Logfile of random's system information tool 1.10 (written by random/random)
Run by Administrator at 2014-07-01 12:42:56
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 17 GB (29%) free of 60 GB
Total RAM: 3071 MB (64% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:43:16, on 1.7.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Administrator\Downloads\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... er=9.0.894
O4 - HKCU\..\Run: [AtomicAlarmClock6] C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Atomic Alarm Clock Time (AtomicAlarmClock) - Unknown owner - C:\Program Files\Atomic Alarm Clock\timeserv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Služba Google Update (gupdate1cb0104af55ba0) (gupdate1cb0104af55ba0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
--
End of file - 7680 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\Funmoods.job - C:\Users\ADMINI~1\AppData\Roaming\Funmoods\UpdateProc\UpdateTask.exe /Check
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.125 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-06-09 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-29 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14 4531320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-06-09 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-06 3890208]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-05-31 12021464]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"=cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... er=9.0.894 []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"AtomicAlarmClock6"=C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe [2013-06-04 3598336]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.l3fhg"=mp3fhg.acm
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-06-25 22:04:19 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-06-25 21:02:04 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-06-24 14:06:06 ----A---- C:\Windows\system32\drivers\GEARAspiWDM.sys
2014-06-24 14:05:22 ----D---- C:\Program Files\iPod
2014-06-24 14:05:21 ----D---- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-06-24 14:05:21 ----D---- C:\Program Files\iTunes
2014-06-22 17:43:47 ----D---- C:\ProgramData\ATI
2014-06-22 10:46:20 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2014-06-22 10:46:20 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2014-06-22 10:46:20 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atitmmxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atipblag.dat
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atioglxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\ATIODE.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\ATIODCLI.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atimuixx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atimpc32.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiicdxx.dat
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiglpxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atigktxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\ATIDEMGX.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\aticalrt.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\aticaldd.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\aticalcl.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiapfxx.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\ati2edxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\amdpcom32.dll
2014-06-22 10:20:27 ----D---- C:\Program Files\AMD APP
2014-06-22 10:19:17 ----D---- C:\ProgramData\AMD
2014-06-22 10:17:04 ----A---- C:\Windows\system32\drivers\amdiox86.sys
2014-06-22 09:26:24 ----D---- C:\Program Files\DriverDoc
2014-06-11 23:49:53 ----D---- C:\Program Files\Mozilla Firefox
2014-06-10 23:22:18 ----A---- C:\AVScanner.ini
2014-06-10 21:22:37 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-10 21:22:37 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-06-10 21:22:36 ----A---- C:\Windows\system32\urlmon.dll
2014-06-10 21:22:36 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-10 21:22:36 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-06-10 21:22:35 ----A---- C:\Windows\system32\msfeeds.dll
2014-06-10 21:22:35 ----A---- C:\Windows\system32\jsproxy.dll
2014-06-10 21:22:35 ----A---- C:\Windows\system32\ieUnatt.exe
2014-06-10 21:22:35 ----A---- C:\Windows\system32\iernonce.dll
2014-06-10 21:22:35 ----A---- C:\Windows\system32\dxtmsft.dll
2014-06-10 21:22:33 ----A---- C:\Windows\system32\msrating.dll
2014-06-10 21:22:33 ----A---- C:\Windows\system32\iesetup.dll
2014-06-10 21:22:33 ----A---- C:\Windows\system32\ie4uinit.exe
2014-06-10 21:22:32 ----A---- C:\Windows\system32\wininet.dll
2014-06-10 21:22:32 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-06-10 21:22:32 ----A---- C:\Windows\system32\ieapfltr.dll
2014-06-10 21:22:30 ----A---- C:\Windows\system32\ieui.dll
2014-06-10 21:22:30 ----A---- C:\Windows\system32\ieframe.dll
2014-06-10 21:22:30 ----A---- C:\Windows\system32\dxtrans.dll
2014-06-10 21:22:29 ----A---- C:\Windows\system32\mshtmled.dll
2014-06-10 21:22:28 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-06-10 21:22:28 ----A---- C:\Windows\system32\iertutil.dll
2014-06-10 21:22:27 ----A---- C:\Windows\system32\jscript9diag.dll
2014-06-10 21:22:26 ----A---- C:\Windows\system32\mshtml.dll
2014-06-10 21:22:25 ----A---- C:\Windows\system32\vbscript.dll
2014-06-10 21:22:25 ----A---- C:\Windows\system32\jscript9.dll
2014-06-10 21:22:16 ----A---- C:\Windows\system32\msxml6r.dll
2014-06-10 21:22:16 ----A---- C:\Windows\system32\msxml6.dll
2014-06-10 21:22:16 ----A---- C:\Windows\system32\msxml3r.dll
2014-06-10 21:22:16 ----A---- C:\Windows\system32\msxml3.dll
2014-06-10 21:22:09 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-06-10 21:22:09 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-06-10 21:22:04 ----A---- C:\Windows\system32\aepdu.dll
2014-06-10 21:22:01 ----A---- C:\Windows\system32\aeinv.dll
2014-06-10 21:21:56 ----A---- C:\Windows\system32\usp10.dll
2014-06-10 21:19:54 ----A---- C:\Windows\system32\rdpcorets.dll
2014-06-09 17:52:44 ----D---- C:\Program Files\Common Files\Java
2014-06-09 17:52:33 ----A---- C:\Windows\system32\javaws.exe
2014-06-09 17:52:22 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2014-06-09 17:52:22 ----A---- C:\Windows\system32\javaw.exe
2014-06-09 17:52:22 ----A---- C:\Windows\system32\java.exe
2014-06-03 14:29:31 ----A---- C:\Windows\system32\TURegOpt.exe
2014-06-03 14:29:30 ----A---- C:\Windows\system32\authuitu.dll
2014-06-03 14:28:47 ----D---- C:\Program Files\TuneUp Utilities 2014
2014-06-03 14:27:50 ----SHD---- C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
======List of files/folders modified in the last 1 month======
2014-07-01 12:43:08 ----D---- C:\Windows\Prefetch
2014-07-01 12:43:04 ----D---- C:\Windows\Temp
2014-07-01 12:42:59 ----D---- C:\Program Files\trend micro
2014-07-01 12:22:27 ----A---- C:\Windows\Boottime.ini
2014-07-01 10:33:49 ----D---- C:\Windows\system32\config
2014-07-01 08:34:08 ----SHD---- C:\System Volume Information
2014-06-30 21:48:06 ----D---- C:\Windows\rescache
2014-06-28 12:23:34 ----D---- C:\Users\Administrator\AppData\Roaming\Skype
2014-06-27 21:43:24 ----D---- C:\Program Files\FastShare
2014-06-27 20:10:39 ----D---- C:\ProgramData\ProductData
2014-06-27 08:06:05 ----SHD---- C:\Windows\Installer
2014-06-27 08:06:05 ----SHD---- C:\Config.Msi
2014-06-27 08:01:53 ----RD---- C:\Program Files
2014-06-26 08:26:08 ----D---- C:\Windows
2014-06-25 22:00:11 ----D---- C:\Windows\inf
2014-06-25 21:57:23 ----AD---- C:\ProgramData\TEMP
2014-06-25 21:02:09 ----D---- C:\Windows\Tasks
2014-06-25 21:02:09 ----D---- C:\Windows\system32\Tasks
2014-06-25 21:02:04 ----D---- C:\Windows\System32
2014-06-24 14:11:14 ----D---- C:\Users\Administrator\AppData\Roaming\Apple Computer
2014-06-24 14:07:43 ----D---- C:\Windows\system32\catroot
2014-06-24 14:06:06 ----D---- C:\Windows\system32\drivers
2014-06-24 14:06:05 ----DC---- C:\Windows\system32\DRVSTORE
2014-06-24 14:05:21 ----HD---- C:\ProgramData
2014-06-24 14:05:21 ----D---- C:\ProgramData\Apple Computer
2014-06-24 14:05:21 ----D---- C:\Program Files\Common Files\Apple
2014-06-24 14:02:34 ----D---- C:\Windows\system32\DriverStore
2014-06-24 14:01:41 ----D---- C:\ProgramData\Apple
2014-06-22 19:00:06 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-06-22 10:47:32 ----D---- C:\Windows\system32\catroot2
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiuxpag.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiumdva.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiumdag.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiu9pag.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiesrxx.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atieclxx.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atidxx32.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\aticfx32.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiadlxx.dll
2014-06-22 10:19:58 ----D---- C:\Program Files\ATI Technologies
2014-06-22 10:16:27 ----RSD---- C:\Windows\assembly
2014-06-11 23:50:29 ----D---- C:\Users\Administrator\AppData\Roaming\Mozilla
2014-06-11 22:24:21 ----SD---- C:\Users\Administrator\AppData\Roaming\Microsoft
2014-06-11 22:00:46 ----D---- C:\Windows\debug
2014-06-11 21:59:41 ----D---- C:\Program Files\McAfee Security Scan
2014-06-10 22:42:25 ----D---- C:\Windows\winsxs
2014-06-10 22:39:30 ----D---- C:\Windows\system32\en-US
2014-06-10 22:39:29 ----SD---- C:\Windows\system32\CompatTel
2014-06-10 22:39:29 ----D---- C:\Program Files\Internet Explorer
2014-06-10 22:38:08 ----D---- C:\ProgramData\Microsoft Help
2014-06-10 22:36:30 ----D---- C:\Windows\system32\MRT
2014-06-10 22:29:16 ----A---- C:\Windows\system32\MRT.exe
2014-06-09 17:52:56 ----D---- C:\ProgramData\Oracle
2014-06-09 17:52:44 ----D---- C:\Program Files\Common Files
2014-06-09 12:21:34 ----D---- C:\Users\Administrator\AppData\Roaming\Media Player Classic
2014-06-09 12:21:34 ----D---- C:\Users\Administrator\AppData\Roaming\DAEMON Tools Lite
2014-06-09 09:51:39 ----D---- C:\Windows\system32\NDF
2014-06-03 14:36:20 ----SHD---- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2014-06-03 14:36:20 ----SHD---- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2014-06-03 14:36:20 ----SHD---- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2014-06-03 14:30:42 ----D---- C:\ProgramData\TuneUp Software
2014-06-03 14:29:10 ----D---- C:\Users\Administrator\AppData\Roaming\TuneUp Software
2014-06-03 14:25:40 ----D---- C:\Program Files\TuneUp Utilities 2012
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-04-29 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-04-29 180632]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2013-12-24 18624]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-11-19 428088]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-04-29 81768]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-05-15 777488]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-05-15 411680]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-12-01 239168]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files\UltraISO\drivers\ISODrive.sys [2008-03-31 73728]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-04-29 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-04-29 67824]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-05-15 68312]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2005-02-23 11776]
R3 amdiox86;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox86.sys [2010-02-18 37944]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-06-22 10070016]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-06-22 290304]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2014-05-23 77824]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-05-31 3086040]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-14 347264]
R3 PAC7302;PC VGA Camer@ Plus; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-09-10 457984]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [2013-08-21 12320]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-09 107024]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-06-22 10070016]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 FileMonitor;FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\win7_x86\FileMonitor.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2012-01-09 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2012-01-09 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2012-06-11 19072]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 RegFilter;RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\regfilter.sys []
S3 s117bus;Sony Ericsson Device 117 driver (WDM); C:\Windows\system32\DRIVERS\s117bus.sys [2007-06-25 82984]
S3 s117mdfl;Sony Ericsson Device 117 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s117mdfl.sys [2007-06-25 14888]
S3 s117mdm;Sony Ericsson Device 117 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s117mdm.sys [2007-06-25 108456]
S3 s117mgmt;Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s117mgmt.sys [2007-06-25 100264]
S3 s117nd5;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS); C:\Windows\system32\DRIVERS\s117nd5.sys [2007-06-25 22952]
S3 s117obex;Sony Ericsson Device 117 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s117obex.sys [2007-06-25 98344]
S3 s117unic;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM); C:\Windows\system32\DRIVERS\s117unic.sys [2007-06-25 98856]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2012-01-09 8192]
S3 UrlFilter;UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\UrlFilter.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2012-01-09 8192]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6; C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe [2013-04-18 574272]
R2 AdvancedSystemCareService7;Advanced SystemCare Service 7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [2013-10-25 878368]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-06-22 217088]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-04-29 291840]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-02-12 43336]
R2 AtomicAlarmClock;Atomic Alarm Clock Time; C:\Program Files\Atomic Alarm Clock\timeserv.exe [2013-04-24 2007040]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-04-29 50344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 IMFservice;IMF Service; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [2013-04-25 335168]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2013-12-02 2151744]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [2013-08-29 1740600]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate1cb0104af55ba0;Služba Google Update (gupdate1cb0104af55ba0); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-31 133104]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-25 262320]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-31 133104]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-05-30 108032]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-05-26 553288]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-05-30 1343400]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní kontrola-děkuji
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivní kontrola-děkuji
Zdravím, přes Odebrat programy odinstaluj Advanced System Care
Přes Start >> Všechny programy >> Příslušenství >> Spustit >> napiš - services.msc >> Enter. Najdi službu :
Služba Google Update (gupdate1cb0104af55ba0)
Služba Google Update (gupdatem)
NBService
NMIndexingService
dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.
