporation) C:\Users\HP\Downloads\ExcelViewer.exe
2014-01-20 09:19 - 2014-01-20 09:19 - 00327129 _____ C:\Users\HP\Downloads\htmltabulka.zip
2014-01-20 09:18 - 2014-01-20 09:18 - 00052109 _____ C:\Users\HP\Downloads\proffiword (1).zip
2014-01-20 09:17 - 2014-01-20 09:17 - 00052109 _____ C:\Users\HP\Downloads\proffiword.zip
2014-01-20 07:59 - 2014-01-20 07:59 - 00015088 _____ C:\Users\HP\Downloads\tabulka ve Word - NEW DREAMS 2.dotx
2014-01-20 07:30 - 2014-01-20 07:30 - 00000000 ____D C:\Users\HP\AppData\Roaming\TeamViewer
2014-01-20 07:28 - 2012-09-09 06:46 - 00755956 _____ C:\Windows\system32\perfh005.dat
2014-01-20 07:28 - 2012-09-09 06:46 - 00162886 _____ C:\Windows\system32\perfc005.dat
2014-01-20 07:28 - 2012-07-26 08:28 - 01851422 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-20 02:58 - 2013-05-07 11:08 - 00000000 ____D C:\Users\HP\Desktop\PR ČLÁNKY
2014-01-20 02:55 - 2014-01-20 02:54 - 00000000 ____D C:\Users\HP\Desktop\JAZYKY
2014-01-20 02:54 - 2013-01-19 17:26 - 00000000 ____D C:\Users\HP\Desktop\ESHOPY
2014-01-19 22:58 - 2014-01-19 22:59 - 00020992 _____ C:\Users\HP\Downloads\MOC tabulka pro Hanku - kopie.xls
2014-01-19 20:42 - 2013-09-28 15:17 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-19 20:40 - 2013-09-27 05:06 - 00000000 ____D C:\Windows\system32\MRT
2014-01-19 20:36 - 2013-09-27 05:06 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-19 15:44 - 2014-01-19 15:44 - 00001178 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-19 15:44 - 2014-01-19 15:44 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-19 15:43 - 2014-01-19 15:42 - 07243968 _____ (TeamViewer GmbH) C:\Users\HP\Downloads\TeamViewer_Setup (1).exe
2014-01-19 15:42 - 2014-01-19 15:38 - 07243968 _____ (TeamViewer GmbH) C:\Users\HP\Downloads\TeamViewer_Setup.exe
2014-01-19 15:17 - 2014-01-19 15:16 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HP\Downloads\SpyHunter-Installer (1).exe
2014-01-19 15:16 - 2014-01-19 15:16 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HP\Downloads\SpyHunter-Installer.exe
2014-01-19 08:33 - 2013-09-27 05:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-18 20:36 - 2013-09-28 15:15 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2014-01-18 20:35 - 2013-09-28 15:15 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-01-18 00:48 - 2013-11-16 15:25 - 00003144 _____ C:\Windows\System32\Tasks\HPCeeScheduleForHP
2014-01-18 00:48 - 2013-09-26 21:22 - 00000000 ____D C:\Users\HP
2014-01-14 22:54 - 2013-09-27 04:37 - 00002195 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-13 08:59 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\AUInstallAgent
2014-01-09 17:38 - 2012-07-26 08:21 - 00057430 _____ C:\Windows\setupact.log
2014-01-09 17:34 - 2014-01-09 17:34 - 00000654 _____ C:\HP – zástupce.lnk
2014-01-09 10:07 - 2014-01-09 10:07 - 00003190 _____ C:\Windows\System32\Tasks\{45865322-63C8-45E8-AD19-C7BCFE014DE7}
2014-01-09 10:06 - 2013-09-29 22:23 - 00000000 ____D C:\Users\HP\AppData\Local\WebPlayer
2014-01-09 09:02 - 2013-10-01 08:05 - 00694240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-09 09:02 - 2013-10-01 08:05 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-08 17:32 - 2014-01-08 00:58 - 00000000 ____D C:\Program Files (x86)\Browsebeyond
2014-01-08 15:44 - 2014-01-08 00:55 - 00000000 ____D C:\Users\HP\AppData\Local\Torch
2014-01-08 15:43 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\AppData\Local\Mobogenie
2014-01-08 15:42 - 2014-01-08 15:42 - 00003078 _____ C:\Windows\System32\Tasks\{F5F0F618-A16E-4EA6-A675-4E7B54AD1A9B}
2014-01-08 15:24 - 2014-01-08 01:02 - 00000908 _____ C:\Users\HP\daemonprocess.txt
2014-01-08 05:51 - 2014-01-08 05:51 - 00000000 ____D C:\ProgramData\BrowserProtect
2014-01-08 05:51 - 2014-01-08 05:51 - 00000000 ____D C:\ProgramData\Browser Manager
2014-01-08 05:51 - 2014-01-08 05:51 - 00000000 ____D C:\ProgramData\BitGuard
2014-01-08 01:07 - 2014-01-08 01:04 - 00000000 ____D C:\ProgramData\BasicServe
2014-01-08 01:06 - 2013-09-27 06:11 - 00001082 _____ C:\Users\Public\Desktop\VLC media player.lnk
2014-01-08 01:05 - 2014-01-08 01:05 - 00000000 ____D C:\Users\HP\AppData\Roaming\Mozilla
2014-01-08 01:05 - 2014-01-08 01:04 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2014-01-08 01:04 - 2014-01-08 01:04 - 00000000 _____ C:\ProgramData\383b3c36203d32_c
2014-01-08 01:02 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\Documents\Mobogenie
2014-01-08 01:02 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\AppData\Local\genienext
2014-01-08 01:02 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\AppData\Local\cache
2014-01-08 01:02 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\.android
2014-01-08 01:01 - 2014-01-08 01:01 - 00003182 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance
2014-01-08 01:01 - 2014-01-08 01:01 - 00002486 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Startup
2014-01-08 01:01 - 2014-01-08 01:01 - 00000000 ____D C:\Program Files (x86)\Uniblue
2014-01-08 00:58 - 2014-01-08 00:58 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (9).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (8).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (7).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (6).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (5).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (4).exe
2014-01-08 00:47 - 2014-01-08 00:47 - 01751600 _____ (Bandoo Media Inc) C:\Users\HP\Downloads\iLividSetup-r706-n-bc.exe
2014-01-07 23:26 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\NDF
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup.exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (3).exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (2).exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (1).exe
2014-01-06 13:19 - 2014-01-06 12:40 - 584340348 _____ C:\Users\HP\Downloads\Cert a dilino (2009) avi-J.B..avi
2014-01-06 01:21 - 2014-01-06 00:27 - 813115392 _____ C:\Users\HP\Downloads\Hobit Šmakova dračí poušť - Hobit Smaugova pustatina -The Hobbit The Desolation of Smaug (2013) cz dabing.avi
2014-01-05 19:29 - 2014-01-05 19:29 - 01352192 _____ C:\Users\HP\Downloads\Vyjm. slova.ppt
2014-01-05 19:26 - 2014-01-05 19:26 - 00696832 _____ C:\Users\HP\Downloads\pol (1).pps
2014-01-05 19:20 - 2014-01-05 19:19 - 00696832 _____ C:\Users\HP\Downloads\pol.pps
2014-01-05 19:17 - 2014-01-05 19:17 - 00320000 _____ C:\Users\HP\Downloads\vyjmenovana-slova-l.ppt
2014-01-02 12:42 - 2014-01-02 12:42 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-12-27 20:58 - 2013-07-14 10:22 - 00000000 ____D C:\Users\HP\Desktop\FOTKY
2013-12-27 13:54 - 2013-09-26 21:22 - 00000000 ____D C:\Users\HP\AppData\Local\Packages
2013-12-26 12:10 - 2012-09-22 03:22 - 00002990 _____ C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
2013-12-24 14:19 - 2013-12-24 11:55 - 1794025384 _____ C:\Users\HP\Downloads\Vanocni-koleda-2009-CZ-Dabing.avi
2013-12-24 11:43 - 2013-12-24 11:19 - 185837271 _____ C:\Users\HP\Downloads\Vánoční-koleda.avi

