VIRY.CZ

Ahoj.
Bohužel byla na jednom počítači spuštěna příloha z toho zavirovaného e-mailu na exekuci. Proto prosím o kontrolu logu.
Díky.

-----------
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:23-07-2014 01
Ran by radka_000 (ATTENTION: The logged in user is not administrator) on ROTACI on 23-07-2014 16:06:00
Running from C:\Users\radka_000\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\O56DY8UT
Platform: Microsoft Windows 8 Enterprise (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x86__8wekyb3d8bbwe\LiveComm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe


==================== Registry (Whitelisted) ==================

HKLM\...\RunOnce: [MSPCLOCK] => rundll32.exe streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D (the data entry has 60 more characters).
HKLM\...\RunOnce: [MSPQM] => rundll32.exe streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D (the data entry has 60 more characters).
HKLM\...\RunOnce: [MSKSSRV] => rundll32.exe streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D (the data entry has 60 more characters).
HKLM\...\RunOnce: [MSTEE.CxTransform] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D (the data entry has 112 more characters).
HKLM\...\RunOnce: [MSTEE.Splitter] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D (the data entry has 112 more characters).
HKLM\...\RunOnce: [WDM_DRMKAUD] => rundll32.exe streamci,StreamingDeviceSetup {EEC12DB6-AD9C-4168-8658-B03DAEF417FE},{ABD61E00-9350-47e (the data entry has 118 more characters).
HKU\S-1-5-21-1250575313-2047212316-2864253415-1003\...\MountPoints2: {82d0d15d-3e3c-11e3-afc4-0022157c8f77} - "K:\setup_vmc_lite.exe" /checkApplicationPresence
HKU\S-1-5-21-1250575313-2047212316-2864253415-1003\...\MountPoints2: {e725e254-c204-11e3-afd1-0022157c8f77} - "K:\LG_PC_Programs.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @microsoft.com/Lync,version=15.0 - C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\radka_000\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-16]

Chrome:
=======
CHR Extension: (McAfee Security Scan+) - C:\Users\radka_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-03-16]
CHR Extension: (avast! Online Security) - C:\Users\radka_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-21]
CHR Extension: (Peněženka Google) - C:\Users\radka_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-23]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-16]
CHR HKLM\...\Chrome\Extension: [nohfdhapjjlndfgjnmdlcabloeembdkj] - C:\Users\r\AppData\Roaming\BabSolution\CR\delta2.crx [2014-07-16]

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-16] (AVAST Software)
R2 lmhosts; C:\Windows\system32\svchost.exe [23040 2012-09-20] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [235696 2014-04-09] (McAfee, Inc.)
R2 NlaSvc; C:\Windows\System32\svchost.exe [23040 2012-09-20] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [23040 2012-09-20] (Microsoft Corporation)
R2 slsvc; C:\Windows\slsvc.exe [10240 2012-09-25] (Microsoft Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14480 2014-03-28] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag.sys [23040 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem.sys [27776 2012-07-03] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\system32\DRIVERS\lgandnetndis.sys [73728 2012-07-04] (LG Electronics Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-07-16] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-07-16] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-07-16] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-07-16] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-07-16] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-07-16] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [71944 2014-07-16] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-07-16] ()
R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [24576 2012-07-26] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [242240 2013-04-25] (DT Soft Ltd)
R3 L1E; C:\Windows\system32\DRIVERS\L1E62x86.sys [55296 2012-06-02] (Atheros Communications, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [110296 2014-07-23] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-05-12] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R3 WUDFSensorLP; C:\Windows\system32\DRIVERS\WUDFRd.sys [155136 2012-07-26] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [155136 2012-07-26] (Microsoft Corporation)
S1 czkcbnii; \??\C:\Windows\system32\drivers\czkcbnii.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-23 16:05 - 2014-07-23 16:06 - 00000000 ____D () C:\FRST
2014-07-23 15:45 - 2014-07-23 15:45 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-23 15:44 - 2014-07-23 15:44 - 00001064 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-23 15:44 - 2014-07-23 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-23 15:44 - 2014-07-23 15:44 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-23 15:44 - 2014-07-23 15:44 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-07-23 15:44 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-23 15:44 - 2014-05-12 07:25 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-23 15:44 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-19 16:03 - 2014-07-19 16:03 - 00000000 ____D () C:\Program Files\ESET
2014-07-17 06:10 - 2014-07-17 06:10 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\AVAST Software
2014-07-16 22:44 - 2014-07-16 22:44 - 00420944 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-16 20:04 - 2014-07-16 20:04 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\Dropbox
2014-07-16 20:04 - 2014-07-16 20:04 - 00000000 ____D () C:\Users\r\AppData\Roaming\DropboxMaster
2014-07-16 20:03 - 2014-07-16 20:03 - 00000000 ____D () C:\Users\r\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-07-16 20:00 - 2014-07-16 20:04 - 00000000 ____D () C:\Users\r\AppData\Roaming\Dropbox
2014-07-16 19:50 - 2014-07-16 19:50 - 00000000 ____D () C:\Users\r\AppData\Roaming\AVAST Software
2014-07-16 19:49 - 2014-07-16 19:49 - 36818984 _____ (Dropbox, Inc.) C:\Users\Public\Desktop\DropboxInstallerAvast.exe
2014-07-16 19:49 - 2014-07-16 19:49 - 00002123 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-16 19:49 - 2014-07-16 19:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-16 19:48 - 2014-07-16 19:49 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00276432 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-16 19:48 - 2014-07-16 19:48 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00071944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-16 19:48 - 2014-07-16 19:48 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-16 19:47 - 2014-07-16 19:47 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-16 19:46 - 2014-07-16 19:47 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-16 19:44 - 2014-07-16 20:16 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\AdobeChk
2014-07-16 19:38 - 2014-07-16 19:38 - 04862664 _____ (AVAST Software) C:\Users\radka_000\Desktop\avast_free_antivirus_setup_online.exe
2014-07-13 15:23 - 2014-07-13 15:23 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-07-13 12:57 - 2014-07-13 13:03 - 00000000 ____D () C:\Users\radka_000\Desktop\Auto + terárko
2014-07-11 20:53 - 2014-06-19 02:54 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-11 20:53 - 2014-06-19 02:53 - 14368768 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 01766400 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 01141760 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 00661504 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 13732352 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 02863616 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 02051072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 01440768 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-11 20:53 - 2014-06-19 02:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-11 20:53 - 2014-06-19 02:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-11 20:53 - 2014-06-18 01:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-11 20:53 - 2014-06-11 05:39 - 03389440 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-11 20:53 - 2014-06-06 12:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-11 20:53 - 2014-05-30 01:31 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-11 20:53 - 2014-05-30 01:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-07-11 20:53 - 2014-05-03 06:53 - 05582680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-07-11 20:53 - 2014-05-03 06:51 - 01475056 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-07-11 20:53 - 2014-05-02 00:39 - 00833024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-07-11 20:53 - 2014-04-30 00:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-07-11 20:53 - 2014-04-24 01:51 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-07-11 20:53 - 2014-04-24 01:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-11 20:53 - 2014-02-08 06:08 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-07-11 20:52 - 2014-05-30 00:22 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-11 20:47 - 2014-07-11 20:47 - 11204096 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2014-07-06 13:38 - 2014-05-15 01:08 - 00052656 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-07-06 13:38 - 2014-05-15 00:42 - 02600448 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-07-06 13:38 - 2014-05-15 00:42 - 01556992 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-07-06 13:38 - 2014-05-15 00:42 - 00629248 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-07-06 13:38 - 2014-05-15 00:42 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-07-06 13:38 - 2014-05-15 00:42 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-07-06 13:38 - 2014-05-15 00:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-07-06 13:38 - 2014-05-15 00:42 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-07-06 13:38 - 2014-05-15 00:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2014-06-28 18:42 - 2014-06-28 18:54 - 00000000 ____D () C:\Users\radka_000\Desktop\Telefon