V plánovači Úloh zakaž :
Funmoods
GoogleUpdate - tohle tam bude několikrát
Smaž nepotřebné soubory
pomocí CCleaneru
návod :
Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš
Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)
čištění registru je třeba několikrát zopakovat !
Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém
Stáhni a ulož na plochu AdwCleaner,
ukonči všechny programy včetně prohlížeče a dvojklikem spusť,
objeví se okno kde vlevo nahoře klikni na Scan.
Po té proběhne sken a po jeho skončení klikni na Report a to co na Tebe vypadne mi sem zkopíruj.
Přes Start >> Všechny programy >> Příslušenství >> Spustit >> napiš - services.msc >> Enter. Najdi službu :
Služba Google Update (gupdate1cb0104af55ba0)
Služba Google Update (gupdatem)
NBService
NMIndexingService
dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.
V plánovači Úloh zakaž :
Funmoods
GoogleUpdate - tohle tam bude několikrát
Smaž nepotřebné soubory
pomocí CCleaneru
návod :
Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš
Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)
čištění registru je třeba několikrát zopakovat !
Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém
Stáhni a ulož na plochu AdwCleaner,
ukonči všechny programy včetně prohlížeče a dvojklikem spusť,
objeví se okno kde vlevo nahoře klikni na Scan.
Po té proběhne sken a po jeho skončení klikni na Report a to co na Tebe vypadne mi sem zkopíruj.
Re: Preventivní kontrola-děkuji
Děkuji za pomoc: takže ten program advancet system care jsem vůbec mezi programy nenačel, jinak to další jsem udělal a tady je nový log : (nic jsem v programu ADW Cleaner nemazal)
# AdwCleaner v3.214 - Report created 01/07/2014 at 22:30:33
# Updated 29/06/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : Administrator - MILOS-PC
# Running from : C:\Users\Administrator\Downloads\adwcleaner_3.214.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\END
File Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\bsx7b5ti.default\Extensions\wtxpcom@mybrowserbar.com
File Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\uq8a902p.default\Extensions\wtxpcom@mybrowserbar.com
File Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\uq8a902p.default\searchplugins\Askcom.xml
File Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\uq8a902p.default\user.js
File Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951\user.js
File Found : C:\Windows\System32\Tasks\Driver Booster Update
File Found : C:\Windows\System32\Tasks\Funmoods
File Found : C:\Windows\Tasks\Funmoods.job
Folder Found : C:\Program Files\Common Files\Spigot
Folder Found : C:\Program Files\Secure Speed Dial
Folder Found : C:\ProgramData\Ask
Folder Found : C:\Users\Administrator\AppData\Local\PackageAware
Folder Found : C:\Users\Administrator\AppData\LocalLow\AVG Security Toolbar
Folder Found : C:\Users\Administrator\AppData\Roaming\Funmoods
Folder Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\bsx7b5ti.default\Extensions\speeddial@instair.net
Folder Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\uq8a902p.default\Extensions\speeddial@instair.net
Folder Found : C:\Users\Administrator\AppData\Roaming\OpenCandy
Folder Found : C:\Users\Administrator\Documents\PCSpeedUp
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\AppDataLow\AskBarDis
Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Funmoods
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Funmoods
Key Found : HKCU\Software\OCS
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{62000B50-DEF2-4628-9CD5-C61733D2F11C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{436E6812-2F96-4E97-8430-2C3D298892C1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EC9510D-A439-4950-9399-B6399EDF9EA7}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{436E6812-2F96-4E97-8430-2C3D298892C1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{62000B50-DEF2-4628-9CD5-C61733D2F11C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}]
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17126
-\\ Mozilla Firefox v30.0 (cs)
[ File : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\bsx7b5ti.default\prefs.js ]
[ File : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\uq8a902p.default\prefs.js ]
Line Found : user_pref("browser.search.defaultengine", "Ask.com");
Line Found : user_pref("browser.search.order.1", "Ask.com");
Line Found : user_pref("extensions.asktb.cbid", "RY");
Line Found : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://www.ask.com/web?q={query}&o={o}&l={l}&qsrc={qsrc}");
Line Found : user_pref("extensions.asktb.fresh-install", false);
Line Found : user_pref("extensions.asktb.l", "dis");
Line Found : user_pref("extensions.asktb.last-config-req", "1275335520166");
Line Found : user_pref("extensions.asktb.locale", "en_US");
Line Found : user_pref("extensions.asktb.o", "15184");
Line Found : user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
Line Found : user_pref("extensions.asktb.qsrc", "2871");
Line Found : user_pref("extensions.asktb.r", "2");
[ File : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951\prefs.js ]
-\\ Google Chrome v35.0.1916.153
[ File : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found [Search Provider] : hxxp://supertoolbar.ask.com/redirect?client=ff&src=crm&tb=PTV&o=15184&locale=en_US&q={searchTerms}
Found [Search Provider] : hxxp://start.funmoods.com/results.php?f=4&a=ddrnw&q={searchTerms}
*************************
AdwCleaner[R0].txt - [7505 octets] - [01/07/2014 22:19:09]
AdwCleaner[R1].txt - [7596 octets] - [01/07/2014 22:30:33]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [7656 octets] ##########
# AdwCleaner v3.214 - Report created 01/07/2014 at 22:30:33
# Updated 29/06/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : Administrator - MILOS-PC
# Running from : C:\Users\Administrator\Downloads\adwcleaner_3.214.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\END
File Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\bsx7b5ti.default\Extensions\wtxpcom@mybrowserbar.com
File Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\uq8a902p.default\Extensions\wtxpcom@mybrowserbar.com
File Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\uq8a902p.default\searchplugins\Askcom.xml
File Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\uq8a902p.default\user.js
File Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951\user.js
File Found : C:\Windows\System32\Tasks\Driver Booster Update
File Found : C:\Windows\System32\Tasks\Funmoods
File Found : C:\Windows\Tasks\Funmoods.job
Folder Found : C:\Program Files\Common Files\Spigot
Folder Found : C:\Program Files\Secure Speed Dial
Folder Found : C:\ProgramData\Ask
Folder Found : C:\Users\Administrator\AppData\Local\PackageAware
Folder Found : C:\Users\Administrator\AppData\LocalLow\AVG Security Toolbar
Folder Found : C:\Users\Administrator\AppData\Roaming\Funmoods
Folder Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\bsx7b5ti.default\Extensions\speeddial@instair.net
Folder Found : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\uq8a902p.default\Extensions\speeddial@instair.net
Folder Found : C:\Users\Administrator\AppData\Roaming\OpenCandy
Folder Found : C:\Users\Administrator\Documents\PCSpeedUp
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\AppDataLow\AskBarDis
Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Funmoods
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Funmoods
Key Found : HKCU\Software\OCS
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{62000B50-DEF2-4628-9CD5-C61733D2F11C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{436E6812-2F96-4E97-8430-2C3D298892C1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EC9510D-A439-4950-9399-B6399EDF9EA7}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{436E6812-2F96-4E97-8430-2C3D298892C1}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{62000B50-DEF2-4628-9CD5-C61733D2F11C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}]
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17126
-\\ Mozilla Firefox v30.0 (cs)
[ File : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\bsx7b5ti.default\prefs.js ]
[ File : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\uq8a902p.default\prefs.js ]
Line Found : user_pref("browser.search.defaultengine", "Ask.com");
Line Found : user_pref("browser.search.order.1", "Ask.com");
Line Found : user_pref("extensions.asktb.cbid", "RY");
Line Found : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://www.ask.com/web?q={query}&o={o}&l={l}&qsrc={qsrc}");
Line Found : user_pref("extensions.asktb.fresh-install", false);
Line Found : user_pref("extensions.asktb.l", "dis");
Line Found : user_pref("extensions.asktb.last-config-req", "1275335520166");
Line Found : user_pref("extensions.asktb.locale", "en_US");
Line Found : user_pref("extensions.asktb.o", "15184");
Line Found : user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
Line Found : user_pref("extensions.asktb.qsrc", "2871");
Line Found : user_pref("extensions.asktb.r", "2");
[ File : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951\prefs.js ]
-\\ Google Chrome v35.0.1916.153
[ File : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found [Search Provider] : hxxp://supertoolbar.ask.com/redirect?client=ff&src=crm&tb=PTV&o=15184&locale=en_US&q={searchTerms}
Found [Search Provider] : hxxp://start.funmoods.com/results.php?f=4&a=ddrnw&q={searchTerms}
*************************
AdwCleaner[R0].txt - [7505 octets] - [01/07/2014 22:19:09]
AdwCleaner[R1].txt - [7596 octets] - [01/07/2014 22:30:33]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [7656 octets] ##########
Re: Preventivní kontrola-děkuji
Mohl by to někdo prosím převzít, aby jsme to dodělali? děkuji.Jinak ten Advancet care je už taky snad pryč
Naposledy upravil(a) grizzly dne 02 črc 2014 09:13, celkem upraveno 1 x.
Re: Preventivní kontrola-děkuji
Jinak ještě nový log z RSIT :
Logfile of random's system information tool 1.10 (written by random/random)
Run by Administrator at 2014-07-02 10:07:27
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 19 GB (31%) free of 60 GB
Total RAM: 3071 MB (66% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:08:15, on 2.7.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Administrator\Downloads\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... er=9.0.894
O4 - HKCU\..\Run: [AtomicAlarmClock6] C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Atomic Alarm Clock Time (AtomicAlarmClock) - Unknown owner - C:\Program Files\Atomic Alarm Clock\timeserv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
--
End of file - 7376 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.125 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll [2014-07-01 752960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-06-09 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-29 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14 4531320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-06-09 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-06 3890208]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-05-31 12021464]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"=cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... er=9.0.894 []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"AtomicAlarmClock6"=C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe [2013-06-04 3598336]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.l3fhg"=mp3fhg.acm
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-07-01 23:32:49 ----D---- C:\Users\Administrator\AppData\Roaming\ProductData
2014-07-01 22:19:04 ----D---- C:\AdwCleaner
2014-06-25 22:04:19 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-06-25 21:02:04 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-06-24 14:06:06 ----A---- C:\Windows\system32\drivers\GEARAspiWDM.sys
2014-06-24 14:05:22 ----D---- C:\Program Files\iPod
2014-06-24 14:05:21 ----D---- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-06-24 14:05:21 ----D---- C:\Program Files\iTunes
2014-06-22 17:43:47 ----D---- C:\ProgramData\ATI
2014-06-22 10:46:20 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2014-06-22 10:46:20 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2014-06-22 10:46:20 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atitmmxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atipblag.dat
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atioglxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\ATIODE.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\ATIODCLI.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atimuixx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atimpc32.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiicdxx.dat
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiglpxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atigktxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\ATIDEMGX.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\aticalrt.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\aticaldd.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\aticalcl.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiapfxx.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\ati2edxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\amdpcom32.dll
2014-06-22 10:20:27 ----D---- C:\Program Files\AMD APP
2014-06-22 10:19:17 ----D---- C:\ProgramData\AMD
2014-06-22 10:17:04 ----A---- C:\Windows\system32\drivers\amdiox86.sys
2014-06-22 09:26:24 ----D---- C:\Program Files\DriverDoc
2014-06-11 23:49:53 ----D---- C:\Program Files\Mozilla Firefox
2014-06-10 23:22:18 ----A---- C:\AVScanner.ini
2014-06-10 21:22:37 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-10 21:22:37 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-06-10 21:22:36 ----A---- C:\Windows\system32\urlmon.dll
2014-06-10 21:22:36 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-10 21:22:36 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-06-10 21:22:35 ----A---- C:\Windows\system32\msfeeds.dll
2014-06-10 21:22:35 ----A---- C:\Windows\system32\jsproxy.dll
2014-06-10 21:22:35 ----A---- C:\Windows\system32\ieUnatt.exe
2014-06-10 21:22:35 ----A---- C:\Windows\system32\iernonce.dll
2014-06-10 21:22:35 ----A---- C:\Windows\system32\dxtmsft.dll
2014-06-10 21:22:33 ----A---- C:\Windows\system32\msrating.dll
2014-06-10 21:22:33 ----A---- C:\Windows\system32\iesetup.dll
2014-06-10 21:22:33 ----A---- C:\Windows\system32\ie4uinit.exe
2014-06-10 21:22:32 ----A---- C:\Windows\system32\wininet.dll
2014-06-10 21:22:32 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-06-10 21:22:32 ----A---- C:\Windows\system32\ieapfltr.dll
2014-06-10 21:22:30 ----A---- C:\Windows\system32\ieui.dll
2014-06-10 21:22:30 ----A---- C:\Windows\system32\ieframe.dll
2014-06-10 21:22:30 ----A---- C:\Windows\system32\dxtrans.dll
2014-06-10 21:22:29 ----A---- C:\Windows\system32\mshtmled.dll
2014-06-10 21:22:28 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-06-10 21:22:28 ----A---- C:\Windows\system32\iertutil.dll
2014-06-10 21:22:27 ----A---- C:\Windows\system32\jscript9diag.dll
2014-06-10 21:22:26 ----A---- C:\Windows\system32\mshtml.dll
2014-06-10 21:22:25 ----A---- C:\Windows\system32\vbscript.dll
2014-06-10 21:22:25 ----A---- C:\Windows\system32\jscript9.dll
2014-06-10 21:22:16 ----A---- C:\Windows\system32\msxml6r.dll
2014-06-10 21:22:16 ----A---- C:\Windows\system32\msxml6.dll
2014-06-10 21:22:16 ----A---- C:\Windows\system32\msxml3r.dll
2014-06-10 21:22:16 ----A---- C:\Windows\system32\msxml3.dll
2014-06-10 21:22:09 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-06-10 21:22:09 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-06-10 21:22:04 ----A---- C:\Windows\system32\aepdu.dll
2014-06-10 21:22:01 ----A---- C:\Windows\system32\aeinv.dll
2014-06-10 21:21:56 ----A---- C:\Windows\system32\usp10.dll
2014-06-10 21:19:54 ----A---- C:\Windows\system32\rdpcorets.dll
2014-06-09 17:52:44 ----D---- C:\Program Files\Common Files\Java
2014-06-09 17:52:33 ----A---- C:\Windows\system32\javaws.exe
2014-06-09 17:52:22 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2014-06-09 17:52:22 ----A---- C:\Windows\system32\javaw.exe
2014-06-09 17:52:22 ----A---- C:\Windows\system32\java.exe
2014-06-03 14:29:31 ----A---- C:\Windows\system32\TURegOpt.exe
2014-06-03 14:29:30 ----A---- C:\Windows\system32\authuitu.dll
2014-06-03 14:28:47 ----D---- C:\Program Files\TuneUp Utilities 2014
2014-06-03 14:27:50 ----SHD---- C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
======List of files/folders modified in the last 1 month======
2014-07-02 10:08:12 ----D---- C:\Program Files\trend micro
2014-07-02 10:07:29 ----D---- C:\Windows\Temp
2014-07-02 10:04:44 ----D---- C:\Windows
2014-07-02 09:59:51 ----D---- C:\Windows\Prefetch
2014-07-02 09:44:07 ----D---- C:\Windows\system32\config
2014-07-02 09:28:52 ----A---- C:\Windows\Boottime.ini
2014-07-01 23:52:23 ----D---- C:\Users\Administrator\AppData\Roaming\Skype
2014-07-01 23:34:37 ----D---- C:\Users\Administrator\AppData\Roaming\Funmoods
2014-07-01 23:33:40 ----D---- C:\Windows\Tasks
2014-07-01 23:33:40 ----D---- C:\Windows\system32\Tasks
2014-07-01 23:32:47 ----D---- C:\ProgramData\IObit
2014-07-01 23:31:10 ----D---- C:\Program Files\IObit
2014-07-01 22:27:21 ----D---- C:\Windows\System32
2014-07-01 22:12:36 ----D---- C:\Windows\inf
2014-07-01 21:41:41 ----SHD---- C:\System Volume Information
2014-07-01 21:40:47 ----D---- C:\Windows\system32\drivers
2014-07-01 21:21:12 ----AD---- C:\ProgramData\TEMP
2014-06-30 21:48:06 ----D---- C:\Windows\rescache
2014-06-27 21:43:24 ----D---- C:\Program Files\FastShare
2014-06-27 20:10:39 ----D---- C:\ProgramData\ProductData
2014-06-27 08:06:05 ----SHD---- C:\Windows\Installer
2014-06-27 08:06:05 ----SHD---- C:\Config.Msi
2014-06-27 08:01:53 ----RD---- C:\Program Files
2014-06-24 14:11:14 ----D---- C:\Users\Administrator\AppData\Roaming\Apple Computer
2014-06-24 14:07:43 ----D---- C:\Windows\system32\catroot
2014-06-24 14:06:05 ----DC---- C:\Windows\system32\DRVSTORE
2014-06-24 14:05:21 ----HD---- C:\ProgramData
2014-06-24 14:05:21 ----D---- C:\ProgramData\Apple Computer
2014-06-24 14:05:21 ----D---- C:\Program Files\Common Files\Apple
2014-06-24 14:02:34 ----D---- C:\Windows\system32\DriverStore
2014-06-24 14:01:41 ----D---- C:\ProgramData\Apple
2014-06-22 19:00:06 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-06-22 10:47:32 ----D---- C:\Windows\system32\catroot2
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiuxpag.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiumdva.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiumdag.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiu9pag.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiesrxx.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atieclxx.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atidxx32.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\aticfx32.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiadlxx.dll
2014-06-22 10:19:58 ----D---- C:\Program Files\ATI Technologies
2014-06-22 10:16:27 ----RSD---- C:\Windows\assembly
2014-06-11 23:50:29 ----D---- C:\Users\Administrator\AppData\Roaming\Mozilla
2014-06-11 22:24:21 ----SD---- C:\Users\Administrator\AppData\Roaming\Microsoft
2014-06-11 22:00:46 ----D---- C:\Windows\debug
2014-06-11 21:59:41 ----D---- C:\Program Files\McAfee Security Scan
2014-06-10 22:42:25 ----D---- C:\Windows\winsxs
2014-06-10 22:39:30 ----D---- C:\Windows\system32\en-US
2014-06-10 22:39:29 ----SD---- C:\Windows\system32\CompatTel
2014-06-10 22:39:29 ----D---- C:\Program Files\Internet Explorer
2014-06-10 22:38:08 ----D---- C:\ProgramData\Microsoft Help
2014-06-10 22:36:30 ----D---- C:\Windows\system32\MRT
2014-06-10 22:29:16 ----A---- C:\Windows\system32\MRT.exe
2014-06-09 17:52:57 ----D---- C:\ProgramData\Oracle
2014-06-09 17:52:44 ----D---- C:\Program Files\Common Files
2014-06-09 12:21:34 ----D---- C:\Users\Administrator\AppData\Roaming\Media Player Classic
2014-06-09 12:21:34 ----D---- C:\Users\Administrator\AppData\Roaming\DAEMON Tools Lite
2014-06-09 09:51:39 ----D---- C:\Windows\system32\NDF
2014-06-03 14:36:20 ----SHD---- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2014-06-03 14:36:20 ----SHD---- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2014-06-03 14:36:20 ----SHD---- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2014-06-03 14:30:42 ----D---- C:\ProgramData\TuneUp Software
2014-06-03 14:29:10 ----D---- C:\Users\Administrator\AppData\Roaming\TuneUp Software
2014-06-03 14:25:40 ----D---- C:\Program Files\TuneUp Utilities 2012
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-04-29 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-04-29 180632]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-11-19 428088]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-04-29 81768]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-05-15 777488]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-05-15 411680]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-12-01 239168]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files\UltraISO\drivers\ISODrive.sys [2008-03-31 73728]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-04-29 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-04-29 67824]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-05-15 68312]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2005-02-23 11776]
R3 amdiox86;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox86.sys [2010-02-18 37944]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-06-22 10070016]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-06-22 290304]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2014-05-23 77824]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-05-31 3086040]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-14 347264]
R3 PAC7302;PC VGA Camer@ Plus; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-09-10 457984]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [2013-08-21 12320]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-09 107024]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-06-22 10070016]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 FileMonitor;FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\win7_x86\FileMonitor.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2012-01-09 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2012-01-09 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2012-06-11 19072]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 RegFilter;RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\regfilter.sys []
S3 s117bus;Sony Ericsson Device 117 driver (WDM); C:\Windows\system32\DRIVERS\s117bus.sys [2007-06-25 82984]
S3 s117mdfl;Sony Ericsson Device 117 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s117mdfl.sys [2007-06-25 14888]
S3 s117mdm;Sony Ericsson Device 117 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s117mdm.sys [2007-06-25 108456]
S3 s117mgmt;Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s117mgmt.sys [2007-06-25 100264]
S3 s117nd5;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS); C:\Windows\system32\DRIVERS\s117nd5.sys [2007-06-25 22952]
S3 s117obex;Sony Ericsson Device 117 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s117obex.sys [2007-06-25 98344]
S3 s117unic;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM); C:\Windows\system32\DRIVERS\s117unic.sys [2007-06-25 98856]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2012-01-09 8192]
S3 UrlFilter;UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\UrlFilter.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2012-01-09 8192]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6; C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe [2013-04-18 574272]
R2 AdvancedSystemCareService7;Advanced SystemCare Service 7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [2013-10-25 878368]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-06-22 217088]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-04-29 291840]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-02-12 43336]
R2 AtomicAlarmClock;Atomic Alarm Clock Time; C:\Program Files\Atomic Alarm Clock\timeserv.exe [2013-04-24 2007040]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-04-29 50344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 IMFservice;IMF Service; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [2013-04-25 335168]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [2013-08-29 1740600]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-07-01 2175264]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-25 262320]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-05-30 108032]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-05-26 553288]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-05-30 1343400]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 gupdate1cb0104af55ba0;Služba Google Update (gupdate1cb0104af55ba0); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-31 133104]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-31 133104]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Administrator at 2014-07-02 10:07:27
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 19 GB (31%) free of 60 GB
Total RAM: 3071 MB (66% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:08:15, on 2.7.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Administrator\Downloads\RSIT.exe
C:\Program Files\trend micro\Administrator.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... er=9.0.894
O4 - HKCU\..\Run: [AtomicAlarmClock6] C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Atomic Alarm Clock Time (AtomicAlarmClock) - Unknown owner - C:\Program Files\Atomic Alarm Clock\timeserv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
--
End of file - 7376 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.125 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll [2014-07-01 752960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-06-09 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-29 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14 4531320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-06-09 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-06 3890208]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-05-31 12021464]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"=cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... er=9.0.894 []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"AtomicAlarmClock6"=C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe [2013-06-04 3598336]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.l3fhg"=mp3fhg.acm
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-07-01 23:32:49 ----D---- C:\Users\Administrator\AppData\Roaming\ProductData
2014-07-01 22:19:04 ----D---- C:\AdwCleaner
2014-06-25 22:04:19 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-06-25 21:02:04 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-06-24 14:06:06 ----A---- C:\Windows\system32\drivers\GEARAspiWDM.sys
2014-06-24 14:05:22 ----D---- C:\Program Files\iPod
2014-06-24 14:05:21 ----D---- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-06-24 14:05:21 ----D---- C:\Program Files\iTunes
2014-06-22 17:43:47 ----D---- C:\ProgramData\ATI
2014-06-22 10:46:20 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2014-06-22 10:46:20 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2014-06-22 10:46:20 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atitmmxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atipblag.dat
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atioglxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\ATIODE.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\ATIODCLI.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atimuixx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atimpc32.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiicdxx.dat
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiglpxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atigktxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\ATIDEMGX.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\aticalrt.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\aticaldd.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\aticalcl.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiapfxx.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\ati2edxx.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\amdpcom32.dll
2014-06-22 10:20:27 ----D---- C:\Program Files\AMD APP
2014-06-22 10:19:17 ----D---- C:\ProgramData\AMD
2014-06-22 10:17:04 ----A---- C:\Windows\system32\drivers\amdiox86.sys
2014-06-22 09:26:24 ----D---- C:\Program Files\DriverDoc
2014-06-11 23:49:53 ----D---- C:\Program Files\Mozilla Firefox
2014-06-10 23:22:18 ----A---- C:\AVScanner.ini
2014-06-10 21:22:37 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-10 21:22:37 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-06-10 21:22:36 ----A---- C:\Windows\system32\urlmon.dll
2014-06-10 21:22:36 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-10 21:22:36 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-06-10 21:22:35 ----A---- C:\Windows\system32\msfeeds.dll
2014-06-10 21:22:35 ----A---- C:\Windows\system32\jsproxy.dll
2014-06-10 21:22:35 ----A---- C:\Windows\system32\ieUnatt.exe
2014-06-10 21:22:35 ----A---- C:\Windows\system32\iernonce.dll
2014-06-10 21:22:35 ----A---- C:\Windows\system32\dxtmsft.dll
2014-06-10 21:22:33 ----A---- C:\Windows\system32\msrating.dll
2014-06-10 21:22:33 ----A---- C:\Windows\system32\iesetup.dll
2014-06-10 21:22:33 ----A---- C:\Windows\system32\ie4uinit.exe
2014-06-10 21:22:32 ----A---- C:\Windows\system32\wininet.dll
2014-06-10 21:22:32 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-06-10 21:22:32 ----A---- C:\Windows\system32\ieapfltr.dll
2014-06-10 21:22:30 ----A---- C:\Windows\system32\ieui.dll
2014-06-10 21:22:30 ----A---- C:\Windows\system32\ieframe.dll
2014-06-10 21:22:30 ----A---- C:\Windows\system32\dxtrans.dll
2014-06-10 21:22:29 ----A---- C:\Windows\system32\mshtmled.dll
2014-06-10 21:22:28 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-06-10 21:22:28 ----A---- C:\Windows\system32\iertutil.dll
2014-06-10 21:22:27 ----A---- C:\Windows\system32\jscript9diag.dll
2014-06-10 21:22:26 ----A---- C:\Windows\system32\mshtml.dll
2014-06-10 21:22:25 ----A---- C:\Windows\system32\vbscript.dll
2014-06-10 21:22:25 ----A---- C:\Windows\system32\jscript9.dll
2014-06-10 21:22:16 ----A---- C:\Windows\system32\msxml6r.dll
2014-06-10 21:22:16 ----A---- C:\Windows\system32\msxml6.dll
2014-06-10 21:22:16 ----A---- C:\Windows\system32\msxml3r.dll
2014-06-10 21:22:16 ----A---- C:\Windows\system32\msxml3.dll
2014-06-10 21:22:09 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-06-10 21:22:09 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-06-10 21:22:04 ----A---- C:\Windows\system32\aepdu.dll
2014-06-10 21:22:01 ----A---- C:\Windows\system32\aeinv.dll
2014-06-10 21:21:56 ----A---- C:\Windows\system32\usp10.dll
2014-06-10 21:19:54 ----A---- C:\Windows\system32\rdpcorets.dll
2014-06-09 17:52:44 ----D---- C:\Program Files\Common Files\Java
2014-06-09 17:52:33 ----A---- C:\Windows\system32\javaws.exe
2014-06-09 17:52:22 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2014-06-09 17:52:22 ----A---- C:\Windows\system32\javaw.exe
2014-06-09 17:52:22 ----A---- C:\Windows\system32\java.exe
2014-06-03 14:29:31 ----A---- C:\Windows\system32\TURegOpt.exe
2014-06-03 14:29:30 ----A---- C:\Windows\system32\authuitu.dll
2014-06-03 14:28:47 ----D---- C:\Program Files\TuneUp Utilities 2014
2014-06-03 14:27:50 ----SHD---- C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
======List of files/folders modified in the last 1 month======
2014-07-02 10:08:12 ----D---- C:\Program Files\trend micro
2014-07-02 10:07:29 ----D---- C:\Windows\Temp
2014-07-02 10:04:44 ----D---- C:\Windows
2014-07-02 09:59:51 ----D---- C:\Windows\Prefetch
2014-07-02 09:44:07 ----D---- C:\Windows\system32\config
2014-07-02 09:28:52 ----A---- C:\Windows\Boottime.ini
2014-07-01 23:52:23 ----D---- C:\Users\Administrator\AppData\Roaming\Skype
2014-07-01 23:34:37 ----D---- C:\Users\Administrator\AppData\Roaming\Funmoods
2014-07-01 23:33:40 ----D---- C:\Windows\Tasks
2014-07-01 23:33:40 ----D---- C:\Windows\system32\Tasks
2014-07-01 23:32:47 ----D---- C:\ProgramData\IObit
2014-07-01 23:31:10 ----D---- C:\Program Files\IObit
2014-07-01 22:27:21 ----D---- C:\Windows\System32
2014-07-01 22:12:36 ----D---- C:\Windows\inf
2014-07-01 21:41:41 ----SHD---- C:\System Volume Information
2014-07-01 21:40:47 ----D---- C:\Windows\system32\drivers
2014-07-01 21:21:12 ----AD---- C:\ProgramData\TEMP
2014-06-30 21:48:06 ----D---- C:\Windows\rescache
2014-06-27 21:43:24 ----D---- C:\Program Files\FastShare
2014-06-27 20:10:39 ----D---- C:\ProgramData\ProductData
2014-06-27 08:06:05 ----SHD---- C:\Windows\Installer
2014-06-27 08:06:05 ----SHD---- C:\Config.Msi
2014-06-27 08:01:53 ----RD---- C:\Program Files
2014-06-24 14:11:14 ----D---- C:\Users\Administrator\AppData\Roaming\Apple Computer
2014-06-24 14:07:43 ----D---- C:\Windows\system32\catroot
2014-06-24 14:06:05 ----DC---- C:\Windows\system32\DRVSTORE
2014-06-24 14:05:21 ----HD---- C:\ProgramData
2014-06-24 14:05:21 ----D---- C:\ProgramData\Apple Computer
2014-06-24 14:05:21 ----D---- C:\Program Files\Common Files\Apple
2014-06-24 14:02:34 ----D---- C:\Windows\system32\DriverStore
2014-06-24 14:01:41 ----D---- C:\ProgramData\Apple
2014-06-22 19:00:06 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-06-22 10:47:32 ----D---- C:\Windows\system32\catroot2
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiuxpag.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiumdva.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiumdag.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiu9pag.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiesrxx.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atieclxx.exe
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atidxx32.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\aticfx32.dll
2014-06-22 10:46:20 ----A---- C:\Windows\system32\atiadlxx.dll
2014-06-22 10:19:58 ----D---- C:\Program Files\ATI Technologies
2014-06-22 10:16:27 ----RSD---- C:\Windows\assembly
2014-06-11 23:50:29 ----D---- C:\Users\Administrator\AppData\Roaming\Mozilla
2014-06-11 22:24:21 ----SD---- C:\Users\Administrator\AppData\Roaming\Microsoft
2014-06-11 22:00:46 ----D---- C:\Windows\debug
2014-06-11 21:59:41 ----D---- C:\Program Files\McAfee Security Scan
2014-06-10 22:42:25 ----D---- C:\Windows\winsxs
2014-06-10 22:39:30 ----D---- C:\Windows\system32\en-US
2014-06-10 22:39:29 ----SD---- C:\Windows\system32\CompatTel
2014-06-10 22:39:29 ----D---- C:\Program Files\Internet Explorer
2014-06-10 22:38:08 ----D---- C:\ProgramData\Microsoft Help
2014-06-10 22:36:30 ----D---- C:\Windows\system32\MRT
2014-06-10 22:29:16 ----A---- C:\Windows\system32\MRT.exe
2014-06-09 17:52:57 ----D---- C:\ProgramData\Oracle
2014-06-09 17:52:44 ----D---- C:\Program Files\Common Files
2014-06-09 12:21:34 ----D---- C:\Users\Administrator\AppData\Roaming\Media Player Classic
2014-06-09 12:21:34 ----D---- C:\Users\Administrator\AppData\Roaming\DAEMON Tools Lite
2014-06-09 09:51:39 ----D---- C:\Windows\system32\NDF
2014-06-03 14:36:20 ----SHD---- C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2014-06-03 14:36:20 ----SHD---- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2014-06-03 14:36:20 ----SHD---- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2014-06-03 14:30:42 ----D---- C:\ProgramData\TuneUp Software
2014-06-03 14:29:10 ----D---- C:\Users\Administrator\AppData\Roaming\TuneUp Software
2014-06-03 14:25:40 ----D---- C:\Program Files\TuneUp Utilities 2012
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-04-29 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-04-29 180632]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-11-19 428088]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-04-29 81768]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-05-15 777488]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-05-15 411680]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-12-01 239168]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files\UltraISO\drivers\ISODrive.sys [2008-03-31 73728]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-04-29 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-04-29 67824]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-05-15 68312]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2005-02-23 11776]
R3 amdiox86;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox86.sys [2010-02-18 37944]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-06-22 10070016]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-06-22 290304]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2014-05-23 77824]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-05-31 3086040]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-14 347264]
R3 PAC7302;PC VGA Camer@ Plus; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-09-10 457984]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [2013-08-21 12320]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-09 107024]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-06-22 10070016]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 FileMonitor;FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\win7_x86\FileMonitor.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2012-01-09 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2012-01-09 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2012-06-11 19072]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 RegFilter;RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\regfilter.sys []
S3 s117bus;Sony Ericsson Device 117 driver (WDM); C:\Windows\system32\DRIVERS\s117bus.sys [2007-06-25 82984]
S3 s117mdfl;Sony Ericsson Device 117 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s117mdfl.sys [2007-06-25 14888]
S3 s117mdm;Sony Ericsson Device 117 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s117mdm.sys [2007-06-25 108456]
S3 s117mgmt;Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s117mgmt.sys [2007-06-25 100264]
S3 s117nd5;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS); C:\Windows\system32\DRIVERS\s117nd5.sys [2007-06-25 22952]
S3 s117obex;Sony Ericsson Device 117 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s117obex.sys [2007-06-25 98344]
S3 s117unic;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM); C:\Windows\system32\DRIVERS\s117unic.sys [2007-06-25 98856]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2012-01-09 8192]
S3 UrlFilter;UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\UrlFilter.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2012-01-09 8192]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6; C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe [2013-04-18 574272]
R2 AdvancedSystemCareService7;Advanced SystemCare Service 7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [2013-10-25 878368]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-06-22 217088]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-04-29 291840]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-02-12 43336]
R2 AtomicAlarmClock;Atomic Alarm Clock Time; C:\Program Files\Atomic Alarm Clock\timeserv.exe [2013-04-24 2007040]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-04-29 50344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 IMFservice;IMF Service; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [2013-04-25 335168]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [2013-08-29 1740600]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-07-01 2175264]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-25 262320]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-05-30 108032]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-05-26 553288]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-05-30 1343400]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 gupdate1cb0104af55ba0;Služba Google Update (gupdate1cb0104af55ba0); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-31 133104]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-05-31 133104]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
-----------------EOF-----------------
Re: Preventivní kontrola-děkuji
Mohl by to někdo prosím převzít, rádce se mi někam zatoulal 
Re: Preventivní kontrola-děkuji
vsak on sa zasa najde 
jednorazovo zaskocim:
cez services.msc este zakaz sluzby:
AdvancedSystemCareService6
AdvancedSystemCareService7
RESTART a vloz kolegovi log FRST
jednorazovo zaskocim:cez services.msc este zakaz sluzby:
AdvancedSystemCareService6
AdvancedSystemCareService7
RESTART a vloz kolegovi log FRST
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola-děkuji
Jasně díky, ale trošku po lopatě:) jak to zakážu.... ale děkuji
ale děkujiRe: Preventivní kontrola-děkuji
tak už jsem na to přišel obě služby zastaveny: myslíš ten nový log ted RSIT....
Re: Preventivní kontrola-děkuji
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola-děkuji
jasně děkuji a poslední otázka co z toho mám stáhnout jsou tam tři ulity mám win7..... pak provedu
Re: Preventivní kontrola-děkuji
podla verzie OS >> 32b alebo 64b
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola-děkuji
tak hotovo a tady je požadovaný log :
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:01-07-2014
Ran by Administrator (administrator) on MILOS-PC on 03-07-2014 11:12:08
Running from C:\Users\Administrator\Desktop
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IObit) C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
() C:\Program Files\Atomic Alarm Clock\timeserv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
(Drive Software Company) C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Administrator\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-06] (AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12021464 2014-05-31] (Realtek Semiconductor)
HKLM\...\Runonce: [AvgUninstallURL] - cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... er=9.0.894
HKU\S-1-5-21-3658950142-1012756592-2152747268-500\...\Run: [] => [X]
HKU\S-1-5-21-3658950142-1012756592-2152747268-500\...\Run: [AtomicAlarmClock6] => C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe [3598336 2013-06-04] (Drive Software Company)
HKU\S-1-5-21-3658950142-1012756592-2152747268-500\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3514176 2011-11-10] (DT Soft Ltd)
HKU\S-1-5-21-3658950142-1012756592-2152747268-500\...\MountPoints2: {2c2a8e5a-778e-11df-b9b3-001d60273089} - H:\SETUP.EXE
HKU\S-1-5-21-3658950142-1012756592-2152747268-500\...\MountPoints2: {45f33cc0-1347-11e1-a24e-806e6f6e6963} - F:\INSTALL.EXE
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x4007C368C0FFCA01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.seznam.cz/
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... 0DE8101A31
SearchScopes: HKCU - {25DA61C6-CF51-4CD7-A5B2-40CBA8D0C039} URL = http://www.webhledani.cz/results.aspx?i ... earchTerms}
SearchScopes: HKCU - {32CEE1C8-A3B2-4806-B88E-419E718E9AC4} URL = http://start.funmoods.com/results.php?f ... earchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={5D21 ... 2011-12-03 17:08:47&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {BB825FAA-BF32-48F7-99B5-4A2F90E09C78} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
FireFox:
========
FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Administrator\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF user.js: detected! => C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951\user.js
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Adblock Plus - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-22]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-11-12]
FF HKLM\...\Thunderbird\Extensions: [te_7.0@nokia.com] - C:\Program Files\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_7.0
FF Extension: Thunderbird Address Book Synchronisation Extension - C:\Program Files\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_7.0 [2011-12-14]
Chrome:
=======
CHR Extension: (Skype Click to Call) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-12-11]
CHR Extension: (Google Wallet) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-18]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePlugin.crx [2013-05-14]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
========================== Services (Whitelisted) =================
S4 AdvancedSystemCareService6; C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe [574272 2013-04-18] (IObit)
S4 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [878368 2013-10-25] (IObit)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2013-04-29] (Advanced Micro Devices, Inc.) [File not signed]
R2 AtomicAlarmClock; C:\Program Files\Atomic Alarm Clock\timeserv.exe [2007040 2013-04-24] () [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-29] (AVAST Software)
S4 gupdate1cb0104af55ba0; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2010-05-31] (Google Inc.)
R2 IMFservice; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [335168 2013-04-25] (IObit)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2175264 2014-07-01] (IObit)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [1740600 2013-08-29] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
R3 Afc; C:\Windows\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-04-29] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-04-29] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-04-29] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-04-29] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [777488 2014-05-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411680 2014-05-15] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [68312 2014-05-15] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180632 2014-04-29] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [239168 2011-12-01] (DT Soft Ltd)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [73728 2008-03-31] (EZB Systems, Inc.) [File not signed]
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [457984 2007-09-10] (PixArt Imaging Inc.)
S3 s117bus; C:\Windows\System32\DRIVERS\s117bus.sys [82984 2007-06-25] (MCCI Corporation)
S3 s117mdfl; C:\Windows\System32\DRIVERS\s117mdfl.sys [14888 2007-06-25] (MCCI Corporation)
S3 s117mdm; C:\Windows\System32\DRIVERS\s117mdm.sys [108456 2007-06-25] (MCCI Corporation)
S3 s117mgmt; C:\Windows\System32\DRIVERS\s117mgmt.sys [100264 2007-06-25] (MCCI Corporation)
S3 s117nd5; C:\Windows\System32\DRIVERS\s117nd5.sys [22952 2007-06-25] (MCCI Corporation)
S3 s117obex; C:\Windows\System32\DRIVERS\s117obex.sys [98344 2007-06-25] (MCCI Corporation)
S3 s117unic; C:\Windows\System32\DRIVERS\s117unic.sys [98856 2007-06-25] (MCCI Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [428088 2011-11-19] () [File not signed]
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [12320 2013-08-21] (TuneUp Software)
U3 arf8yi3e; C:\Windows\system32\Drivers\arf8yi3e.sys [0 ] (Microsoft Corporation)
S3 FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\win7_x86\FileMonitor.sys [X]
S3 RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\regfilter.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\UrlFilter.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-07-03 11:12 - 2014-07-03 11:13 - 00014631 _____ () C:\Users\Administrator\Desktop\FRST.txt
2014-07-03 11:11 - 2014-07-03 11:12 - 00000000 ____D () C:\FRST
2014-07-03 11:11 - 2014-07-03 11:11 - 00112640 _____ (forum.viry.cz) C:\Users\Administrator\Desktop\FRSTLauncher.exe
2014-07-03 11:05 - 2014-07-03 11:05 - 01073664 _____ (Farbar) C:\Users\Administrator\Desktop\FRST.exe
2014-07-02 12:01 - 2014-07-03 10:55 - 00000336 _____ () C:\Windows\setupact.log
2014-07-02 12:01 - 2014-07-02 12:01 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-01 23:32 - 2014-07-01 23:32 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\ProductData
2014-07-01 23:30 - 2014-07-01 23:30 - 12906784 _____ (IObit) C:\Users\Administrator\Downloads\iobituninstaller.exe
2014-07-01 22:19 - 2014-07-01 22:38 - 00000000 ____D () C:\AdwCleaner
2014-07-01 22:16 - 2014-07-01 22:16 - 00001567 _____ () C:\Users\Administrator\Desktop\adwcleaner_3.214 – zástupce.lnk
2014-07-01 22:15 - 2014-07-01 22:15 - 01346519 _____ () C:\Users\Administrator\Downloads\adwcleaner_3.214.exe
2014-07-01 12:42 - 2014-07-01 12:42 - 01107968 _____ () C:\Users\Administrator\Downloads\RSIT.exe
2014-06-25 22:04 - 2014-06-25 22:04 - 00001123 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-25 22:04 - 2014-06-25 22:04 - 00001111 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-25 22:04 - 2014-06-25 22:04 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-06-25 21:59 - 2014-06-25 21:59 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Adobe
2014-06-25 21:02 - 2014-07-03 10:42 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-25 21:02 - 2014-06-25 21:22 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-06-25 21:02 - 2014-06-25 21:22 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-06-25 20:58 - 2014-06-25 20:58 - 00851120 _____ (Adobe Systems Incorporated) C:\Users\Administrator\Downloads\uninstall_flash_player.exe
2014-06-24 14:06 - 2014-06-24 14:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-06-24 14:06 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-06-24 14:05 - 2014-06-24 14:06 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-06-24 14:05 - 2014-06-24 14:06 - 00000000 ____D () C:\Program Files\iTunes
2014-06-24 14:05 - 2014-06-24 14:05 - 00000000 ____D () C:\Program Files\iPod
2014-06-24 14:00 - 2014-06-24 14:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-06-22 17:46 - 2014-06-22 17:46 - 00000000 ____D () C:\Users\Administrator\AppData\Local\AMD
2014-06-22 17:43 - 2014-06-22 17:43 - 00000000 ____D () C:\ProgramData\ATI
2014-06-22 10:46 - 2014-06-22 10:46 - 19584512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 13402112 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 10070016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-06-22 10:46 - 2014-06-22 10:46 - 02852480 _____ () C:\Windows\system32\atiumdva.cap
2014-06-22 10:46 - 2014-06-22 10:46 - 00618823 _____ () C:\Windows\system32\atiicdxx.dat
2014-06-22 10:46 - 2014-06-22 10:46 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2014-06-22 10:46 - 2014-06-22 10:46 - 00290304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-06-22 10:46 - 2014-06-22 10:46 - 00246000 _____ () C:\Windows\system32\atiapfxx.blb
2014-06-22 10:46 - 2014-06-22 10:46 - 00163840 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-06-22 10:46 - 2014-06-22 10:46 - 00062976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00062976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2014-06-22 10:46 - 2014-06-22 10:46 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00038177 _____ () C:\Windows\atiogl.xml
2014-06-22 10:46 - 2014-06-22 10:46 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00020992 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00003917 _____ () C:\Windows\system32\atipblag.dat
2014-06-22 10:20 - 2014-06-22 10:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-06-22 10:20 - 2014-06-22 10:20 - 00000000 ____D () C:\Program Files\AMD APP
2014-06-22 10:19 - 2014-06-22 10:19 - 00000000 ____D () C:\ProgramData\AMD
2014-06-22 10:17 - 2010-02-18 09:18 - 00037944 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdiox86.sys
2014-06-22 10:16 - 2014-06-22 10:16 - 00018816 _____ () C:\Windows\system32\CCCInstall_201406221016279566.log
2014-06-22 09:26 - 2014-06-22 09:32 - 00000000 ____D () C:\Program Files\DriverDoc
2014-06-11 23:49 - 2014-06-25 22:04 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-11 23:26 - 2014-06-11 23:28 - 00384529 _____ () C:\Users\Administrator\Downloads\Lista_centrum.exe
2014-06-10 23:22 - 2014-06-11 21:57 - 00000030 _____ () C:\AVScanner.ini
2014-06-10 21:22 - 2014-06-08 10:48 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-10 21:22 - 2014-06-08 10:43 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-10 21:22 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-10 21:22 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-10 21:22 - 2014-05-30 11:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-10 21:22 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-10 21:22 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-10 21:22 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-10 21:22 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-10 21:22 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-10 21:22 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-10 21:22 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-10 21:22 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-10 21:22 - 2014-05-30 10:28 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-10 21:22 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-10 21:22 - 2014-05-30 10:21 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-10 21:22 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-10 21:22 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-10 21:22 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-10 21:22 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-10 21:22 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-10 21:22 - 2014-05-30 09:57 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-10 21:22 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-10 21:22 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-10 21:22 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-10 21:22 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-10 21:22 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-10 21:22 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-10 21:22 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-10 21:22 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-10 21:22 - 2014-04-05 04:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-10 21:22 - 2014-04-05 04:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-10 21:22 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-10 21:22 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-10 21:22 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-10 21:22 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-10 21:21 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-10 21:19 - 2014-05-08 11:06 - 00919040 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-09 17:52 - 2014-06-09 17:52 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-06-09 17:52 - 2014-06-09 17:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-09 17:52 - 2014-06-09 17:52 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-03 14:29 - 2014-06-03 14:32 - 00002155 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-06-03 14:29 - 2014-06-03 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014
2014-06-03 14:29 - 2013-08-29 12:07 - 00036664 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-06-03 14:29 - 2013-08-29 12:07 - 00025400 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-06-03 14:28 - 2014-06-03 14:29 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2014
2014-06-03 14:27 - 2014-06-03 14:36 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
==================== One Month Modified Files and Folders =======
2014-07-03 11:13 - 2014-07-03 11:12 - 00014631 _____ () C:\Users\Administrator\Desktop\FRST.txt
2014-07-03 11:12 - 2014-07-03 11:11 - 00000000 ____D () C:\FRST
2014-07-03 11:11 - 2014-07-03 11:11 - 00112640 _____ (forum.viry.cz) C:\Users\Administrator\Desktop\FRSTLauncher.exe
2014-07-03 11:05 - 2014-07-03 11:05 - 01073664 _____ (Farbar) C:\Users\Administrator\Desktop\FRST.exe
2014-07-03 11:03 - 2009-07-14 06:34 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-03 11:03 - 2009-07-14 06:34 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-03 10:59 - 2013-11-12 21:57 - 01353068 _____ () C:\Windows\WindowsUpdate.log
2014-07-03 10:56 - 2009-07-14 06:53 - 00032604 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-03 10:56 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-03 10:55 - 2014-07-02 12:01 - 00000336 _____ () C:\Windows\setupact.log
2014-07-03 10:42 - 2014-06-25 21:02 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-03 10:34 - 2013-06-21 16:25 - 00000079 _____ () C:\Windows\Boottime.ini
2014-07-02 22:46 - 2010-05-31 22:58 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Skype
2014-07-02 12:01 - 2014-07-02 12:01 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-02 12:01 - 2011-04-13 12:17 - 00000000 ____D () C:\Program Files\IObit
2014-07-02 10:23 - 2010-05-31 20:54 - 00000000 ____D () C:\ProgramData\TEMP
2014-07-02 10:08 - 2011-03-04 09:57 - 00000000 ____D () C:\Program Files\trend micro
2014-07-01 23:45 - 2010-05-31 20:57 - 00000000 ____D () C:\Users\Administrator\Desktop\ochramna PC
2014-07-01 23:34 - 2013-02-12 14:11 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Funmoods
2014-07-01 23:32 - 2014-07-01 23:32 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\ProductData
2014-07-01 23:32 - 2011-06-25 13:39 - 00000000 ____D () C:\ProgramData\IObit
2014-07-01 23:30 - 2014-07-01 23:30 - 12906784 _____ (IObit) C:\Users\Administrator\Downloads\iobituninstaller.exe
2014-07-01 22:38 - 2014-07-01 22:19 - 00000000 ____D () C:\AdwCleaner
2014-07-01 22:27 - 2010-05-31 23:06 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-01 22:27 - 2010-05-31 23:06 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-01 22:16 - 2014-07-01 22:16 - 00001567 _____ () C:\Users\Administrator\Desktop\adwcleaner_3.214 – zástupce.lnk
2014-07-01 22:15 - 2014-07-01 22:15 - 01346519 _____ () C:\Users\Administrator\Downloads\adwcleaner_3.214.exe
2014-07-01 12:42 - 2014-07-01 12:42 - 01107968 _____ () C:\Users\Administrator\Downloads\RSIT.exe
2014-06-30 21:48 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-06-27 21:43 - 2014-02-20 16:11 - 00000000 ____D () C:\Program Files\FastShare
2014-06-27 20:10 - 2013-11-21 12:15 - 00000000 ____D () C:\ProgramData\ProductData
2014-06-25 22:04 - 2014-06-25 22:04 - 00001123 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-25 22:04 - 2014-06-25 22:04 - 00001111 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-25 22:04 - 2014-06-25 22:04 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-06-25 22:04 - 2014-06-11 23:49 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-25 21:59 - 2014-06-25 21:59 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Adobe
2014-06-25 21:22 - 2014-06-25 21:02 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-06-25 21:22 - 2014-06-25 21:02 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-06-25 20:58 - 2014-06-25 20:58 - 00851120 _____ (Adobe Systems Incorporated) C:\Users\Administrator\Downloads\uninstall_flash_player.exe
2014-06-24 14:11 - 2010-08-19 15:08 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Apple Computer
2014-06-24 14:06 - 2014-06-24 14:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-06-24 14:06 - 2014-06-24 14:05 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-06-24 14:06 - 2014-06-24 14:05 - 00000000 ____D () C:\Program Files\iTunes
2014-06-24 14:05 - 2014-06-24 14:05 - 00000000 ____D () C:\Program Files\iPod
2014-06-24 14:05 - 2010-10-06 20:26 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-06-24 14:05 - 2010-08-19 15:05 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-06-24 14:01 - 2010-08-19 15:05 - 00000000 ____D () C:\ProgramData\Apple
2014-06-24 14:00 - 2014-06-24 14:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-06-22 19:00 - 2010-05-30 08:19 - 01593150 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-22 17:46 - 2014-06-22 17:46 - 00000000 ____D () C:\Users\Administrator\AppData\Local\AMD
2014-06-22 17:43 - 2014-06-22 17:43 - 00000000 ____D () C:\ProgramData\ATI
2014-06-22 10:46 - 2014-06-22 10:46 - 19584512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 13402112 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 10070016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-06-22 10:46 - 2014-06-22 10:46 - 02852480 _____ () C:\Windows\system32\atiumdva.cap
2014-06-22 10:46 - 2014-06-22 10:46 - 00618823 _____ () C:\Windows\system32\atiicdxx.dat
2014-06-22 10:46 - 2014-06-22 10:46 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2014-06-22 10:46 - 2014-06-22 10:46 - 00290304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-06-22 10:46 - 2014-06-22 10:46 - 00246000 _____ () C:\Windows\system32\atiapfxx.blb
2014-06-22 10:46 - 2014-06-22 10:46 - 00163840 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-06-22 10:46 - 2014-06-22 10:46 - 00062976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00062976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2014-06-22 10:46 - 2014-06-22 10:46 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00038177 _____ () C:\Windows\atiogl.xml
2014-06-22 10:46 - 2014-06-22 10:46 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00020992 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00003917 _____ () C:\Windows\system32\atipblag.dat
2014-06-22 10:46 - 2010-05-05 04:19 - 00929736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx32.dll
2014-06-22 10:46 - 2010-05-05 04:15 - 00453632 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-06-22 10:46 - 2010-05-05 04:14 - 00217088 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-06-22 10:46 - 2010-05-05 04:08 - 06857392 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx32.dll
2014-06-22 10:46 - 2010-05-05 03:41 - 06288832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdag.dll
2014-06-22 10:46 - 2010-05-05 03:23 - 00364544 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-06-22 10:46 - 2010-05-05 03:22 - 00048544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxpag.dll
2014-06-22 10:46 - 2010-05-05 03:22 - 00038768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9pag.dll
2014-06-22 10:46 - 2010-05-05 03:19 - 04782960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdva.dll
2014-06-22 10:20 - 2014-06-22 10:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-06-22 10:20 - 2014-06-22 10:20 - 00000000 ____D () C:\Program Files\AMD APP
2014-06-22 10:19 - 2014-06-22 10:19 - 00000000 ____D () C:\ProgramData\AMD
2014-06-22 10:19 - 2010-05-30 08:23 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-06-22 10:16 - 2014-06-22 10:16 - 00018816 _____ () C:\Windows\system32\CCCInstall_201406221016279566.log
2014-06-22 09:32 - 2014-06-22 09:26 - 00000000 ____D () C:\Program Files\DriverDoc
2014-06-22 09:14 - 2013-02-14 22:34 - 00000000 ____D () C:\Users\Administrator\Desktop\Původní data aplikace Firefox
2014-06-11 23:50 - 2010-05-31 21:27 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Mozilla
2014-06-11 23:28 - 2014-06-11 23:26 - 00384529 _____ () C:\Users\Administrator\Downloads\Lista_centrum.exe
2014-06-11 21:59 - 2013-01-03 11:19 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-06-11 21:57 - 2014-06-10 23:22 - 00000030 _____ () C:\AVScanner.ini
2014-06-10 22:39 - 2014-04-23 20:31 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-10 22:38 - 2010-05-30 08:47 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-10 22:36 - 2013-08-15 22:08 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-10 22:29 - 2010-05-30 08:29 - 92708840 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-06-09 17:52 - 2014-06-09 17:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-09 17:52 - 2014-06-09 17:52 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-09 17:52 - 2013-10-21 21:13 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-09 12:21 - 2011-11-19 13:55 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\DAEMON Tools Lite
2014-06-09 12:21 - 2010-09-02 15:34 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Media Player Classic
2014-06-09 09:51 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-08 10:48 - 2014-06-10 21:22 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 10:43 - 2014-06-10 21:22 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-03 14:36 - 2014-06-03 14:27 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-06-03 14:36 - 2011-10-30 16:17 - 00000000 __SHD () C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2014-06-03 14:36 - 2010-11-10 21:49 - 00000000 __SHD () C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2014-06-03 14:36 - 2010-05-31 20:59 - 00000000 __SHD () C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2014-06-03 14:32 - 2014-06-03 14:29 - 00002155 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-06-03 14:32 - 2014-06-03 14:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014
2014-06-03 14:30 - 2010-05-31 21:00 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-06-03 14:29 - 2014-06-03 14:28 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2014
2014-06-03 14:29 - 2010-05-31 21:00 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\TuneUp Software
2014-06-03 14:25 - 2012-05-27 10:10 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2012
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51
AlternateDataStreams: C:\ProgramData\TEMP:B3D74A13
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Administrator\Desktop" je 771 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:01-07-2014
Ran by Administrator (administrator) on MILOS-PC on 03-07-2014 11:12:08
Running from C:\Users\Administrator\Desktop
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IObit) C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
() C:\Program Files\Atomic Alarm Clock\timeserv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe
(Drive Software Company) C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Administrator\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-06] (AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12021464 2014-05-31] (Realtek Semiconductor)
HKLM\...\Runonce: [AvgUninstallURL] - cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... er=9.0.894
HKU\S-1-5-21-3658950142-1012756592-2152747268-500\...\Run: [] => [X]
HKU\S-1-5-21-3658950142-1012756592-2152747268-500\...\Run: [AtomicAlarmClock6] => C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe [3598336 2013-06-04] (Drive Software Company)
HKU\S-1-5-21-3658950142-1012756592-2152747268-500\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3514176 2011-11-10] (DT Soft Ltd)
HKU\S-1-5-21-3658950142-1012756592-2152747268-500\...\MountPoints2: {2c2a8e5a-778e-11df-b9b3-001d60273089} - H:\SETUP.EXE
HKU\S-1-5-21-3658950142-1012756592-2152747268-500\...\MountPoints2: {45f33cc0-1347-11e1-a24e-806e6f6e6963} - F:\INSTALL.EXE
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x4007C368C0FFCA01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.seznam.cz/
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... 0DE8101A31
SearchScopes: HKCU - {25DA61C6-CF51-4CD7-A5B2-40CBA8D0C039} URL = http://www.webhledani.cz/results.aspx?i ... earchTerms}
SearchScopes: HKCU - {32CEE1C8-A3B2-4806-B88E-419E718E9AC4} URL = http://start.funmoods.com/results.php?f ... earchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={5D21 ... 2011-12-03 17:08:47&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {BB825FAA-BF32-48F7-99B5-4A2F90E09C78} URL = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
FireFox:
========
FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Administrator\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF user.js: detected! => C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951\user.js
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Adblock Plus - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\y6021gyr.default-1403421236951\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-22]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-11-12]
FF HKLM\...\Thunderbird\Extensions: [te_7.0@nokia.com] - C:\Program Files\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_7.0
FF Extension: Thunderbird Address Book Synchronisation Extension - C:\Program Files\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_7.0 [2011-12-14]
Chrome:
=======
CHR Extension: (Skype Click to Call) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-12-11]
CHR Extension: (Google Wallet) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-18]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePlugin.crx [2013-05-14]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
========================== Services (Whitelisted) =================
S4 AdvancedSystemCareService6; C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe [574272 2013-04-18] (IObit)
S4 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [878368 2013-10-25] (IObit)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2013-04-29] (Advanced Micro Devices, Inc.) [File not signed]
R2 AtomicAlarmClock; C:\Program Files\Atomic Alarm Clock\timeserv.exe [2007040 2013-04-24] () [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-29] (AVAST Software)
S4 gupdate1cb0104af55ba0; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2010-05-31] (Google Inc.)
R2 IMFservice; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [335168 2013-04-25] (IObit)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2175264 2014-07-01] (IObit)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [1740600 2013-08-29] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
R3 Afc; C:\Windows\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-04-29] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-04-29] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-04-29] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-04-29] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [777488 2014-05-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411680 2014-05-15] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [68312 2014-05-15] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180632 2014-04-29] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [239168 2011-12-01] (DT Soft Ltd)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [73728 2008-03-31] (EZB Systems, Inc.) [File not signed]
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [457984 2007-09-10] (PixArt Imaging Inc.)
