VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Vyskakuji reklamy v novem oknu!

https://forum.viry.cz:443/viewtopic.php?t=136943

Stránka 1 z 2

Vyskakuji reklamy v novem oknu!

Napsal: 19 bře 2014 11:31
od bemmet
Zdravim momentalne pozuruji jak mam pomali internet proste na muj vykon PC 4G ram,4 jadro 2.1MHZ 1G grafika NVDIA atd no proste ten internet musi slapat,ale posledni dny pozoruji jak je pomali sekavi,jeste k tomu me tam vyskakuji reklama v novem oknu naskoci jich tam klidne 10! jsem clovek takovi kdyz neco instaluje snazise nainstalovat toho nejmin zadne listicky ci zalozky atd mam rad poradek ve svem PC ale tento vir se tam nejak dostal a nevim jak mu mam ukazat cestu ven projizdel jsem antivirakem,SPYBOT,cclear, uninstal a instal ale stale tam je prosim oradu jak zrychlit muj internet a zbavit se toho viru?viz INFO odkaz

http://leteckaposta.cz/653243495 zde

Re: Vyskakuji reklamy v novem oknu!

Napsal: 19 bře 2014 12:06
od vyosek
Zdravim :)

:arrow: A budeme vesit z kristalove koule nebo logru od kafe :?:

:arrow: Aspon log z RSIT http://forum.viry.cz/viewtopic.php?f=24&t=130784 nebo FRST http://forum.viry.cz/viewtopic.php?f=24&t=132509 mi dejte

Re: Vyskakuji reklamy v novem oknu!

Napsal: 19 bře 2014 12:11
od bemmet
Asi z Logru od kafe to ja umim :-)

ne omlouvam se myslel jsem ze mi reknete stahni si toto a bude po problemech

zde nahazuji LOG

http://leteckaposta.cz/627110715

Re: Vyskakuji reklamy v novem oknu!

Napsal: 19 bře 2014 12:16
od vyosek
:arrow: Logy prosim vkladejte primo do prispevku a nedavejte nekam na uloziste

:arrow: Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
  • Ulozte nejlepe na plochu
  • Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
  • Probehne vytvoreni zalohy a nasledne prohledavani
  • Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte
:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Re: Vyskakuji reklamy v novem oknu!

Napsal: 19 bře 2014 21:55
od bemmet
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Windows 7 Home Premium x64
Ran by bemmet on st 19.03.2014 at 21:44:31,80
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1865587544-2978951056-3960626150-1001\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installcore
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\crossrider
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\dt soft\daemon tools toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dttoolbar.toolbandobj
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dttoolbar.toolbandobj.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\daemon tools toolbar
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0051108.BHO
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0051108.BHO.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0051108.Sandbox
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CrossriderApp0051108.Sandbox.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{11111111-1111-1111-1111-110511111108}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220522112208}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550555115508}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660566116608}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440544114408}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{11111111-1111-1111-1111-110511111108}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{22222222-2222-2222-2222-220522112208}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{55555555-5555-5555-5555-550555115508}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660566116608}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440544114408}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0051108.BHO
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0051108.BHO.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0051108.Sandbox
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CrossriderApp0051108.Sandbox.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550555115508}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660566116608}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440544114408}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110511111108}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{55555555-5555-5555-5555-550555115508}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660566116608}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440544114408}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
Successfully deleted: [Registry Key] "hkey_current_user\software\askpartnernetwork"
Successfully deleted: [Registry Key] "hkey_local_machine\software\askpartnernetwork"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\clsid\{44cbc005-6243-4502-8a02-3a096a282664}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\clsid\{80703783-e415-4ee3-ab60-d36981c5a6f1}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\clsid\{d8278076-bc68-4484-9233-6e7f1628b56c}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\clsid\{f297534d-7b06-459d-bc19-2dd8ef69297b}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\typelib\{9945959c-aad8-4312-8b57-2de11927e770}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\internet explorer\low rights\elevationpolicy\{6978f29a-3493-40b2-8cdc-9c13a02f85a4}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\internet explorer\low rights\elevationpolicy\{d7949a66-d936-4028-9552-14f7dc50f38d}"



~~~ Files

Successfully deleted: [File] C:\Windows\Tasks\Plus-HD-8.1-codedownloader.job
Successfully deleted: [File] C:\Windows\Tasks\Plus-HD-8.1-enabler.job
Successfully deleted: [File] C:\Windows\Tasks\Plus-HD-8.1-firefoxinstaller.job



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\Users\bemmet\AppData\Roaming\opencandy"
Successfully deleted: [Folder] "C:\Program Files (x86)\daemon tools toolbar"
Failed to delete: [Folder] "C:\Program Files (x86)\driver-soft"
Successfully deleted: [Folder] "C:\Program Files (x86)\mypc backup"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Folder] "C:\ProgramData\AskPartnerNetwork"
Successfully deleted: [Folder] "C:\Program Files (x86)\askpartnernetwork"



~~~ FireFox

Successfully deleted the following from C:\Users\bemmet\AppData\Roaming\mozilla\firefox\profiles\a8im2a74.default\prefs.js

user_pref("CT3289075.UserID", "UN79758114113349522");
user_pref("CT3289075.fullUserID", "UN79758114113349522.IN.20131117131028");
user_pref("CT3289075.installerVersion", "1.7.0.9");
user_pref("CT3289075.versionFromInstaller", "10.20.0.13");
user_pref("CT3289075.xpeMode", "0");
user_pref("extensions.crossrider.bic", "1443ac3624686781945de25c1129b70f");
user_pref("smartbar.machineId", "GKGDJNDEJEOI091ZNDZY4YTQCVZQCL/J0Z1Y8+RWDMBBP7W1YORCZRYLHTXLYNXTTCSDQDRM0DQR4VLY0VDRTQ");
Emptied folder: C:\Users\bemmet\AppData\Roaming\mozilla\firefox\profiles\a8im2a74.default\minidumps [22 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 19.03.2014 at 21:51:34,36
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: Vyskakuji reklamy v novem oknu!

Napsal: 19 bře 2014 22:00
od bemmet
# AdwCleaner v3.022 - Report created 19/03/2014 at 22:03:32
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : bemmet - BEMMET-PC
# Running from : C:\Users\bemmet\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : APNMCP

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\driver-soft
Folder Deleted : C:\Program Files (x86)\Plus-HD-8.1
Folder Deleted : C:\Users\bemmet\AppData\Local\Temp\apn
Folder Deleted : C:\Users\bemmet\AppData\Roaming\Tlapia
Folder Deleted : C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default\CT3289075
Folder Deleted : C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default\Extensions\DTToolbar@toolbarnet.com
Folder Deleted : C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default\Extensions\8ef36653-7dcd-4c5f-81f5-7870fda4b7b7@67e486b0-922d-4a2d-9e3f-77394107f67c.com
Folder Deleted : C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5}

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4736d593-3374-4867-9707-30eb39a57ead}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f61b834c-85c4-45e9-8a64-66c97e7621d4}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4736d593-3374-4867-9707-30eb39a57ead}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f61b834c-85c4-45e9-8a64-66c97e7621d4}
Key Deleted : HKCU\Software\UpdateStar
Key Deleted : HKCU\Software\AppDataLow\Software\Plus-HD-8.1
Key Deleted : HKLM\Software\Plus-HD-8.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-8.1
Key Deleted : [x64] HKLM\SOFTWARE\AskPartnerNetwork

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16521


-\\ Mozilla Firefox v27.0.1 (cs)