==================== One Month Modified Files and Folders =======

2014-07-23 16:06 - 2014-07-23 16:05 - 00000000 ____D () C:\FRST
2014-07-23 16:05 - 2013-05-19 09:22 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\Skype
2014-07-23 16:00 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\system32\sru
2014-07-23 15:53 - 2013-07-30 16:31 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\PerformerSoft
2014-07-23 15:47 - 2013-09-15 09:23 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-23 15:47 - 2013-07-30 10:11 - 00000944 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-23 15:45 - 2014-07-23 15:45 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-23 15:44 - 2014-07-23 15:44 - 00001064 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-23 15:44 - 2014-07-23 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-23 15:44 - 2014-07-23 15:44 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-23 15:44 - 2014-07-23 15:44 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-07-23 15:27 - 2013-07-30 10:11 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-23 10:25 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-07-23 09:20 - 2013-04-25 12:29 - 01973359 _____ () C:\Windows\WindowsUpdate.log
2014-07-22 11:17 - 2013-08-16 17:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-21 19:40 - 2013-04-26 13:01 - 93585272 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-20 08:55 - 2013-04-25 12:28 - 01714430 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-19 16:03 - 2014-07-19 16:03 - 00000000 ____D () C:\Program Files\ESET
2014-07-18 16:50 - 2013-07-30 10:13 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-17 06:10 - 2014-07-17 06:10 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\AVAST Software
2014-07-16 22:45 - 2012-07-26 08:04 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-16 22:44 - 2014-07-16 22:44 - 00420944 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-16 22:44 - 2013-04-25 12:34 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-16 20:16 - 2014-07-16 19:44 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\AdobeChk
2014-07-16 20:04 - 2014-07-16 20:04 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\Dropbox
2014-07-16 20:04 - 2014-07-16 20:04 - 00000000 ____D () C:\Users\r\AppData\Roaming\DropboxMaster
2014-07-16 20:04 - 2014-07-16 20:00 - 00000000 ____D () C:\Users\r\AppData\Roaming\Dropbox
2014-07-16 20:03 - 2014-07-16 20:03 - 00000000 ____D () C:\Users\r\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-07-16 19:50 - 2014-07-16 19:50 - 00000000 ____D () C:\Users\r\AppData\Roaming\AVAST Software
2014-07-16 19:49 - 2014-07-16 19:49 - 36818984 _____ (Dropbox, Inc.) C:\Users\Public\Desktop\DropboxInstallerAvast.exe
2014-07-16 19:49 - 2014-07-16 19:49 - 00002123 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-16 19:49 - 2014-07-16 19:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-16 19:49 - 2014-07-16 19:48 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00276432 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-16 19:48 - 2014-07-16 19:48 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00071944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-16 19:48 - 2014-07-16 19:48 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-16 19:47 - 2014-07-16 19:47 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-16 19:47 - 2014-07-16 19:46 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-16 19:38 - 2014-07-16 19:38 - 04862664 _____ (AVAST Software) C:\Users\radka_000\Desktop\avast_free_antivirus_setup_online.exe
2014-07-13 17:44 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\rescache
2014-07-13 15:23 - 2014-07-13 15:23 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-07-13 15:23 - 2014-03-12 20:07 - 00000000 ___RD () C:\Program Files\Skype
2014-07-13 15:23 - 2013-04-27 16:58 - 00000000 ____D () C:\ProgramData\Skype
2014-07-13 13:03 - 2014-07-13 12:57 - 00000000 ____D () C:\Users\radka_000\Desktop\Auto + terárko
2014-07-13 09:49 - 2012-07-26 08:03 - 00032179 _____ () C:\Windows\setupact.log
2014-07-13 09:24 - 2013-04-25 13:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-07-13 09:24 - 2013-04-25 13:25 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-12 13:33 - 2012-07-26 10:07 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-12 13:33 - 2012-07-26 08:53 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 13:33 - 2012-07-26 08:53 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 13:33 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\WinStore
2014-07-12 13:33 - 2012-07-26 08:43 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-11 20:47 - 2014-07-11 20:47 - 11204096 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2014-07-01 19:22 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-06-28 18:54 - 2014-06-28 18:42 - 00000000 ____D () C:\Users\radka_000\Desktop\Telefon
2014-06-26 22:53 - 2013-11-14 16:14 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-06-26 22:53 - 2013-11-14 16:14 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl

Some content of TEMP:
====================
C:\Users\r\AppData\Local\Temp\comver.dll
C:\Users\r\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp2k9zwj.dll
C:\Users\radka_000\AppData\Local\Temp\SkypeSetup.exe
C:\Users\radka_000\AppData\Local\Temp\vlc-2.0.8-win32.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start
C:\Program Files\McAfee Security Scan
HKLM\...\RunOnce: [MSPCLOCK] => rundll32.exe streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D (the data entry has 60 more characters).
HKLM\...\RunOnce: [MSPQM] => rundll32.exe streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D (the data entry has 60 more characters).
HKLM\...\RunOnce: [MSKSSRV] => rundll32.exe streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D (the data entry has 60 more characters).
HKLM\...\RunOnce: [MSTEE.CxTransform] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D (the data entry has 112 more characters).
HKLM\...\RunOnce: [MSTEE.Splitter] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D (the data entry has 112 more characters).
HKLM\...\RunOnce: [WDM_DRMKAUD] => rundll32.exe streamci,StreamingDeviceSetup {EEC12DB6-AD9C-4168-8658-B03DAEF417FE},{ABD61E00-9350-47e (the data entry has 118 more characters).
HKU\S-1-5-21-1250575313-2047212316-2864253415-1003\...\MountPoints2: {82d0d15d-3e3c-11e3-afc4-0022157c8f77} - "K:\setup_vmc_lite.exe" /checkApplicationPresence
HKU\S-1-5-21-1250575313-2047212316-2864253415-1003\...\MountPoints2: {e725e254-c204-11e3-afd1-0022157c8f77} - "K:\LG_PC_Programs.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
CHR HKLM\...\Chrome\Extension: [nohfdhapjjlndfgjnmdlcabloeembdkj] - C:\Users\r\AppData\Roaming\BabSolution\CR\delta2.crx [2014-07-16]
S1 czkcbnii; \??\C:\Windows\system32\drivers\czkcbnii.sys [X]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\r\AppData\Local\Temp
End

Uložte do C:\Users\radka_000\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\O56DY8UT jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Ahoj.
Ten fixlist.txt jsem překopíroval do uvedené složky, ale po spuštění FRST a Fix dojde k hlášce že asi nemůže lokalizovat ten textový soubor.

Přesuňte FRST i fixlist na plochu a zkuste to tam.

Povedlo se
Děkuji.
Zde je log:


Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:23-07-2014 01
Ran by radka_000 at 2014-07-23 21:23:58 Run:1
Running from C:\Users\radka_000\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
C:\Program Files\McAfee Security Scan
HKLM\...\RunOnce: [MSPCLOCK] => rundll32.exe streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D (the data entry has 60 more characters).
HKLM\...\RunOnce: [MSPQM] => rundll32.exe streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D (the data entry has 60 more characters).
HKLM\...\RunOnce: [MSKSSRV] => rundll32.exe streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D (the data entry has 60 more characters).
HKLM\...\RunOnce: [MSTEE.CxTransform] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D (the data entry has 112 more characters).
HKLM\...\RunOnce: [MSTEE.Splitter] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D (the data entry has 112 more characters).
HKLM\...\RunOnce: [WDM_DRMKAUD] => rundll32.exe streamci,StreamingDeviceSetup {EEC12DB6-AD9C-4168-8658-B03DAEF417FE},{ABD61E00-9350-47e (the data entry has 118 more characters).
HKU\S-1-5-21-1250575313-2047212316-2864253415-1003\...\MountPoints2: {82d0d15d-3e3c-11e3-afc4-0022157c8f77} - "K:\setup_vmc_lite.exe" /checkApplicationPresence
HKU\S-1-5-21-1250575313-2047212316-2864253415-1003\...\MountPoints2: {e725e254-c204-11e3-afd1-0022157c8f77} - "K:\LG_PC_Programs.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
CHR HKLM\...\Chrome\Extension: [nohfdhapjjlndfgjnmdlcabloeembdkj] - C:\Users\r\AppData\Roaming\BabSolution\CR\delta2.crx [2014-07-16]
S1 czkcbnii; \??\C:\Windows\system32\drivers\czkcbnii.sys [X]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\r\AppData\Local\Temp
End
*****************


"C:\Program Files\McAfee Security Scan" directory move:

Could not move "C:\Program Files\McAfee Security Scan\uninstall.exe" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\AVScanComponent.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\AVScanner.ini" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\avvclean.dat" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\avvnames.dat" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\avvscan.dat" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\config.dat" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\ftconfig.ini" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\McAfee.ico" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\mcbrwsr2.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\MCCompHostConfig.ini" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\McInstallerRes.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\McInstallerRes_LD.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\McInstallerStartup.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\mcscan32.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\McUICnt.exe" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\McUpdater.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\sacore.db" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\sacore.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\sa_cache_sqlite.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\sa_http_win32.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\sa_mbl.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\sa_store_sqlite.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\SecurityScanner.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\SecurityScanner_LD.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\signlic.txt" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\sqlite3.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\uninstaller.ini" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\WebInfoScanner.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\WMIScanner.dll" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\sacoredata\uds_filetypes.txt" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\sacoredata\uds_hosting.txt" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan\3.8.150\sacoredata\uds_tlds.txt" => Scheduled to move on reboot.
Could not move "C:\Program Files\McAfee Security Scan" directory. => Scheduled to move on reboot.

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\HKLM\...\RunOnce: [MSPCLOCK] => rundll32.exe streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D (the data entry has 60 more characters). => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\HKLM\...\RunOnce: [MSPQM] => rundll32.exe streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D (the data entry has 60 more characters). => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\HKLM\...\RunOnce: [MSKSSRV] => rundll32.exe streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D (the data entry has 60 more characters). => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\HKLM\...\RunOnce: [MSTEE.CxTransform] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D (the data entry has 112 more characters). => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\HKLM\...\RunOnce: [MSTEE.Splitter] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D (the data entry has 112 more characters). => Value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\HKLM\...\RunOnce: [WDM_DRMKAUD] => rundll32.exe streamci,StreamingDeviceSetup {EEC12DB6-AD9C-4168-8658-B03DAEF417FE},{ABD61E00-9350-47e (the data entry has 118 more characters). => Value not found.
"HKU\S-1-5-21-1250575313-2047212316-2864253415-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{82d0d15d-3e3c-11e3-afc4-0022157c8f77}" => Key deleted successfully.
"HKCR\CLSID\{82d0d15d-3e3c-11e3-afc4-0022157c8f77}" => Key not found.
"HKU\S-1-5-21-1250575313-2047212316-2864253415-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e725e254-c204-11e3-afd1-0022157c8f77}" => Key deleted successfully.
"HKCR\CLSID\{e725e254-c204-11e3-afd1-0022157c8f77}" => Key not found.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk" => Could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe" => Could not move.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1" => Error deleting key. The key could be protected.
"HKLM\Software\Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2" => Error deleting key. The key could be protected.
"HKLM\Software\Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3" => Error deleting key. The key could be protected.
"HKLM\Software\Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}" => Error deleting key. The key could be protected.
"HKCR\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}" => Error deleting key. The key could be protected.
"HKLM\SOFTWARE\Google\Chrome\Extensions\nohfdhapjjlndfgjnmdlcabloeembdkj" => Error deleting key. The key could be protected.
"C:\Users\r\AppData\Roaming\BabSolution\CR\delta2.crx" => File/Directory not found.
czkcbnii => Error deleting Service
Could not move "C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job" => Scheduled to move on reboot.
Could not move "C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job" => Scheduled to move on reboot.
C:\Users\r\AppData\Local\Temp => Moved successfully.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-07-23 21:29:17)<=

