Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
kRt3k
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 11 říj 2006 12:33

Prosím o kontrolu logu

#1 Příspěvek od kRt3k »

Ahoj, prosím o kontrolu logu, prohlížeč občas vyhodí nějaké okno s reklamou..

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-02-2014 01
Ran by standard (administrator) on MORAVOVA on 22-02-2014 14:48:31
Running from C:\Users\standard\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\PROGRAM FILES\MICROSOFT SECURITY CLIENT\MSMPENG.EXE
(Validity Sensors, Inc.) C:\Windows\system32\vcsFPService.exe
(NVIDIA Corporation) C:\PROGRAM FILES\NVIDIA CORPORATION\DISPLAY\NVXDSYNC.EXE
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\WINDOWS\SYSTEM32\WLANEXT.EXE
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpHostW.exe
(DigitalPersona, Inc.) C:\PROGRAM FILES (X86)\DIGITALPERSONA\BIN\DPAGENT.EXE
(SUPERAntiSpyware.com) C:\PROGRAM FILES\SUPERANTISPYWARE\SASCORE64.EXE
(ABBYY) C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Realtek Semiconductor) C:\PROGRAM FILES\REALTEK\AUDIO\HDA\RTKNGUI64.EXE
(Intel Corporation) C:\WINDOWS\SYSTEM32\IGFXTRAY.EXE
(Intel Corporation) C:\WINDOWS\SYSTEM32\HKCMD.EXE
(Intel Corporation) C:\WINDOWS\SYSTEM32\IGFXPERS.EXE
(Alps Electric Co., Ltd.) C:\PROGRAM FILES\DELLTPAD\APOINT.EXE
() C:\PROGRAM FILES (X86)\STMICROELECTRONICS\ACCELEROMETERP11\FF_PROTECTION.EXE
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel(R) Corporation) C:\PROGRAM FILES\COMMON FILES\INTEL\WIRELESSCOMMON\IFRMEWRK.EXE
(CrypKey (Canada) Ltd.) C:\WINDOWS\SYSTEM32\CRYPSERV.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
(Dell Inc.) C:\PROGRAM FILES\DELL\QUICKSET\QUICKSET.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(Dell Computer Corporation) C:\DELL\DBRM\REMINDER\DBRMTRAYICON.EXE
(Intel(R) Corporation) C:\PROGRAM FILES\INTEL\WIFI\BIN\EVTENG.EXE
(Alps Electric Co., Ltd.) C:\PROGRAM FILES\DELLTPAD\APMSGFWD.EXE
(Microsoft Corporation) C:\PROGRAM FILES\MICROSOFT SECURITY CLIENT\MSSECES.EXE
(Crawler.com) C:\PROGRAM FILES (X86)\SPYWARE TERMINATOR\SPYWARETERMINATORSHIELD.EXE
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DPAgent.exe
(Alps Electric Co., Ltd.) C:\PROGRAM FILES\DELLTPAD\HIDFIND.EXE
(Alps Electric Co., Ltd.) C:\PROGRAM FILES\DELLTPAD\APNTEX.EXE
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Ai Squared ) C:\PROGRAM FILES (X86)\ZOOMTEXT 10\ZT.EXE
(Crawler.com) C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Google Inc.) C:\USERS\STANDARD\APPDATA\LOCAL\GOOGLE\UPDATE\1.3.22.5\GOOGLECRASHHANDLER.EXE
(Microsoft Corporation) C:\PROGRAM FILES\WINDOWS SIDEBAR\SIDEBAR.EXE
(Ai Squared ) C:\PROGRAM FILES (X86)\ZOOMTEXT 10\ZOOMTEXTHELPERSERVICE.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Google Inc.) C:\USERS\STANDARD\APPDATA\LOCAL\GOOGLE\UPDATE\1.3.22.5\GOOGLECRASHHANDLER64.EXE