Some content of TEMP:
====================
C:\Users\HP\AppData\Local\Temp\7z920.exe
C:\Users\HP\AppData\Local\Temp\APNSetup.exe
C:\Users\HP\AppData\Local\Temp\appshat-distribution.exe
C:\Users\HP\AppData\Local\Temp\AtpTimerInfo.dll
C:\Users\HP\AppData\Local\Temp\BabylonTB.exe
C:\Users\HP\AppData\Local\Temp\BundleSweetIMSetup.exe
C:\Users\HP\AppData\Local\Temp\Delta.exe
C:\Users\HP\AppData\Local\Temp\DeltaTB.exe
C:\Users\HP\AppData\Local\Temp\Extract.exe
C:\Users\HP\AppData\Local\Temp\FLVPlayerSetup.exe
C:\Users\HP\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
C:\Users\HP\AppData\Local\Temp\GPUTemp.exe
C:\Users\HP\AppData\Local\Temp\MybabylonTB.exe
C:\Users\HP\AppData\Local\Temp\OpenCL.dll
C:\Users\HP\AppData\Local\Temp\ose00000.exe
C:\Users\HP\AppData\Local\Temp\prefetch.exe
C:\Users\HP\AppData\Local\Temp\Setup1.exe
C:\Users\HP\AppData\Local\Temp\SHSetup.exe
C:\Users\HP\AppData\Local\Temp\sp58915.exe
C:\Users\HP\AppData\Local\Temp\SP59199.exe
C:\Users\HP\AppData\Local\Temp\SP62194.exe
C:\Users\HP\AppData\Local\Temp\SP62685.exe
C:\Users\HP\AppData\Local\Temp\SP62981.exe
C:\Users\HP\AppData\Local\Temp\SP63065.exe
C:\Users\HP\AppData\Local\Temp\SP63337.exe
C:\Users\HP\AppData\Local\Temp\SP63637.exe
C:\Users\HP\AppData\Local\Temp\SP63661.exe
C:\Users\HP\AppData\Local\Temp\SP63709.exe
C:\Users\HP\AppData\Local\Temp\SP63779.exe
C:\Users\HP\AppData\Local\Temp\SP64043.exe
C:\Users\HP\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\HP\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\HP\AppData\Local\Temp\UsageTemp.exe
C:\Users\HP\AppData\Local\Temp\WSSetup.exe
C:\Users\HP\AppData\Local\Temp\wupdater.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-01-20 00:12

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (OS) (Fixed) (Total:449.69 GB) (Free:352.41 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.99 GB) FAT32
Drive e: (KEJ164) (CDROM) (Total:0.16 GB) (Free:0 GB) CDFS
Drive f: (HP_RECOVERY) (Fixed) (Total:12.87 GB) (Free:2.05 GB) NTFS

Available physical RAM: 1833.42 MB
Total physical RAM: 3978.84 MB
Percentage of memory in use: 53%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 466 GB) (Disk ID: A50E1C7D)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForHP.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\SpeedUpMyPC Maintenance.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe
Task: C:\Windows\Tasks\SpeedUpMyPC Startup.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\HP\Downloads\unnamed (1).eml:OECustomProperty
AlternateDataStreams: C:\Users\HP\Downloads\unnamed.eml:OECustomProperty

==================== Security Center ==================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\HP\Desktop" je 15232 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#2 Příspěvek od **vyosek** » 21 led 2014 20:47

Zdravim

Stahnete Shortcut Cleaner http://www.bleepingcomputer.com/downloa ... t-cleaner/

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Spustte tradicne dvouklikem
Probehne skenovani a pak se objevi log, pripadne bude ulozen v miste spusteni jako sc-cleaner.txt, ten sem vlozte

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

flash8 · #3 Příspěvek od **flash8** » 21 led 2014 21:14

Provedeno! Jediný program, který byl spuštěný je TeamViewer, dělám opravu na vzdáleném počítači. Tak snad to nevadí

Shortcut Cleaner 1.2.6 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Shortcut Cleaner can be found at this link:
http://www.bleepingcomputer.com/downloa ... t-cleaner/

Windows Version: Windows 8
Program started at: 01/21/2014 08:59:31 PM.

Scanning for registry hijacks:

* No issues found in the Registry.

Searching for Hijacked Shortcuts:

Searching C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\

Searching C:\ProgramData\Microsoft\Windows\Start Menu\

Searching C:\Users\HP\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\

Searching C:\Users\Public\Desktop\

Searching C:\Users\HP\Desktop

0 bad shortcuts found.

Program finished at: 01/21/2014 08:59:32 PM
Execution time: 0 hours(s), 0 minute(s), and 1 seconds(s)

flash8 · #4 Příspěvek od **flash8** » 21 led 2014 21:14

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 8 x64
Ran by HP on Łt 21. 01. 2014 at 21:02:35,78
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

Successfully stopped: [Service] datamngrcoordinator
Failed to delete: [Service] datamngrcoordinator
Failed to stop: [Service] APNMCP

~~~ Registry Values

Failed to delete: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon
Failed to delete: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\\apntbmon
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\sdp
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-2042962140-1557458149-3897266398-1002\Software\Microsoft\Internet Explorer\Main\\Start Page
Suspicious HKCU\..\Run entries found. Trojan:JS/Medfos.B?

Value Name Type Value Data
========================================================================================
NextLive REG_SZ C:\Windows\SysWOW64\rundll32.exe "C:\Users\HP\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l

~~~ Registry Keys

Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\bi
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\ilivid
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\powerpack
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\somoto
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\torch
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\caphyon
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\torch
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\speedupmypc
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\filesfrog update checker
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\filesfrog update checker
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\caphyon
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\torch
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Successfully deleted: [Registry Key] "hkey_current_user\software\askpartnernetwork"
Failed to delete: [Registry Key] "hkey_local_machine\software\askpartnernetwork"

~~~ Files