==> ATTENTION: System is not rebooted.
"C:\Program Files\McAfee Security Scan\uninstall.exe" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\AVScanComponent.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\AVScanner.ini" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\avvclean.dat" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\avvnames.dat" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\avvscan.dat" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\config.dat" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\ftconfig.ini" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\McAfee.ico" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\mcbrwsr2.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\MCCompHostConfig.ini" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\McInstallerRes.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\McInstallerRes_LD.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\McInstallerStartup.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\mcscan32.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\McUICnt.exe" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\McUpdater.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\sacore.db" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\sacore.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\sa_cache_sqlite.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\sa_http_win32.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\sa_mbl.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\sa_store_sqlite.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\SecurityScanner.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\SecurityScanner_LD.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\signlic.txt" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\sqlite3.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\uninstaller.ini" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\WebInfoScanner.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\WMIScanner.dll" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\sacoredata\uds_filetypes.txt" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\sacoredata\uds_hosting.txt" => File could not move.
"C:\Program Files\McAfee Security Scan\3.8.150\sacoredata\uds_tlds.txt" => File could not move.
"C:\Program Files\McAfee Security Scan" => Directory could not move.
"C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job" => File could not move.
"C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job" => File could not move.

==== End of Fixlog ====

řekl bych, že FRST nemazal. Dejte ještě log RSIT: http://forum.viry.cz/viewtopic.php?f=13&t=130786 .

Dobrý den.

Posílám ten log:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:24-07-2014
Ran by radka_000 (ATTENTION: The logged in user is not administrator) on ROTACI on 24-07-2014 16:46:54
Running from C:\Users\radka_000\Desktop
Platform: Microsoft Windows 8 Enterprise (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x86__8wekyb3d8bbwe\LiveComm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Opera Software) C:\Users\radka_000\AppData\Local\Programs\Opera\opera.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\RunOnce: [MSPCLOCK] => rundll32.exe streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D (the data entry has 60 more characters).
HKLM\...\RunOnce: [MSPQM] => rundll32.exe streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D (the data entry has 60 more characters).
HKLM\...\RunOnce: [MSKSSRV] => rundll32.exe streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D (the data entry has 60 more characters).
HKLM\...\RunOnce: [MSTEE.CxTransform] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D (the data entry has 112 more characters).
HKLM\...\RunOnce: [MSTEE.Splitter] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D (the data entry has 112 more characters).
HKLM\...\RunOnce: [WDM_DRMKAUD] => rundll32.exe streamci,StreamingDeviceSetup {EEC12DB6-AD9C-4168-8658-B03DAEF417FE},{ABD61E00-9350-47e (the data entry has 118 more characters).
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @microsoft.com/Lync,version=15.0 - C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\radka_000\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF HKLM\...\Firefox\Extensions: [zulagames@ZulaGames.com] - C:\Users\r\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com
FF Extension: No Name - C:\Users\r\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013-07-30]
FF HKLM\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\r\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com
FF Extension: No Name - C:\Users\r\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013-07-30]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-16]