[ File : C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default\prefs.js ]

Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.InstallationThankYouPage", true);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.InstallationTime", 1392555251);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108_dbWasSet", true);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108_dbWasSet_FF25_FIX", true[...]
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.active", true);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.addressbar", "NA");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.addressbarenhanced", "");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.asyncdb.was_copied", "true");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.asyncdb_dbWasSet", true);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.asyncdb_dbWasSet_FF25_FIX", true);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.asyncinternaldb.was_copied", "true");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.asyncinternaldb_dbWasSet", true);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.asyncinternaldb_dbWasSet_FF25_FIX", true);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.backgroundver", 1);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.certdomaininstaller", "");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.changeprevious", false);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.cookie.InstallationTime.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.cookie.InstallationTime.value", "%221392555251%22");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.cookie.InstallerParams.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.cookie.InstallerParams.value", "%7B%22source_id%22%3A%22001071%22%2C%22sub_id%22%3A%220%22%2C%22uz[...]
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.cookie.android_calculator_check.expiration", "Wed Mar 04 2015 19:43:23 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.cookie.android_calculator_check.value", "true");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.cookie.jw_token.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.cookie.jw_token.value", "%22943e3dd0-f7af-1fbe-70f4-e8a3a62c1bc6%22");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.description", "Turn YouTube videos to High Definition by default");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.domain", "");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.enablesearch", false);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.homepage", "");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.iframe", false);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.InstallerIdentifiers.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.InstallerIdentifiers.value", "%7B%22installer_bic%22%3A%2211B6EC7311C34C5987F847557BF1A[...]
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.InstallerParams.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.InstallerParams.value", "%7B%22source_id%22%3A%22001071%22%2C%22sub_id%22%3A%220%22%2C%[...]
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.InstallerParamsCache.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.InstallerParamsCache.value", "%7B%22source_id%22%3A%22001071%22%2C%22sub_id%22%3A%220%2[...]
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.InstallerUserIdentifiersCache.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.InstallerUserIdentifiersCache.value", "%7B%22installer_bic%22%3A%2211B6EC7311C34C5987F8[...]
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.Resources_appVer.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.Resources_appVer.value", "43");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.Resources_lastVersion.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.Resources_lastVersion.value", "1");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.Resources_meta.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.Resources_meta.value", "%7B%7D");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.Resources_nextCheck.expiration", "Thu Mar 20 2014 01:56:04 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.Resources_nextCheck.value", "true");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.Resources_queue.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.Resources_queue.value", "%7B%7D");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.Resources_remote_resources.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.Resources_remote_resources.value", "%7B%22remoteId%22%3A0%7D");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.__defualt_browser__.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.__defualt_browser__.value", "%22ff%22");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.installer.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.installer.value", "%7B%22InstallerIdentifiers%22%3A%7B%22installer_bic%22%3A%2211B6EC73[...]
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.monetization_plugin_bundledUrls.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.monetization_plugin_bundledWithHash.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.monetization_plugin_bundledWithHash.value", "null");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.monetization_plugin_last_executable_request.expiration", "Thu Mar 20 2014 00:13:32 GMT+[...]
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.monetization_plugin_last_executable_request.value", "%22hxxp%3A//images.malwareremoval.[...]
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.monetization_plugin_notBundledArr_.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.internaldb.monetization_plugin_notBundledArr_.value", "%5B%5D");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.lastDailyReport", "1395255360810");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.lastUpdate", "1395255360828");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.manifesturl", "");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.name", "Plus-HD-8.1");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.newtab", "");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.opensearch", "");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.pluginsurl", "hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/apps/51108/plugins/094/ff/plugins.json");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.pluginsversion", 40);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.publisher", "Plus HD");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.searchstatus", 0);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.setnewtab", false);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.thankyou", "");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.updateinterval", 360);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.51108.ver", 43);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.FilesValidatorDueTime", "1395255417894");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.apps", "51108");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.bic", "1443ac3624686781945de25c1129b70f");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.cid", 51108);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.firstrun", false);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.hadappinstalled", true);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.installationdate", 1392555287);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.modetype", "production");
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.reportInstall", true);
Line Deleted : user_pref("extensions.a8ef366537dcd4c5f81f57870fda4b7b767e486b0922d4a2d9e3f77394107f67ccom51108.statsDailyCounter", 84);

-\\ Google Chrome v

[ File : C:\Users\bemmet\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : icon_url

*************************

AdwCleaner[R0].txt - [18821 octets] - [19/03/2014 22:02:37]
AdwCleaner[S0].txt - [17859 octets] - [19/03/2014 22:03:32]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [17920 octets] ##########

Re: Vyskakuji reklamy v novem oknu!

Napsal: 19 bře 2014 22:00
od bemmet
'Drive nestiham sry.............

Re: Vyskakuji reklamy v novem oknu!

Napsal: 20 bře 2014 08:12
od vyosek
:arrow: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do okna vlozte skript nize

  • Kód: Vybrat vše

    autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;
  • Nasledne kliknete na Run Script
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Re: Vyskakuji reklamy v novem oknu!

Napsal: 20 bře 2014 08:49
od bemmet
Zoek.exe v5.0.0.0 Updated 07-March-2014
Tool run by bemmet on źt 20.03.2014 at 8:41:42,35.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\bemmet\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

20.3.2014 8:42:50 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1865587544-2978951056-3960626150-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully
HKEY_USERS\S-1-5-21-1865587544-2978951056-3960626150-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{5054562D-5247-006A-76A7-7A786E7484D7} deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.seznam.cz");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.useDBForOrder", "false");

Added to C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default

user.js not found
---- Lines ask.com modified from prefs.js ----

user_pref("extensions.installCache", "[{\"name\":\"app-global\",\"addons\":{\"{972ce4c6-7e08-4474-a285-3208198ce6fd}\":{\"descriptor\":\"C:\\\\Program
---- FireFox user.js and prefs.js backups ----

prefs_20.03.2014_0849_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Mozilla Firefox\defaults\preferences\pref.js deleted
C:\PROGRA~3\Package Cache deleted
C:\Windows\wininit.ini deleted
"C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default\extensions\toolbar_PTV-RG@apn.ask.com.xpi" deleted

==== Firefox Extensions ======================

ProfilePath: C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default
- Seznam litika - %ProfilePath%\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
- Google Translator for Firefox - %ProfilePath%\extensions\translator@zoli.bod.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default
95812430959AE88CDD0301AB3A71913B - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll - Shockwave Flash


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
aaaahnibljmklpljnbpgfobmfpfhplch - C:\ProgramData\AskPartnerNetwork\Toolbar\PTV-RG\CRX\ToolbarCR.crx[]

avast Online Security - bemmet\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... {startPage}"
{DD6E9A76-9082-4E03-BE19-52BF9DA577FB} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_12902"

==== Reset Google Chrome ======================

C:\Users\bemmet\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Users\bemmet\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyServer"="http=127.0.0.1:8877"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer]
"ProxyEnable"=dword:00000001

Value(s) after fix:
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer]
"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\aaaahnibljmklpljnbpgfobmfpfhplch deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\bemmet\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\bemmet\AppData\Local\Mozilla\Firefox\Profiles\a8im2a74.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\bemmet\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=11 folders=8 7928923 bytes)

==== Empty Temp Folders ======================

C:\Users\bemmet\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\bemmet\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on źt 20.03.2014 at 8:53:30,86 ======================

Re: Vyskakuji reklamy v novem oknu!