(Somoto) C:\USERS\STANDARD\APPDATA\LOCAL\FILESFROG UPDATE CHECKER\UPDATE_CHECKER.EXE
(Microsoft Corporation) C:\PROGRAM FILES\MICROSOFT SECURITY CLIENT\NISSRV.EXE
(Intel Corporation) C:\PROGRAM FILES (X86)\INTEL\BLUETOOTH\MEDIASRV.EXE
() C:\PROGRAM FILES (X86)\KALENDAR\KALENDAR.EXE
() C:\USERS\STANDARD\APPDATA\LOCAL\WEBPLAYER\APPSHAT\WEBPLAYER.EXE
(Intel Corporation) C:\PROGRAM FILES (X86)\INTEL\BLUETOOTH\BTPLAYERCTRL.EXE
(CyberLink Corp.) C:\PROGRAM FILES (X86)\CYBERLINK\POWERDVD9\PDVD9SERV.EXE
(Creative Technology Ltd) C:\PROGRAM FILES (X86)\DELL WEBCAM\DELL WEBCAM CENTRAL\WEBCAMDELL2.EXE
() C:\PROGRAM FILES (X86)\ROXIO\OEM\ROXIO BURN\ROXIOBURNLAUNCHER.EXE
(SEIKO EPSON CORPORATION) C:\PROGRAM FILES (X86)\EPSON SOFTWARE\EVENT MANAGER\EEVENTMANAGER.EXE
(Ai Squared ) C:\PROGRAM FILES (X86)\ZOOMTEXT 10\PROTECTEDUI.EXE
(Ai Squared ) C:\PROGRAM FILES (X86)\ZOOMTEXT 10\X64\PROTECTEDUI64.EXE
(Ai Squared) C:\PROGRAM FILES (X86)\ZOOMTEXT 10\WIN32\AISQUARED.LOADER.ELEVATED.EXE
(Ai Squared) C:\PROGRAM FILES (X86)\ZOOMTEXT 10\WIN64\AISQUARED.LOADER.ELEVATED.EXE
(Intel Corporation) C:\PROGRAM FILES (X86)\INTEL\INTEL(R) MANAGEMENT ENGINE COMPONENTS\LMS\LMS.EXE
(Nero AG) C:\PROGRAM FILES (X86)\NERO\UPDATE\NASVC.EXE
(NVIDIA Corporation) C:\PROGRAM FILES (X86)\NVIDIA CORPORATION\NVIDIA UPDATUS\DAEMONU.EXE
(Intel Corporation) C:\PROGRAM FILES (X86)\INTEL\INTEL(R) MANAGEMENT ENGINE COMPONENTS\UNS\UNS.EXE
(Ai Squared ) C:\PROGRAM FILES (X86)\ZOOMTEXT 10\X64\ZTUAC64.EXE
(Google Inc.) C:\USERS\STANDARD\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE
(Google Inc.) C:\USERS\STANDARD\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE
(Google Inc.) C:\USERS\STANDARD\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE
(Google Inc.) C:\USERS\STANDARD\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE
(Google Inc.) C:\USERS\STANDARD\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE
(Google Inc.) C:\USERS\STANDARD\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE
(Google Inc.) C:\USERS\STANDARD\APPDATA\LOCAL\GOOGLE\CHROME\APPLICATION\CHROME.EXE


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6629480 2011-04-15] (Realtek Semiconductor)
HKLM\...\Run: [NVHotkey] - C:\Windows\system32\nvHotkey.dll [312936 2011-04-22] (NVIDIA Corporation)
HKLM\...\Run: [Apoint] - C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-13] (Alps Electric Co., Ltd.)
HKLM\...\Run: [FreeFallProtection] - C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe [727664 2010-10-01] ()
HKLM\...\Run: [IntelPAN] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-07-28] (Intel(R) Corporation)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10365952 2011-05-19] (Intel Corporation)
HKLM\...\Run: [QuickSet] - c:\Program Files\Dell\QuickSet\QuickSet.exe [4500640 2011-03-11] (Dell Inc.)