S3 s117bus; C:\Windows\System32\DRIVERS\s117bus.sys [82984 2007-06-25] (MCCI Corporation)
S3 s117mdfl; C:\Windows\System32\DRIVERS\s117mdfl.sys [14888 2007-06-25] (MCCI Corporation)
S3 s117mdm; C:\Windows\System32\DRIVERS\s117mdm.sys [108456 2007-06-25] (MCCI Corporation)
S3 s117mgmt; C:\Windows\System32\DRIVERS\s117mgmt.sys [100264 2007-06-25] (MCCI Corporation)
S3 s117nd5; C:\Windows\System32\DRIVERS\s117nd5.sys [22952 2007-06-25] (MCCI Corporation)
S3 s117obex; C:\Windows\System32\DRIVERS\s117obex.sys [98344 2007-06-25] (MCCI Corporation)
S3 s117unic; C:\Windows\System32\DRIVERS\s117unic.sys [98856 2007-06-25] (MCCI Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [428088 2011-11-19] () [File not signed]
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [12320 2013-08-21] (TuneUp Software)
U3 arf8yi3e; C:\Windows\system32\Drivers\arf8yi3e.sys [0 ] (Microsoft Corporation)
S3 FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\win7_x86\FileMonitor.sys [X]
S3 RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\regfilter.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\win7_x86\UrlFilter.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-07-03 11:12 - 2014-07-03 11:13 - 00014631 _____ () C:\Users\Administrator\Desktop\FRST.txt
2014-07-03 11:11 - 2014-07-03 11:12 - 00000000 ____D () C:\FRST
2014-07-03 11:11 - 2014-07-03 11:11 - 00112640 _____ (forum.viry.cz) C:\Users\Administrator\Desktop\FRSTLauncher.exe
2014-07-03 11:05 - 2014-07-03 11:05 - 01073664 _____ (Farbar) C:\Users\Administrator\Desktop\FRST.exe
2014-07-02 12:01 - 2014-07-03 10:55 - 00000336 _____ () C:\Windows\setupact.log
2014-07-02 12:01 - 2014-07-02 12:01 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-01 23:32 - 2014-07-01 23:32 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\ProductData
2014-07-01 23:30 - 2014-07-01 23:30 - 12906784 _____ (IObit) C:\Users\Administrator\Downloads\iobituninstaller.exe
2014-07-01 22:19 - 2014-07-01 22:38 - 00000000 ____D () C:\AdwCleaner
2014-07-01 22:16 - 2014-07-01 22:16 - 00001567 _____ () C:\Users\Administrator\Desktop\adwcleaner_3.214 – zástupce.lnk
2014-07-01 22:15 - 2014-07-01 22:15 - 01346519 _____ () C:\Users\Administrator\Downloads\adwcleaner_3.214.exe
2014-07-01 12:42 - 2014-07-01 12:42 - 01107968 _____ () C:\Users\Administrator\Downloads\RSIT.exe
2014-06-25 22:04 - 2014-06-25 22:04 - 00001123 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-25 22:04 - 2014-06-25 22:04 - 00001111 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-25 22:04 - 2014-06-25 22:04 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-06-25 21:59 - 2014-06-25 21:59 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Adobe
2014-06-25 21:02 - 2014-07-03 10:42 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-25 21:02 - 2014-06-25 21:22 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-06-25 21:02 - 2014-06-25 21:22 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-06-25 20:58 - 2014-06-25 20:58 - 00851120 _____ (Adobe Systems Incorporated) C:\Users\Administrator\Downloads\uninstall_flash_player.exe
2014-06-24 14:06 - 2014-06-24 14:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-06-24 14:06 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-06-24 14:05 - 2014-06-24 14:06 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-06-24 14:05 - 2014-06-24 14:06 - 00000000 ____D () C:\Program Files\iTunes
2014-06-24 14:05 - 2014-06-24 14:05 - 00000000 ____D () C:\Program Files\iPod
2014-06-24 14:00 - 2014-06-24 14:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-06-22 17:46 - 2014-06-22 17:46 - 00000000 ____D () C:\Users\Administrator\AppData\Local\AMD
2014-06-22 17:43 - 2014-06-22 17:43 - 00000000 ____D () C:\ProgramData\ATI
2014-06-22 10:46 - 2014-06-22 10:46 - 19584512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 13402112 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 10070016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-06-22 10:46 - 2014-06-22 10:46 - 02852480 _____ () C:\Windows\system32\atiumdva.cap
2014-06-22 10:46 - 2014-06-22 10:46 - 00618823 _____ () C:\Windows\system32\atiicdxx.dat
2014-06-22 10:46 - 2014-06-22 10:46 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2014-06-22 10:46 - 2014-06-22 10:46 - 00290304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-06-22 10:46 - 2014-06-22 10:46 - 00246000 _____ () C:\Windows\system32\atiapfxx.blb
2014-06-22 10:46 - 2014-06-22 10:46 - 00163840 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-06-22 10:46 - 2014-06-22 10:46 - 00062976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00062976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2014-06-22 10:46 - 2014-06-22 10:46 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00038177 _____ () C:\Windows\atiogl.xml
2014-06-22 10:46 - 2014-06-22 10:46 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00020992 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00003917 _____ () C:\Windows\system32\atipblag.dat
2014-06-22 10:20 - 2014-06-22 10:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-06-22 10:20 - 2014-06-22 10:20 - 00000000 ____D () C:\Program Files\AMD APP
2014-06-22 10:19 - 2014-06-22 10:19 - 00000000 ____D () C:\ProgramData\AMD
2014-06-22 10:17 - 2010-02-18 09:18 - 00037944 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdiox86.sys
2014-06-22 10:16 - 2014-06-22 10:16 - 00018816 _____ () C:\Windows\system32\CCCInstall_201406221016279566.log
2014-06-22 09:26 - 2014-06-22 09:32 - 00000000 ____D () C:\Program Files\DriverDoc
2014-06-11 23:49 - 2014-06-25 22:04 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-11 23:26 - 2014-06-11 23:28 - 00384529 _____ () C:\Users\Administrator\Downloads\Lista_centrum.exe
2014-06-10 23:22 - 2014-06-11 21:57 - 00000030 _____ () C:\AVScanner.ini
2014-06-10 21:22 - 2014-06-08 10:48 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-10 21:22 - 2014-06-08 10:43 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-10 21:22 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-10 21:22 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-10 21:22 - 2014-05-30 11:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-10 21:22 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-10 21:22 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-10 21:22 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-10 21:22 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-10 21:22 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-10 21:22 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-10 21:22 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-10 21:22 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-10 21:22 - 2014-05-30 10:28 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-10 21:22 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-10 21:22 - 2014-05-30 10:21 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-10 21:22 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-10 21:22 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-10 21:22 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-10 21:22 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-10 21:22 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-10 21:22 - 2014-05-30 09:57 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-10 21:22 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-10 21:22 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-10 21:22 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-10 21:22 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-10 21:22 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-10 21:22 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-10 21:22 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-10 21:22 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-10 21:22 - 2014-04-05 04:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-10 21:22 - 2014-04-05 04:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-10 21:22 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-10 21:22 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-10 21:22 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-10 21:22 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-10 21:21 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-10 21:19 - 2014-05-08 11:06 - 00919040 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-09 17:52 - 2014-06-09 17:52 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-06-09 17:52 - 2014-06-09 17:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-09 17:52 - 2014-06-09 17:52 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-03 14:29 - 2014-06-03 14:32 - 00002155 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-06-03 14:29 - 2014-06-03 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014
2014-06-03 14:29 - 2013-08-29 12:07 - 00036664 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-06-03 14:29 - 2013-08-29 12:07 - 00025400 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-06-03 14:28 - 2014-06-03 14:29 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2014
2014-06-03 14:27 - 2014-06-03 14:36 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
==================== One Month Modified Files and Folders =======
2014-07-03 11:13 - 2014-07-03 11:12 - 00014631 _____ () C:\Users\Administrator\Desktop\FRST.txt
2014-07-03 11:12 - 2014-07-03 11:11 - 00000000 ____D () C:\FRST
2014-07-03 11:11 - 2014-07-03 11:11 - 00112640 _____ (forum.viry.cz) C:\Users\Administrator\Desktop\FRSTLauncher.exe
2014-07-03 11:05 - 2014-07-03 11:05 - 01073664 _____ (Farbar) C:\Users\Administrator\Desktop\FRST.exe
2014-07-03 11:03 - 2009-07-14 06:34 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-03 11:03 - 2009-07-14 06:34 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-03 10:59 - 2013-11-12 21:57 - 01353068 _____ () C:\Windows\WindowsUpdate.log
2014-07-03 10:56 - 2009-07-14 06:53 - 00032604 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-03 10:56 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-03 10:55 - 2014-07-02 12:01 - 00000336 _____ () C:\Windows\setupact.log
2014-07-03 10:42 - 2014-06-25 21:02 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-03 10:34 - 2013-06-21 16:25 - 00000079 _____ () C:\Windows\Boottime.ini
2014-07-02 22:46 - 2010-05-31 22:58 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Skype
2014-07-02 12:01 - 2014-07-02 12:01 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-02 12:01 - 2011-04-13 12:17 - 00000000 ____D () C:\Program Files\IObit
2014-07-02 10:23 - 2010-05-31 20:54 - 00000000 ____D () C:\ProgramData\TEMP
2014-07-02 10:08 - 2011-03-04 09:57 - 00000000 ____D () C:\Program Files\trend micro
2014-07-01 23:45 - 2010-05-31 20:57 - 00000000 ____D () C:\Users\Administrator\Desktop\ochramna PC
2014-07-01 23:34 - 2013-02-12 14:11 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Funmoods
2014-07-01 23:32 - 2014-07-01 23:32 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\ProductData
2014-07-01 23:32 - 2011-06-25 13:39 - 00000000 ____D () C:\ProgramData\IObit
2014-07-01 23:30 - 2014-07-01 23:30 - 12906784 _____ (IObit) C:\Users\Administrator\Downloads\iobituninstaller.exe
2014-07-01 22:38 - 2014-07-01 22:19 - 00000000 ____D () C:\AdwCleaner
2014-07-01 22:27 - 2010-05-31 23:06 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-01 22:27 - 2010-05-31 23:06 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-01 22:16 - 2014-07-01 22:16 - 00001567 _____ () C:\Users\Administrator\Desktop\adwcleaner_3.214 – zástupce.lnk
2014-07-01 22:15 - 2014-07-01 22:15 - 01346519 _____ () C:\Users\Administrator\Downloads\adwcleaner_3.214.exe
2014-07-01 12:42 - 2014-07-01 12:42 - 01107968 _____ () C:\Users\Administrator\Downloads\RSIT.exe
2014-06-30 21:48 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-06-27 21:43 - 2014-02-20 16:11 - 00000000 ____D () C:\Program Files\FastShare
2014-06-27 20:10 - 2013-11-21 12:15 - 00000000 ____D () C:\ProgramData\ProductData
2014-06-25 22:04 - 2014-06-25 22:04 - 00001123 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-25 22:04 - 2014-06-25 22:04 - 00001111 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-25 22:04 - 2014-06-25 22:04 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-06-25 22:04 - 2014-06-11 23:49 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-25 21:59 - 2014-06-25 21:59 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Adobe
2014-06-25 21:22 - 2014-06-25 21:02 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-06-25 21:22 - 2014-06-25 21:02 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-06-25 20:58 - 2014-06-25 20:58 - 00851120 _____ (Adobe Systems Incorporated) C:\Users\Administrator\Downloads\uninstall_flash_player.exe
2014-06-24 14:11 - 2010-08-19 15:08 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Apple Computer
2014-06-24 14:06 - 2014-06-24 14:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-06-24 14:06 - 2014-06-24 14:05 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-06-24 14:06 - 2014-06-24 14:05 - 00000000 ____D () C:\Program Files\iTunes
2014-06-24 14:05 - 2014-06-24 14:05 - 00000000 ____D () C:\Program Files\iPod
2014-06-24 14:05 - 2010-10-06 20:26 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-06-24 14:05 - 2010-08-19 15:05 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-06-24 14:01 - 2010-08-19 15:05 - 00000000 ____D () C:\ProgramData\Apple
2014-06-24 14:00 - 2014-06-24 14:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-06-22 19:00 - 2010-05-30 08:19 - 01593150 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-22 17:46 - 2014-06-22 17:46 - 00000000 ____D () C:\Users\Administrator\AppData\Local\AMD
2014-06-22 17:43 - 2014-06-22 17:43 - 00000000 ____D () C:\ProgramData\ATI
2014-06-22 10:46 - 2014-06-22 10:46 - 19584512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atioglxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 13402112 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 10070016 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-06-22 10:46 - 2014-06-22 10:46 - 02852480 _____ () C:\Windows\system32\atiumdva.cap
2014-06-22 10:46 - 2014-06-22 10:46 - 00618823 _____ () C:\Windows\system32\atiicdxx.dat
2014-06-22 10:46 - 2014-06-22 10:46 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00294912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2014-06-22 10:46 - 2014-06-22 10:46 - 00290304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-06-22 10:46 - 2014-06-22 10:46 - 00246000 _____ () C:\Windows\system32\atiapfxx.blb
2014-06-22 10:46 - 2014-06-22 10:46 - 00163840 _____ (AMD) C:\Windows\system32\atitmmxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-06-22 10:46 - 2014-06-22 10:46 - 00062976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc32.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00062976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom32.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00045056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2014-06-22 10:46 - 2014-06-22 10:46 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\system32\ati2edxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00038177 _____ () C:\Windows\atiogl.xml
2014-06-22 10:46 - 2014-06-22 10:46 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atigktxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00020992 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-06-22 10:46 - 2014-06-22 10:46 - 00003917 _____ () C:\Windows\system32\atipblag.dat
2014-06-22 10:46 - 2010-05-05 04:19 - 00929736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx32.dll
2014-06-22 10:46 - 2010-05-05 04:15 - 00453632 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-06-22 10:46 - 2010-05-05 04:14 - 00217088 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-06-22 10:46 - 2010-05-05 04:08 - 06857392 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx32.dll
2014-06-22 10:46 - 2010-05-05 03:41 - 06288832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdag.dll
2014-06-22 10:46 - 2010-05-05 03:23 - 00364544 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-06-22 10:46 - 2010-05-05 03:22 - 00048544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxpag.dll
2014-06-22 10:46 - 2010-05-05 03:22 - 00038768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9pag.dll
2014-06-22 10:46 - 2010-05-05 03:19 - 04782960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumdva.dll
2014-06-22 10:20 - 2014-06-22 10:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-06-22 10:20 - 2014-06-22 10:20 - 00000000 ____D () C:\Program Files\AMD APP
2014-06-22 10:19 - 2014-06-22 10:19 - 00000000 ____D () C:\ProgramData\AMD
2014-06-22 10:19 - 2010-05-30 08:23 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-06-22 10:16 - 2014-06-22 10:16 - 00018816 _____ () C:\Windows\system32\CCCInstall_201406221016279566.log
2014-06-22 09:32 - 2014-06-22 09:26 - 00000000 ____D () C:\Program Files\DriverDoc
2014-06-22 09:14 - 2013-02-14 22:34 - 00000000 ____D () C:\Users\Administrator\Desktop\Původní data aplikace Firefox
2014-06-11 23:50 - 2010-05-31 21:27 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Mozilla
2014-06-11 23:28 - 2014-06-11 23:26 - 00384529 _____ () C:\Users\Administrator\Downloads\Lista_centrum.exe
2014-06-11 21:59 - 2013-01-03 11:19 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-06-11 21:57 - 2014-06-10 23:22 - 00000030 _____ () C:\AVScanner.ini
2014-06-10 22:39 - 2014-04-23 20:31 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-10 22:38 - 2010-05-30 08:47 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-10 22:36 - 2013-08-15 22:08 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-10 22:29 - 2010-05-30 08:29 - 92708840 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-09 17:52 - 2014-06-09 17:52 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-06-09 17:52 - 2014-06-09 17:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-09 17:52 - 2014-06-09 17:52 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-09 17:52 - 2013-10-21 21:13 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-09 12:21 - 2011-11-19 13:55 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\DAEMON Tools Lite
2014-06-09 12:21 - 2010-09-02 15:34 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Media Player Classic
2014-06-09 09:51 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-08 10:48 - 2014-06-10 21:22 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 10:43 - 2014-06-10 21:22 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-03 14:36 - 2014-06-03 14:27 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-06-03 14:36 - 2011-10-30 16:17 - 00000000 __SHD () C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2014-06-03 14:36 - 2010-11-10 21:49 - 00000000 __SHD () C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2014-06-03 14:36 - 2010-05-31 20:59 - 00000000 __SHD () C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2014-06-03 14:32 - 2014-06-03 14:29 - 00002155 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-06-03 14:32 - 2014-06-03 14:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014
2014-06-03 14:30 - 2010-05-31 21:00 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-06-03 14:29 - 2014-06-03 14:28 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2014
2014-06-03 14:29 - 2010-05-31 21:00 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\TuneUp Software
2014-06-03 14:25 - 2012-05-27 10:10 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2012
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51
AlternateDataStreams: C:\ProgramData\TEMP:B3D74A13
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Administrator\Desktop" je 771 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Re: Preventivní kontrola-děkuji
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript nize
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript nize
Kód: Vybrat vše
Start
HKLM\...\Runonce: [AvgUninstallURL] - cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... QBNAEIAUgA"&"inst=NwA2AC0ANQAwADUANwA4ADcAOQA1ADMALQBYAE8AMwA2ACsAMQAtAE4AMQBEACsAMQAtAFAATAArADkALQBDAEkAUAArADIALQBEAEQAVAArADQAMgA5ADQAOQA0ADYANAAyADAALQBEAEQAOQAwACsAMQAtAFMAVAA5ADAAQQBQAFAAKwAxAC0ARgBVAEkAKwAyAC0AUAA5ADAAVABCACsAMgAtAEQAMwA4ADEATAArADUALQBDAEkARAA3ADcASQBCACsAMgA
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYCZ&apn_uid=00391731-5625-4CC0-8A70-6E11F78CF51B&apn_sauid=04016B1B-1225-4A4E-97A3-FF0DE8101A31
SearchScopes: HKCU - {25DA61C6-CF51-4CD7-A5B2-40CBA8D0C039} URL = http://www.webhledani.cz/results.aspx?i=42&tp=ie&q={searchTerms}
SearchScopes: HKCU - {32CEE1C8-A3B2-4806-B88E-419E718E9AC4} URL = http://start.funmoods.com/results.php?f=4&a=ddrnw&q={searchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={5D2141DE-E339-46A1-A82B-336E9A903F83}&mid=fa72f48aec37f26616ab11142e65249d-cb96798724cfe037331ba0d1b0f7f2bf7dfe1566&lang=cz&ds=AVG&pr=pa&d=2011-12-03 17:08:47&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms}
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePlugin.crx [2013-05-14]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S4 AdvancedSystemCareService6; C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe [574272 2013-04-18] (IObit)
S4 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [878368 2013-10-25] (IObit)
R2 IMFservice; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [335168 2013-04-25] (IObit)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2175264 2014-07-01] (IObit)
2014-07-02 12:01 - 2011-04-13 12:17 - 00000000 ____D () C:\Program Files\IObit
2014-07-01 23:32 - 2011-06-25 13:39 - 00000000 ____D () C:\ProgramData\IObit
2014-06-11 21:59 - 2013-01-03 11:19 - 00000000 ____D () C:\Program Files\McAfee Security Scan
Hosts:
CMD: shutdown /r /f /t 2
End
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola-děkuji
Tak hotovo :
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:01-07-2014
Ran by Administrator at 2014-07-03 12:21:53 Run:1
Running from C:\Users\Administrator\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM\...\Runonce: [AvgUninstallURL] - cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... QBNAEIAUgA"&"inst=NwA2AC0ANQAwADUANwA4ADcAOQA1ADMALQBYAE8AMwA2ACsAMQAtAE4AMQBEACsAMQAtAFAATAArADkALQBDAEkAUAArADIALQBEAEQAVAArADQAMgA5ADQAOQA0ADYANAAyADAALQBEAEQAOQAwACsAMQAtAFMAVAA5ADAAQQBQAFAAKwAxAC0ARgBVAEkAKwAyAC0AUAA5ADAAVABCACsAMgAtAEQAMwA4ADEATAArADUALQBDAEkARAA3ADcASQBCACsAMgA
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYCZ&apn_uid=00391731-5625-4CC0-8A70-6E11F78CF51B&apn_sauid=04016B1B-1225-4A4E-97A3-FF0DE8101A31
SearchScopes: HKCU - {25DA61C6-CF51-4CD7-A5B2-40CBA8D0C039} URL = http://www.webhledani.cz/results.aspx?i ... earchTerms}
SearchScopes: HKCU - {32CEE1C8-A3B2-4806-B88E-419E718E9AC4} URL = http://start.funmoods.com/results.php?f ... earchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={5D21 ... 2011-12-03 17:08:47&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms}
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePlugin.crx [2013-05-14]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S4 AdvancedSystemCareService6; C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe [574272 2013-04-18] (IObit)
S4 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [878368 2013-10-25] (IObit)
R2 IMFservice; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [335168 2013-04-25] (IObit)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2175264 2014-07-01] (IObit)
2014-07-02 12:01 - 2011-04-13 12:17 - 00000000 ____D () C:\Program Files\IObit
2014-07-01 23:32 - 2011-06-25 13:39 - 00000000 ____D () C:\ProgramData\IObit
2014-06-11 21:59 - 2013-01-03 11:19 - 00000000 ____D () C:\Program Files\McAfee Security Scan
Hosts:
CMD: shutdown /r /f /t 2
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\AvgUninstallURL => value deleted successfully.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{25DA61C6-CF51-4CD7-A5B2-40CBA8D0C039}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{25DA61C6-CF51-4CD7-A5B2-40CBA8D0C039}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{32CEE1C8-A3B2-4806-B88E-419E718E9AC4}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{32CEE1C8-A3B2-4806-B88E-419E718E9AC4}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}'=> Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} => value deleted successfully.
'HKCR\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} => value deleted successfully.
'HKCR\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => value deleted successfully.
'HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{34AB3C4C-DA1A-4067-96F4-31452C7CFE65} => value deleted successfully.
'HKCR\CLSID\{34AB3C4C-DA1A-4067-96F4-31452C7CFE65}'=> Key not found.
'HKLM\SOFTWARE\Google\Chrome\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd' => Key deleted successfully.
"C:\Program Files\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePlugin.crx" => File/Directory not found.
'HKCU\SOFTWARE\Policies\Google' => Key deleted successfully.
AdvancedSystemCareService6 => Service deleted successfully.
AdvancedSystemCareService7 => Service deleted successfully.
IMFservice => Service stopped successfully.
IMFservice => Service deleted successfully.
LiveUpdateSvc => Service deleted successfully.
C:\Program Files\IObit => Moved successfully.
C:\ProgramData\IObit => Moved successfully.
C:\Program Files\McAfee Security Scan => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
========= shutdown /r /f /t 2 =========
========= End of CMD: =========
==== End of Fixlog ====
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:01-07-2014
Ran by Administrator at 2014-07-03 12:21:53 Run:1
Running from C:\Users\Administrator\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM\...\Runonce: [AvgUninstallURL] - cmd.exe /c start http://www.avg.cz/cz.special-uninstalla ... QBNAEIAUgA"&"inst=NwA2AC0ANQAwADUANwA4ADcAOQA1ADMALQBYAE8AMwA2ACsAMQAtAE4AMQBEACsAMQAtAFAATAArADkALQBDAEkAUAArADIALQBEAEQAVAArADQAMgA5ADQAOQA0ADYANAAyADAALQBEAEQAOQAwACsAMQAtAFMAVAA5ADAAQQBQAFAAKwAxAC0ARgBVAEkAKwAyAC0AUAA5ADAAVABCACsAMgAtAEQAMwA4ADEATAArADUALQBDAEkARAA3ADcASQBCACsAMgA
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYCZ&apn_uid=00391731-5625-4CC0-8A70-6E11F78CF51B&apn_sauid=04016B1B-1225-4A4E-97A3-FF0DE8101A31
SearchScopes: HKCU - {25DA61C6-CF51-4CD7-A5B2-40CBA8D0C039} URL = http://www.webhledani.cz/results.aspx?i ... earchTerms}
SearchScopes: HKCU - {32CEE1C8-A3B2-4806-B88E-419E718E9AC4} URL = http://start.funmoods.com/results.php?f ... earchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={5D21 ... 2011-12-03 17:08:47&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms}
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePlugin.crx [2013-05-14]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S4 AdvancedSystemCareService6; C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe [574272 2013-04-18] (IObit)
S4 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare 7\ASCService.exe [878368 2013-10-25] (IObit)
R2 IMFservice; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [335168 2013-04-25] (IObit)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2175264 2014-07-01] (IObit)
2014-07-02 12:01 - 2011-04-13 12:17 - 00000000 ____D () C:\Program Files\IObit
2014-07-01 23:32 - 2011-06-25 13:39 - 00000000 ____D () C:\ProgramData\IObit
2014-06-11 21:59 - 2013-01-03 11:19 - 00000000 ____D () C:\Program Files\McAfee Security Scan
Hosts:
CMD: shutdown /r /f /t 2
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\AvgUninstallURL => value deleted successfully.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{25DA61C6-CF51-4CD7-A5B2-40CBA8D0C039}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{25DA61C6-CF51-4CD7-A5B2-40CBA8D0C039}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{32CEE1C8-A3B2-4806-B88E-419E718E9AC4}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{32CEE1C8-A3B2-4806-B88E-419E718E9AC4}'=> Key not found.
'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}' => Key deleted successfully.
'HKCR\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}'=> Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} => value deleted successfully.
'HKCR\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} => value deleted successfully.
'HKCR\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => value deleted successfully.
'HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}'=> Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{34AB3C4C-DA1A-4067-96F4-31452C7CFE65} => value deleted successfully.
'HKCR\CLSID\{34AB3C4C-DA1A-4067-96F4-31452C7CFE65}'=> Key not found.
'HKLM\SOFTWARE\Google\Chrome\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd' => Key deleted successfully.
"C:\Program Files\IObit\Advanced SystemCare 6\BrowerProtect\ASC_GhromePlugin.crx" => File/Directory not found.
'HKCU\SOFTWARE\Policies\Google' => Key deleted successfully.
AdvancedSystemCareService6 => Service deleted successfully.
AdvancedSystemCareService7 => Service deleted successfully.
IMFservice => Service stopped successfully.
IMFservice => Service deleted successfully.
LiveUpdateSvc => Service deleted successfully.
C:\Program Files\IObit => Moved successfully.
C:\ProgramData\IObit => Moved successfully.
C:\Program Files\McAfee Security Scan => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
========= shutdown /r /f /t 2 =========
========= End of CMD: =========
==== End of Fixlog ====
Přispějete na provoz fóra?