Napsal: 20 bře 2014 08:50
od bemmet
Muzu rict ze neco uz zmizelo takove ty zelena slova stou reklamou,popravde ten iternet jede lepe.

Re: Vyskakuji reklamy v novem oknu!

Napsal: 20 bře 2014 09:09
od vyosek
Jeste poprosim o FRST http://forum.viry.cz/viewtopic.php?f=24&t=132509

Re: Vyskakuji reklamy v novem oknu!

Napsal: 20 bře 2014 20:43
od bemmet
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by bemmet (administrator) on BEMMET-PC on 20-03-2014 20:47:51
Running from C:\Users\bemmet\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
() C:\Program Files (x86)\ASUS\AI Suite\EnergySaving\PwSave.exe
() C:\Program Files (x86)\ASUS\AI Direct Link\AsCmd.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\Program Files (x86)\ASUS\AASP\1.00.95\aaCenter.exe
(ASUS) C:\Program Files (x86)\ASUS\AI Direct Link\AsShare.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe
(PS Media s.r.o.) C:\Windows\SysWOW64\ssins.exe
(Tlapia) C:\Program Files (x86)\sysTPL\sysTPLMonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Valve Corporation) C:\Program Files (x86)\Valve\Steam\Steam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(BitTorrent Inc.) C:\Users\bemmet\AppData\Roaming\uTorrent\uTorrent.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
() C:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.exe
() C:\Program Files (x86)\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe
(Tlapia) C:\Program Files (x86)\sysTPL\sysTPLService.exe
(PandoraTV) C:\Program Files (x86)\PANDORA.TV\PanService\KMPProcess.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(forum.viry.cz) C:\Users\bemmet\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [CDAServer] - C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [456704 2012-02-20] ()
HKLM\...\Run: [Windows Mobile-based device management] - C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [SoundMAX] - C:\Program Files (x86)\Analog Devices\SoundMAX\soundmax.exe [3866624 2009-05-18] (Analog Devices, Inc.)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM-x32\...\Run: [JMB36X IDE Setup] - C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [VNT] - C:\Program Files (x86)\VNT\vntldr.exe [195536 2014-02-08] (APN LLC.)
HKLM-x32\...\Run: [NBAgent] - C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1234216 2010-03-26] (Nero AG)
HKLM-x32\...\Run: [Ai Nap] - C:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.exe [1435136 2009-07-01] ()
HKLM-x32\...\Run: [QFan Help] - C:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe [601088 2009-07-01] ()
HKLM-x32\...\Run: [CPU Power Monitor] - C:\Program Files (x86)\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe [627200 2008-01-09] ()
HKLM-x32\...\Run: [Cpu Level Up help] - C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe [881152 2007-11-30] ()
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SoundMAXPnP] - C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [1310720 2009-06-05] (Analog Devices, Inc.)
HKLM-x32\...\Run: [PowerDVD13Agent] - C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe [517144 2013-10-23] (CyberLink Corp.)
HKLM-x32\...\Run: [AllShareAgent] - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-01] (Samsung Electronics Co., Ltd.)
HKU\.DEFAULT\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-1865587544-2978951056-3960626150-1001\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-06-17] (Hewlett-Packard Company)
HKU\S-1-5-21-1865587544-2978951056-3960626150-1001\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408 2011-01-20] (DT Soft Ltd)
HKU\S-1-5-21-1865587544-2978951056-3960626150-1001\...\Run: [Steam] - C:\Program Files (x86)\Valve\Steam\steam.exe [1821888 2014-02-25] (Valve Corporation)
HKU\S-1-5-21-1865587544-2978951056-3960626150-1001\...\Run: [uTorrent] - C:\Users\bemmet\AppData\Roaming\uTorrent\uTorrent.exe [905296 2014-02-06] (BitTorrent Inc.)
HKU\S-1-5-21-1865587544-2978951056-3960626150-1001\...\MountPoints2: {6cee9d88-a2af-11e3-954a-002354552b83} - H:\PCSuite_setup.exe

==================== Internet (Whitelisted) ====================

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:8877
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.seznam.cz/?clid=12902
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchT ... {startPage}
SearchScopes: HKCU - {DD6E9A76-9082-4E03-BE19-52BF9DA577FB} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_12902
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.254

FireFox:
========
FF ProfilePath: C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default
FF NewTab: hxxp://www.google.com/
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.seznam.cz/
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Seznam lištička - C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2013-11-17]
FF Extension: Google Translator for Firefox - C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default\Extensions\translator@zoli.bod.xpi [2014-01-22]
FF Extension: Adblock Plus - C:\Users\bemmet\AppData\Roaming\Mozilla\Firefox\Profiles\a8im2a74.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-19]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-03-19]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-03-19]

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Google Docs) - C:\Users\bemmet\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-09]
CHR Extension: (Google Drive) - C:\Users\bemmet\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-09]
CHR Extension: (YouTube) - C:\Users\bemmet\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-09]
CHR Extension: (Google Search) - C:\Users\bemmet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-09]
CHR Extension: (avast! Online Security) - C:\Users\bemmet\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-03-12]
CHR Extension: (Google Wallet) - C:\Users\bemmet\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-09]
CHR Extension: (Gmail) - C:\Users\bemmet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-09]

==================== Services (Whitelisted) =================

R2 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2013-10-23] (CyberLink)
R2 CyberLink PowerDVD 13 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [327432 2013-10-23] (CyberLink)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)
R2 ssinstall; C:\Windows\SysWOW64\ssins.exe [2324216 2013-11-17] (PS Media s.r.o.)
R2 sysTPLMonitor.exe; C:\Program Files (x86)\sysTPL\sysTPLMonitor.exe [399640 2014-03-15] (Tlapia)
R2 sysTPLService.exe; C:\Program Files (x86)\sysTPL\sysTPLService.exe [400664 2014-03-15] (Tlapia)