HKLM\...\Run: [IntelTBRunOnce] - wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [DBRMTray] - C:\Dell\DBRM\Reminder\DbrmTrayIcon.exe [227328 2011-03-08] (Dell Computer Corporation)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [SpywareTerminatorShield] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2777296 2012-09-07] (Crawler.com)
HKLM\...\Run: [SpywareTerminatorUpdater] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [3684488 2013-04-03] (Crawler.com)
HKLM-x32\...\Run: [RemoteControl9] - C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2010-10-01] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD9LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe [50472 2010-09-18] (CyberLink Corp.)
HKLM-x32\...\Run: [Dell Webcam Central] - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-13] (Creative Technology Ltd)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [RoxWatchTray] - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions)
HKLM-x32\...\Run: [Desktop Disc Tool] - C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] ()
HKLM-x32\...\Run: [Bonus.SSR.FR11] - C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [934152 2011-11-01] (ABBYY.)
HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\RunOnce: [DBRMTray] - C:\Dell\DBRM\Reminder\TrayApp.exe [7168 2010-02-05] (Microsoft)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\Run: [ZoomText] - C:\Program Files (x86)\ZoomText 10\ZT.exe [5063808 2013-10-31] (Ai Squared )
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\Run: [Google Update] - C:\Users\standard\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2012-03-03] (Google Inc.)
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\Run: [EPSON SX430 Series] - C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [232448 2012-05-09] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\Run: [SDP] - C:\Users\standard\AppData\Local\FilesFrog Update Checker\update_checker.exe [201808 2013-01-31] (Somoto)
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\Run: [AppsHat] - C:\Users\standard\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [202752 2012-10-26] ()
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\Run: [Kalendar] - C:\Program Files (x86)\Kalendar\kalendar.exe [580608 2005-11-09] ()
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\Run: [Apps Hat] - C:\Users\standard\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [202752 2012-10-26] ()
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\MountPoints2: {2c852472-7904-11e3-b79e-4c80931ff044} - E:\DT4000_Launcher.exe
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\MountPoints2: {2c852499-7904-11e3-b79e-4c80931ff044} - E:\DT4000_Launcher.exe
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\MountPoints2: {7c27068f-8d71-11e3-981f-4c80931ff044} - E:\DT4000_Launcher.exe
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\MountPoints2: {8077720a-8728-11e3-bf43-4c80931ff044} - E:\DT4000_Launcher.exe
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [226920 2011-04-22] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [193128 2011-04-22] (NVIDIA Corporation)
Lsa: [Notification Packages] DPPassFilter scecli

==================== Internet (Whitelisted) ====================

ProxyServer: vsproxy.kb.cz:8080
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://intranet.kb.cz/KBNET/cz/default.aspx
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... tbid=60747
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60747
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60747
URLSearchHook: HKCU - &Crawler Toolbar Helper - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files (x86)\Crawler\Toolbar\ctbr.dll (Crawler.com)
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {AB56F085-1A76-4130-A982-0B2B621A089B} URL =
SearchScopes: HKCU - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = http://www.crawler.com/search/dispatche ... tbid=60747
SearchScopes: HKCU - {AB56F085-1A76-4130-A982-0B2B621A089B} URL =
BHO: Apps Hat Mini - {11111111-1111-1111-1111-110511031101} - C:\Program Files (x86)\Apps Hat Mini\Apps Hat Mini-bho64.dll (Nero)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No File
BHO-x32: Apps Hat Mini - {11111111-1111-1111-1111-110511031101} - C:\Program Files (x86)\Apps Hat Mini\Apps Hat Mini-bho.dll (Nero)
BHO-x32: &Crawler Toolbar Helper - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files (x86)\Crawler\Toolbar\ctbr.dll (Crawler.com)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM-x32 - &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files (x86)\Crawler\Toolbar\ctbr.dll (Crawler.com)