Chrome:
=======
CHR Extension: (McAfee Security Scan+) - C:\Users\radka_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-03-16]
CHR Extension: (avast! Online Security) - C:\Users\radka_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-21]
CHR Extension: (Peněženka Google) - C:\Users\radka_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-23]
CHR HKLM\...\Chrome\Extension: [gflandjopdloblmlcoiidmncpinmmacn] - C:\Users\r\AppData\Roaming\zulagames\zulagames.crx [2013-09-23]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-16]
CHR HKLM\...\Chrome\Extension: [nohfdhapjjlndfgjnmdlcabloeembdkj] - C:\Users\r\AppData\Roaming\BabSolution\CR\delta2.crx [2014-07-16]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-16] (AVAST Software)
R2 lmhosts; C:\Windows\system32\svchost.exe [23040 2012-09-20] (Microsoft Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [235696 2014-04-09] (McAfee, Inc.)
R2 NlaSvc; C:\Windows\System32\svchost.exe [23040 2012-09-20] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [23040 2012-09-20] (Microsoft Corporation)
R2 slsvc; C:\Windows\slsvc.exe [10240 2012-09-25] (Microsoft Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14480 2014-03-28] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag.sys [23040 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem.sys [27776 2012-07-03] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\system32\DRIVERS\lgandnetndis.sys [73728 2012-07-04] (LG Electronics Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-07-16] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-07-16] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-07-16] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-07-16] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-07-16] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-07-16] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [71944 2014-07-16] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-07-16] ()
R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [24576 2012-07-26] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [242240 2013-04-25] (DT Soft Ltd)
R3 L1E; C:\Windows\system32\DRIVERS\L1E62x86.sys [55296 2012-06-02] (Atheros Communications, Inc.)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R3 WUDFSensorLP; C:\Windows\system32\DRIVERS\WUDFRd.sys [155136 2012-07-26] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [155136 2012-07-26] (Microsoft Corporation)
S1 czkcbnii; \??\C:\Windows\system32\drivers\czkcbnii.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-07-24 16:46 - 2014-07-24 16:47 - 00010760 _____ () C:\Users\radka_000\Desktop\FRST.txt
2014-07-24 16:46 - 2014-07-24 16:46 - 01084416 _____ (Farbar) C:\Users\radka_000\Desktop\FRST.exe
2014-07-24 16:46 - 2014-07-24 16:46 - 00000000 ____D () C:\Users\radka_000\Desktop\FRST-OlderVersion
2014-07-23 20:19 - 2014-07-23 20:19 - 00000000 ____D () C:\Users\radka_000\AppData\Local\GHISLER
2014-07-23 20:13 - 2014-07-23 20:13 - 00002397 _____ () C:\Users\radka_000\Documents\fixlist.txt
2014-07-23 16:10 - 2014-07-23 16:10 - 00006470 _____ () C:\Users\radka_000\Documents\Addition.zip
2014-07-23 16:09 - 2014-07-23 16:09 - 00032228 _____ () C:\Users\radka_000\Documents\Addition.txt
2014-07-23 16:09 - 2014-07-23 16:09 - 00026586 _____ () C:\Users\radka_000\Documents\FRST.txt
2014-07-23 16:05 - 2014-07-24 16:46 - 00000000 ____D () C:\FRST
2014-07-23 15:44 - 2014-07-23 15:44 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-23 15:44 - 2014-07-23 15:44 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-07-19 16:03 - 2014-07-23 20:51 - 00000000 ____D () C:\Program Files\ESET
2014-07-17 06:10 - 2014-07-17 06:10 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\AVAST Software
2014-07-16 22:44 - 2014-07-16 22:44 - 00420944 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-16 20:04 - 2014-07-16 20:04 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\Dropbox
2014-07-16 20:04 - 2014-07-16 20:04 - 00000000 ____D () C:\Users\r\AppData\Roaming\DropboxMaster
2014-07-16 20:03 - 2014-07-16 20:03 - 00000000 ____D () C:\Users\r\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-07-16 20:00 - 2014-07-16 20:04 - 00000000 ____D () C:\Users\r\AppData\Roaming\Dropbox
2014-07-16 19:50 - 2014-07-16 19:50 - 00000000 ____D () C:\Users\r\AppData\Roaming\AVAST Software
2014-07-16 19:49 - 2014-07-23 19:58 - 00002047 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-16 19:49 - 2014-07-16 19:49 - 36818984 _____ (Dropbox, Inc.) C:\Users\Public\Desktop\DropboxInstallerAvast.exe
2014-07-16 19:49 - 2014-07-16 19:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-16 19:48 - 2014-07-16 19:49 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00276432 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-16 19:48 - 2014-07-16 19:48 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00071944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-16 19:48 - 2014-07-16 19:48 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-16 19:47 - 2014-07-16 19:47 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-16 19:46 - 2014-07-16 19:47 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-16 19:44 - 2014-07-16 20:16 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\AdobeChk
2014-07-16 19:38 - 2014-07-16 19:38 - 04862664 _____ (AVAST Software) C:\Users\radka_000\Desktop\avast_free_antivirus_setup_online.exe
2014-07-13 15:23 - 2014-07-13 15:23 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-07-13 12:57 - 2014-07-13 13:03 - 00000000 ____D () C:\Users\radka_000\Desktop\Auto + terárko
2014-07-11 20:53 - 2014-06-19 02:54 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-11 20:53 - 2014-06-19 02:53 - 14368768 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 01766400 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 01141760 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 00661504 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-11 20:53 - 2014-06-19 02:53 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 13732352 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 02863616 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 02051072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 01440768 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-11 20:53 - 2014-06-19 02:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-11 20:53 - 2014-06-19 02:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-11 20:53 - 2014-06-19 02:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-11 20:53 - 2014-06-18 01:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-11 20:53 - 2014-06-11 05:39 - 03389440 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-11 20:53 - 2014-06-06 12:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-11 20:53 - 2014-05-30 01:31 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-11 20:53 - 2014-05-30 01:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-07-11 20:53 - 2014-05-03 06:53 - 05582680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-07-11 20:53 - 2014-05-03 06:51 - 01475056 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-07-11 20:53 - 2014-05-02 00:39 - 00833024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-07-11 20:53 - 2014-04-30 00:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-07-11 20:53 - 2014-04-24 01:51 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-07-11 20:53 - 2014-04-24 01:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-11 20:53 - 2014-02-08 06:08 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-07-11 20:52 - 2014-05-30 00:22 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-11 20:47 - 2014-07-11 20:47 - 11204096 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2014-07-06 13:38 - 2014-05-15 01:08 - 00052656 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-07-06 13:38 - 2014-05-15 00:42 - 02600448 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-07-06 13:38 - 2014-05-15 00:42 - 01556992 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-07-06 13:38 - 2014-05-15 00:42 - 00629248 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-07-06 13:38 - 2014-05-15 00:42 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-07-06 13:38 - 2014-05-15 00:42 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-07-06 13:38 - 2014-05-15 00:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-07-06 13:38 - 2014-05-15 00:42 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-07-06 13:38 - 2014-05-15 00:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2014-06-28 18:42 - 2014-06-28 18:54 - 00000000 ____D () C:\Users\radka_000\Desktop\Telefon