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2014-01-05] (DT Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-05-14] ()
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [130320 2013-10-23] (CyberLink Corp.)
S2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-20 20:47 - 2014-03-20 20:47 - 00015367 _____ () C:\Users\bemmet\Desktop\FRST.txt
2014-03-20 20:46 - 2014-03-20 20:47 - 00000000 ____D () C:\FRST
2014-03-20 20:44 - 2014-03-20 20:45 - 02157056 _____ (Farbar) C:\Users\bemmet\Desktop\FRST64.exe
2014-03-20 20:42 - 2014-03-20 20:42 - 00112640 _____ (forum.viry.cz) C:\Users\bemmet\Desktop\FRSTLauncher.exe
2014-03-20 14:59 - 2014-03-20 15:47 - 838629830 _____ () C:\Users\bemmet\Downloads\Dokonaly-Plan-(2010)-drama,E.Rose,L.Bryant,CZ-dab,DTVMir,86'.avi
2014-03-20 08:52 - 2014-03-20 08:41 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-20 08:42 - 2014-03-20 08:53 - 00009375 _____ () C:\zoek-results.log
2014-03-20 08:41 - 2014-03-20 08:49 - 00000000 ____D () C:\zoek_backup
2014-03-20 08:41 - 2014-03-20 08:41 - 01285120 _____ () C:\Users\bemmet\Downloads\zoek.exe
2014-03-19 22:02 - 2014-03-19 22:04 - 00000000 ____D () C:\AdwCleaner
2014-03-19 21:51 - 2014-03-19 21:51 - 00008001 _____ () C:\Users\bemmet\Desktop\JRT.txt
2014-03-19 21:45 - 2014-03-19 21:45 - 01950720 _____ () C:\Users\bemmet\Downloads\adwcleaner.exe
2014-03-19 21:44 - 2014-03-19 21:44 - 00000000 ____D () C:\Windows\ERUNT
2014-03-19 21:43 - 2014-03-19 21:44 - 01037734 _____ (Thisisu) C:\Users\bemmet\Downloads\JRT.exe
2014-03-19 12:13 - 2014-03-19 12:15 - 00000000 ____D () C:\rsit
2014-03-19 12:13 - 2014-03-19 12:13 - 00000000 ____D () C:\Program Files\trend micro
2014-03-19 11:59 - 2014-03-19 11:59 - 00000000 ____D () C:\Users\bemmet\AppData\Roaming\ESET
2014-03-19 11:59 - 2014-03-19 11:59 - 00000000 ____D () C:\Users\bemmet\AppData\Local\ESET
2014-03-19 11:56 - 2014-03-19 11:56 - 00000000 ____D () C:\ProgramData\ESET
2014-03-19 11:56 - 2014-03-19 11:56 - 00000000 ____D () C:\Program Files\ESET
2014-03-19 11:50 - 2014-03-20 08:53 - 00346582 _____ () C:\Windows\PFRO.log
2014-03-19 11:50 - 2014-03-20 08:53 - 00000672 _____ () C:\Windows\setupact.log
2014-03-19 11:50 - 2014-03-19 11:50 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-19 11:33 - 2014-03-04 12:32 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-03-19 11:28 - 2014-03-04 15:35 - 31474976 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 25255256 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 23716640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 17755424 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 12708128 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-03-19 11:28 - 2014-03-04 15:35 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 03143456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 02958792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 02783008 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 02411976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433523.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 01516488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433523.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 00877856 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 00863064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 00846168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 00832936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-03-19 11:28 - 2014-03-04 15:35 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-03-19 10:21 - 2014-03-19 11:20 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-03-19 10:21 - 2014-03-19 11:12 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-03-19 10:21 - 2014-03-19 10:21 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-03-18 20:00 - 2014-03-18 21:01 - 1473844940 _____ () C:\Users\bemmet\Downloads\Pán prstenů - Společenstvo Prstenu.avi
2014-03-18 10:20 - 2014-03-18 10:20 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-03-18 10:20 - 2014-03-18 10:20 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-15 20:27 - 2014-03-15 20:36 - 00000341 _____ () C:\Users\bemmet\Desktop\Nový textový dokument.txt
2014-03-12 06:07 - 2014-03-01 07:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-12 06:07 - 2014-03-01 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-12 06:07 - 2014-03-01 06:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-12 06:07 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-12 06:07 - 2014-03-01 05:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-12 06:07 - 2014-03-01 05:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-12 06:07 - 2014-03-01 05:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-12 06:07 - 2014-03-01 05:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-12 06:07 - 2014-03-01 05:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-12 06:07 - 2014-03-01 05:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-12 06:07 - 2014-03-01 05:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-12 06:07 - 2014-03-01 05:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-12 06:07 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-12 06:07 - 2014-03-01 05:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-12 06:07 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-12 06:07 - 2014-03-01 05:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-12 06:07 - 2014-03-01 05:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-12 06:07 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-12 06:07 - 2014-03-01 04:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-12 06:07 - 2014-03-01 04:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-12 06:07 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-12 06:07 - 2014-03-01 04:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-12 06:07 - 2014-03-01 04:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-12 06:07 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-12 06:07 - 2014-03-01 04:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-12 06:07 - 2014-03-01 04:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-12 06:07 - 2014-03-01 04:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-12 06:07 - 2014-03-01 04:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-12 06:07 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-12 06:07 - 2014-03-01 04:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-12 06:07 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-12 06:07 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-12 06:07 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-12 06:07 - 2014-03-01 04:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-12 06:07 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-12 06:07 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-12 06:07 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-12 06:07 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-12 06:07 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-12 06:07 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-12 06:07 - 2014-02-07 02:25 - 03159552 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-12 06:07 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-12 06:07 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-12 06:07 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-12 06:06 - 2014-02-04 03:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-12 06:06 - 2014-02-04 03:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-12 06:06 - 2014-02-04 03:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-12 06:06 - 2014-02-04 03:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-02-27 19:31 - 2014-02-27 19:31 - 00000000 ____D () C:\Users\bemmet\AppData\Local\MiTAC_International_Corpo
2014-02-27 19:23 - 2014-02-27 19:23 - 00000892 _____ () C:\Users\Public\Desktop\MioMore Desktop.lnk
2014-02-27 19:23 - 2014-02-27 19:23 - 00000000 ____D () C:\Program Files (x86)\Mio Technology
2014-02-26 08:30 - 2014-01-09 03:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-02-26 08:30 - 2014-01-03 23:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-18 21:59 - 2014-02-18 21:59 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-18 21:54 - 2014-03-04 15:35 - 15783992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-18 21:54 - 2014-02-08 19:34 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-02-18 21:54 - 2014-02-08 19:34 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-02-18 21:54 - 2013-11-28 14:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-02-18 21:54 - 2013-11-28 14:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-02-18 20:31 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-02-18 20:31 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll

==================== One Month Modified Files and Folders =======

2014-03-20 20:47 - 2014-03-20 20:47 - 00015367 _____ () C:\Users\bemmet\Desktop\FRST.txt
2014-03-20 20:47 - 2014-03-20 20:46 - 00000000 ____D () C:\FRST
2014-03-20 20:46 - 2013-11-17 13:09 - 00000000 ____D () C:\Users\bemmet\AppData\Roaming\uTorrent
2014-03-20 20:45 - 2014-03-20 20:44 - 02157056 _____ (Farbar) C:\Users\bemmet\Desktop\FRST64.exe
2014-03-20 20:42 - 2014-03-20 20:42 - 00112640 _____ (forum.viry.cz) C:\Users\bemmet\Desktop\FRSTLauncher.exe
2014-03-20 20:01 - 2013-11-17 13:23 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-20 19:47 - 2011-04-12 09:34 - 00671834 _____ () C:\Windows\system32\perfh005.dat
2014-03-20 19:47 - 2011-04-12 09:34 - 00142430 _____ () C:\Windows\system32\perfc005.dat
2014-03-20 19:47 - 2009-07-14 06:13 - 01591910 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-20 19:45 - 2014-02-14 20:08 - 00271872 ___SH () C:\Users\bemmet\Downloads\Thumbs.db
2014-03-20 17:04 - 2013-11-19 11:44 - 00000099 _____ () C:\Users\Public\LMDebug.log
2014-03-20 15:47 - 2014-03-20 14:59 - 838629830 _____ () C:\Users\bemmet\Downloads\Dokonaly-Plan-(2010)-drama,E.Rose,L.Bryant,CZ-dab,DTVMir,86'.avi
2014-03-20 10:03 - 2013-11-17 10:53 - 01983462 _____ () C:\Windows\WindowsUpdate.log
2014-03-20 09:01 - 2009-07-14 05:45 - 00024096 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-20 09:01 - 2009-07-14 05:45 - 00024096 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-20 08:53 - 2014-03-20 08:42 - 00009375 _____ () C:\zoek-results.log
2014-03-20 08:53 - 2014-03-19 11:50 - 00346582 _____ () C:\Windows\PFRO.log
2014-03-20 08:53 - 2014-03-19 11:50 - 00000672 _____ () C:\Windows\setupact.log
2014-03-20 08:53 - 2013-11-17 13:06 - 00000000 _____ () C:\Windows\SysWOW64\sinstall.log
2014-03-20 08:53 - 2013-11-17 12:52 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-20 08:53 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-20 08:49 - 2014-03-20 08:41 - 00000000 ____D () C:\zoek_backup
2014-03-20 08:41 - 2014-03-20 08:52 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-20 08:41 - 2014-03-20 08:41 - 01285120 _____ () C:\Users\bemmet\Downloads\zoek.exe
2014-03-19 22:04 - 2014-03-19 22:02 - 00000000 ____D () C:\AdwCleaner
2014-03-19 21:51 - 2014-03-19 21:51 - 00008001 _____ () C:\Users\bemmet\Desktop\JRT.txt
2014-03-19 21:45 - 2014-03-19 21:45 - 01950720 _____ () C:\Users\bemmet\Downloads\adwcleaner.exe
2014-03-19 21:44 - 2014-03-19 21:44 - 00000000 ____D () C:\Windows\ERUNT
2014-03-19 21:44 - 2014-03-19 21:43 - 01037734 _____ (Thisisu) C:\Users\bemmet\Downloads\JRT.exe
2014-03-19 12:15 - 2014-03-19 12:13 - 00000000 ____D () C:\rsit
2014-03-19 12:13 - 2014-03-19 12:13 - 00000000 ____D () C:\Program Files\trend micro
2014-03-19 12:01 - 2014-02-17 20:29 - 00092160 ___SH () C:\Users\bemmet\Desktop\Thumbs.db
2014-03-19 11:59 - 2014-03-19 11:59 - 00000000 ____D () C:\Users\bemmet\AppData\Roaming\ESET
2014-03-19 11:59 - 2014-03-19 11:59 - 00000000 ____D () C:\Users\bemmet\AppData\Local\ESET
2014-03-19 11:56 - 2014-03-19 11:56 - 00000000 ____D () C:\ProgramData\ESET
2014-03-19 11:56 - 2014-03-19 11:56 - 00000000 ____D () C:\Program Files\ESET
2014-03-19 11:50 - 2014-03-19 11:50 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-19 11:50 - 2013-11-17 11:56 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-03-19 11:49 - 2013-11-17 13:08 - 00000000 ____D () C:\Users\bemmet\AppData\Roaming\Seznam.cz
2014-03-19 11:48 - 2013-11-17 11:57 - 00000000 ____D () C:\Program Files (x86)\Google
2014-03-19 11:33 - 2013-11-17 12:52 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-03-19 11:30 - 2013-11-25 18:41 - 00000000 ____D () C:\Windows\System32\Tasks\ASUS
2014-03-19 11:30 - 2013-11-25 18:41 - 00000000 ____D () C:\Program Files (x86)\ASUS
2014-03-19 11:30 - 2013-11-17 12:23 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-19 11:20 - 2014-03-19 10:21 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-03-19 11:18 - 2014-02-14 15:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-19 11:12 - 2014-03-19 10:21 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-03-19 10:33 - 2013-11-17 13:02 - 00000000 ____D () C:\Users\bemmet\Desktop\katka mp3 vypalit
2014-03-19 10:21 - 2014-03-19 10:21 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-03-19 10:20 - 2013-11-17 13:15 - 00000000 ____D () C:\Program Files (x86)\The KMPlayer
2014-03-18 21:01 - 2014-03-18 20:00 - 1473844940 _____ () C:\Users\bemmet\Downloads\Pán prstenů - Společenstvo Prstenu.avi
2014-03-18 10:20 - 2014-03-18 10:20 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-03-18 10:20 - 2014-03-18 10:20 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-15 20:36 - 2014-03-15 20:27 - 00000341 _____ () C:\Users\bemmet\Desktop\Nový textový dokument.txt
2014-03-15 18:50 - 2013-11-17 14:31 - 00000000 ____D () C:\Program Files (x86)\WarThunder
2014-03-15 13:01 - 2014-01-21 11:05 - 00000000 ____D () C:\Users\bemmet\Desktop\scan,SAMSUNG
2014-03-15 00:30 - 2013-11-24 12:32 - 00000000 ____D () C:\Program Files (x86)\sysTPL
2014-03-15 00:25 - 2009-07-14 05:45 - 00415592 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-15 00:24 - 2013-12-26 16:41 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-15 00:24 - 2013-12-26 16:41 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-14 16:50 - 2013-11-19 09:14 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-14 16:47 - 2013-11-19 09:13 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-14 16:46 - 2013-12-01 19:45 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-12 15:01 - 2013-11-17 13:23 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-12 15:01 - 2013-11-17 13:23 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-12 15:01 - 2013-11-17 13:23 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-09 17:20 - 2013-11-17 11:57 - 00000000 ____D () C:\Users\bemmet\AppData\Local\Google
2014-03-04 15:35 - 2014-03-19 11:28 - 31474976 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 25255256 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 23716640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 17755424 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 12708128 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-03-04 15:35 - 2014-03-19 11:28 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 03143456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 02958792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 02783008 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 02411976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433523.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 01516488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433523.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 00877856 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 00863064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 00846168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 00832936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-03-04 15:35 - 2014-03-19 11:28 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-03-04 15:35 - 2014-02-18 21:54 - 15783992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-03-04 15:35 - 2014-01-03 15:56 - 14709720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-03-04 15:35 - 2013-11-17 13:02 - 00062408 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-03-04 15:35 - 2013-11-17 13:02 - 00054216 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-03-04 15:35 - 2013-11-17 13:01 - 18302384 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-03-04 15:35 - 2013-11-17 13:01 - 03093280 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-03-04 15:35 - 2013-11-17 13:01 - 02715264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-03-04 15:35 - 2013-11-17 13:01 - 00947808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-03-04 15:35 - 2013-11-17 13:01 - 00024544 _____ () C:\Windows\system32\nvinfo.pb
2014-03-04 14:06 - 2013-11-17 13:03 - 06714312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-03-04 14:06 - 2013-11-17 13:03 - 03497816 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-03-04 14:05 - 2013-11-17 13:03 - 03649185 _____ () C:\Windows\system32\nvcoproc.bin
2014-03-04 14:05 - 2013-11-17 13:03 - 02558808 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-03-04 14:05 - 2013-11-17 13:03 - 00922968 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-03-04 14:05 - 2013-11-17 13:03 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-03-04 14:05 - 2013-11-17 13:03 - 00064968 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-03-04 12:32 - 2014-03-19 11:33 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-03-03 12:07 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-03-01 07:05 - 2014-03-12 06:07 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-01 06:17 - 2014-03-12 06:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-01 06:16 - 2014-03-12 06:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-01 05:58 - 2014-03-12 06:07 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-01 05:52 - 2014-03-12 06:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-01 05:51 - 2014-03-12 06:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-01 05:42 - 2014-03-12 06:07 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-01 05:40 - 2014-03-12 06:07 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-01 05:37 - 2014-03-12 06:07 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-01 05:33 - 2014-03-12 06:07 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-01 05:33 - 2014-03-12 06:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-01 05:32 - 2014-03-12 06:07 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-01 05:30 - 2014-03-12 06:07 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-01 05:23 - 2014-03-12 06:07 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-01 05:17 - 2014-03-12 06:07 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-01 05:11 - 2014-03-12 06:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-01 05:02 - 2014-03-12 06:07 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-01 04:54 - 2014-03-12 06:07 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-01 04:52 - 2014-03-12 06:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-01 04:51 - 2014-03-12 06:07 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-01 04:47 - 2014-03-12 06:07 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-01 04:43 - 2014-03-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-01 04:43 - 2014-03-12 06:07 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-01 04:42 - 2014-03-12 06:07 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-01 04:40 - 2014-03-12 06:07 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-01 04:38 - 2014-03-12 06:07 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-01 04:37 - 2014-03-12 06:07 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-01 04:35 - 2014-03-12 06:07 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-01 04:18 - 2014-03-12 06:07 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-01 04:16 - 2014-03-12 06:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-01 04:14 - 2014-03-12 06:07 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-01 04:10 - 2014-03-12 06:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-01 04:03 - 2014-03-12 06:07 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-01 04:00 - 2014-03-12 06:07 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-01 03:57 - 2014-03-12 06:07 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-01 03:38 - 2014-03-12 06:07 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-01 03:32 - 2014-03-12 06:07 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-01 03:27 - 2014-03-12 06:07 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-01 03:25 - 2014-03-12 06:07 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-01 03:25 - 2014-03-12 06:07 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-27 19:31 - 2014-02-27 19:31 - 00000000 ____D () C:\Users\bemmet\AppData\Local\MiTAC_International_Corpo
2014-02-27 19:23 - 2014-02-27 19:23 - 00000892 _____ () C:\Users\Public\Desktop\MioMore Desktop.lnk
2014-02-27 19:23 - 2014-02-27 19:23 - 00000000 ____D () C:\Program Files (x86)\Mio Technology
2014-02-25 22:14 - 2013-11-17 11:04 - 01608938 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-18 21:59 - 2014-02-18 21:59 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-18 21:27 - 2014-01-05 18:16 - 00000000 ____D () C:\ProgramData\CyberLink