~~~ Folders

Failed to delete: [Folder] "C:\ProgramData\apn"
Failed to delete: [Folder] "C:\ProgramData\babylon"
Failed to delete: [Folder] "C:\ProgramData\basicserve"
Successfully deleted: [Folder] "C:\Users\HP\AppData\Roaming\babylon"
Successfully deleted: [Folder] "C:\Users\HP\appdata\local\appshat mobile apps"
Successfully deleted: [Folder] "C:\Users\HP\appdata\local\filesfrog update checker"
Successfully deleted: [Folder] "C:\Users\HP\appdata\local\minibar"
Failed to delete: [Folder] "C:\Users\HP\appdata\local\torch"
Successfully deleted: [Folder] "C:\Users\HP\appdata\local\webplayer"
Failed to delete: [Folder] "C:\Program Files (x86)\basicserve"
Failed to delete: [Folder] "C:\Program Files (x86)\minibar"
Successfully deleted: [Folder] "C:\Users\HP\AppData\Roaming\microsoft\windows\start menu\programs\filesfrog update checker"
Failed to delete: [Folder] "C:\ProgramData\AskPartnerNetwork"
Failed to delete: [Folder] "C:\Program Files (x86)\askpartnernetwork"

~~~ Chrome

Successfully deleted: [Folder] C:\Users\HP\appdata\local\Google\Chrome\User Data\Default\Extensions\mpcknfcdcgpffjddjeceioobdelceffo

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 21. 01. 2014 at 21:06:53,00
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

flash8 · #5 Příspěvek od **flash8** » 21 led 2014 21:18

# AdwCleaner v3.017 - Report created 21/01/2014 at 21:11:51
# Updated 12/01/2014 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : HP - PROBOOK
# Running from : C:\Users\HP\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : APNMCP
[#] Service Deleted : DatamngrCoordinator

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AskPartnerNetwork
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\BasicServe
[#] Folder Deleted : C:\ProgramData\BitGuard
[#] Folder Deleted : C:\ProgramData\Browser Manager
[#] Folder Deleted : C:\ProgramData\BrowserProtect
Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\BasicServe
Folder Deleted : C:\Program Files (x86)\Minibar
Folder Deleted : C:\Program Files (x86)\Uniblue\SpeedUpMyPC
Folder Deleted : C:\Users\HP\AppData\Local\genienext
Folder Deleted : C:\Users\HP\AppData\Local\Mobogenie
Folder Deleted : C:\Users\HP\AppData\Local\torch
Folder Deleted : C:\Users\HP\AppData\Local\Temp\apn
Folder Deleted : C:\Users\HP\AppData\Roaming\newnext.me
Folder Deleted : C:\Users\HP\Documents\Mobogenie

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat\Uninstall.lnk

***** [ Registry ] *****

Key Deleted : HKCU\Software\Classes\iLivid.torrent
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [AppsHat]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [iLivid]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\speedupmypc
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{539F76FD-084E-4858-86D5-62F02F54AE86}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{60EACC1A-33FA-443D-9846-17B28E2C9BDB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F13D3582-1359-4F8F-9A48-EF3AE9F5701C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA74D58F-ACD0-450D-A85E-6C04B171C044}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{AAA38851-3CFF-475F-B5E0-720D3645E4A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D86A75B-CB6B-4764-885D-CA6336F04BA2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{539F76FD-084E-4858-86D5-62F02F54AE86}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\Webplayer
Key Deleted : HKLM\Software\AskPartnerNetwork
Key Deleted : HKLM\Software\FLEXnet
Key Deleted : HKLM\Software\Minibar
Key Deleted : HKLM\Software\torch
Key Deleted : HKLM\Software\Uniblue
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AppsHat Mobile Apps
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537

-\\ Google Chrome v32.0.1700.76

[ File : C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [7131 octets] - [21/01/2014 21:10:27]
AdwCleaner[S0].txt - [7149 octets] - [21/01/2014 21:11:51]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7209 octets] ##########

#6 Příspěvek od **vyosek** » 21 led 2014 21:19

flash8 píše:dělám opravu na vzdáleném počítači.

Doufam ze to nemate jako nejaky servis nebo privydelek nebo neco takto

flash8 · #7 Příspěvek od **flash8** » 21 led 2014 21:27

Nee je to pro tetu...stříhá mě teda zadarmo, to je vlastně jediný co z toho mám

#8 Příspěvek od **vyosek** » 21 led 2014 21:33

Fajn, poprosim nyni o novy log z FRSTLauncheru

flash8 · #9 Příspěvek od **flash8** » 21 led 2014 21:38

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-01-2014
Ran by HP (administrator) on PROBOOK on 21-01-2014 21:36:10
Running from C:\Users\HP\Desktop
Windows 8 (X64) OS Language: Czech
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files (x86)\HP HD Webcam Driver\Monitor.exe
() C:\Users\HP\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\HP\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
() C:\Users\HP\AppData\Local\Temp\UsageTemp.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Desktop.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [BtPreLoad] - C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-08-20] ()
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-08-06] (IDT, Inc.)
HKLM-x32\...\Run: [PDF Complete] - C:\Program Files (x86)\PDF Complete\pdfsty.exe [684064 2012-07-17] (PDF Complete Inc)
HKLM-x32\...\Run: [HP HD Webcam Driver_Monitor] - C:\Program Files (x86)\HP HD Webcam Driver\monitor.exe [303480 2012-07-26] ()
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] - c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [QLBController] - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [337184 2013-07-31] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [UsageTemp] - C:\Users\HP\AppData\Local\Temp\UsageTemp.exe [1305824 2014-01-17] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-01-14] (Hewlett-Packard)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\HP\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\HP\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\Administrator\...\Run: [Power2GoExpress8] - c:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1707120 2012-07-24] (CyberLink Corp.)
AppInit_DLLs: C:\Program => File Not Found
AppInit_DLLs: Files => File Not Found
AppInit_DLLs-x32: C:\Program => File Not Found
AppInit_DLLs-x32: Files => File Not Found
Lsa: [Notification Packages] DPPassFilter scecli

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKCU - {47AE1BA9-0BD1-44F4-88AE-45F8F7B605EF} URL = http://www.basicserve.com/?prt=bscsrvli ... earchTerms}
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Chrome DigitalPersona Agent) - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll (DigitalPersona, Inc.)
CHR Extension: (AT_CarolineGardner) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\afkokbgipcdcikgmabbljlliffelepdk [2013-09-27]
CHR Extension: (Duolingo) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2013-09-27]
CHR Extension: (Dokumenty Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-27]
CHR Extension: (Disk Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-27]
CHR Extension: (BeFunky Photo Editor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apfkepiiddolifkgjmfdgpnipgnfejab [2013-09-27]
CHR Extension: (Seznam Li\u0161ti\u010Dka - Email) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2013-09-27]
CHR Extension: (Seznam Li\u0161ti\u010Dka - Slovn\u00EDk) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2013-09-27]
CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-27]
CHR Extension: (Vyhled\u00E1v\u00E1n\u00ED Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-27]
CHR Extension: (Color Changer for Facebook) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheljpcbhldkdiabdemaflamgfnbpnkd [2013-09-27]
CHR Extension: (Vzd\u00E1len\u00E1 plocha Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2013-09-27]
CHR Extension: (Picditor Photo Editor) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggdplhaiiohpkafnlhlfikiomnboacoi [2013-09-27]
CHR Extension: (Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\hoihofapbdnldlhecnhefifbcddgdkhm [2013-09-27]
CHR Extension: (This Exquisite Forest) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\illikembakcokcfifcbkneafjjjnckkd [2013-09-28]
CHR Extension: (Dropbox) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2013-09-27]
CHR Extension: (Roomstyler 3D planner) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfnniehafojoidolddmhfnpnbiolbppi [2013-09-28]
CHR Extension: (Formul\u00E1\u0159e Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhknlonaankphkkbnmjdlpehkinifeeg [2013-09-27]
CHR Extension: (Autodesk Homestyler) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2013-09-28]
CHR Extension: (Skype Click to Call) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-09-28]
CHR Extension: (VLC Links) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihecgifecjdmjjmkgnobfpladefgige [2014-01-08]
CHR Extension: (Onlive Clock) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\moddbcckaikhdnigidfcmaeelcobchpm [2013-09-29]
CHR Extension: (DigitalPersona Extension) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncffjdbbodifgldkcbhmiiljfcnbgjab [2013-09-27]
CHR Extension: (Pen\u011B\u017Eenka Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-27]
CHR Extension: (Todo.ly) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\obhefmbclkekanpjjpkbciloojcmpkap [2013-09-27]
CHR Extension: (Seznam Li\u0161ti\u010Dka - Rychl\u00E1 volba) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2013-09-27]
CHR Extension: (TV France - Regarder T\u00E9l\u00E9vision) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbchiajonfncphfgplcmdojihhlbffbd [2013-09-29]
CHR Extension: (Televize Online) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcfeebemepipakkhapnhljbcdkagkloh [2013-09-27]
CHR Extension: (Gmail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-27]
CHR HKLM-x32\...\Chrome\Extension: [aaaajpkhjdkhhnkmgfjodbkfpbmibkkk] - C:\ProgramData\AskPartnerNetwork\Toolbar\ORJ-V7\CRX\ToolbarCR.crx [2013-09-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
CHR HKLM-x32\...\Chrome\Extension: [mihecgifecjdmjjmkgnobfpladefgige] - C:\Users\HP\AppData\Local\VLC Links\extension.crx [2013-05-21]
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\dpchrome.crx [2012-08-25]

==================== Services (Whitelisted) =================

U2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-20] (Qualcomm Atheros Commnucations)
U2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [488824 2012-08-24] (DigitalPersona, Inc.)
U3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [477088 2012-08-01] (Hewlett-Packard Company)
U2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-07-31] (Hewlett-Packard Company)
U3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
U2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2013-11-10] (Intel Corporation)
U2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-11-10] (Intel Corporation)
U2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1134624 2012-07-17] (PDF Complete Inc)
U2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
U2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-20] (Atheros)
U2 Update Browsebeyond; "C:\Program Files (x86)\Browsebeyond\updateBrowsebeyond.exe" [x]
U2 Util Browsebeyond; "C:\Program Files (x86)\Browsebeyond\bin\utilBrowsebeyond.exe" [x]

==================== Drivers (Whitelisted) ====================

U3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-20] (Qualcomm Atheros)
U3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
U1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
U3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [64832 2012-07-25] (Hewlett-Packard Company)
U3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
U3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
U3 NETwNe64; C:\Windows\system32\DRIVERS\NETwNe64.sys [11400192 2012-06-02] (Intel Corporation)
U3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation)
U3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-15] (Synaptics Incorporated)
U3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-15] (Synaptics Incorporated)
U3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1062008 2012-08-03] (Sunplus)
U3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-01-21 21:36 - 2014-01-21 21:36 - 00019106 _____ C:\Users\HP\Desktop\FRST.txt
2014-01-21 21:35 - 2014-01-21 21:35 - 00029696 _____ C:\Users\HP\AppData\Local\MSGBOX.EXE
2014-01-21 21:35 - 2014-01-21 21:35 - 00015327 _____ C:\Users\HP\Desktop\LM.bat
2014-01-21 21:15 - 2014-01-21 21:15 - 00000000 ___RD C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-01-21 21:10 - 2014-01-21 21:12 - 00000000 ____D C:\AdwCleaner
2014-01-21 21:09 - 2014-01-21 21:09 - 01236282 _____ C:\Users\HP\Desktop\adwcleaner.exe
2014-01-21 21:06 - 2014-01-21 21:06 - 00006234 _____ C:\Users\HP\Desktop\JRT.txt
2014-01-21 21:02 - 2014-01-21 21:02 - 00000000 ____D C:\Windows\ERUNT
2014-01-21 21:00 - 2014-01-21 21:01 - 01037068 _____ (Thisisu) C:\Users\HP\Desktop\JRT.exe
2014-01-21 20:59 - 2014-01-21 20:59 - 00001724 _____ C:\sc-cleaner.txt
2014-01-21 20:57 - 2014-01-21 20:57 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\HP\Desktop\sc-cleaner.exe
2014-01-21 20:49 - 2014-01-21 20:49 - 03218352 _____ (McAfee, Inc.) C:\Users\HP\Desktop\MCPR.exe
2014-01-21 20:29 - 2014-01-21 20:29 - 00000000 ____D C:\FRST
2014-01-21 20:28 - 2014-01-21 20:29 - 02077184 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2014-01-21 20:27 - 2014-01-21 20:27 - 00112640 _____ (forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe
2014-01-20 10:43 - 2014-01-20 10:43 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2014-01-20 10:36 - 2014-01-20 10:41 - 71809242 _____ C:\Users\HP\Downloads\PowerPointViewer.exe
2014-01-20 10:26 - 2014-01-20 10:29 - 00000000 ____D C:\ProgramData\FormOffice
2014-01-20 10:26 - 2014-01-20 10:26 - 00000000 ____D C:\ProgramData\Microsoft NT Ident
2014-01-20 10:26 - 2001-07-24 17:23 - 00139264 _____ (Soft&Control Technology) C:\Windows\SysWOW64\FODBCLib.dll
2014-01-20 10:24 - 2014-01-20 10:26 - 11565968 _____ (Martin Roubec ) C:\Users\HP\Downloads\FormOfficeInstallSINGLE.exe
2014-01-20 10:20 - 2014-01-20 10:23 - 00000000 ____D C:\Program Files (x86)\EmEditor
2014-01-20 10:19 - 2014-01-20 10:19 - 03284480 _____ C:\Users\HP\Downloads\emed804epx.msi
2014-01-20 10:15 - 2014-01-20 10:16 - 04903502 _____ (Herisoft ) C:\Users\HP\Downloads\HERIEditor.exe
2014-01-20 09:48 - 2014-01-20 10:42 - 00000000 ____D C:\Program Files (x86)\MSECache
2014-01-20 09:21 - 2014-01-20 09:26 - 77738888 _____ (Microsoft Corporation) C:\Users\HP\Downloads\ExcelViewer.exe
2014-01-20 09:19 - 2014-01-20 09:19 - 00327129 _____ C:\Users\HP\Downloads\htmltabulka.zip
2014-01-20 09:18 - 2014-01-20 09:18 - 00052109 _____ C:\Users\HP\Downloads\proffiword (1).zip
2014-01-20 09:17 - 2014-01-20 09:17 - 00052109 _____ C:\Users\HP\Downloads\proffiword.zip
2014-01-20 07:59 - 2014-01-20 07:59 - 00015088 _____ C:\Users\HP\Downloads\tabulka ve Word - NEW DREAMS 2.dotx
2014-01-20 07:30 - 2014-01-20 07:30 - 00000000 ____D C:\Users\HP\AppData\Roaming\TeamViewer
2014-01-20 02:54 - 2014-01-20 02:55 - 00000000 ____D C:\Users\HP\Desktop\JAZYKY
2014-01-19 23:01 - 2014-01-20 10:46 - 00020992 _____ C:\Users\HP\Downloads\MOC tabulka pro Hanku - kopie 2.xls
2014-01-19 22:59 - 2014-01-19 22:58 - 00020992 _____ C:\Users\HP\Downloads\MOC tabulka pro Hanku - kopie.xls
2014-01-19 15:44 - 2014-01-19 15:44 - 00001178 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-19 15:44 - 2014-01-19 15:44 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-19 15:42 - 2014-01-19 15:43 - 07243968 _____ (TeamViewer GmbH) C:\Users\HP\Downloads\TeamViewer_Setup (1).exe
2014-01-19 15:38 - 2014-01-19 15:42 - 07243968 _____ (TeamViewer GmbH) C:\Users\HP\Downloads\TeamViewer_Setup.exe
2014-01-19 15:16 - 2014-01-19 15:17 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HP\Downloads\SpyHunter-Installer (1).exe
2014-01-19 15:16 - 2014-01-19 15:16 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HP\Downloads\SpyHunter-Installer.exe
2014-01-17 20:37 - 2013-10-31 06:56 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2014-01-17 20:37 - 2013-10-31 06:56 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2014-01-17 20:37 - 2013-10-31 05:01 - 00550400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2014-01-17 20:37 - 2013-10-31 04:42 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2014-01-17 20:37 - 2013-10-28 06:50 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-01-17 20:37 - 2013-10-28 05:05 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-01-17 20:37 - 2013-10-13 21:49 - 00100696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2014-01-17 20:37 - 2013-08-27 06:21 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-01-17 20:37 - 2013-08-27 06:19 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-01-17 20:37 - 2013-08-26 23:29 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-01-17 20:37 - 2013-08-26 23:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-01-17 20:36 - 2013-12-07 07:37 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-01-17 20:36 - 2013-12-07 07:37 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-17 20:36 - 2013-12-07 06:15 - 00562688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-01-17 20:36 - 2013-12-07 06:15 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-09 17:34 - 2014-01-09 17:34 - 00000654 _____ C:\HP – zástupce.lnk
2014-01-09 10:07 - 2014-01-09 10:07 - 00003190 _____ C:\Windows\System32\Tasks\{45865322-63C8-45E8-AD19-C7BCFE014DE7}
2014-01-08 15:42 - 2014-01-08 15:42 - 00003078 _____ C:\Windows\System32\Tasks\{F5F0F618-A16E-4EA6-A675-4E7B54AD1A9B}
2014-01-08 01:05 - 2014-01-08 01:05 - 00000000 ____D C:\Users\HP\AppData\Roaming\Mozilla
2014-01-08 01:04 - 2014-01-08 01:05 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2014-01-08 01:04 - 2014-01-08 01:04 - 00000000 _____ C:\ProgramData\383b3c36203d32_c
2014-01-08 01:02 - 2014-01-08 15:24 - 00000908 _____ C:\Users\HP\daemonprocess.txt
2014-01-08 01:02 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\AppData\Local\cache
2014-01-08 01:02 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\.android
2014-01-08 01:01 - 2014-01-21 21:13 - 00000282 _____ C:\Windows\Tasks\SpeedUpMyPC Startup.job
2014-01-08 01:01 - 2014-01-21 21:11 - 00000000 ____D C:\Program Files (x86)\Uniblue
2014-01-08 01:01 - 2014-01-21 21:00 - 00000288 _____ C:\Windows\Tasks\SpeedUpMyPC Maintenance.job
2014-01-08 01:01 - 2014-01-08 01:01 - 00003182 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance
2014-01-08 01:01 - 2014-01-08 01:01 - 00002486 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Startup
2014-01-08 00:58 - 2014-01-08 00:58 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (9).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (8).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (7).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (6).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (5).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (4).exe
2014-01-08 00:47 - 2014-01-08 00:47 - 01751600 _____ (Bandoo Media Inc) C:\Users\HP\Downloads\iLividSetup-r706-n-bc.exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup.exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (3).exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (2).exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (1).exe
2014-01-06 12:40 - 2014-01-06 13:19 - 584340348 _____ C:\Users\HP\Downloads\Cert a dilino (2009) avi-J.B..avi
2014-01-06 00:27 - 2014-01-06 01:21 - 813115392 _____ C:\Users\HP\Downloads\Hobit Šmakova dračí poušť - Hobit Smaugova pustatina -The Hobbit The Desolation of Smaug (2013) cz dabing.avi
2014-01-05 19:29 - 2014-01-05 19:29 - 01352192 _____ C:\Users\HP\Downloads\Vyjm. slova.ppt
2014-01-05 19:26 - 2014-01-05 19:26 - 00696832 _____ C:\Users\HP\Downloads\pol (1).pps
2014-01-05 19:19 - 2014-01-05 19:20 - 00696832 _____ C:\Users\HP\Downloads\pol.pps
2014-01-05 19:17 - 2014-01-05 19:17 - 00320000 _____ C:\Users\HP\Downloads\vyjmenovana-slova-l.ppt
2014-01-02 12:42 - 2014-01-02 12:42 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-12-24 11:55 - 2013-12-24 14:19 - 1794025384 _____ C:\Users\HP\Downloads\Vanocni-koleda-2009-CZ-Dabing.avi
2013-12-24 11:19 - 2013-12-24 11:43 - 185837271 _____ C:\Users\HP\Downloads\Vánoční-koleda.avi

==================== One Month Modified Files and Folders =======

2014-01-21 21:36 - 2014-01-21 21:36 - 00019106 _____ C:\Users\HP\Desktop\FRST.txt
2014-01-21 21:35 - 2014-01-21 21:35 - 00029696 _____ C:\Users\HP\AppData\Local\MSGBOX.EXE
2014-01-21 21:35 - 2014-01-21 21:35 - 00015327 _____ C:\Users\HP\Desktop\LM.bat
2014-01-21 21:24 - 2012-09-22 03:22 - 01625825 _____ C:\Windows\WindowsUpdate.log
2014-01-21 21:22 - 2013-09-27 08:43 - 00000000 ____D C:\Users\HP\AppData\Roaming\Skype
2014-01-21 21:18 - 2013-09-27 11:13 - 00000000 ____D C:\Users\HP\AppData\Roaming\Seznam.cz
2014-01-21 21:18 - 2013-09-26 21:32 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2042962140-1557458149-3897266398-1002
2014-01-21 21:15 - 2014-01-21 21:15 - 00000000 ___RD C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-01-21 21:13 - 2014-01-08 01:01 - 00000282 _____ C:\Windows\Tasks\SpeedUpMyPC Startup.job
2014-01-21 21:13 - 2013-09-27 04:35 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-21 21:13 - 2012-09-09 06:14 - 00000000 ____D C:\ProgramData\PDFC
2014-01-21 21:12 - 2014-01-21 21:10 - 00000000 ____D C:\AdwCleaner
2014-01-21 21:12 - 2012-08-01 22:23 - 00023392 _____ C:\Windows\PFRO.log
2014-01-21 21:12 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-21 21:12 - 2012-07-26 06:26 - 00524288 ___SH C:\Windows\system32\config\BBI
2014-01-21 21:11 - 2014-01-08 01:01 - 00000000 ____D C:\Program Files (x86)\Uniblue
2014-01-21 21:11 - 2013-09-29 22:23 - 00000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat
2014-01-21 21:09 - 2014-01-21 21:09 - 01236282 _____ C:\Users\HP\Desktop\adwcleaner.exe
2014-01-21 21:06 - 2014-01-21 21:06 - 00006234 _____ C:\Users\HP\Desktop\JRT.txt
2014-01-21 21:02 - 2014-01-21 21:02 - 00000000 ____D C:\Windows\ERUNT
2014-01-21 21:02 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\sru
2014-01-21 21:01 - 2014-01-21 21:00 - 01037068 _____ (Thisisu) C:\Users\HP\Desktop\JRT.exe
2014-01-21 21:00 - 2014-01-08 01:01 - 00000288 _____ C:\Windows\Tasks\SpeedUpMyPC Maintenance.job
2014-01-21 20:59 - 2014-01-21 20:59 - 00001724 _____ C:\sc-cleaner.txt
2014-01-21 20:57 - 2014-01-21 20:57 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\HP\Desktop\sc-cleaner.exe
2014-01-21 20:51 - 2013-09-27 04:35 - 00000960 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-21 20:49 - 2014-01-21 20:49 - 03218352 _____ (McAfee, Inc.) C:\Users\HP\Desktop\MCPR.exe
2014-01-21 20:36 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\NDF
2014-01-21 20:29 - 2014-01-21 20:29 - 00000000 ____D C:\FRST
2014-01-21 20:29 - 2014-01-21 20:28 - 02077184 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2014-01-21 20:27 - 2014-01-21 20:27 - 00112640 _____ (forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe
2014-01-21 10:11 - 2013-12-19 10:25 - 00459184 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-21 10:11 - 2013-11-16 15:25 - 00000336 _____ C:\Windows\Tasks\HPCeeScheduleForHP.job
2014-01-21 10:09 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\WinStore
2014-01-20 12:00 - 2013-10-01 08:45 - 00124112 _____ C:\Users\HP\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-20 10:46 - 2014-01-19 23:01 - 00020992 _____ C:\Users\HP\Downloads\MOC tabulka pro Hanku - kopie 2.xls
2014-01-20 10:43 - 2014-01-20 10:43 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2014-01-20 10:42 - 2014-01-20 09:48 - 00000000 ____D C:\Program Files (x86)\MSECache
2014-01-20 10:42 - 2012-09-09 06:18 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2014-01-20 10:41 - 2014-01-20 10:36 - 71809242 _____ C:\Users\HP\Downloads\PowerPointViewer.exe
2014-01-20 10:29 - 2014-01-20 10:26 - 00000000 ____D C:\ProgramData\FormOffice
2014-01-20 10:26 - 2014-01-20 10:26 - 00000000 ____D C:\ProgramData\Microsoft NT Ident
2014-01-20 10:26 - 2014-01-20 10:24 - 11565968 _____ (Martin Roubec ) C:\Users\HP\Downloads\FormOfficeInstallSINGLE.exe
2014-01-20 10:23 - 2014-01-20 10:20 - 00000000 ____D C:\Program Files (x86)\EmEditor
2014-01-20 10:23 - 2013-09-26 21:22 - 00000000 ___RD C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-20 10:19 - 2014-01-20 10:19 - 03284480 _____ C:\Users\HP\Downloads\emed804epx.msi
2014-01-20 10:17 - 2013-09-27 04:14 - 00000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2014-01-20 10:16 - 2014-01-20 10:15 - 04903502 _____ (Herisoft ) C:\Users\HP\Downloads\HERIEditor.exe
2014-01-20 09:26 - 2014-01-20 09:21 - 77738888 _____ (Microsoft Corporation) C:\Users\HP\Downloads\ExcelViewer.exe
2014-01-20 09:19 - 2014-01-20 09:19 - 00327129 _____ C:\Users\HP\Downloads\htmltabulka.zip
2014-01-20 09:18 - 2014-01-20 09:18 - 00052109 _____ C:\Users\HP\Downloads\proffiword (1).zip
2014-01-20 09:17 - 2014-01-20 09:17 - 00052109 _____ C:\Users\HP\Downloads\proffiword.zip
2014-01-20 07:59 - 2014-01-20 07:59 - 00015088 _____ C:\Users\HP\Downloads\tabulka ve Word - NEW DREAMS 2.dotx
2014-01-20 07:30 - 2014-01-20 07:30 - 00000000 ____D C:\Users\HP\AppData\Roaming\TeamViewer
2014-01-20 07:28 - 2012-09-09 06:46 - 00755956 _____ C:\Windows\system32\perfh005.dat
2014-01-20 07:28 - 2012-09-09 06:46 - 00162886 _____ C:\Windows\system32\perfc005.dat
2014-01-20 07:28 - 2012-07-26 08:28 - 01851422 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-20 02:58 - 2013-05-07 11:08 - 00000000 ____D C:\Users\HP\Desktop\PR ČLÁNKY
2014-01-20 02:55 - 2014-01-20 02:54 - 00000000 ____D C:\Users\HP\Desktop\JAZYKY
2014-01-20 02:54 - 2013-01-19 17:26 - 00000000 ____D C:\Users\HP\Desktop\ESHOPY
2014-01-19 22:58 - 2014-01-19 22:59 - 00020992 _____ C:\Users\HP\Downloads\MOC tabulka pro Hanku - kopie.xls
2014-01-19 20:42 - 2013-09-28 15:17 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-19 20:40 - 2013-09-27 05:06 - 00000000 ____D C:\Windows\system32\MRT
2014-01-19 20:36 - 2013-09-27 05:06 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-19 15:44 - 2014-01-19 15:44 - 00001178 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-01-19 15:44 - 2014-01-19 15:44 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-19 15:43 - 2014-01-19 15:42 - 07243968 _____ (TeamViewer GmbH) C:\Users\HP\Downloads\TeamViewer_Setup (1).exe
2014-01-19 15:42 - 2014-01-19 15:38 - 07243968 _____ (TeamViewer GmbH) C:\Users\HP\Downloads\TeamViewer_Setup.exe
2014-01-19 15:17 - 2014-01-19 15:16 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HP\Downloads\SpyHunter-Installer (1).exe
2014-01-19 15:16 - 2014-01-19 15:16 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HP\Downloads\SpyHunter-Installer.exe
2014-01-19 08:33 - 2013-09-27 05:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-18 20:36 - 2013-09-28 15:15 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2014-01-18 20:35 - 2013-09-28 15:15 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-01-18 00:48 - 2013-11-16 15:25 - 00003144 _____ C:\Windows\System32\Tasks\HPCeeScheduleForHP
2014-01-18 00:48 - 2013-09-26 21:22 - 00000000 ____D C:\Users\HP
2014-01-14 22:54 - 2013-09-27 04:37 - 00002195 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-13 08:59 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\AUInstallAgent
2014-01-09 17:38 - 2012-07-26 08:21 - 00057430 _____ C:\Windows\setupact.log
2014-01-09 17:34 - 2014-01-09 17:34 - 00000654 _____ C:\HP – zástupce.lnk
2014-01-09 10:07 - 2014-01-09 10:07 - 00003190 _____ C:\Windows\System32\Tasks\{45865322-63C8-45E8-AD19-C7BCFE014DE7}
2014-01-09 09:02 - 2013-10-01 08:05 - 00694240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-09 09:02 - 2013-10-01 08:05 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-08 15:42 - 2014-01-08 15:42 - 00003078 _____ C:\Windows\System32\Tasks\{F5F0F618-A16E-4EA6-A675-4E7B54AD1A9B}
2014-01-08 15:24 - 2014-01-08 01:02 - 00000908 _____ C:\Users\HP\daemonprocess.txt
2014-01-08 01:06 - 2013-09-27 06:11 - 00001082 _____ C:\Users\Public\Desktop\VLC media player.lnk
2014-01-08 01:05 - 2014-01-08 01:05 - 00000000 ____D C:\Users\HP\AppData\Roaming\Mozilla
2014-01-08 01:05 - 2014-01-08 01:04 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2014-01-08 01:04 - 2014-01-08 01:04 - 00000000 _____ C:\ProgramData\383b3c36203d32_c
2014-01-08 01:02 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\AppData\Local\cache
2014-01-08 01:02 - 2014-01-08 01:02 - 00000000 ____D C:\Users\HP\.android
2014-01-08 01:01 - 2014-01-08 01:01 - 00003182 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance
2014-01-08 01:01 - 2014-01-08 01:01 - 00002486 _____ C:\Windows\System32\Tasks\SpeedUpMyPC Startup
2014-01-08 00:58 - 2014-01-08 00:58 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (9).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (8).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (7).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (6).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (5).exe
2014-01-08 00:57 - 2014-01-08 00:57 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (4).exe
2014-01-08 00:47 - 2014-01-08 00:47 - 01751600 _____ (Bandoo Media Inc) C:\Users\HP\Downloads\iLividSetup-r706-n-bc.exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup.exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (3).exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (2).exe
2014-01-07 09:03 - 2014-01-07 09:03 - 00472080 _____ (Company) C:\Users\HP\Downloads\VLCPlus_Setup (1).exe
2014-01-06 13:19 - 2014-01-06 12:40 - 584340348 _____ C:\Users\HP\Downloads\Cert a dilino (2009) avi-J.B..avi
2014-01-06 01:21 - 2014-01-06 00:27 - 813115392 _____ C:\Users\HP\Downloads\Hobit Šmakova dračí poušť - Hobit Smaugova pustatina -The Hobbit The Desolation of Smaug (2013) cz dabing.avi
2014-01-05 19:29 - 2014-01-05 19:29 - 01352192 _____ C:\Users\HP\Downloads\Vyjm. slova.ppt
2014-01-05 19:26 - 2014-01-05 19:26 - 00696832 _____ C:\Users\HP\Downloads\pol (1).pps
2014-01-05 19:20 - 2014-01-05 19:19 - 00696832 _____ C:\Users\HP\Downloads\pol.pps
2014-01-05 19:17 - 2014-01-05 19:17 - 00320000 _____ C:\Users\HP\Downloads\vyjmenovana-slova-l.ppt
2014-01-02 12:42 - 2014-01-02 12:42 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-12-27 20:58 - 2013-07-14 10:22 - 00000000 ____D C:\Users\HP\Desktop\FOTKY
2013-12-27 13:54 - 2013-09-26 21:22 - 00000000 ____D C:\Users\HP\AppData\Local\Packages
2013-12-26 12:10 - 2012-09-22 03:22 - 00002990 _____ C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
2013-12-24 14:19 - 2013-12-24 11:55 - 1794025384 _____ C:\Users\HP\Downloads\Vanocni-koleda-2009-CZ-Dabing.avi
2013-12-24 11:43 - 2013-12-24 11:19 - 185837271 _____ C:\Users\HP\Downloads\Vánoční-koleda.avi

Some content of TEMP:
====================
C:\Users\HP\AppData\Local\Temp\7z920.exe
C:\Users\HP\AppData\Local\Temp\APNSetup.exe
C:\Users\HP\AppData\Local\Temp\appshat-distribution.exe
C:\Users\HP\AppData\Local\Temp\AtpTimerInfo.dll
C:\Users\HP\AppData\Local\Temp\BabylonTB.exe
C:\Users\HP\AppData\Local\Temp\BundleSweetIMSetup.exe
C:\Users\HP\AppData\Local\Temp\Delta.exe
C:\Users\HP\AppData\Local\Temp\DeltaTB.exe
C:\Users\HP\AppData\Local\Temp\Extract.exe
C:\Users\HP\AppData\Local\Temp\FLVPlayerSetup.exe
C:\Users\HP\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
C:\Users\HP\AppData\Local\Temp\GPUTemp.exe
C:\Users\HP\AppData\Local\Temp\MybabylonTB.exe
C:\Users\HP\AppData\Local\Temp\OpenCL.dll
C:\Users\HP\AppData\Local\Temp\ose00000.exe
C:\Users\HP\AppData\Local\Temp\prefetch.exe
C:\Users\HP\AppData\Local\Temp\Quarantine.exe
C:\Users\HP\AppData\Local\Temp\Setup1.exe
C:\Users\HP\AppData\Local\Temp\SHSetup.exe
C:\Users\HP\AppData\Local\Temp\sp58915.exe
C:\Users\HP\AppData\Local\Temp\SP59199.exe
C:\Users\HP\AppData\Local\Temp\SP62194.exe
C:\Users\HP\AppData\Local\Temp\SP62685.exe
C:\Users\HP\AppData\Local\Temp\SP62981.exe
C:\Users\HP\AppData\Local\Temp\SP63065.exe
C:\Users\HP\AppData\Local\Temp\SP63337.exe
C:\Users\HP\AppData\Local\Temp\SP63637.exe
C:\Users\HP\AppData\Local\Temp\SP63661.exe
C:\Users\HP\AppData\Local\Temp\SP63709.exe
C:\Users\HP\AppData\Local\Temp\SP63779.exe
C:\Users\HP\AppData\Local\Temp\SP64043.exe
C:\Users\HP\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\HP\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\HP\AppData\Local\Temp\UsageTemp.exe
C:\Users\HP\AppData\Local\Temp\WSSetup.exe
C:\Users\HP\AppData\Local\Temp\wupdater.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-01-20 00:12

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (OS) (Fixed) (Total:449.69 GB) (Free:352.46 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.99 GB) FAT32
Drive e: (KEJ164) (CDROM) (Total:0.16 GB) (Free:0 GB) CDFS
Drive f: (HP_RECOVERY) (Fixed) (Total:12.87 GB) (Free:2.05 GB) NTFS

Available physical RAM: 2581.07 MB
Total physical RAM: 3978.84 MB
Percentage of memory in use: 35%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 466 GB) (Disk ID: A50E1C7D)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForHP.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\SpeedUpMyPC Maintenance.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe
Task: C:\Windows\Tasks\SpeedUpMyPC Startup.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\HP\Downloads\unnamed (1).eml:OECustomProperty
AlternateDataStreams: C:\Users\HP\Downloads\unnamed.eml:OECustomProperty

==================== Security Center ==================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

#10 Příspěvek od **vyosek** » 22 led 2014 21:45

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] - c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [UsageTemp] - C:\Users\HP\AppData\Local\Temp\UsageTemp.exe [1305824 2014-01-17] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-01-14] (Hewlett-Packard)HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\HP\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\HP\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\Administrator\...\Run: [Power2GoExpress8] - c:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1707120 2012-07-24] (CyberLink Corp.)
AppInit_DLLs: C:\Program => File Not Found
AppInit_DLLs: Files => File Not Found
AppInit_DLLs-x32: C:\Program => File Not Found
AppInit_DLLs-x32: Files => File Not Found
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMNTDFJS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMNTDFJS
SearchScopes: HKCU - {47AE1BA9-0BD1-44F4-88AE-45F8F7B605EF} URL = http://www.basicserve.com/?prt=bscsrvli ... &keywords={searchTerms}
CHR HKLM-x32\...\Chrome\Extension: [aaaajpkhjdkhhnkmgfjodbkfpbmibkkk] - C:\ProgramData\AskPartnerNetwork\Toolbar\ORJ-V7\CRX\ToolbarCR.crx [2013-09-27]

U2 Update Browsebeyond; "C:\Program Files (x86)\Browsebeyond\updateBrowsebeyond.exe" [x]
U2 Util Browsebeyond; "C:\Program Files (x86)\Browsebeyond\bin\utilBrowsebeyond.exe" [x]

2014-01-21 21:35 - 2014-01-21 21:35 - 00029696 _____ C:\Users\HP\AppData\Local\MSGBOX.EXE
2014-01-21 21:35 - 2014-01-21 21:35 - 00015327 _____ C:\Users\HP\Desktop\LM.bat
014-01-21 21:09 - 2014-01-21 21:09 - 01236282 _____ C:\Users\HP\Desktop\adwcleaner.exe
2014-01-21 21:06 - 2014-01-21 21:06 - 00006234 _____ C:\Users\HP\Desktop\JRT.txt
2014-01-21 21:00 - 2014-01-21 21:01 - 01037068 _____ (Thisisu) C:\Users\HP\Desktop\JRT.exe
2014-01-21 20:59 - 2014-01-21 20:59 - 00001724 _____ C:\sc-cleaner.txt
2014-01-21 20:57 - 2014-01-21 20:57 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\HP\Desktop\sc-cleaner.exe
2014-01-21 20:49 - 2014-01-21 20:49 - 03218352 _____ (McAfee, Inc.) C:\Users\HP\Desktop\MCPR.exe
2014-01-21 20:27 - 2014-01-21 20:27 - 00112640 _____ (forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe
C:\Users\HP\AppData\Local\Temp\7z920.exe
C:\Users\HP\AppData\Local\Temp\APNSetup.exe
C:\Users\HP\AppData\Local\Temp\appshat-distribution.exe
C:\Users\HP\AppData\Local\Temp\AtpTimerInfo.dll
C:\Users\HP\AppData\Local\Temp\BabylonTB.exe
C:\Users\HP\AppData\Local\Temp\BundleSweetIMSetup.exe
C:\Users\HP\AppData\Local\Temp\Delta.exe
C:\Users\HP\AppData\Local\Temp\DeltaTB.exe
C:\Users\HP\AppData\Local\Temp\Extract.exe
C:\Users\HP\AppData\Local\Temp\FLVPlayerSetup.exe
C:\Users\HP\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
C:\Users\HP\AppData\Local\Temp\GPUTemp.exe
C:\Users\HP\AppData\Local\Temp\MybabylonTB.exe
C:\Users\HP\AppData\Local\Temp\OpenCL.dll
C:\Users\HP\AppData\Local\Temp\ose00000.exe
C:\Users\HP\AppData\Local\Temp\prefetch.exe
C:\Users\HP\AppData\Local\Temp\Quarantine.exe
C:\Users\HP\AppData\Local\Temp\Setup1.exe
C:\Users\HP\AppData\Local\Temp\SHSetup.exe
C:\Users\HP\AppData\Local\Temp\sp58915.exe
C:\Users\HP\AppData\Local\Temp\SP59199.exe
C:\Users\HP\AppData\Local\Temp\SP62194.exe
C:\Users\HP\AppData\Local\Temp\SP62685.exe
C:\Users\HP\AppData\Local\Temp\SP62981.exe
C:\Users\HP\AppData\Local\Temp\SP63065.exe
C:\Users\HP\AppData\Local\Temp\SP63337.exe
C:\Users\HP\AppData\Local\Temp\SP63637.exe
C:\Users\HP\AppData\Local\Temp\SP63661.exe
C:\Users\HP\AppData\Local\Temp\SP63709.exe
C:\Users\HP\AppData\Local\Temp\SP63779.exe
C:\Users\HP\AppData\Local\Temp\SP64043.exe
C:\Users\HP\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\HP\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\HP\AppData\Local\Temp\UsageTemp.exe
C:\Users\HP\AppData\Local\Temp\WSSetup.exe
C:\Users\HP\AppData\Local\Temp\wupdater.exe
C:\Program Files (x86)\Uniblue\SpeedUpMyP

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForHP.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\SpeedUpMyPC Maintenance.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe
Task: C:\Windows\Tasks\SpeedUpMyPC Startup.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe
Hosts:
CMD: shutdown /r /f /t 2

End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

flash8 · #11 Příspěvek od **flash8** » 23 led 2014 12:40

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-01-2014
Ran by HP at 2014-01-23 12:36:01 Run:1
Running from C:\Users\HP\Desktop\Čištění PC
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] - c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [UsageTemp] - C:\Users\HP\AppData\Local\Temp\UsageTemp.exe [1305824 2014-01-17] ()
HKLM-x32\...\Run: [seznam-listicka-distribuce] - C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-01-14] (Hewlett-Packard)HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKCU\...\Run: [cz.seznam.software.autoupdate] - C:\Users\HP\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKCU\...\Run: [cz.seznam.software.szndesktop] - C:\Users\HP\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
HKU\Administrator\...\Run: [Power2GoExpress8] - c:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1707120 2012-07-24] (CyberLink Corp.)
AppInit_DLLs: C:\Program => File Not Found
AppInit_DLLs: Files => File Not Found
AppInit_DLLs-x32: C:\Program => File Not Found
AppInit_DLLs-x32: Files => File Not Found
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTer ... c=CMNTDFJS
SearchScopes: HKCU - {47AE1BA9-0BD1-44F4-88AE-45F8F7B605EF} URL = http://www.basicserve.com/?prt=bscsrvli ... &keywords={searchTerms}
CHR HKLM-x32\...\Chrome\Extension: [aaaajpkhjdkhhnkmgfjodbkfpbmibkkk] - C:\ProgramData\AskPartnerNetwork\Toolbar\ORJ-V7\CRX\ToolbarCR.crx [2013-09-27]