Toolbar: HKCU - No Name - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/s ... wflash.cab
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - No File
Handler-x32: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\Program Files (x86)\Crawler\Toolbar\ctbr.dll (Crawler.com)
Tcpip\Parameters: [DhcpNameServer] 192.168.100.252

Chrome:
=======
CHR HomePage: hxxp://www.google.cz/
CHR DefaultSearchKeyword: ask search
CHR DefaultSearchProvider: Ask Search
CHR DefaultSearchURL: http://avira.search.ask.com/web?tpid=AV ... earchTerms}
CHR DefaultNewTabURL:
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\standard\AppData\Local\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\standard\AppData\Local\Google\Chrome\Application\33.0.1750.117\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\standard\AppData\Local\Google\Chrome\Application\33.0.1750.117\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.270.7) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U27) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\standard\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Extension: (YouTube) - C:\Users\standard\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-03-03]
CHR Extension: (Vyhledávání Google) - C:\Users\standard\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-03-03]
CHR Extension: (Apps Hat Mini) - C:\Users\standard\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbibhpbpkppfpcgopfbkokifpfiacdok [2014-01-30]
CHR Extension: (Peněženka Google) - C:\Users\standard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-25]
CHR Extension: (Gmail) - C:\Users\standard\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-03-03]
CHR StartMenuInternet: Google Chrome - C:\Users\standard\AppData\Local\Google\Chrome\Application\chrome.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\PROGRAM FILES\SUPERANTISPYWARE\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
R2 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [819976 2011-10-12] (ABBYY)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 Crypkey License; C:\Windows\system32\crypserv.exe [122880 2007-05-23] (CrypKey (Canada) Ltd.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-07-28] ()
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [1148632 2012-03-28] (Crawler.com)
R2 ZoomText Helper Service; C:\Program Files (x86)\ZoomText 10\ZoomTextHelperService.exe [17024 2013-10-31] (Ai Squared )

==================== Drivers (Whitelisted) ====================

R1 Ai2Chroniker; C:\Windows\System32\DRIVERS\Ai2Chroniker.sys [14016 2013-11-14] (Ai Squared )
R3 Ai2Mmpd; C:\Windows\System32\DRIVERS\Ai2Mmpd.sys [12992 2013-11-14] (Ai Squared )
S3 GenericMount; C:\Windows\System32\DRIVERS\GenericMount.sys [66608 2010-02-12] (Symantec Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R1 NetworkX; C:\Windows\system32\ckldrv.sys [27904 2007-05-17] ()
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2012-05-29] (Windows (R) Win 7 DDK provider)
S3 PCDSRVC{D3412D80-CF3B4A27-06020200}_0; \??\c:\program files\my dell\pcdsrvc_x64.pkms [X]
U2 V2iMount;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-22 14:48 - 2014-02-22 14:48 - 00020570 _____ () C:\Users\standard\Desktop\FRST.txt
2014-02-22 14:48 - 2014-02-22 14:48 - 00000000 ____D () C:\FRST
2014-02-22 14:46 - 2014-02-22 14:46 - 00112640 _____ (forum.viry.cz) C:\Users\standard\Downloads\FRSTLauncher (2).exe
2014-02-22 14:45 - 2014-02-22 14:45 - 00112640 _____ (forum.viry.cz) C:\Users\standard\Downloads\Nepotvrzeno 935500.crdownload
2014-02-22 14:45 - 2014-02-22 14:45 - 00112640 _____ (forum.viry.cz) C:\Users\standard\Downloads\Nepotvrzeno 788323.crdownload
2014-02-22 14:45 - 2014-02-22 14:44 - 02154496 _____ (Farbar) C:\Users\standard\Desktop\FRST64.exe
2014-02-22 14:44 - 2014-02-22 14:44 - 02154496 _____ (Farbar) C:\Users\standard\Downloads\FRST64.exe
2014-02-22 14:29 - 2014-02-22 14:29 - 00000124 _____ () C:\Windows\error.log
2014-02-22 14:28 - 2014-02-22 14:28 - 00000338 _____ () C:\Windows\PFRO.log
2014-02-22 14:28 - 2014-02-22 14:28 - 00000056 _____ () C:\Windows\setupact.log
2014-02-22 14:28 - 2014-02-22 14:28 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-22 09:48 - 2014-02-22 09:48 - 17858952 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-02-21 11:25 - 2014-02-21 11:50 - 00010406 _____ () C:\Users\standard\Desktop\rozvrh - březen.xlsx
2014-02-21 11:14 - 2014-02-21 11:49 - 00037888 _____ () C:\Users\standard\Downloads\Semináře_FDV_-_Rozvrh.xls
2014-02-15 16:12 - 2014-02-15 16:12 - 00000000 ____D () C:\ProgramData\APN
2014-02-15 16:06 - 2014-02-21 15:55 - 00000516 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 71298db2-d587-455b-b1a8-abe3543afebf.job
2014-02-15 16:06 - 2014-02-15 16:06 - 00003526 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 71298db2-d587-455b-b1a8-abe3543afebf
2014-02-15 15:54 - 2014-02-15 15:54 - 00000000 ____D () C:\Users\standard\AppData\Roaming\SUPERAntiSpyware.com
2014-02-15 15:53 - 2014-02-15 15:54 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-02-15 15:53 - 2014-02-15 15:53 - 00001810 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-02-15 15:53 - 2014-02-15 15:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-02-12 23:47 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-12 23:47 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 23:46 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-12 23:46 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-12 23:46 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-12 23:46 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-12 23:46 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-12 23:46 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-12 23:46 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-12 23:46 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-12 23:46 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-12 23:46 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-12 23:46 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-12 23:46 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-12 23:46 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 23:46 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-12 23:46 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-12 23:46 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-12 23:46 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-12 23:46 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 23:46 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-12 23:46 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-12 23:46 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-12 23:46 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-12 23:46 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-12 23:46 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 23:46 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-12 23:46 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-12 23:45 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-12 23:45 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-12 23:45 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-12 23:45 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-12 23:45 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-12 23:45 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 23:45 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-12 23:45 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-12 23:45 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-12 23:45 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-12 23:45 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-12 23:45 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-12 23:45 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-12 18:23 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-12 18:23 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-12 18:23 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 18:23 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 18:23 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 18:23 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 18:23 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 18:23 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 18:23 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-12 18:23 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-12 18:23 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 18:23 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-12 18:23 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-12 18:23 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-12 18:23 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-12 18:23 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 18:23 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 18:23 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-12 18:23 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-12 18:23 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-12 18:23 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-12 18:23 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-12 18:23 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-12 18:23 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-12 18:23 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-12 18:23 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-12 18:23 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 18:23 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-02 11:30 - 2014-02-02 11:30 - 00000000 ____D () C:\Users\standard\Downloads\Školní-zralost,-Jiřina-Bednářová,-Vlasta-Šmardová,-
2014-01-30 10:10 - 2014-02-22 14:28 - 00001552 _____ () C:\Windows\Tasks\Apps Hat Mini-updater.job
2014-01-30 10:10 - 2014-01-30 10:10 - 00004582 _____ () C:\Windows\System32\Tasks\Apps Hat Mini-updater
2014-01-30 10:10 - 2014-01-30 10:10 - 00002129 _____ () C:\Users\standard\Desktop\AppsHat.lnk
2014-01-30 10:09 - 2014-02-22 14:28 - 00002684 _____ () C:\Windows\Tasks\Apps Hat Mini-firefoxinstaller.job
2014-01-30 10:09 - 2014-02-22 14:28 - 00002174 _____ () C:\Windows\Tasks\Apps Hat Mini-chromeinstaller.job
2014-01-30 10:09 - 2014-02-22 14:28 - 00001502 _____ () C:\Windows\Tasks\Apps Hat Mini-codedownloader.job
2014-01-30 10:09 - 2014-02-22 14:28 - 00001380 _____ () C:\Windows\Tasks\Apps Hat Mini-enabler.job
2014-01-30 10:09 - 2014-01-30 10:10 - 00000000 ____D () C:\Program Files (x86)\Apps Hat Mini
2014-01-30 10:09 - 2014-01-30 10:09 - 00004532 _____ () C:\Windows\System32\Tasks\Apps Hat Mini-codedownloader
2014-01-30 10:09 - 2014-01-30 10:09 - 00004410 _____ () C:\Windows\System32\Tasks\Apps Hat Mini-enabler

==================== One Month Modified Files and Folders =======

2014-02-22 14:48 - 2014-02-22 14:48 - 00020570 _____ () C:\Users\standard\Desktop\FRST.txt
2014-02-22 14:48 - 2014-02-22 14:48 - 00000000 ____D () C:\FRST
2014-02-22 14:48 - 2012-11-07 09:50 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-22 14:46 - 2014-02-22 14:46 - 00112640 _____ (forum.viry.cz) C:\Users\standard\Downloads\FRSTLauncher (2).exe
2014-02-22 14:45 - 2014-02-22 14:45 - 00112640 _____ (forum.viry.cz) C:\Users\standard\Downloads\Nepotvrzeno 935500.crdownload
2014-02-22 14:45 - 2014-02-22 14:45 - 00112640 _____ (forum.viry.cz) C:\Users\standard\Downloads\Nepotvrzeno 788323.crdownload
2014-02-22 14:44 - 2014-02-22 14:45 - 02154496 _____ (Farbar) C:\Users\standard\Desktop\FRST64.exe
2014-02-22 14:44 - 2014-02-22 14:44 - 02154496 _____ (Farbar) C:\Users\standard\Downloads\FRST64.exe
2014-02-22 14:36 - 2009-07-14 05:45 - 00025040 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-22 14:36 - 2009-07-14 05:45 - 00025040 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-22 14:35 - 2010-11-21 10:27 - 00666444 _____ () C:\Windows\system32\perfh005.dat
2014-02-22 14:35 - 2010-11-21 10:27 - 00140108 _____ () C:\Windows\system32\perfc005.dat
2014-02-22 14:35 - 2009-07-14 06:13 - 01576554 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-22 14:33 - 2011-11-22 14:44 - 01474206 _____ () C:\Windows\WindowsUpdate.log
2014-02-22 14:29 - 2014-02-22 14:29 - 00000124 _____ () C:\Windows\error.log
2014-02-22 14:29 - 2011-11-22 14:42 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-22 14:28 - 2014-02-22 14:28 - 00000338 _____ () C:\Windows\PFRO.log
2014-02-22 14:28 - 2014-02-22 14:28 - 00000056 _____ () C:\Windows\setupact.log
2014-02-22 14:28 - 2014-02-22 14:28 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-22 14:28 - 2014-01-30 10:10 - 00001552 _____ () C:\Windows\Tasks\Apps Hat Mini-updater.job
2014-02-22 14:28 - 2014-01-30 10:09 - 00002684 _____ () C:\Windows\Tasks\Apps Hat Mini-firefoxinstaller.job
2014-02-22 14:28 - 2014-01-30 10:09 - 00002174 _____ () C:\Windows\Tasks\Apps Hat Mini-chromeinstaller.job
2014-02-22 14:28 - 2014-01-30 10:09 - 00001502 _____ () C:\Windows\Tasks\Apps Hat Mini-codedownloader.job
2014-02-22 14:28 - 2014-01-30 10:09 - 00001380 _____ () C:\Windows\Tasks\Apps Hat Mini-enabler.job
2014-02-22 14:28 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-22 14:20 - 2012-03-03 18:00 - 00000974 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3978708776-1634146858-1730522941-1001UA.job
2014-02-22 14:17 - 2011-11-22 15:32 - 00000000 ____D () C:\ProgramData\Sonic
2014-02-22 11:37 - 2013-05-22 11:38 - 00003440 _____ () C:\Windows\System32\Tasks\PCDEventLauncherTask
2014-02-22 10:20 - 2012-03-03 18:00 - 00000922 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3978708776-1634146858-1730522941-1001Core.job
2014-02-22 09:48 - 2014-02-22 09:48 - 17858952 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-02-22 09:48 - 2012-11-07 09:50 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-22 09:48 - 2012-11-07 09:50 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-22 09:48 - 2012-11-07 09:50 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-22 08:23 - 2012-03-03 18:01 - 00002387 _____ () C:\Users\standard\Desktop\Google Chrome.lnk
2014-02-22 08:02 - 2012-05-29 20:22 - 00000000 ____D () C:\ProgramData\Spyware Terminator
2014-02-21 15:55 - 2014-02-15 16:06 - 00000516 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 71298db2-d587-455b-b1a8-abe3543afebf.job
2014-02-21 12:01 - 2013-05-22 11:38 - 00000000 ____D () C:\Program Files\My Dell
2014-02-21 12:01 - 2012-02-22 10:00 - 00000000 ____D () C:\ProgramData\PCDr
2014-02-21 11:50 - 2014-02-21 11:25 - 00010406 _____ () C:\Users\standard\Desktop\rozvrh - březen.xlsx
2014-02-21 11:49 - 2014-02-21 11:14 - 00037888 _____ () C:\Users\standard\Downloads\Semináře_FDV_-_Rozvrh.xls
2014-02-21 09:52 - 2014-01-09 10:37 - 00000000 ____D () C:\Users\standard\Desktop\KB
2014-02-18 10:15 - 2012-03-03 18:00 - 00003954 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3978708776-1634146858-1730522941-1001UA
2014-02-18 10:15 - 2012-03-03 18:00 - 00003558 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3978708776-1634146858-1730522941-1001Core
2014-02-17 20:58 - 2013-08-14 20:35 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-17 20:56 - 2012-02-22 08:00 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-15 16:12 - 2014-02-15 16:12 - 00000000 ____D () C:\ProgramData\APN
2014-02-15 16:06 - 2014-02-15 16:06 - 00003526 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 71298db2-d587-455b-b1a8-abe3543afebf
2014-02-15 15:54 - 2014-02-15 15:54 - 00000000 ____D () C:\Users\standard\AppData\Roaming\SUPERAntiSpyware.com
2014-02-15 15:54 - 2014-02-15 15:53 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-02-15 15:53 - 2014-02-15 15:53 - 00001810 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-02-15 15:53 - 2014-02-15 15:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-02-14 02:21 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-13 00:11 - 2012-02-22 10:43 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-13 00:10 - 2011-02-15 08:08 - 01555776 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-11 11:10 - 2014-01-15 13:17 - 00001994 ____H () C:\Users\standard\Documents\Default.rdp
2014-02-11 10:07 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-02-06 13:16 - 2014-02-12 23:46 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-12 23:46 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-12 23:46 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-12 23:45 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-12 23:46 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-12 23:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-12 23:46 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-12 23:46 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-12 23:46 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-12 23:46 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-12 23:46 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-12 23:46 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-12 23:45 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-12 23:46 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-12 23:46 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-12 23:46 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-12 23:45 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-12 23:46 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-12 23:46 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-12 23:46 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:57 - 2014-02-12 23:45 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:52 - 2014-02-12 23:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-12 23:46 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-12 23:45 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-12 23:46 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-12 23:46 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-12 23:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-12 23:46 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:25 - 2014-02-12 23:45 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:24 - 2014-02-12 23:45 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-12 23:45 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-12 23:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-12 23:45 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-12 23:45 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-12 23:45 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-12 23:45 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-12 23:46 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-12 23:45 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-12 23:46 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-05 15:58 - 2013-11-14 12:30 - 00002158 _____ () C:\Users\standard\Desktop\FLV Player.lnk
2014-02-05 15:58 - 2013-09-15 13:34 - 00000000 ____D () C:\Users\standard\AppData\Local\WebPlayer
2014-02-02 15:14 - 2012-04-05 19:06 - 00000000 ____D () C:\Users\standard\Desktop\SPPG
2014-02-02 11:30 - 2014-02-02 11:30 - 00000000 ____D () C:\Users\standard\Downloads\Školní-zralost,-Jiřina-Bednářová,-Vlasta-Šmardová,-
2014-01-30 10:10 - 2014-01-30 10:10 - 00004582 _____ () C:\Windows\System32\Tasks\Apps Hat Mini-updater
2014-01-30 10:10 - 2014-01-30 10:10 - 00002129 _____ () C:\Users\standard\Desktop\AppsHat.lnk
2014-01-30 10:10 - 2014-01-30 10:09 - 00000000 ____D () C:\Program Files (x86)\Apps Hat Mini
2014-01-30 10:09 - 2014-01-30 10:09 - 00004532 _____ () C:\Windows\System32\Tasks\Apps Hat Mini-codedownloader
2014-01-30 10:09 - 2014-01-30 10:09 - 00004410 _____ () C:\Windows\System32\Tasks\Apps Hat Mini-enabler

Some content of TEMP:
====================
C:\Users\standard\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Apps Hat Mini-chromeinstaller.job => C:\Program Files (x86)\Apps Hat Mini\Apps Hat Mini-chromeinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Apps Hat Mini-codedownloader.job => C:\Program Files (x86)\Apps Hat Mini\Apps Hat Mini-codedownloader.exe <==== ATTENTION
Task: C:\Windows\Tasks\Apps Hat Mini-enabler.job => C:\Program Files (x86)\Apps Hat Mini\Apps Hat Mini-enabler.exe <==== ATTENTION
Task: C:\Windows\Tasks\Apps Hat Mini-firefoxinstaller.job => C:\Program Files (x86)\Apps Hat Mini\Apps Hat Mini-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Apps Hat Mini-updater.job => C:\Program Files (x86)\Apps Hat Mini\Apps Hat Mini-updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3978708776-1634146858-1730522941-1001Core.job => C:\Users\standard\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3978708776-1634146858-1730522941-1001UA.job => C:\Users\standard\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 71298db2-d587-455b-b1a8-abe3543afebf.job => C:\PROGRAM FILES\SUPERANTISPYWARE\SASTask.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\standard\Desktop" je 14390 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119534
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu logu

#2 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM-x32\...\Run: [] - [X]
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\MountPoints2: {2c852472-7904-11e3-b79e-4c80931ff044} - E:\DT4000_Launcher.exe
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\MountPoints2: {2c852499-7904-11e3-b79e-4c80931ff044} - E:\DT4000_Launcher.exe
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\MountPoints2: {7c27068f-8d71-11e3-981f-4c80931ff044} - E:\DT4000_Launcher.exe
HKU\S-1-5-21-3978708776-1634146858-1730522941-1001\...\MountPoints2: {8077720a-8728-11e3-bf43-4c80931ff044} - E:\DT4000_Launcher.exe
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... p=aus&qkw=%s&tbid=60747
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60747
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60747
URLSearchHook: HKCU - &Crawler Toolbar Helper - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files (x86)\Crawler\Toolbar\ctbr.dll (Crawler.com)
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {AB56F085-1A76-4130-A982-0B2B621A089B} URL =
SearchScopes: HKCU - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = http://www.crawler.com/search/dispatche ... tp=bs&qkw={searchTerms}&tbid=60747
SearchScopes: HKCU - {AB56F085-1A76-4130-A982-0B2B621A089B} URL =
BHO: Apps Hat Mini - {11111111-1111-1111-1111-110511031101} - C:\Program Files (x86)\Apps Hat Mini\Apps Hat Mini-bho64.dll (Nero)
BHO-x32: &Crawler Toolbar Helper - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files (x86)\Crawler\Toolbar\ctbr.dll (Crawler.com)
Toolbar: HKLM-x32 - &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files (x86)\Crawler\Toolbar\ctbr.dll (Crawler.com)
Toolbar: HKCU - No Name - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - No File
Handler-x32: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\Program Files (x86)\Crawler\Toolbar\ctbr.dll (Crawler.com)
CHR DefaultSearchKeyword: ask search
CHR DefaultSearchProvider: Ask Search
CHR DefaultSearchURL: http://avira.search.ask.com/web?tpid=AV ... =&crxv=&q={searchTerms}
CHR DefaultNewTabURL:
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3978708776-1634146858-1730522941-1001UA
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3978708776-1634146858-1730522941-1001Core
C:\Users\standard\AppData\Local\Temp
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3978708776-1634146858-1730522941-1001Core.job => C:\Users\standard\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3978708776-1634146858-1730522941-1001UA.job => C:\Users\standard\AppData\Local\Google\Update\GoogleUpdate.exe
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“