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-20 00:23




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:596.07 GB) (Free:477.7 GB) NTFS
Drive d: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (Zoh4n) (Fixed) (Total:1863.01 GB) (Free:480.77 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Available physical RAM: 5910.12 MB
Total physical RAM: 8191.12 MB
Percentage of memory in use: 27%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: C368FD2A)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: 57D4F340)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=596 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\bemmet\Desktop" je 6378 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Re: Vyskakuji reklamy v novem oknu!

Napsal: 20 bře 2014 20:46
od bemmet
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by bemmet at 2014-03-20 20:48:17
Running from C:\Users\bemmet\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personální firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

µTorrent (HKCU\...\uTorrent) (Version: 3.3.2.30488 - BitTorrent Inc.)
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AI Direct Link (HKLM-x32\...\{C312984C-E386-4C2D-B33E-7B54355FB16E}) (Version: 1.00.24 - )
AI Suite (HKLM-x32\...\{310BC5E2-31AF-49BB-904D-E71EB93645DC}) (Version: 1.05.33 - )
AIDA64 Extreme Edition v3.20 (HKLM-x32\...\AIDA64 Extreme Edition_is1) (Version: 3.20 - FinalWire Ltd.)
Aktualizace NVIDIA 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Ask Toolbar (HKLM-x32\...\{5054562D-5247-006A-76A7-A758B70C0A02}) (Version: 12.10.2.4043 - APN, LLC) <==== ATTENTION
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.0.0.0 - Electronic Arts)
CCleaner (HKLM\...\CCleaner) (Version: 3.05 - Piriform)
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve)
Counter-Strike(TM) (HKLM-x32\...\{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}) (Version: 1.0.0.0 - Valve)
CyberLink PowerDVD 13 (HKLM-x32\...\InstallShield_{3CFDF154-7E60-4E98-A8DF-C693A4F8E6B6}) (Version: 13.0.3313.58 - CyberLink Corp.)
CyberLink PowerDVD 13 (x32 Version: 13.0.3313.58 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd)
ESET Smart Security (HKLM\...\{B1920A83-25A3-4DBB-B1F5-2395BD05370E}) (Version: 7.0.302.26 - ESET, spol s r. o.)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
High-Definition Video Playback 10 (x32 Version: 7.0.11400.29.0 - Nero AG) Hidden
Host OpenAL (ADI) (HKLM-x32\...\Host OpenAL (ADI)) (Version: - )
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - JMICRON Technology Corp.)
KMP Service (HKLM-x32\...\4F6D5E84-5826-4394-9F40-3A9A19165651_is1) (Version: - KMP)
LightScribe System Software (HKLM-x32\...\{82EF29B1-9B60-4142-A155-0599216DD053}) (Version: 1.18.6.1 - LightScribe)
Marvell Miniport Driver (HKLM-x32\...\Marvell Miniport Driver) (Version: 11.10.5.3 - Marvell)
Microsoft .NET Framework 4.5.1 (CSY) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (x32 Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
MioMore Desktop (HKLM-x32\...\{7617FC2E-EA1B-4F07-A0F5-5D5F437CB32D}) (Version: 5.00.0000 - Navman Technologies NZ Ltd)
Mozilla Firefox 27.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 cs)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 10 Menu TemplatePack Basic (x32 Version: 10.0.10600.6.0 - Nero AG) Hidden
Nero 10 Movie ThemePack Basic (x32 Version: 10.0.10600.6.0 - Nero AG) Hidden
Nero BackItUp 10 (HKLM-x32\...\{68AB6930-5BFF-4FF6-923B-516A91984FE6}) (Version: 5.4.11600.19.100 - Nero AG)
Nero BackItUp 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero Burning ROM 10 (HKLM-x32\...\{7A5D731D-B4B3-490E-B339-75685712BAAB}) (Version: 10.0.11100.10.100 - Nero AG)
Nero BurningROM 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero BurnRights 10 (HKLM-x32\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.0.11000.12.100 - Nero AG)
Nero BurnRights 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero Control Center 10 (x32 Version: 10.0.12000.1.4 - Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero Core Components 10 (x32 Version: 2.0.13700.0.1 - Nero AG) Hidden
Nero CoverDesigner 10 (HKLM-x32\...\{FCF00A6E-FB58-477A-ABE9-232907105521}) (Version: 5.0.10900.11.100 - Nero AG)
Nero CoverDesigner 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.0.10800.7.100 - Nero AG)
Nero DiscSpeed 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero Dolby Files 10 (x32 Version: 2.0.11000.0.10 - Nero AG) Hidden
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.0.11000.10.100 - Nero AG)
Nero Express 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero InfoTool 10 (HKLM-x32\...\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}) (Version: 7.0.10800.8.100 - Nero AG)
Nero InfoTool 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero MediaHub 10 (HKLM-x32\...\{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}) (Version: 1.0.13400.11.100 - Nero AG)
Nero MediaHub 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero Multimedia Suite 10 (HKLM-x32\...\{277C1559-4CF7-44FF-8D07-98AA9C13AABD}) (Version: 10.0.13100 - Nero AG)
Nero Recode 10 (HKLM-x32\...\{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}) (Version: 4.6.10900.4.100 - Nero AG)
Nero Recode 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero RescueAgent 10 (HKLM-x32\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.0.10900.9.100 - Nero AG)
Nero RescueAgent 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero SoundTrax 10 (HKLM-x32\...\{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}) (Version: 4.6.10600.2.100 - Nero AG)
Nero SoundTrax 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.0.11200.12.100 - Nero AG)
Nero StartSmart 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0017 - Nero AG)
Nero Vision 10 (HKLM-x32\...\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}) (Version: 7.0.11100.8.100 - Nero AG)
Nero Vision 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
Nero WaveEditor 10 (HKLM-x32\...\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}) (Version: 5.6.10600.2.100 - Nero AG)
Nero WaveEditor 10 Help (CHM) (x32 Version: 1.0.10600 - Nero AG) Hidden
NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač 3D Vision 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 335.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 335.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3523 - NVIDIA Corporation) Hidden
NVIDIA Systémový software PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation)
Ovládací panel NVIDIA 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
PC Probe II (HKLM-x32\...\{F7338FA3-DAB5-49B2-900D-0AFB5760C166}) (Version: 1.04.76 - ASUSTek)
Samsung AllShare (HKLM-x32\...\InstallShield_{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.)
Samsung AllShare (x32 Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.) Hidden
Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 1.04.06 (7.8.2012) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.02.74.00(6.11.2012) - Samsung Electronics Co., Ltd.)
Samsung OCR Software (HKLM-x32\...\Samsung OCR Software) (Version: 1.00.05 (10.7.2012) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (x32 Version: 1.00.20.02 - Samsung Electronics Co., Ltd.) Hidden
Samsung SCX-3400 Series (HKLM-x32\...\Samsung SCX-3400 Series) (Version: 1.16 (25.2.2013) - Samsung Electronics Co., Ltd.)
Seznam Instalátor (HKLM-x32\...\ssinstall) (Version: - Seznam.cz)
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd)
SoundMAX (HKLM-x32\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 6.10.2.6585 - Analog Devices)
Steam(TM) (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve)
sysTPL (HKLM-x32\...\{4B74BC31-B353-4B8F-8CBE-DAB4FF326FF1}) (Version: 1.0.0 - Tlapia)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: - TeamSpeak Systems GmbH)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.8.0.120 - PandoraTV)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{A030537D-0034-46AD-A730-B1119786F607}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878234) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{EC1934B0-AE0F-4BBD-8955-54BB3247ED9E}) (Version: - Microsoft)
War Thunder Launcher 1.0.1.278 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - 2013 Gaijin Entertainment Corporation)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
Xilisoft Video Converter Ultimate (HKLM-x32\...\Xilisoft Video Converter Ultimate) (Version: 7.7.3.20131014 - Xilisoft)
YoWindow (HKLM-x32\...\yowindow) (Version: 3 - RepkaSoft)