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-07-24 16:47 - 2014-07-24 16:46 - 00010760 _____ () C:\Users\radka_000\Desktop\FRST.txt
2014-07-24 16:47 - 2013-09-15 09:23 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-24 16:47 - 2013-07-30 10:11 - 00000944 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-24 16:46 - 2014-07-24 16:46 - 01084416 _____ (Farbar) C:\Users\radka_000\Desktop\FRST.exe
2014-07-24 16:46 - 2014-07-24 16:46 - 00000000 ____D () C:\Users\radka_000\Desktop\FRST-OlderVersion
2014-07-24 16:46 - 2014-07-23 16:05 - 00000000 ____D () C:\FRST
2014-07-24 16:42 - 2013-05-19 09:22 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\Skype
2014-07-24 16:09 - 2013-04-25 12:29 - 01090566 _____ () C:\Windows\WindowsUpdate.log
2014-07-24 16:00 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\system32\sru
2014-07-24 15:59 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-07-24 13:38 - 2013-07-30 10:11 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-23 21:25 - 2013-04-25 12:34 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-23 21:25 - 2012-07-26 08:04 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-23 20:54 - 2014-01-02 14:40 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\GHISLER
2014-07-23 20:54 - 2013-04-25 12:29 - 00000000 ____D () C:\Users\r
2014-07-23 20:54 - 2012-07-26 08:53 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-07-23 20:53 - 2013-08-16 16:57 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-07-23 20:52 - 2013-07-30 16:31 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\PerformerSoft
2014-07-23 20:52 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\registration
2014-07-23 20:51 - 2014-07-19 16:03 - 00000000 ____D () C:\Program Files\ESET
2014-07-23 20:51 - 2013-07-30 11:21 - 00000000 ____D () C:\Users\r\AppData\Roaming\Mozilla
2014-07-23 20:51 - 2013-04-27 16:58 - 00000000 ____D () C:\Users\r\AppData\Roaming\Skype
2014-07-23 20:47 - 2013-04-25 12:25 - 00000000 __SHD () C:\Recovery
2014-07-23 20:47 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-07-23 20:19 - 2014-07-23 20:19 - 00000000 ____D () C:\Users\radka_000\AppData\Local\GHISLER
2014-07-23 20:13 - 2014-07-23 20:13 - 00002397 _____ () C:\Users\radka_000\Documents\fixlist.txt
2014-07-23 19:58 - 2014-07-16 19:49 - 00002047 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-23 19:57 - 2013-04-28 10:35 - 00000000 ____D () C:\Users\radka_000
2014-07-23 18:34 - 2013-04-25 12:22 - 00022370 _____ () C:\Windows\PFRO.log
2014-07-23 16:10 - 2014-07-23 16:10 - 00006470 _____ () C:\Users\radka_000\Documents\Addition.zip
2014-07-23 16:09 - 2014-07-23 16:09 - 00032228 _____ () C:\Users\radka_000\Documents\Addition.txt
2014-07-23 16:09 - 2014-07-23 16:09 - 00026586 _____ () C:\Users\radka_000\Documents\FRST.txt
2014-07-23 15:44 - 2014-07-23 15:44 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-23 15:44 - 2014-07-23 15:44 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-07-22 11:17 - 2013-08-16 17:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-20 08:55 - 2013-04-25 12:28 - 01714430 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-18 16:50 - 2013-07-30 10:13 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-17 06:10 - 2014-07-17 06:10 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\AVAST Software
2014-07-16 22:44 - 2014-07-16 22:44 - 00420944 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-16 20:16 - 2014-07-16 19:44 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\AdobeChk
2014-07-16 20:04 - 2014-07-16 20:04 - 00000000 ____D () C:\Users\radka_000\AppData\Roaming\Dropbox
2014-07-16 20:04 - 2014-07-16 20:04 - 00000000 ____D () C:\Users\r\AppData\Roaming\DropboxMaster
2014-07-16 20:04 - 2014-07-16 20:00 - 00000000 ____D () C:\Users\r\AppData\Roaming\Dropbox
2014-07-16 20:03 - 2014-07-16 20:03 - 00000000 ____D () C:\Users\r\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-07-16 19:50 - 2014-07-16 19:50 - 00000000 ____D () C:\Users\r\AppData\Roaming\AVAST Software
2014-07-16 19:49 - 2014-07-16 19:49 - 36818984 _____ (Dropbox, Inc.) C:\Users\Public\Desktop\DropboxInstallerAvast.exe
2014-07-16 19:49 - 2014-07-16 19:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-16 19:49 - 2014-07-16 19:48 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00276432 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-16 19:48 - 2014-07-16 19:48 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00071944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-16 19:48 - 2014-07-16 19:48 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-16 19:48 - 2014-07-16 19:48 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-16 19:47 - 2014-07-16 19:47 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-16 19:47 - 2014-07-16 19:46 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-16 19:38 - 2014-07-16 19:38 - 04862664 _____ (AVAST Software) C:\Users\radka_000\Desktop\avast_free_antivirus_setup_online.exe
2014-07-13 17:44 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\rescache
2014-07-13 15:23 - 2014-07-13 15:23 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-07-13 15:23 - 2014-03-12 20:07 - 00000000 ___RD () C:\Program Files\Skype
2014-07-13 15:23 - 2013-04-27 16:58 - 00000000 ____D () C:\ProgramData\Skype
2014-07-13 13:03 - 2014-07-13 12:57 - 00000000 ____D () C:\Users\radka_000\Desktop\Auto + terárko
2014-07-13 09:49 - 2012-07-26 08:03 - 00032179 _____ () C:\Windows\setupact.log
2014-07-13 09:24 - 2013-04-25 13:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-07-13 09:24 - 2013-04-25 13:25 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-12 13:33 - 2012-07-26 10:07 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-12 13:33 - 2012-07-26 08:53 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 13:33 - 2012-07-26 08:53 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-12 13:33 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\WinStore
2014-07-12 13:33 - 2012-07-26 08:43 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-11 20:47 - 2014-07-11 20:47 - 11204096 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2014-07-01 19:22 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-06-28 18:54 - 2014-06-28 18:42 - 00000000 ____D () C:\Users\radka_000\Desktop\Telefon
2014-06-26 22:53 - 2013-11-14 16:14 - 00703968 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-06-26 22:53 - 2013-11-14 16:14 - 00105440 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl

Some content of TEMP:
====================
C:\Users\radka_000\AppData\Local\Temp\SkypeSetup.exe
C:\Users\radka_000\AppData\Local\Temp\vlc-2.0.8-win32.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

Já ale chtěl log RSIT: http://forum.viry.cz/viewtopic.php?f=13&t=130786 . Dal jste FRST a podle mne FRST nemazal.

Aha.
Tak to jsem to teda zvoral
Sorry.

Logfile of random's system information tool 1.10 (written by random/random)
Run by r at 2014-07-24 20:16:54
Microsoft Windows 8 Enterprise
System drive C: has 182 GB (77%) free of 235 GB
Total RAM: 2047 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:17:08, on 24. 7. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17028)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhostex.exe
C:\Windows\Explorer.EXE
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x86__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
C:\Users\radka_000\AppData\Local\Programs\Opera\opera.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\radka_000\Desktop\FRST.exe
C:\Windows\SYSTEM32\notepad.exe
C:\Windows\SYSTEM32\notepad.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\McAfee Security Scan\3.8.150\McUicnt.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\radka_000\AppData\Local\Opera\Opera\temporary_downloads\RSIT.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\trend micro\r.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [MSPCLOCK] rundll32.exe streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D0-A5D6-28DB04C10000},{53172480-4791-11D0-A5D6-28DB04C10000}
O4 - HKLM\..\RunOnce: [MSPQM] rundll32.exe streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196}
O4 - HKLM\..\RunOnce: [MSKSSRV] rundll32.exe streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196}
O4 - HKLM\..\RunOnce: [MSTEE.CxTransform] rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install
O4 - HKLM\..\RunOnce: [MSTEE.Splitter] rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install
O4 - HKLM\..\RunOnce: [WDM_DRMKAUD] rundll32.exe streamci,StreamingDeviceSetup {EEC12DB6-AD9C-4168-8658-B03DAEF417FE},{ABD61E00-9350-47e2-A632-4438B90C6641},{FFBB6E3F-CCFE-4D84-90D9-421418B03A8E},C:\Windows\inf\WDMAUDIO.inf,WDM_DRMKAUD.Interface.Install
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://www.samsungsetup.com
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 6247 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-05-21 153248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-07-16 457712]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-16 4086432]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"MSPCLOCK"=streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D0-A5D6-28DB04C10000},{53172480-4791-11D0-A5D6-28DB04C10000} []
"MSPQM"=streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196} []
"MSKSSRV"=streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196} []
"MSTEE.CxTransform"=streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install []
"MSTEE.Splitter"=streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install []
"WDM_DRMKAUD"=streamci,StreamingDeviceSetup {EEC12DB6-AD9C-4168-8658-B03DAEF417FE},{ABD61E00-9350-47e2-A632-4438B90C6641},{FFBB6E3F-CCFE-4D84-90D9-421418B03A8E},C:\Windows\inf\WDMAUDIO.inf,WDM_DRMKAUD.Interface.Install []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-05-08 21444224]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-07-24 20:16:54 ----D---- C:\rsit
2014-07-24 20:16:54 ----D---- C:\Program Files\trend micro
2014-07-23 16:05:40 ----D---- C:\FRST
2014-07-23 15:44:54 ----D---- C:\ProgramData\Malwarebytes
2014-07-23 15:44:54 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2014-07-19 16:03:34 ----D---- C:\Program Files\ESET
2014-07-16 22:44:37 ----A---- C:\Windows\system32\FNTCACHE.DAT
2014-07-16 20:04:15 ----D---- C:\Users\r\AppData\Roaming\DropboxMaster
2014-07-16 20:00:35 ----D---- C:\Users\r\AppData\Roaming\Dropbox
2014-07-16 19:50:32 ----D---- C:\Users\r\AppData\Roaming\AVAST Software
2014-07-16 19:48:55 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2014-07-16 19:48:55 ----A---- C:\Windows\system32\drivers\aswStm.sys
2014-07-16 19:48:55 ----A---- C:\Windows\system32\drivers\aswsp.sys
2014-07-16 19:48:55 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2014-07-16 19:48:55 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2014-07-16 19:48:55 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2014-07-16 19:48:55 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2014-07-16 19:48:55 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2014-07-16 19:48:53 ----A---- C:\Windows\system32\aswBoot.exe
2014-07-16 19:48:45 ----A---- C:\Windows\avastSS.scr
2014-07-16 19:47:37 ----D---- C:\Program Files\AVAST Software
2014-07-16 19:46:48 ----D---- C:\ProgramData\AVAST Software
2014-07-13 15:23:11 ----D---- C:\Program Files\Common Files\Skype
2014-07-11 20:53:26 ----A---- C:\Windows\system32\qedit.dll
2014-07-11 20:53:24 ----A---- C:\Windows\system32\WSShared.dll
2014-07-11 20:53:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-07-11 20:53:24 ----A---- C:\Windows\system32\ntdll.dll
2014-07-11 20:53:24 ----A---- C:\Windows\system32\localspl.dll
2014-07-11 20:53:24 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2014-07-11 20:53:23 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-11 20:53:23 ----A---- C:\Windows\system32\Robocopy.exe
2014-07-11 20:53:23 ----A---- C:\Windows\system32\iedkcs32.dll
2014-07-11 20:53:19 ----A---- C:\Windows\system32\mshtml.dll
2014-07-11 20:53:13 ----A---- C:\Windows\system32\ieframe.dll
2014-07-11 20:53:12 ----A---- C:\Windows\system32\jscript9.dll
2014-07-11 20:53:12 ----A---- C:\Windows\system32\iertutil.dll
2014-07-11 20:53:11 ----A---- C:\Windows\system32\wininet.dll
2014-07-11 20:53:11 ----A---- C:\Windows\system32\uxtheme.dll
2014-07-11 20:53:11 ----A---- C:\Windows\system32\urlmon.dll
2014-07-11 20:53:11 ----A---- C:\Windows\system32\jscript.dll
2014-07-11 20:53:11 ----A---- C:\Windows\system32\dxtrans.dll
2014-07-11 20:53:11 ----A---- C:\Windows\system32\dxtmsft.dll
2014-07-11 20:53:10 ----A---- C:\Windows\system32\UXInit.dll
2014-07-11 20:53:10 ----A---- C:\Windows\system32\msrating.dll
2014-07-11 20:53:10 ----A---- C:\Windows\system32\mshtmled.dll
2014-07-11 20:53:10 ----A---- C:\Windows\system32\msfeeds.dll
2014-07-11 20:53:10 ----A---- C:\Windows\system32\jsproxy.dll
2014-07-11 20:53:10 ----A---- C:\Windows\system32\iesysprep.dll
2014-07-11 20:53:10 ----A---- C:\Windows\system32\iesetup.dll
2014-07-11 20:53:10 ----A---- C:\Windows\system32\iernonce.dll
2014-07-11 20:53:10 ----A---- C:\Windows\system32\ie4uinit.exe
2014-07-11 20:53:04 ----A---- C:\Windows\system32\win32k.sys
2014-07-11 20:53:03 ----A---- C:\Windows\system32\osk.exe
2014-07-11 20:53:02 ----A---- C:\Windows\system32\lsasrv.dll
2014-07-11 20:53:01 ----A---- C:\Windows\system32\SHCore.dll
2014-07-11 20:52:58 ----A---- C:\Windows\system32\drivers\afd.sys
2014-07-11 20:47:08 ----A---- C:\Windows\system32\FlashPlayerInstaller.exe
2014-07-06 13:38:45 ----A---- C:\Windows\system32\wudriver.dll
2014-07-06 13:38:41 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-07-06 13:38:41 ----A---- C:\Windows\system32\wuauclt.exe
2014-07-06 13:38:41 ----A---- C:\Windows\system32\storewuauth.dll
2014-07-06 13:38:39 ----A---- C:\Windows\system32\wucltux.dll
2014-07-06 13:38:39 ----A---- C:\Windows\system32\wuaueng.dll
2014-07-06 13:38:39 ----A---- C:\Windows\system32\wuapi.dll
2014-07-06 13:38:21 ----A---- C:\Windows\system32\wuwebv.dll
2014-07-06 13:38:21 ----A---- C:\Windows\system32\wuapp.exe

======List of files/folders modified in the last 1 month======

2014-07-24 20:17:04 ----D---- C:\Windows\Prefetch
2014-07-24 20:16:54 ----RD---- C:\Program Files
2014-07-24 20:03:18 ----D---- C:\Windows\Temp
2014-07-24 19:02:00 ----D---- C:\Windows\system32\sru
2014-07-24 15:59:37 ----D---- C:\Windows\Microsoft.NET
2014-07-23 21:25:34 ----D---- C:\ProgramData\NVIDIA
2014-07-23 20:54:32 ----RD---- C:\Windows\System32
2014-07-23 20:54:32 ----RD---- C:\Windows\ImmersiveControlPanel
2014-07-23 20:54:32 ----D---- C:\Windows\Tasks
2014-07-23 20:54:30 ----D---- C:\Windows\system32\cs-CZ
2014-07-23 20:54:30 ----D---- C:\Windows\system32\catroot2
2014-07-23 20:53:45 ----D---- C:\ProgramData\McAfee Security Scan
2014-07-23 20:52:49 ----D---- C:\Windows\system32\wbem
2014-07-23 20:52:48 ----D---- C:\Windows\registration
2014-07-23 20:52:38 ----D---- C:\Windows\inf
2014-07-23 20:51:44 ----D---- C:\Users\r\AppData\Roaming\Skype
2014-07-23 20:51:44 ----D---- C:\Users\r\AppData\Roaming\Mozilla
2014-07-23 20:51:42 ----HD---- C:\ProgramData
2014-07-23 20:47:07 ----D---- C:\Windows\system32\LogFiles
2014-07-23 20:47:05 ----SHD---- C:\Recovery
2014-07-23 19:58:43 ----SHD---- C:\System Volume Information
2014-07-23 19:58:37 ----D---- C:\Windows\system32\Tasks
2014-07-23 19:58:21 ----D---- C:\Windows
2014-07-23 19:56:26 ----D---- C:\Windows\system32\config
2014-07-22 11:17:12 ----D---- C:\Windows\system32\MRT
2014-07-20 08:55:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-07-19 16:03:35 ----SD---- C:\Windows\Downloaded Program Files
2014-07-17 19:59:16 ----D---- C:\Windows\WinSxS
2014-07-16 21:31:39 ----D---- C:\Windows\system32\Drivers
2014-07-13 17:44:28 ----D---- C:\Windows\rescache
2014-07-13 15:23:15 ----SHD---- C:\Windows\Installer
2014-07-13 15:23:14 ----D---- C:\ProgramData\Skype
2014-07-13 15:23:11 ----RD---- C:\Program Files\Skype
2014-07-13 15:23:11 ----D---- C:\Program Files\Common Files
2014-07-13 09:24:33 ----D---- C:\ProgramData\Microsoft Help
2014-07-13 09:22:35 ----RSD---- C:\Windows\assembly
2014-07-12 13:33:27 ----D---- C:\Program Files\Internet Explorer
2014-07-12 13:33:26 ----D---- C:\Windows\WinStore
2014-07-12 13:33:25 ----D---- C:\Program Files\Windows Journal
2014-07-12 13:33:22 ----D---- C:\Windows\system32\DriverStore
2014-07-12 13:33:19 ----D---- C:\Windows\CbsTemp
2014-07-01 19:22:18 ----HD---- C:\Program Files\WindowsApps
2014-07-01 19:22:18 ----D---- C:\Windows\AUInstallAgent
2014-06-26 22:53:24 ----A---- C:\Windows\system32\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-07-16 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-07-16 192352]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-07-16 81768]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-07-16 779536]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-07-16 414520]
R1 dtsoftbus01;@oem3.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2013-04-25 242240]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-07-16 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-07-16 67824]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-07-16 71944]
R3 L1E;@netl1e86.inf,%L1E.Service.DispName%;Ovladač miniportu NDIS pro adaptér Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x86.sys [2012-06-02 55296]
R3 MTsensor;@oem1.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2013-03-15 8952608]
R3 WUDFSensorLP;@locationprovider.inf,%WudfLocationProviderDisplayName%;Služba Reflektor UMDF pro zprostředkovatele umístění (LocationProvider); C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
R3 WUDFWpdFs;WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
R3 WUDFWpdMtp;WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S1 czkcbnii;czkcbnii; \??\C:\Windows\system32\drivers\czkcbnii.sys []
S3 AndNetDiag;@oem15.inf,%Lgsi.Service.Name%;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag.sys [2012-07-03 23040]
S3 ANDNetModem;@oem17.inf,%LGSI.Service.Name%;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem.sys [2012-07-03 27776]
S3 andnetndis;@oem18.inf,%LgNdis.Service.DispName%;LGE AndroidNet NDIS Ethernet Adapter; C:\Windows\system32\DRIVERS\lgandnetndis.sys [2012-07-04 73728]
S3 dg_ssudbus;@oem8.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-08-20 84248]
S3 ssudmdm;@oem9.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-08-20 182680]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-02 36864]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2012-07-26 46592]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-15 634144]
R2 slsvc;Software Licensing Service; C:\Windows\slsvc.exe [2012-09-25 10240]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-03-14 383264]
R3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 235696]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-07-16 50344]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-30 116648]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-15 1266464]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-11 262320]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2012-07-06 43616]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-30 116648]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 150600]

-----------------EOF-----------------

Mohl byste mi prozradit, jak jste přišel k verzi Enterprise, která není volně v prodeji?

Koupil jsem to na Aukro.cz. Kompletní PC. Ale to už je asi rok.
Myslím že to je ještě slušný počítač. Výkon procesoru je pro naše potřeby OK.

Mně jde spíše o to, že Win8Enterprise je stopro nelegální.

Na bedně je štítek Windows 8 PRO OEM SOFTWARE, tak předpokládám že to je vše v pořádku.

Kema píše:Na bedně je štítek Windows 8 PRO OEM SOFTWARE, tak předpokládám že to je vše v pořádku.

To je jen váš dojem. Windows 8 PRO OEM SOFTWARE není Win8Enterprise. To první je je edice Win8, která je vázaná na daný hardware (nelze ji nainstalovat na jiný PC). Tato instalace původně byla nainstalována. Kdežto Win8Enterprise je nejvyšší verze edice Win8, která je dostupná pouze organizacím. Ve volném prodeji ji nekoupíte.

Aha. Takže tam mám nainstalovat Windows 8 PRO nebo vyčistíme systém který tam teď je?