U2 Update Browsebeyond; "C:\Program Files (x86)\Browsebeyond\updateBrowsebeyond.exe" [x]
U2 Util Browsebeyond; "C:\Program Files (x86)\Browsebeyond\bin\utilBrowsebeyond.exe" [x]

2014-01-21 21:35 - 2014-01-21 21:35 - 00029696 _____ C:\Users\HP\AppData\Local\MSGBOX.EXE
2014-01-21 21:35 - 2014-01-21 21:35 - 00015327 _____ C:\Users\HP\Desktop\LM.bat
014-01-21 21:09 - 2014-01-21 21:09 - 01236282 _____ C:\Users\HP\Desktop\adwcleaner.exe
2014-01-21 21:06 - 2014-01-21 21:06 - 00006234 _____ C:\Users\HP\Desktop\JRT.txt
2014-01-21 21:00 - 2014-01-21 21:01 - 01037068 _____ (Thisisu) C:\Users\HP\Desktop\JRT.exe
2014-01-21 20:59 - 2014-01-21 20:59 - 00001724 _____ C:\sc-cleaner.txt
2014-01-21 20:57 - 2014-01-21 20:57 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\HP\Desktop\sc-cleaner.exe
2014-01-21 20:49 - 2014-01-21 20:49 - 03218352 _____ (McAfee, Inc.) C:\Users\HP\Desktop\MCPR.exe
2014-01-21 20:27 - 2014-01-21 20:27 - 00112640 _____ (forum.viry.cz) C:\Users\HP\Desktop\FRSTLauncher.exe
C:\Users\HP\AppData\Local\Temp\7z920.exe
C:\Users\HP\AppData\Local\Temp\APNSetup.exe
C:\Users\HP\AppData\Local\Temp\appshat-distribution.exe
C:\Users\HP\AppData\Local\Temp\AtpTimerInfo.dll
C:\Users\HP\AppData\Local\Temp\BabylonTB.exe
C:\Users\HP\AppData\Local\Temp\BundleSweetIMSetup.exe
C:\Users\HP\AppData\Local\Temp\Delta.exe
C:\Users\HP\AppData\Local\Temp\DeltaTB.exe
C:\Users\HP\AppData\Local\Temp\Extract.exe
C:\Users\HP\AppData\Local\Temp\FLVPlayerSetup.exe
C:\Users\HP\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
C:\Users\HP\AppData\Local\Temp\GPUTemp.exe
C:\Users\HP\AppData\Local\Temp\MybabylonTB.exe
C:\Users\HP\AppData\Local\Temp\OpenCL.dll
C:\Users\HP\AppData\Local\Temp\ose00000.exe
C:\Users\HP\AppData\Local\Temp\prefetch.exe
C:\Users\HP\AppData\Local\Temp\Quarantine.exe
C:\Users\HP\AppData\Local\Temp\Setup1.exe
C:\Users\HP\AppData\Local\Temp\SHSetup.exe
C:\Users\HP\AppData\Local\Temp\sp58915.exe
C:\Users\HP\AppData\Local\Temp\SP59199.exe
C:\Users\HP\AppData\Local\Temp\SP62194.exe
C:\Users\HP\AppData\Local\Temp\SP62685.exe
C:\Users\HP\AppData\Local\Temp\SP62981.exe
C:\Users\HP\AppData\Local\Temp\SP63065.exe
C:\Users\HP\AppData\Local\Temp\SP63337.exe
C:\Users\HP\AppData\Local\Temp\SP63637.exe
C:\Users\HP\AppData\Local\Temp\SP63661.exe
C:\Users\HP\AppData\Local\Temp\SP63709.exe
C:\Users\HP\AppData\Local\Temp\SP63779.exe
C:\Users\HP\AppData\Local\Temp\SP64043.exe
C:\Users\HP\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\HP\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\HP\AppData\Local\Temp\UsageTemp.exe
C:\Users\HP\AppData\Local\Temp\WSSetup.exe
C:\Users\HP\AppData\Local\Temp\wupdater.exe
C:\Program Files (x86)\Uniblue\SpeedUpMyP

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForHP.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\SpeedUpMyPC Maintenance.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe
Task: C:\Windows\Tasks\SpeedUpMyPC Startup.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe
Hosts:
CMD: shutdown /r /f /t 2

End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLMLServer_For_P2G8 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLVirtualDrive => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RemoteControl10 => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\UsageTemp => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-01-14] (Hewlett-Packard)Skype => Value not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => Value deleted successfully.
HKU\Administrator\Software\Microsoft\Windows\CurrentVersion\Run\\Power2GoExpress8 => Value deleted successfully.
"C:\\Program" => Value Data removed successfully.
"Files" => Value Data removed successfully.
"C:\\Program" => Value Data removed successfully.
"Files" => Value Data removed successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{47AE1BA9-0BD1-44F4-88AE-45F8F7B605EF} => Key deleted successfully.
HKCR\CLSID\{47AE1BA9-0BD1-44F4-88AE-45F8F7B605EF} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\aaaajpkhjdkhhnkmgfjodbkfpbmibkkk => Key not found.
"C:\ProgramData\AskPartnerNetwork\Toolbar\ORJ-V7\CRX\ToolbarCR.crx" => File/Directory not found.
Update Browsebeyond => Service not found.
Util Browsebeyond => Service not found.
C:\Users\HP\AppData\Local\MSGBOX.EXE => Moved successfully.
"C:\Users\HP\Desktop\LM.bat" => File/Directory not found.
"C:\Users\HP\Desktop\JRT.txt" => File/Directory not found.
"C:\Users\HP\Desktop\JRT.exe" => File/Directory not found.
C:\sc-cleaner.txt => Moved successfully.
"C:\Users\HP\Desktop\sc-cleaner.exe" => File/Directory not found.
"C:\Users\HP\Desktop\MCPR.exe" => File/Directory not found.
"C:\Users\HP\Desktop\FRSTLauncher.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\7z920.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\APNSetup.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\appshat-distribution.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\AtpTimerInfo.dll" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\BabylonTB.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\BundleSweetIMSetup.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\Delta.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\DeltaTB.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\Extract.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\FLVPlayerSetup.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\GPUTemp.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\MybabylonTB.exe" => File/Directory not found.
C:\Users\HP\AppData\Local\Temp\OpenCL.dll => Moved successfully.
"C:\Users\HP\AppData\Local\Temp\ose00000.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\prefetch.exe" => File/Directory not found.
C:\Users\HP\AppData\Local\Temp\Quarantine.exe => Moved successfully.
"C:\Users\HP\AppData\Local\Temp\Setup1.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\SHSetup.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\sp58915.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\SP59199.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\SP62194.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\SP62685.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\SP62981.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\SP63065.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\SP63337.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\SP63637.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\SP63661.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\SP63709.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\SP63779.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\SP64043.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\UninstallHPSA.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\UpdateCheckerSetup.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\UsageTemp.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\WSSetup.exe" => File/Directory not found.
"C:\Users\HP\AppData\Local\Temp\wupdater.exe" => File/Directory not found.
"C:\Program Files (x86)\Uniblue\SpeedUpMyP" => File/Directory not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\HPCeeScheduleForHP.job => Moved successfully.
C:\Windows\Tasks\SpeedUpMyPC Maintenance.job => Moved successfully.
C:\Windows\Tasks\SpeedUpMyPC Startup.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

========= shutdown /r /f /t 2 =========

========= End of CMD: =========

==== End of Fixlog ====

#12 Příspěvek od **vyosek** » 23 led 2014 17:33

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

flash8 · #13 Příspěvek od **flash8** » 25 led 2014 13:16

Problémy vyřešeny, díky moc

#14 Příspěvek od **vyosek** » 25 úno 2014 13:34

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

A na zaklade Pravidla o zamykani temat

VIRY.CZ

Prosím o kontrolu logu! Nevyžádané reklamy atd...

Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...

Re: Prosím o kontrolu logu! Nevyžádané reklamy atd...