==================== Restore Points =========================

15-03-2014 23:00:01 Naplánovaný kontrolní bod
19-03-2014 09:26:38 Windows Update
19-03-2014 10:23:21 avast! antivirus system restore point
19-03-2014 10:30:07 Removed ASUSUpdate
19-03-2014 10:44:43 avast! antivirus system restore point
19-03-2014 10:47:17 Removed Google Chrome
19-03-2014 10:54:44 Nainstalováno: ESET Smart Security
20-03-2014 07:42:39 zoek.exe restore point

==================== Hosts content: ==========================

2009-07-14 03:34 - 2014-03-20 08:42 - 00000840 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {2BC717D9-43D6-4860-ACAB-842A7A1B83B8} - System32\Tasks\ASUS\Cpu Level Up Hook Lanunch => C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHookLaunch.exe [2007-10-11] ()
Task: {642E4560-760A-43CE-B2C4-EE92E3962E1B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12] (Adobe Systems Incorporated)
Task: {656DFBF2-7543-4E4F-956E-412A230CF9B1} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-21] (Microsoft Corporation)
Task: {93F1CC23-C621-4455-A87B-601B2503C5B7} - System32\Tasks\ASUS\ASUS RegRun Loader => C:\Program Files (x86)\ASUS\AASP\1.00.95\AsLoader.exe [2008-07-02] ()
Task: {B5795812-A3EA-41A7-B87D-163C34D318F3} - System32\Tasks\ASUS\ASUS Energy Saving => C:\Program Files (x86)\ASUS\AI Suite\EnergySaving\PwSave.exe [2009-01-22] ()
Task: {CE417E22-5682-47D2-9824-ADF89E6E5963} - System32\Tasks\ASUS\Launch AI Direct Link => C:\Program Files (x86)\ASUS\AI Direct Link\AsCmd.exe [2008-06-17] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2013-11-17 13:03 - 2014-03-04 14:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-11-17 13:54 - 2011-05-02 05:40 - 00034304 _____ () C:\Windows\System32\ssm1mlm.dll
2013-11-25 18:42 - 2009-01-22 20:43 - 01352704 _____ () C:\Program Files (x86)\ASUS\AI Suite\EnergySaving\PwSave.exe
2013-11-25 18:41 - 2008-06-17 11:09 - 00376832 _____ () C:\Program Files (x86)\ASUS\AI Direct Link\AsCmd.exe
2013-11-25 18:45 - 2009-04-23 18:43 - 00622080 _____ () C:\Program Files (x86)\ASUS\AASP\1.00.95\aaCenter.exe
2012-02-20 22:23 - 2012-02-20 22:23 - 00456704 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2012-02-20 22:23 - 2012-02-20 22:23 - 00051200 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2013-11-25 18:42 - 2009-07-01 20:23 - 01435136 _____ () C:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.exe
2013-11-25 18:42 - 2008-01-09 10:17 - 00627200 _____ () C:\Program Files (x86)\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe
2013-11-17 13:53 - 2013-06-28 10:12 - 01371648 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\ssm1mdu.dll
2013-11-25 18:45 - 2009-04-13 10:37 - 00188928 _____ () C:\Program Files (x86)\ASUS\AASP\1.00.95\aasp.dll
2013-11-25 18:42 - 2009-01-22 20:43 - 00409088 _____ () C:\Program Files (x86)\ASUS\AI Suite\EnergySaving\AnimationView.dll
2013-11-25 18:45 - 2005-06-22 17:39 - 00204851 _____ () C:\Program Files (x86)\ASUS\AASP\1.00.95\PowerDll.dll
2013-11-25 18:45 - 2008-01-17 16:46 - 00053248 _____ () C:\Program Files (x86)\ASUS\AASP\1.00.95\cpuutil.dll
2013-11-25 18:41 - 2005-10-24 16:02 - 00050688 _____ () C:\Program Files (x86)\ASUS\AI Direct Link\AsMultiLang.dll
2013-11-25 18:41 - 2008-12-08 15:12 - 00094208 _____ () C:\Program Files (x86)\ASUS\AI Direct Link\AsNetlib.dll
2013-12-12 14:19 - 2013-12-12 23:19 - 00142848 _____ () C:\Program Files (x86)\Valve\Steam\libavresample-1.dll
2013-11-04 17:12 - 2013-11-05 02:12 - 00890592 _____ () C:\Program Files (x86)\Valve\Steam\libavutil-52.dll
2014-01-10 15:33 - 2014-02-11 03:34 - 00751616 _____ () C:\Program Files (x86)\Valve\Steam\SDL2.dll
2014-01-27 11:02 - 2014-02-25 22:57 - 01135296 _____ () C:\Program Files (x86)\Valve\Steam\bin\chromehtml.DLL
2014-01-10 15:33 - 2014-01-11 00:33 - 20625832 _____ () C:\Program Files (x86)\Valve\Steam\bin\libcef.dll
2013-06-14 15:49 - 2013-06-15 00:49 - 01100800 _____ () C:\Program Files (x86)\Valve\Steam\bin\avcodec-53.dll
2013-06-14 15:49 - 2013-06-15 00:49 - 00124416 _____ () C:\Program Files (x86)\Valve\Steam\bin\avutil-51.dll
2013-06-14 15:49 - 2013-06-15 00:49 - 00192000 _____ () C:\Program Files (x86)\Valve\Steam\bin\avformat-53.dll
2013-11-25 18:42 - 2008-02-25 15:08 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.dll
2013-11-25 18:42 - 2007-01-03 22:25 - 00008704 _____ () C:\Program Files (x86)\ASUS\AI Suite\AiNap\vvc.dll
2013-11-17 13:20 - 2012-10-22 11:21 - 01277952 _____ () C:\Program Files (x86)\PANDORA.TV\PanService\avformat-53.dll
2013-11-17 13:20 - 2012-07-09 17:57 - 02090496 _____ () C:\Program Files (x86)\PANDORA.TV\PanService\avcodec-53.dll
2013-11-17 13:20 - 2011-12-06 16:19 - 00133632 _____ () C:\Program Files (x86)\PANDORA.TV\PanService\avutil-51.dll
2013-11-17 13:20 - 2012-03-23 10:07 - 00224768 _____ () C:\Program Files (x86)\PANDORA.TV\PanService\libupnp.dll
2014-01-05 18:16 - 2013-10-23 06:46 - 00862472 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\common\UNO\UNO.dll
2014-01-05 18:15 - 2013-05-02 01:06 - 00081920 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\Common\koan\_ctypes.pyd
2014-01-05 18:16 - 2013-05-02 01:06 - 00053248 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\Common\Koan\_socket.pyd
2014-01-05 18:16 - 2013-05-02 01:06 - 00655360 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\Common\Koan\_ssl.pyd
2014-01-05 18:16 - 2013-10-23 06:46 - 00043272 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DHProcedure\DHProcedure.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 01135616 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMSWrap.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00656896 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ContentDirectoryPresenter.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00105472 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00098816 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\FolderCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00077312 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MetadataFramework.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00520234 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\sqlite3.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00450560 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MoodExtractor.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 05717504 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMImgExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00029184 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AutoChaptering.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00147456 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexpat.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoThumb.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 04671488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avcodec-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00070656 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avutil-50.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00686080 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avformat-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00152064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\swscale-0.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00027648 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AudioExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00063488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ID3Driver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00366592 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\tag.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00289792 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libThumbnail.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00023040 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RichInfoDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ThumbnailMaker.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00133120 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoMetadataDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00290304 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libKeyFrame.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\SECMetaDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ImageExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\photoDriver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00399826 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexif-12.dll.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00013824 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\TextExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00031232 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\Autobackup.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00054784 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RosettaAllShare.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00044032 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\us.dll
2014-03-18 10:19 - 2014-02-13 01:36 - 03578992 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller
Description: Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Marvell
Service: yukonw7
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/20/2014 08:54:58 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/20/2014 08:53:47 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (03/20/2014 08:53:47 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (03/20/2014 08:42:21 AM) (Source: .NET Runtime) (User: )
Description: Aplikace: AllShareDMS.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: kód výjimky c0000005, adresa výjimky 00000000

Error: (03/19/2014 10:06:52 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/19/2014 10:05:47 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (03/19/2014 10:05:47 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (03/19/2014 10:04:09 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]


System errors:
=============
Error: (03/20/2014 08:53:23 AM) (Source: Service Control Manager) (User: )
Description: Služba DgiVecp neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (03/20/2014 08:49:52 AM) (Source: Service Control Manager) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/20/2014 08:49:51 AM) (Source: Service Control Manager) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/20/2014 08:49:51 AM) (Source: Service Control Manager) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/20/2014 08:49:50 AM) (Source: Service Control Manager) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/20/2014 08:49:49 AM) (Source: Service Control Manager) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/19/2014 10:05:17 PM) (Source: Service Control Manager) (User: )
Description: Služba DgiVecp neuspěla při spuštění v důsledku následující chyby:
%%2


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2013-11-24 12:53:37.903
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\bemmet\Desktop\NB-DRIVER\DRIVER\USB_2.0\2000_ver.5.0.2195.5652\sisport.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-11-24 12:53:37.847
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\bemmet\Desktop\NB-DRIVER\DRIVER\USB_2.0\2000_ver.5.0.2195.5652\sisport.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Re: Vyskakuji reklamy v novem oknu!

Napsal: 21 bře 2014 19:45
od bemmet
neco spatne?

Re: Vyskakuji reklamy v novem oknu!

Napsal: 22 bře 2014 08:48
od vyosek
:arrow: Omlouvam se, zapadlo mi to

:arrow: Tvorba fixlistu pro FRST
  • Spustte poznamkovy blok (Start-spustit-notepad)
  • Zkopirujte skript nize

  • Kód: Vybrat vše

    Start
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [NBAgent] - C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1234216 2010-03-26] (Nero AG)
HKLM-x32\...\Run: [PowerDVD13Agent] - C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe [517144 2013-10-23] (CyberLink Corp.)
HKLM-x32\...\Run: [AllShareAgent] - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-01] (Samsung Electronics Co., Ltd.)
HKU\.DEFAULT\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-1865587544-2978951056-3960626150-1001\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408 2011-01-20] (DT Soft Ltd)
HKU\S-1-5-21-1865587544-2978951056-3960626150-1001\...\Run: [Steam] - C:\Program Files (x86)\Valve\Steam\steam.exe [1821888 2014-02-25] (Valve Corporation)
HKU\S-1-5-21-1865587544-2978951056-3960626150-1001\...\Run: [uTorrent] - C:\Users\bemmet\AppData\Roaming\uTorrent\uTorrent.exe [905296 2014-02-06] (BitTorrent Inc.)
HKU\S-1-5-21-1865587544-2978951056-3960626150-1001\...\MountPoints2: {6cee9d88-a2af-11e3-954a-002354552b83} - H:\PCSuite_setup.exe

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:8877
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - {DD6E9A76-9082-4E03-BE19-52BF9DA577FB} URL = http://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12902

R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)

C:\Program Files (x86)\PANDORA.TV
2014-03-20 20:42 - 2014-03-20 20:42 - 00112640 _____ (forum.viry.cz) C:\Users\bemmet\Desktop\FRSTLauncher.exe
2014-03-20 08:52 - 2014-03-20 08:41 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-03-20 08:42 - 2014-03-20 08:53 - 00009375 _____ () C:\zoek-results.log
2014-03-20 08:41 - 2014-03-20 08:49 - 00000000 ____D () C:\zoek_backup
2014-03-20 08:41 - 2014-03-20 08:41 - 01285120 _____ () C:\Users\bemmet\Downloads\zoek.exe
2014-03-19 21:51 - 2014-03-19 21:51 - 00008001 _____ () C:\Users\bemmet\Desktop\JRT.txt
2014-03-19 21:45 - 2014-03-19 21:45 - 01950720 _____ () C:\Users\bemmet\Downloads\adwcleaner.exe
2014-03-19 21:43 - 2014-03-19 21:44 - 01037734 _____ (Thisisu) C:\Users\bemmet\Downloads\JRT.exe

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Hosts:
CMD: shutdown /r /f /t 2

End
  • Ulozte vytvoreny TXT jako fixlist.txt
  • Presunte vytvoreny fixlist vedle FRST
:arrow: Spustte znovu FRST.exe
  • Kliknete na Fix
  • Probehne oprava a vytvori log Fixlog.txt
:arrow: Restart PC a dejte mi sem fixlog.txt
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz