Prosím o kontrolu logu, sami se otvírají okna v prohlížeči a pc je spomalený
Logfile of random's system information tool 1.10 (written by random/random)
Run by uzivatel at 2014-08-04 15:53:17
Microsoft Windows 8.1
System drive C: has 435 GB (91%) free of 477 GB
Total RAM: 8151 MB (83% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:53:24, on 4. 8. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.exe
C:\Program Files (x86)\WiFi Protector\wifiProtLauncher.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
C:\Program Files\trend micro\uzivatel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=16194
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: CrossriderApp0061752 - {11111111-1111-1111-1111-110611171152} - C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-bho.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [WiFi Protector] C:\Program Files (x86)\WiFi Protector\WiFiProtLauncher.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\uzivatel\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: WiFi Protector Service (wifiProtService) - Unknown owner - C:\Program Files (x86)\WiFi Protector\wifiProtService.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9370 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\WiFi Protector\wifiProtService.exe" --startWPService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
C:\Windows\SysWOW64\PnkBstrA.exe
dashost.exe {1a4a7ec2-c882-4488-a73c7a00705b0a1b}
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
atieclxx
taskhostex.exe
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
szndesktop.exe default start
"C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe"
"C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" /logon
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\splwow64.exe 8192
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE"
"C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.exe" /MainProcess 6972 /PrinterName "Canon MG4200 series" /ScannerName "Canon MG4200 series" /Language cs-CZ /Startup
"C:\Program Files (x86)\WiFi Protector\wifiProtLauncher.exe"
"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=1368.1362e150.378307192 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 1368 "\\.\pipe\gecko-crash-server-pipe.1368" plugin
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe" --proxy-stub-channel=Flash528.642C0D80.8509 --host-broker-channel=Flash528.642C0D80.19408 --host-pid=528 --host-npapi-version=27 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_14_0_0_145.dll"
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe" --channel=6496.009DF8B4.2036218593 --proxy-stub-channel=Flash528.642C0D80.8509 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_14_0_0_145.dll" --host-npapi-version=27 --type=renderer
taskeng.exe {E9C5222D-8B8A-4D2D-83A3-E503BC0A7AE9}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe95_ Global\UsGthrCtrlFltPipeMssGthrPipe95 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 584 588 596 65536 592
"C:\Users\uzivatel\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AmiUpdXp.job - C:\Users\uzivatel\AppData\Local\13554\a4340.exe
C:\Windows\tasks\bfe2bb3e-b103-4904-8802-40c5ef695db1-4.job - C:\Program Files (x86)\Internet Speed Checker\bfe2bb3e-b103-4904-8802-40c5ef695db1-4.exe /nlEPiYGF /GQQsLkHHf='Internet Speed Checker' /faCBeIVvx='C:\Program Files (x86)\Internet Speed Checker\bfe2bb3e-b103-4904-8802-40c5ef695db1.xpi' /GdQeo=61752 /NaafkwC='001726' /duizlkZc='0' /PepKxhxx='0' /IKcgB=164B4EB7CF0A4A30B0CC3BD83856F505IE /xGRrNffF=b28e687dc51c5dd0f7236036e2aebb7d /GhtkXzDLm=1_34_07_01 /SLXCxEuez=1.34.7.1 /qLytFpJ=1406295998 /FQDVdSQU=http://stats.infodatacloud.com /hfkqSKX=http://errors.infodatacloud.com /dPrrKLd=300 /RbRoaAKOE=sepherdwilbur@aol.com /nOshYcP=0.95 /NkGmMf=asepherdwilburaolcom61752 /gwUBcTIqH=https://w9u6a2p6.ssl.hwcdn.net/plugin/f ... /61752.rdf /JIYWmp='Internet Speed Checker' /kSNocwmr='Test your internet speed with 1-click' /fEoeC='Speedchecker' /oaRkGWqRm=ff /KhmPADjBg='{"asw":[0, 12582917, 0]}' /vXWcADE /dhARYxx /jbjQc /zSHmDC='http://update.infodatacloud.com/ff_agen ... pdate.json' /wfGEoLQB='task' /OgJZENyUj=''
C:\Windows\tasks\bfe2bb3e-b103-4904-8802-40c5ef695db1-5.job - C:\Program Files (x86)\Internet Speed Checker\bfe2bb3e-b103-4904-8802-40c5ef695db1-5.exe /SNbADvo /GQQsLkHHf='Internet Speed Checker' /GdQeo=61752 /NaafkwC='001726' /duizlkZc='0' /PepKxhxx='0' /IKcgB=164B4EB7CF0A4A30B0CC3BD83856F505IE /xGRrNffF=b28e687dc51c5dd0f7236036e2aebb7d /GhtkXzDLm=1_34_07_01 /qLytFpJ=1406295998 /FQDVdSQU=http://stats.infodatacloud.com /hfkqSKX=http://errors.infodatacloud.com /EjkMKv=http://ipgeoapi.com/ /uOxoQya=http://update.infodatacloud.com /UBSVJqA=2 /wridOWN=http://logs.infodatacloud.com /zSHmDC='http://update.infodatacloud.com/updater ... pdate.json' /wfGEoLQB='task' /OgJZENyUj=''
C:\Windows\tasks\bfe2bb3e-b103-4904-8802-40c5ef695db1-5_user.job - C:\Program Files (x86)\Internet Speed Checker\bfe2bb3e-b103-4904-8802-40c5ef695db1-5.exe /SNbADvo /GQQsLkHHf='Internet Speed Checker' /GdQeo=61752 /NaafkwC='001726' /duizlkZc='0' /PepKxhxx='0' /IKcgB=164B4EB7CF0A4A30B0CC3BD83856F505IE /xGRrNffF=b28e687dc51c5dd0f7236036e2aebb7d /GhtkXzDLm=1_34_07_01 /qLytFpJ=1406295998 /FQDVdSQU=http://stats.infodatacloud.com /hfkqSKX=http://errors.infodatacloud.com /EjkMKv=http://ipgeoapi.com/ /uOxoQya=http://update.infodatacloud.com /UBSVJqA=2 /wridOWN=http://logs.infodatacloud.com /zSHmDC='http://update.infodatacloud.com/updater ... pdate.json' /uTNEtP /wfGEoLQB='task' /OgJZENyUj=''
C:\Windows\tasks\bfe2bb3e-b103-4904-8802-40c5ef695db1-7.job - C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-nova.exe /GQQsLkHHf='Internet Speed Checker' /GdQeo=61752 /NaafkwC='001726' /duizlkZc='0' /PepKxhxx='0' /IKcgB=164B4EB7CF0A4A30B0CC3BD83856F505IE /xGRrNffF=b28e687dc51c5dd0f7236036e2aebb7d /GhtkXzDLm=1_34_07_01 /SLXCxEuez=1.34.7.1 /qLytFpJ=1406295998 /FQDVdSQU=http://stats.infodatacloud.com /hfkqSKX=http://errors.infodatacloud.com /VqCCHUDnH=http://js.infodatacloud.com /oaRkGWqRm=ff /ZJAzGitk /eHXdyWwA=Internet Speed Checker /vhBomNqck='nova' /aqowXnBc=http://js.clientdemocloud.com /KhmPADjBg='{"asw":[0, 12582917, 0]}' /zSHmDC='http://update.infodatacloud.com/novarun ... pdate.json' /wfGEoLQB='task' /OgJZENyUj=''
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\extensions\
sepherdwilbur@aol.com
{ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\searchplugins\
ask-search.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}]
Internet Speed Checker - C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-bho64.dll [2014-07-25 842600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll [2013-11-28 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-07-25 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}]
Internet Speed Checker - C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-bho.dll [2014-07-25 619880]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2013-11-28 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-07-25 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll [2013-11-28 6126680]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-10-18 13657304]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WiFi Protector"=C:\Program Files (x86)\WiFi Protector\WiFiProtLauncher.exe [2014-06-26 673344]
"cz.seznam.software.autoupdate"=C:\Users\uzivatel\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-30 766208]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2012-04-03 1273448]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"DivXMediaServer"=C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-31 4085896]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-08-04 15:53:18 ----D---- C:\Program Files\trend micro
2014-08-04 15:53:17 ----D---- C:\rsit
2014-08-02 17:29:05 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2014-08-02 17:29:05 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2014-08-02 17:29:05 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-08-02 17:29:05 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-08-02 17:29:04 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2014-08-02 17:29:04 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-08-02 17:29:04 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-08-02 17:29:03 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-08-02 17:29:03 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-08-02 17:29:03 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-08-02 17:29:02 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-08-02 17:29:02 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-08-02 17:29:02 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-08-02 17:29:02 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-08-02 17:29:02 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-08-02 17:29:01 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-08-02 17:29:01 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-08-02 17:29:01 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-08-02 17:29:01 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-07-30 10:16:11 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-07-25 17:48:24 ----D---- C:\Users\uzivatel\AppData\Roaming\uTorrent
2014-07-25 17:32:07 ----D---- C:\Users\uzivatel\AppData\Roaming\DropboxMaster
2014-07-25 17:30:27 ----D---- C:\Users\uzivatel\AppData\Roaming\Dropbox
2014-07-25 17:30:05 ----D---- C:\Users\uzivatel\AppData\Roaming\AVAST Software
2014-07-25 17:29:30 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2014-07-25 17:29:30 ----A---- C:\Windows\system32\drivers\aswStm.sys
2014-07-25 17:29:30 ----A---- C:\Windows\system32\drivers\aswsp.sys
2014-07-25 17:29:30 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2014-07-25 17:29:30 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2014-07-25 17:29:30 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2014-07-25 17:29:30 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2014-07-25 17:29:30 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2014-07-25 17:29:29 ----A---- C:\Windows\system32\aswBoot.exe
2014-07-25 17:29:26 ----A---- C:\Windows\avastSS.scr
2014-07-25 17:28:44 ----D---- C:\Program Files\AVAST Software
2014-07-25 17:27:54 ----D---- C:\ProgramData\AVAST Software
2014-07-25 15:46:41 ----D---- C:\Program Files (x86)\Internet Speed Checker
2014-07-24 18:34:09 ----D---- C:\Users\uzivatel\AppData\Roaming\DivX
2014-07-24 18:32:59 ----D---- C:\Program Files (x86)\DivX
2014-07-24 18:32:40 ----D---- C:\ProgramData\DivX
2014-07-24 18:32:37 ----D---- C:\Program Files (x86)\Seznam.cz
2014-07-24 18:32:24 ----D---- C:\Users\uzivatel\AppData\Roaming\Seznam.cz
2014-07-24 18:31:32 ----D---- C:\Program Files (x86)\globalUpdate
2014-07-24 08:29:10 ----D---- C:\Users\uzivatel\AppData\Roaming\TMNT
2014-07-09 21:11:17 ----SD---- C:\Windows\system32\CompatTel
2014-07-09 18:56:17 ----A---- C:\Windows\system32\termsrv.dll
2014-07-09 17:28:22 ----A---- C:\Windows\system32\win32k.sys
2014-07-09 17:28:22 ----A---- C:\Windows\system32\osk.exe
2014-07-09 17:28:21 ----A---- C:\Windows\SYSWOW64\osk.exe
2014-07-09 17:28:20 ----A---- C:\Windows\system32\drivers\afd.sys
2014-07-09 17:28:18 ----A---- C:\Windows\system32\lsasrv.dll
2014-07-09 17:28:18 ----A---- C:\Windows\system32\drivers\cng.sys
2014-07-09 17:28:18 ----A---- C:\Windows\system32\certcli.dll
2014-07-09 17:28:17 ----A---- C:\Windows\SYSWOW64\certcli.dll
2014-07-09 17:28:17 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-07-09 17:28:17 ----A---- C:\Windows\system32\adtschema.dll
2014-07-09 17:27:26 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-07-09 17:27:26 ----A---- C:\Windows\system32\mshtml.dll
2014-07-09 17:27:26 ----A---- C:\Windows\system32\iedkcs32.dll
2014-07-09 17:27:25 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-07-09 17:27:17 ----A---- C:\Windows\system32\jscript9.dll
2014-07-09 17:27:16 ----A---- C:\Windows\system32\ieframe.dll
2014-07-09 17:27:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-07-09 17:27:12 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-07-09 17:27:10 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-07-09 17:27:10 ----A---- C:\Windows\system32\urlmon.dll
2014-07-09 17:27:09 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-07-09 17:27:09 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-07-09 17:27:09 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-07-09 17:27:09 ----A---- C:\Windows\system32\wininet.dll
2014-07-09 17:27:09 ----A---- C:\Windows\system32\iertutil.dll
2014-07-09 17:27:09 ----A---- C:\Windows\system32\dxtrans.dll
2014-07-09 17:27:09 ----A---- C:\Windows\system32\dxtmsft.dll
2014-07-09 17:27:08 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-07-09 17:27:08 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-07-09 17:27:08 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-07-09 17:27:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-07-09 17:27:08 ----A---- C:\Windows\system32\mshtmled.dll
2014-07-09 17:27:08 ----A---- C:\Windows\system32\msfeeds.dll
2014-07-09 17:27:08 ----A---- C:\Windows\system32\ieapfltr.dll
2014-07-09 17:27:08 ----A---- C:\Windows\system32\ie4uinit.exe
2014-07-09 17:27:06 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-07-09 17:27:06 ----A---- C:\Windows\system32\qedit.dll
2014-07-09 17:27:04 ----A---- C:\Windows\system32\devinv.dll
2014-07-09 17:27:04 ----A---- C:\Windows\system32\aepdu.dll
2014-07-09 17:27:04 ----A---- C:\Windows\system32\aeinv.dll
2014-07-09 17:27:02 ----A---- C:\Windows\system32\twinui.dll
2014-07-09 17:27:01 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2014-07-09 17:27:01 ----A---- C:\Windows\SYSWOW64\twinui.dll
2014-07-09 17:27:01 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2014-07-09 17:27:01 ----A---- C:\Windows\system32\wuaueng.dll
2014-07-09 17:27:01 ----A---- C:\Windows\system32\wuauclt.exe
2014-07-09 17:27:01 ----A---- C:\Windows\system32\WSShared.dll
2014-07-09 17:27:01 ----A---- C:\Windows\system32\twinui.appcore.dll
2014-07-09 17:27:01 ----A---- C:\Windows\system32\twinapi.appcore.dll
2014-07-09 17:27:00 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-07-09 17:27:00 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-07-09 17:27:00 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 17:27:00 ----A---- C:\Windows\system32\wudriver.dll
2014-07-09 17:27:00 ----A---- C:\Windows\system32\wuapi.dll
2014-07-09 17:27:00 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
======List of files/folders modified in the last 1 month======
2014-08-04 15:53:20 ----D---- C:\Windows\Prefetch
2014-08-04 15:53:19 ----D---- C:\Program Files (x86)\WiFi Protector
2014-08-04 15:53:18 ----RD---- C:\Program Files
2014-08-04 15:51:00 ----D---- C:\Windows\Temp
2014-08-04 15:02:00 ----D---- C:\Windows\system32\sru
2014-08-04 07:12:16 ----D---- C:\Windows\Microsoft.NET
2014-08-02 21:24:59 ----D---- C:\ProgramData\CanonIJPLM
2014-08-02 17:29:20 ----SHD---- C:\Windows\Installer
2014-08-02 17:29:05 ----RD---- C:\Windows\System32
2014-08-02 17:29:05 ----D---- C:\Windows\SysWOW64
2014-08-02 17:28:14 ----SHD---- C:\System Volume Information
2014-08-01 15:44:46 ----SD---- C:\Users\uzivatel\AppData\Roaming\Microsoft
2014-08-01 13:28:03 ----D---- C:\Windows\AppReadiness
2014-08-01 13:28:02 ----HD---- C:\Program Files\WindowsApps
2014-07-31 18:46:36 ----D---- C:\Windows
2014-07-31 18:46:06 ----D---- C:\Windows\Minidump
2014-07-31 17:34:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-31 13:52:05 ----D---- C:\Windows\Tasks
2014-07-31 13:52:05 ----D---- C:\Windows\system32\Tasks
2014-07-30 10:34:35 ----RD---- C:\Program Files (x86)
2014-07-30 09:35:57 ----D---- C:\Windows\system32\config
2014-07-30 08:53:00 ----D---- C:\Windows\system32\DriverStore
2014-07-30 08:28:50 ----D---- C:\Windows\WinSxS
2014-07-29 16:29:33 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-07-29 16:29:14 ----D---- C:\Program Files (x86)\Common Files
2014-07-29 15:44:45 ----D---- C:\ProgramData\Ubisoft
2014-07-29 15:44:31 ----D---- C:\Program Files (x86)\Ubisoft
2014-07-29 15:44:14 ----A---- C:\Windows\Disney.ini
2014-07-28 16:46:49 ----D---- C:\Windows\Inf
2014-07-26 20:08:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-07-26 07:38:26 ----D---- C:\Windows\system32\wdi
2014-07-26 07:36:31 ----D---- C:\Windows\system32\drivers
2014-07-25 17:31:27 ----D---- C:\Program Files (x86)\Microsoft Office
2014-07-25 17:30:40 ----SHD---- C:\$Recycle.Bin
2014-07-25 17:27:54 ----HD---- C:\ProgramData
2014-07-25 15:48:01 ----D---- C:\Program Files\Microsoft Silverlight
2014-07-25 15:48:01 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-07-12 12:57:10 ----D---- C:\Windows\system32\MRT
2014-07-12 12:56:25 ----A---- C:\Windows\system32\MRT.exe
2014-07-12 11:19:35 ----D---- C:\Windows\rescache
2014-07-09 21:11:17 ----RD---- C:\Windows\ToastData
2014-07-09 21:11:17 ----D---- C:\Windows\WinStore
2014-07-09 21:11:17 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-07-09 21:11:17 ----D---- C:\Windows\system32\cs-CZ
2014-07-09 21:11:17 ----D---- C:\Program Files\Internet Explorer
2014-07-09 21:11:17 ----D---- C:\Program Files (x86)\Internet Explorer
2014-07-09 18:57:10 ----D---- C:\Windows\CbsTemp
2014-07-09 18:56:00 ----D---- C:\ProgramData\Microsoft Help
2014-07-09 18:55:34 ----D---- C:\Program Files\Windows Journal
2014-07-09 17:25:30 ----D---- C:\Windows\system32\catroot2
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-07-25 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-07-25 224896]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-07-25 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-07-25 1041168]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-07-25 427360]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-07-25 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-07-25 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-07-25 92008]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-08-31 12528640]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-08-31 618496]
R3 AtiHDAudioService;@oem3.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdWB6.sys [2013-06-22 138240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-10-22 3692632]
R3 RTL8168;@oem5.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-09-09 833752]
R3 tap0901;@oem10.inf,%DeviceDescription%;TAP-Win32 Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2014-04-09 38216]
S0 amdkmafd;@oem1.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\Windows\System32\drivers\amdkmafd.sys [2012-09-23 21160]
S3 netr7364;@netr7364.inf,%General.Service.DispName%;RT73 USB - ovladač rozšiřitelné karty pro bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\netr7364.sys [2013-06-18 729152]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 WUDFSensorLP;@locationprovider.inf,%WudfLocationProviderDisplayName%;Služba Reflektor UMDF pro zprostředkovatele umístění (LocationProvider); C:\Windows\System32\drivers\WUDFRd.sys [2013-08-22 230912]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-08-31 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-08-30 344064]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-07-25 50344]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2012-03-28 140456]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-01-05 75136]
R2 wifiProtService;WiFi Protector Service; C:\Program Files (x86)\WiFi Protector\wifiProtService.exe [2014-06-26 1416528]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-25 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-16 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-25 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-16 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 289256]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-07-30 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: prosím o kontrolu logu
Zdravim 
Odinstalujte McAfee Security Scan
Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Odinstalujte McAfee Security Scan Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
- Ulozte nejlepe na plochu
- Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
- Probehne vytvoreni zalohy a nasledne prohledavani
- Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
- Ulozte nejlepe na plochu
- Ukoncete vsechny programy
- Kliknete na Scan a nasledne Clean
- Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: prosím o kontrolu logu
Dobrý den, vkládám logy...děkuji
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8.1 x64
Ran by uzivatel on Łt 05. 08. 2014 at 9:32:38,76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440644174452}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440644174452}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440644174452}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611051148}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440644174452}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{081E8EFA-9B45-4DBC-8F76-566B1B05C0B3}
~~~ Files
~~~ Folders
~~~ FireFox
Successfully deleted the following from C:\Users\uzivatel\AppData\Roaming\mozilla\firefox\profiles\k4fjvfab.default\prefs.js
user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.Resources_resource_750126.value", "%22data%3Aimage/png%3Bbase64%2CiVBORw0KGgoAAAANSUhEUgAAAP8AAAD/CAYAAAA+CADK
user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.Resources_resource_750127.value", "%22data%3Aimage/png%3Bbase64%2CiVBORw0KGgoAAAANSUhEUgAAABMAAAATCAYAAAByUDbM
user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.Resources_resource_750128.value", "%22data%3Aimage/png%3Bbase64%2CiVBORw0KGgoAAAANSUhEUgAAADAAAAAwCAYAAABXAvmH
user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2C%22
user_pref("extensions.asepherdwilburaolcom61752.61752.thankyou", "hxxp://crossrider.com/thank_you/61752");
Emptied folder: C:\Users\uzivatel\AppData\Roaming\mozilla\firefox\profiles\k4fjvfab.default\minidumps [147 files]
~~~ Event Viewer Logs were cleared
# AdwCleaner v3.302 - Report created 05/08/2014 at 09:26:54
# Updated 30/07/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : uzivatel - LYNX
# Running from : C:\Users\uzivatel\Downloads\adwcleaner_3.302.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
***** [ Files / Folders ] *****
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\Internet Speed Checker
Folder Deleted : C:\Users\uzivatel\AppData\Local\globalUpdate
Folder Deleted : C:\Users\uzivatel\AppData\LocalLow\Internet Speed Checker
File Deleted : C:\Users\uzivatel\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\searchplugins\ask-search.xml
File Deleted : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
***** [ Scheduled Tasks ] *****
Task Deleted : globalUpdateUpdateTaskMachineCore
Task Deleted : globalUpdateUpdateTaskMachineUA
Task Deleted : bfe2bb3e-b103-4904-8802-40c5ef695db1-4
Task Deleted : bfe2bb3e-b103-4904-8802-40c5ef695db1-5
Task Deleted : bfe2bb3e-b103-4904-8802-40c5ef695db1-5_user
Task Deleted : bfe2bb3e-b103-4904-8802-40c5ef695db1-7
***** [ Shortcuts ] *****
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Feature Mananger.lnk
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0061752.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0061752.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0061752.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0061752.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622172252}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655175552}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666176652}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611171152}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622172252}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655175552}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666176652}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\AppDataLow\Software\Internet Speed Checker
Key Deleted : HKLM\Software\GlobalUpdate
Key Deleted : HKLM\Software\Internet Speed Checker
Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17126
-\\ Mozilla Firefox v31.0 (x86 cs)
[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\prefs.js ]
Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.Resources_meta.value", "%7B%22images/icon_255x255.png%22%3A%7B%22id%22%3A750126%2C%22ver%22%3A1%2C%22status%22%3A1%2C%22name%22%3A%22im[...]
Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.__ICM_DOWNLOADS__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2C%22amazon.com%22%2C%22anthropolog[...]
Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.__ICM_LITE__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2C%22amazon.com%22%2C%22anthropologie.co[...]
Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2C%22dealply_p%22%3A%7B%22urls[...]
Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.thankyou", "hxxp://crossrider.com/thank_you/61752");
Line Deleted : user_pref("extensions.crossrider.bic", "14769379d2067b248863a27bcbd5b295");
-\\ Google Chrome v36.0.1985.125
[ File : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted [Extension] : bopakagnckmlgajfccecajhnimjiiedh
*************************
AdwCleaner[R0].txt - [9290 octets] - [05/08/2014 09:25:53]
AdwCleaner[S0].txt - [9323 octets] - [05/08/2014 09:26:54]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9383 octets] ##########
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8.1 x64
Ran by uzivatel on Łt 05. 08. 2014 at 9:32:38,76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440644174452}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440644174452}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440644174452}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611051148}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440644174452}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{081E8EFA-9B45-4DBC-8F76-566B1B05C0B3}
~~~ Files
~~~ Folders
~~~ FireFox
Successfully deleted the following from C:\Users\uzivatel\AppData\Roaming\mozilla\firefox\profiles\k4fjvfab.default\prefs.js
user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.Resources_resource_750126.value", "%22data%3Aimage/png%3Bbase64%2CiVBORw0KGgoAAAANSUhEUgAAAP8AAAD/CAYAAAA+CADK
user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.Resources_resource_750127.value", "%22data%3Aimage/png%3Bbase64%2CiVBORw0KGgoAAAANSUhEUgAAABMAAAATCAYAAAByUDbM
user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.Resources_resource_750128.value", "%22data%3Aimage/png%3Bbase64%2CiVBORw0KGgoAAAANSUhEUgAAADAAAAAwCAYAAABXAvmH
user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2C%22
user_pref("extensions.asepherdwilburaolcom61752.61752.thankyou", "hxxp://crossrider.com/thank_you/61752");
Emptied folder: C:\Users\uzivatel\AppData\Roaming\mozilla\firefox\profiles\k4fjvfab.default\minidumps [147 files]
~~~ Event Viewer Logs were cleared
# AdwCleaner v3.302 - Report created 05/08/2014 at 09:26:54
# Updated 30/07/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : uzivatel - LYNX
# Running from : C:\Users\uzivatel\Downloads\adwcleaner_3.302.exe
# Option : Clean
***** [ Services ] *****
[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
***** [ Files / Folders ] *****
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\Internet Speed Checker
Folder Deleted : C:\Users\uzivatel\AppData\Local\globalUpdate
Folder Deleted : C:\Users\uzivatel\AppData\LocalLow\Internet Speed Checker
File Deleted : C:\Users\uzivatel\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\searchplugins\ask-search.xml
File Deleted : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
***** [ Scheduled Tasks ] *****
Task Deleted : globalUpdateUpdateTaskMachineCore
Task Deleted : globalUpdateUpdateTaskMachineUA
Task Deleted : bfe2bb3e-b103-4904-8802-40c5ef695db1-4
Task Deleted : bfe2bb3e-b103-4904-8802-40c5ef695db1-5
Task Deleted : bfe2bb3e-b103-4904-8802-40c5ef695db1-5_user
Task Deleted : bfe2bb3e-b103-4904-8802-40c5ef695db1-7
***** [ Shortcuts ] *****
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Feature Mananger.lnk
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0061752.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0061752.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0061752.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0061752.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622172252}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655175552}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666176652}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611171152}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622172252}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655175552}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666176652}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\AppDataLow\Software\Internet Speed Checker
Key Deleted : HKLM\Software\GlobalUpdate
Key Deleted : HKLM\Software\Internet Speed Checker
Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17126
-\\ Mozilla Firefox v31.0 (x86 cs)
[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\prefs.js ]
Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.Resources_meta.value", "%7B%22images/icon_255x255.png%22%3A%7B%22id%22%3A750126%2C%22ver%22%3A1%2C%22status%22%3A1%2C%22name%22%3A%22im[...]
Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.__ICM_DOWNLOADS__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2C%22amazon.com%22%2C%22anthropolog[...]
Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.__ICM_LITE__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2C%22amazon.com%22%2C%22anthropologie.co[...]
Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2C%22dealply_p%22%3A%7B%22urls[...]
Line Deleted : user_pref("extensions.asepherdwilburaolcom61752.61752.thankyou", "hxxp://crossrider.com/thank_you/61752");
Line Deleted : user_pref("extensions.crossrider.bic", "14769379d2067b248863a27bcbd5b295");
-\\ Google Chrome v36.0.1985.125
[ File : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted [Extension] : bopakagnckmlgajfccecajhnimjiiedh
*************************
AdwCleaner[R0].txt - [9290 octets] - [05/08/2014 09:25:53]
AdwCleaner[S0].txt - [9323 octets] - [05/08/2014 09:26:54]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9383 octets] ##########
Re: prosím o kontrolu logu
Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
- Do okna vlozte skript nize
Kód: Vybrat vše
autoclean; emptyclsid; iedefaults; FFdefaults; CHRdefaults; emptyalltemp; resethosts;- Nasledne kliknete na Run Script
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: prosím o kontrolu logu
Zoek.exe v5.0.0.0 Updated 04-August-2014
Tool run by uzivatel on Łt 05. 08. 2014 at 11:52:25,94.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\uzivatel\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
5. 8. 2014 11:54:40 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.seznam.cz/");
user_pref("browser.search.order.1", "Ask Search");
Added to C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\prefs.js:
ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_201405.08._1202_.backup
==== Deleting Files \ Folders ======================
C:\PROGRA~3\DivX deleted
C:\PROGRA~2\Mozilla Firefox\defaults\preferences\pref.js deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\uzivatel\Searches deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\extensions\sepherdwilbur@aol.com deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [25. 07. 2014 17:29]
==== Firefox Extensions ======================
ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default
- avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
- Seznam litika - %ProfilePath%\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default
4390CCD3790F8D9C427C0C29590C62D7 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll - Shockwave Flash
65C1D9F74004E775F9A8598476ABE5EE - C:\Users\uzivatel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[25. 07. 2014 17:29]
avast Online Security - uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Seznam Lištička - Rychlá volba - uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak
==== Chromium Startpages ======================
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.seznam.cz/?clid=16194",
==== Chrome Fix ======================
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seznam.cz/?clid=16194"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seznam.cz/?clid=16194"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{011B04D6-9796-4FCC-B4F1-3B904B169647} Zbo§ˇ.cz Url="http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE11SR"
{1BADBDF8-AFB3-432A-9A6C-E6745D7101B6} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_16194"
{1FA410C4-C7EB-4A4E-A412-5CA53F3D37C5} Slovnˇk EN/CZ Url="http://slovnik.seznam.cz/?q={searchTerm ... arch_16194"
{486CF968-FD0A-4535-A2BD-BF14A6887FE9} Mapy.cz Url="http://www.mapy.cz/?query={searchTerms} ... arch_16194"
{5C468D5A-6F10-479E-B499-7F26740EDB4F} Slovnˇk CZ/EN Url="http://slovnik.seznam.cz/?q={searchTerm ... arch_16194"
{789DD460-3502-4938-A752-4A6B07F82D7E} Novinky.cz Url="http://www.novinky.cz/hledej?w={searchT ... arch_16194"
{89AE6313-1702-4658-AD31-BCC26BF7B8DE} Firmy.cz Url="http://www.firmy.cz/?q={searchTerms}&so ... arch_16194"
{F7DE21E3-F11F-40B2-98C9-5F10552EFC36} Encyklopedie Seznam Url="http://encyklopedie.seznam.cz/search?q= ... arch_16194"
==== Reset Google Chrome ======================
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
C:\Users\uzivatel\AppData\Local\Mozilla\Firefox\Profiles\k4fjvfab.default\Cache emptied successfully
==== Empty Chrome Cache ======================
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=139 folders=32 15116291 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\uzivatel\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\uzivatel\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on Łt 05. 08. 2014 at 12:05:43,10 ======================
Tool run by uzivatel on Łt 05. 08. 2014 at 11:52:25,94.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\uzivatel\Downloads\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
5. 8. 2014 11:54:40 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.seznam.cz/");
user_pref("browser.search.order.1", "Ask Search");
Added to C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\prefs.js:
ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default
user.js not found
---- FireFox user.js and prefs.js backups ----
prefs_201405.08._1202_.backup
==== Deleting Files \ Folders ======================
C:\PROGRA~3\DivX deleted
C:\PROGRA~2\Mozilla Firefox\defaults\preferences\pref.js deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\uzivatel\Searches deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\extensions\sepherdwilbur@aol.com deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [25. 07. 2014 17:29]
==== Firefox Extensions ======================
ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default
- avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
- Seznam litika - %ProfilePath%\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default
4390CCD3790F8D9C427C0C29590C62D7 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll - Shockwave Flash
65C1D9F74004E775F9A8598476ABE5EE - C:\Users\uzivatel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[25. 07. 2014 17:29]
avast Online Security - uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Seznam Lištička - Rychlá volba - uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak
==== Chromium Startpages ======================
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://www.seznam.cz/?clid=16194",
==== Chrome Fix ======================
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seznam.cz/?clid=16194"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seznam.cz/?clid=16194"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{011B04D6-9796-4FCC-B4F1-3B904B169647} Zbo§ˇ.cz Url="http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE11SR"
{1BADBDF8-AFB3-432A-9A6C-E6745D7101B6} Seznam TV Program Url="http://tv.seznam.cz/hledej?w={searchTer ... arch_16194"
{1FA410C4-C7EB-4A4E-A412-5CA53F3D37C5} Slovnˇk EN/CZ Url="http://slovnik.seznam.cz/?q={searchTerm ... arch_16194"
{486CF968-FD0A-4535-A2BD-BF14A6887FE9} Mapy.cz Url="http://www.mapy.cz/?query={searchTerms} ... arch_16194"
{5C468D5A-6F10-479E-B499-7F26740EDB4F} Slovnˇk CZ/EN Url="http://slovnik.seznam.cz/?q={searchTerm ... arch_16194"
{789DD460-3502-4938-A752-4A6B07F82D7E} Novinky.cz Url="http://www.novinky.cz/hledej?w={searchT ... arch_16194"
{89AE6313-1702-4658-AD31-BCC26BF7B8DE} Firmy.cz Url="http://www.firmy.cz/?q={searchTerms}&so ... arch_16194"
{F7DE21E3-F11F-40B2-98C9-5F10552EFC36} Encyklopedie Seznam Url="http://encyklopedie.seznam.cz/search?q= ... arch_16194"
==== Reset Google Chrome ======================
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
C:\Users\uzivatel\AppData\Local\Mozilla\Firefox\Profiles\k4fjvfab.default\Cache emptied successfully
==== Empty Chrome Cache ======================
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=139 folders=32 15116291 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\uzivatel\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\uzivatel\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on Łt 05. 08. 2014 at 12:05:43,10 ======================
Re: prosím o kontrolu logu
Poprosim o FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: prosím o kontrolu logu
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-08-2014
Ran by uzivatel (administrator) on LYNX on 05-08-2014 13:02:27
Running from C:\Users\uzivatel\Desktop
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\WiFi Protector\wifiProtService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files (x86)\WiFi Protector\wifiProtLauncher.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-03] (CANON INC.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-07-31] (AVAST Software)
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\...\Run: [WiFi Protector] => C:\Program Files (x86)\WiFi Protector\WiFiProtLauncher.exe [673344 2014-06-26] ()
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=16194
SearchScopes: HKCU - DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {011B04D6-9796-4FCC-B4F1-3B904B169647} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {1BADBDF8-AFB3-432A-9A6C-E6745D7101B6} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKCU - {1FA410C4-C7EB-4A4E-A412-5CA53F3D37C5} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {486CF968-FD0A-4535-A2BD-BF14A6887FE9} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
SearchScopes: HKCU - {5C468D5A-6F10-479E-B499-7F26740EDB4F} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {789DD460-3502-4938-A752-4A6B07F82D7E} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
SearchScopes: HKCU - {89AE6313-1702-4658-AD31-BCC26BF7B8DE} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKCU - {F7DE21E3-F11F-40B2-98C9-5F10552EFC36} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Tcpip\Parameters: [DhcpNameServer] 77.242.95.7 81.200.55.34
FireFox:
========
FF ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\uzivatel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Seznam lištička - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-07-24]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-25]
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Google Docs) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-16]
CHR Extension: (Google Drive) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-16]
CHR Extension: (YouTube) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-16]
CHR Extension: (Google Search) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-16]
CHR Extension: (avast! Online Security) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-04]
CHR Extension: (Google Wallet) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-16]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-07-24]
CHR Extension: (Gmail) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-16]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-25]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-08-30] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-25] (AVAST Software)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-01-05] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
R2 wifiProtService; C:\Program Files (x86)\WiFi Protector\wifiProtService.exe [1416528 2014-06-26] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-25] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-25] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-25] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-25] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-25] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [138240 2013-06-22] (Advanced Micro Devices)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-05 13:02 - 2014-08-05 13:02 - 00014468 _____ () C:\Users\uzivatel\Desktop\FRST.txt
2014-08-05 13:01 - 2014-08-05 13:02 - 00000000 ____D () C:\FRST
2014-08-05 12:58 - 2014-08-05 12:58 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe
2014-08-05 12:56 - 2014-08-05 12:56 - 02094080 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2014-08-05 12:04 - 2014-08-05 11:52 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-08-05 11:54 - 2014-08-05 12:05 - 00008726 _____ () C:\zoek-results.log
2014-08-05 11:52 - 2014-08-05 12:03 - 00000000 ____D () C:\zoek_backup
2014-08-05 11:51 - 2014-08-05 11:52 - 01288704 _____ () C:\Users\uzivatel\Downloads\zoek.exe
2014-08-05 09:41 - 2014-08-05 09:41 - 00002473 _____ () C:\Users\uzivatel\Desktop\JRT.txt
2014-08-05 09:26 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-08-05 09:25 - 2014-08-05 09:27 - 00000000 ____D () C:\AdwCleaner
2014-08-05 09:23 - 2014-08-05 09:23 - 01361309 _____ () C:\Users\uzivatel\Downloads\adwcleaner_3.302.exe
2014-08-05 09:16 - 2014-08-05 09:16 - 00000000 ____D () C:\Windows\ERUNT
2014-08-05 09:13 - 2014-08-05 09:13 - 01016261 _____ (Thisisu) C:\Users\uzivatel\Downloads\JRT.exe
2014-08-04 15:53 - 2014-08-04 15:53 - 01222144 _____ () C:\Users\uzivatel\Downloads\RSITx64.exe
2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\rsit
2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\Program Files\trend micro
2014-08-02 17:30 - 2014-08-02 17:30 - 00000000 ____D () C:\Users\uzivatel\Documents\Assassin's Creed IV Black Flag
2014-08-02 17:29 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-08-02 17:29 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-08-02 17:29 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-08-02 17:29 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-08-02 17:29 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-08-02 17:29 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-08-02 17:29 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-08-02 17:29 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-08-02 17:29 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-08-02 17:29 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-08-02 17:29 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-08-02 17:27 - 2014-08-02 17:27 - 00000914 _____ () C:\Users\Public\Desktop\Assassins Creed IV - Black Flag.lnk
2014-08-02 17:27 - 2014-08-02 17:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2014-07-31 18:46 - 2014-07-31 18:46 - 00262144 ____N () C:\Windows\Minidump\073114-13687-01.dmp
2014-07-31 17:34 - 2014-07-31 17:34 - 00262144 ____N () C:\Windows\Minidump\073114-22734-01.dmp
2014-07-30 10:16 - 2014-07-30 10:16 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-25 21:47 - 2014-07-25 21:50 - 00000000 ____D () C:\Users\uzivatel\Desktop\nejnovější fotky
2014-07-25 17:53 - 2014-07-25 17:58 - 773943494 _____ () C:\Users\uzivatel\Downloads\Troja.mp4
2014-07-25 17:49 - 2014-07-25 17:49 - 00000896 _____ () C:\Users\uzivatel\Desktop\µTorrent.lnk
2014-07-25 17:49 - 2014-07-25 17:49 - 00000876 _____ () C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-07-25 17:48 - 2014-08-02 17:14 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\uTorrent
2014-07-25 17:47 - 2014-07-25 17:47 - 08008609 _____ () C:\Users\uzivatel\Downloads\uTorrent-setup.exe
2014-07-25 17:32 - 2014-07-25 17:32 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\DropboxMaster
2014-07-25 17:31 - 2014-07-25 17:31 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-07-25 17:30 - 2014-07-25 17:32 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Dropbox
2014-07-25 17:30 - 2014-07-25 17:30 - 00001982 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-25 17:30 - 2014-07-25 17:30 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\AVAST Software
2014-07-25 17:30 - 2014-07-25 17:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-25 17:29 - 2014-07-29 16:26 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-25 17:29 - 2014-07-25 17:29 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-25 17:29 - 2014-07-25 17:29 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-25 17:29 - 2014-07-25 17:29 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-25 17:28 - 2014-07-25 17:28 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-25 17:27 - 2014-07-25 17:28 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-25 17:27 - 2014-07-25 17:27 - 04862664 _____ (AVAST Software) C:\Users\uzivatel\Downloads\avast_free_antivirus_setup_online.exe
2014-07-24 18:34 - 2014-07-24 18:34 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\DivX
2014-07-24 18:32 - 2014-08-05 12:11 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Seznam.cz
2014-07-24 18:32 - 2014-07-25 15:43 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-07-24 18:32 - 2014-07-24 18:32 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-07-24 18:30 - 2014-07-29 15:56 - 00000000 ____D () C:\Users\uzivatel\AppData\Local\13554
2014-07-24 08:29 - 2014-07-24 08:32 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\TMNT
2014-07-24 08:28 - 2014-07-24 08:28 - 00000175 _____ () C:\Windows\DXError.log
2014-07-24 08:28 - 2014-07-24 08:28 - 00000000 __SHD () C:\Users\uzivatel\AppData\Local\EmieUserList
2014-07-24 08:28 - 2014-07-24 08:28 - 00000000 __SHD () C:\Users\uzivatel\AppData\Local\EmieSiteList
2014-07-12 20:14 - 2014-07-12 20:14 - 00117649 ____T () C:\Users\uzivatel\Desktop\seznam věcí- Anička.oxps
2014-07-09 21:11 - 2014-07-09 21:11 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-09 18:56 - 2014-04-14 05:29 - 01018880 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-07-09 17:28 - 2014-06-17 00:26 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-09 17:28 - 2014-06-17 00:24 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-09 17:28 - 2014-06-06 16:20 - 04190720 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-09 17:28 - 2014-05-30 05:03 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-09 17:28 - 2014-05-29 14:02 - 00565576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-07-09 17:28 - 2014-05-29 09:55 - 00735232 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-07-09 17:28 - 2014-05-29 08:40 - 00735232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-07-09 17:28 - 2014-05-29 08:37 - 00436224 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-07-09 17:28 - 2014-05-29 07:34 - 00318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2014-07-09 17:28 - 2014-05-29 07:27 - 01417216 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-09 17:27 - 2014-07-01 00:45 - 00688128 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-07-09 17:27 - 2014-06-28 09:48 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-09 17:27 - 2014-06-28 09:07 - 00385536 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-07-09 17:27 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-09 17:27 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-09 17:27 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-09 17:27 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-09 17:27 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-09 17:27 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-09 17:27 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-09 17:27 - 2014-06-19 01:46 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-09 17:27 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-09 17:27 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-09 17:27 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-09 17:27 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-09 17:27 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-09 17:27 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-09 17:27 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-09 17:27 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-09 17:27 - 2014-06-19 00:57 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-09 17:27 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-09 17:27 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-09 17:27 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-09 17:27 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-09 17:27 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-09 17:27 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-09 17:27 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-09 17:27 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-09 17:27 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-09 17:27 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-09 17:27 - 2014-06-06 15:04 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 17:27 - 2014-06-06 14:18 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-09 17:27 - 2014-05-31 12:07 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-07-09 17:27 - 2014-05-31 12:06 - 00555736 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2014-07-09 17:27 - 2014-05-31 05:40 - 13287936 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-07-09 17:27 - 2014-05-31 05:30 - 11792384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-07-09 17:27 - 2014-05-31 05:12 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 17:27 - 2014-05-31 05:06 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-07-09 17:27 - 2014-05-31 05:03 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-07-09 17:27 - 2014-05-31 05:01 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 17:27 - 2014-05-31 04:56 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-07-09 17:27 - 2014-05-31 04:54 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-07-09 17:27 - 2014-05-31 04:48 - 03463680 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-07-09 17:27 - 2014-05-31 04:37 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2014-07-09 17:27 - 2014-05-31 04:36 - 00923136 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-07-09 17:27 - 2014-05-31 04:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2014-07-09 17:27 - 2014-05-31 04:32 - 00756224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-05 13:02 - 2014-08-05 13:02 - 00014468 _____ () C:\Users\uzivatel\Desktop\FRST.txt
2014-08-05 13:02 - 2014-08-05 13:01 - 00000000 ____D () C:\FRST
2014-08-05 13:02 - 2014-06-30 16:41 - 00000000 ____D () C:\Program Files (x86)\WiFi Protector
2014-08-05 13:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2014-08-05 12:58 - 2014-08-05 12:58 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe
2014-08-05 12:56 - 2014-08-05 12:56 - 02094080 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2014-08-05 12:56 - 2013-12-16 18:43 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{AA48661C-E607-485F-B137-C24CFF0A9D21}
2014-08-05 12:33 - 2013-12-25 11:47 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-05 12:22 - 2013-12-16 18:56 - 00000966 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-05 12:17 - 2013-12-16 18:30 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-508275893-2750687962-2468024070-1002
2014-08-05 12:11 - 2014-07-24 18:32 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Seznam.cz
2014-08-05 12:07 - 2013-12-16 18:57 - 00002261 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-05 12:05 - 2014-08-05 11:54 - 00008726 _____ () C:\zoek-results.log
2014-08-05 12:05 - 2013-12-16 18:56 - 00000962 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-05 12:05 - 2013-12-16 18:24 - 00000000 ____D () C:\Users\uzivatel
2014-08-05 12:05 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-05 12:04 - 2013-10-15 08:40 - 00005342 _____ () C:\Windows\PFRO.log
2014-08-05 12:04 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-08-05 12:03 - 2014-08-05 11:52 - 00000000 ____D () C:\zoek_backup
2014-08-05 11:52 - 2014-08-05 12:04 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-08-05 11:52 - 2014-08-05 11:51 - 01288704 _____ () C:\Users\uzivatel\Downloads\zoek.exe
2014-08-05 10:20 - 2013-12-16 18:16 - 01508630 _____ () C:\Windows\WindowsUpdate.log
2014-08-05 10:02 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-08-05 09:41 - 2014-08-05 09:41 - 00002473 _____ () C:\Users\uzivatel\Desktop\JRT.txt
2014-08-05 09:27 - 2014-08-05 09:25 - 00000000 ____D () C:\AdwCleaner
2014-08-05 09:26 - 2013-12-13 11:25 - 00001218 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Feature Mananger.lnk
2014-08-05 09:23 - 2014-08-05 09:23 - 01361309 _____ () C:\Users\uzivatel\Downloads\adwcleaner_3.302.exe
2014-08-05 09:16 - 2014-08-05 09:16 - 00000000 ____D () C:\Windows\ERUNT
2014-08-05 09:13 - 2014-08-05 09:13 - 01016261 _____ (Thisisu) C:\Users\uzivatel\Downloads\JRT.exe
2014-08-04 15:53 - 2014-08-04 15:53 - 01222144 _____ () C:\Users\uzivatel\Downloads\RSITx64.exe
2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\rsit
2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\Program Files\trend micro
2014-08-02 21:24 - 2013-12-16 18:33 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-08-02 17:30 - 2014-08-02 17:30 - 00000000 ____D () C:\Users\uzivatel\Documents\Assassin's Creed IV Black Flag
2014-08-02 17:28 - 2013-12-25 17:37 - 00231718 _____ () C:\Windows\DirectX.log
2014-08-02 17:27 - 2014-08-02 17:27 - 00000914 _____ () C:\Users\Public\Desktop\Assassins Creed IV - Black Flag.lnk
2014-08-02 17:27 - 2014-08-02 17:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2014-08-02 17:14 - 2014-07-25 17:48 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\uTorrent
2014-07-31 18:46 - 2014-07-31 18:46 - 00262144 ____N () C:\Windows\Minidump\073114-13687-01.dmp
2014-07-31 18:46 - 2014-06-11 13:58 - 00000000 ____D () C:\Windows\Minidump
2014-07-31 18:46 - 2014-04-06 12:52 - 00124928 ___SH () C:\Users\uzivatel\Desktop\Thumbs.db
2014-07-31 17:34 - 2014-07-31 17:34 - 00262144 ____N () C:\Windows\Minidump\073114-22734-01.dmp
2014-07-31 17:34 - 2013-12-25 11:18 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-30 10:16 - 2014-07-30 10:16 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-29 16:29 - 2013-12-13 11:25 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-29 16:26 - 2014-07-25 17:29 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-29 15:56 - 2014-07-24 18:30 - 00000000 ____D () C:\Users\uzivatel\AppData\Local\13554
2014-07-29 15:44 - 2014-03-08 19:28 - 00000011 _____ () C:\Windows\Disney.ini
2014-07-29 15:44 - 2014-01-05 17:35 - 00000000 ____D () C:\ProgramData\Ubisoft
2014-07-29 15:44 - 2013-12-26 10:36 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-07-26 20:08 - 2013-10-15 08:47 - 01658450 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-26 20:08 - 2013-08-23 00:08 - 00704264 _____ () C:\Windows\system32\perfh005.dat
2014-07-26 20:08 - 2013-08-23 00:08 - 00143624 _____ () C:\Windows\system32\perfc005.dat
2014-07-25 21:50 - 2014-07-25 21:47 - 00000000 ____D () C:\Users\uzivatel\Desktop\nejnovější fotky
2014-07-25 18:04 - 2014-02-02 11:08 - 00025600 ___SH () C:\Users\uzivatel\Downloads\Thumbs.db
2014-07-25 17:58 - 2014-07-25 17:53 - 773943494 _____ () C:\Users\uzivatel\Downloads\Troja.mp4
2014-07-25 17:49 - 2014-07-25 17:49 - 00000896 _____ () C:\Users\uzivatel\Desktop\µTorrent.lnk
2014-07-25 17:49 - 2014-07-25 17:49 - 00000876 _____ () C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-07-25 17:47 - 2014-07-25 17:47 - 08008609 _____ () C:\Users\uzivatel\Downloads\uTorrent-setup.exe
2014-07-25 17:32 - 2014-07-25 17:32 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\DropboxMaster
2014-07-25 17:32 - 2014-07-25 17:30 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Dropbox
2014-07-25 17:31 - 2014-07-25 17:31 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-07-25 17:31 - 2013-10-15 09:26 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-07-25 17:30 - 2014-07-25 17:30 - 00001982 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-25 17:30 - 2014-07-25 17:30 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\AVAST Software
2014-07-25 17:30 - 2014-07-25 17:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-25 17:30 - 2013-08-22 16:46 - 00026259 _____ () C:\Windows\setupact.log
2014-07-25 17:29 - 2014-07-25 17:29 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-25 17:29 - 2014-07-25 17:29 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-25 17:29 - 2014-07-25 17:29 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-25 17:28 - 2014-07-25 17:28 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-25 17:28 - 2014-07-25 17:27 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-25 17:27 - 2014-07-25 17:27 - 04862664 _____ (AVAST Software) C:\Users\uzivatel\Downloads\avast_free_antivirus_setup_online.exe
2014-07-25 15:48 - 2013-10-15 11:59 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-25 15:48 - 2013-10-15 11:59 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-25 15:43 - 2014-07-24 18:32 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-07-24 20:20 - 2014-05-18 19:02 - 00004096 ___SH () C:\Users\uzivatel\Documents\Thumbs.db
2014-07-24 20:20 - 2014-05-18 18:59 - 00000000 ____D () C:\Users\uzivatel\Documents\Příběh kmotra
2014-07-24 18:34 - 2014-07-24 18:34 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\DivX
2014-07-24 18:32 - 2014-07-24 18:32 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-07-24 14:02 - 2013-10-15 11:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-24 08:32 - 2014-07-24 08:29 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\TMNT
2014-07-24 08:28 - 2014-07-24 08:28 - 00000175 _____ () C:\Windows\DXError.log
2014-07-24 08:28 - 2014-07-24 08:28 - 00000000 __SHD () C:\Users\uzivatel\AppData\Local\EmieUserList
2014-07-24 08:28 - 2014-07-24 08:28 - 00000000 __SHD () C:\Users\uzivatel\AppData\Local\EmieSiteList
2014-07-12 20:14 - 2014-07-12 20:14 - 00117649 ____T () C:\Users\uzivatel\Desktop\seznam věcí- Anička.oxps
2014-07-12 12:57 - 2013-12-16 18:43 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-12 12:56 - 2013-12-16 18:43 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-12 11:19 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache
2014-07-12 11:17 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-07-10 08:46 - 2013-08-22 16:44 - 00479416 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-09 21:11 - 2014-07-09 21:11 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-09 21:11 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ToastData
2014-07-09 21:11 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-09 21:11 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-09 21:11 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\WinStore
2014-07-09 18:57 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-09 18:56 - 2013-12-16 18:30 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-09 18:55 - 2013-08-23 00:10 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-09 17:33 - 2013-12-25 11:47 - 00003802 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-07-30 09:19
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:466.25 GB) (Free:424.47 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:464.46 GB) (Free:426.1 GB) NTFS
Available physical RAM: 6773.11 MB
Total physical RAM: 8150.89 MB
Percentage of memory in use: 16%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: F409FF27)
Partition 1: (Active) - (Size=817 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=464 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\uzivatel\Desktop" je 304 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Ran by uzivatel (administrator) on LYNX on 05-08-2014 13:02:27
Running from C:\Users\uzivatel\Desktop
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\WiFi Protector\wifiProtService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files (x86)\WiFi Protector\wifiProtLauncher.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-03] (CANON INC.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-07-31] (AVAST Software)
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\...\Run: [WiFi Protector] => C:\Program Files (x86)\WiFi Protector\WiFiProtLauncher.exe [673344 2014-06-26] ()
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=16194
SearchScopes: HKCU - DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {011B04D6-9796-4FCC-B4F1-3B904B169647} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {1BADBDF8-AFB3-432A-9A6C-E6745D7101B6} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
SearchScopes: HKCU - {1FA410C4-C7EB-4A4E-A412-5CA53F3D37C5} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {486CF968-FD0A-4535-A2BD-BF14A6887FE9} URL = http://www.mapy.cz/?query={searchTerms} ... arch_16194
SearchScopes: HKCU - {5C468D5A-6F10-479E-B499-7F26740EDB4F} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
SearchScopes: HKCU - {789DD460-3502-4938-A752-4A6B07F82D7E} URL = http://www.novinky.cz/hledej?w={searchT ... arch_16194
SearchScopes: HKCU - {89AE6313-1702-4658-AD31-BCC26BF7B8DE} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
SearchScopes: HKCU - {F7DE21E3-F11F-40B2-98C9-5F10552EFC36} URL = http://encyklopedie.seznam.cz/search?q= ... arch_16194
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Tcpip\Parameters: [DhcpNameServer] 77.242.95.7 81.200.55.34
FireFox:
========
FF ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\uzivatel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Seznam lištička - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-07-24]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-25]
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Google Docs) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-16]
CHR Extension: (Google Drive) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-16]
CHR Extension: (YouTube) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-16]
CHR Extension: (Google Search) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-16]
CHR Extension: (avast! Online Security) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-04]
CHR Extension: (Google Wallet) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-16]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-07-24]
CHR Extension: (Gmail) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-16]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-25]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-08-30] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-25] (AVAST Software)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-01-05] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
R2 wifiProtService; C:\Program Files (x86)\WiFi Protector\wifiProtService.exe [1416528 2014-06-26] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-25] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-25] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-25] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-25] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-25] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [138240 2013-06-22] (Advanced Micro Devices)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-05 13:02 - 2014-08-05 13:02 - 00014468 _____ () C:\Users\uzivatel\Desktop\FRST.txt
2014-08-05 13:01 - 2014-08-05 13:02 - 00000000 ____D () C:\FRST
2014-08-05 12:58 - 2014-08-05 12:58 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe
2014-08-05 12:56 - 2014-08-05 12:56 - 02094080 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2014-08-05 12:04 - 2014-08-05 11:52 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-08-05 11:54 - 2014-08-05 12:05 - 00008726 _____ () C:\zoek-results.log
2014-08-05 11:52 - 2014-08-05 12:03 - 00000000 ____D () C:\zoek_backup
2014-08-05 11:51 - 2014-08-05 11:52 - 01288704 _____ () C:\Users\uzivatel\Downloads\zoek.exe
2014-08-05 09:41 - 2014-08-05 09:41 - 00002473 _____ () C:\Users\uzivatel\Desktop\JRT.txt
2014-08-05 09:26 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-08-05 09:25 - 2014-08-05 09:27 - 00000000 ____D () C:\AdwCleaner
2014-08-05 09:23 - 2014-08-05 09:23 - 01361309 _____ () C:\Users\uzivatel\Downloads\adwcleaner_3.302.exe
2014-08-05 09:16 - 2014-08-05 09:16 - 00000000 ____D () C:\Windows\ERUNT
2014-08-05 09:13 - 2014-08-05 09:13 - 01016261 _____ (Thisisu) C:\Users\uzivatel\Downloads\JRT.exe
2014-08-04 15:53 - 2014-08-04 15:53 - 01222144 _____ () C:\Users\uzivatel\Downloads\RSITx64.exe
2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\rsit
2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\Program Files\trend micro
2014-08-02 17:30 - 2014-08-02 17:30 - 00000000 ____D () C:\Users\uzivatel\Documents\Assassin's Creed IV Black Flag
2014-08-02 17:29 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-08-02 17:29 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-08-02 17:29 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-08-02 17:29 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-08-02 17:29 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-08-02 17:29 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-08-02 17:29 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-08-02 17:29 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-08-02 17:29 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-08-02 17:29 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-08-02 17:29 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-08-02 17:29 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-08-02 17:27 - 2014-08-02 17:27 - 00000914 _____ () C:\Users\Public\Desktop\Assassins Creed IV - Black Flag.lnk
2014-08-02 17:27 - 2014-08-02 17:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2014-07-31 18:46 - 2014-07-31 18:46 - 00262144 ____N () C:\Windows\Minidump\073114-13687-01.dmp
2014-07-31 17:34 - 2014-07-31 17:34 - 00262144 ____N () C:\Windows\Minidump\073114-22734-01.dmp
2014-07-30 10:16 - 2014-07-30 10:16 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-25 21:47 - 2014-07-25 21:50 - 00000000 ____D () C:\Users\uzivatel\Desktop\nejnovější fotky
2014-07-25 17:53 - 2014-07-25 17:58 - 773943494 _____ () C:\Users\uzivatel\Downloads\Troja.mp4
2014-07-25 17:49 - 2014-07-25 17:49 - 00000896 _____ () C:\Users\uzivatel\Desktop\µTorrent.lnk
2014-07-25 17:49 - 2014-07-25 17:49 - 00000876 _____ () C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-07-25 17:48 - 2014-08-02 17:14 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\uTorrent
2014-07-25 17:47 - 2014-07-25 17:47 - 08008609 _____ () C:\Users\uzivatel\Downloads\uTorrent-setup.exe
2014-07-25 17:32 - 2014-07-25 17:32 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\DropboxMaster
2014-07-25 17:31 - 2014-07-25 17:31 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-07-25 17:30 - 2014-07-25 17:32 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Dropbox
2014-07-25 17:30 - 2014-07-25 17:30 - 00001982 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-25 17:30 - 2014-07-25 17:30 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\AVAST Software
2014-07-25 17:30 - 2014-07-25 17:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-25 17:29 - 2014-07-29 16:26 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-25 17:29 - 2014-07-25 17:29 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-25 17:29 - 2014-07-25 17:29 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-25 17:29 - 2014-07-25 17:29 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-25 17:28 - 2014-07-25 17:28 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-25 17:27 - 2014-07-25 17:28 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-25 17:27 - 2014-07-25 17:27 - 04862664 _____ (AVAST Software) C:\Users\uzivatel\Downloads\avast_free_antivirus_setup_online.exe
2014-07-24 18:34 - 2014-07-24 18:34 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\DivX
2014-07-24 18:32 - 2014-08-05 12:11 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Seznam.cz
2014-07-24 18:32 - 2014-07-25 15:43 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-07-24 18:32 - 2014-07-24 18:32 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-07-24 18:30 - 2014-07-29 15:56 - 00000000 ____D () C:\Users\uzivatel\AppData\Local\13554
2014-07-24 08:29 - 2014-07-24 08:32 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\TMNT
2014-07-24 08:28 - 2014-07-24 08:28 - 00000175 _____ () C:\Windows\DXError.log
2014-07-24 08:28 - 2014-07-24 08:28 - 00000000 __SHD () C:\Users\uzivatel\AppData\Local\EmieUserList
2014-07-24 08:28 - 2014-07-24 08:28 - 00000000 __SHD () C:\Users\uzivatel\AppData\Local\EmieSiteList
2014-07-12 20:14 - 2014-07-12 20:14 - 00117649 ____T () C:\Users\uzivatel\Desktop\seznam věcí- Anička.oxps
2014-07-09 21:11 - 2014-07-09 21:11 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-09 18:56 - 2014-04-14 05:29 - 01018880 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-07-09 17:28 - 2014-06-17 00:26 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-09 17:28 - 2014-06-17 00:24 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-09 17:28 - 2014-06-06 16:20 - 04190720 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-09 17:28 - 2014-05-30 05:03 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-09 17:28 - 2014-05-29 14:02 - 00565576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-07-09 17:28 - 2014-05-29 09:55 - 00735232 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-07-09 17:28 - 2014-05-29 08:40 - 00735232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-07-09 17:28 - 2014-05-29 08:37 - 00436224 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-07-09 17:28 - 2014-05-29 07:34 - 00318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2014-07-09 17:28 - 2014-05-29 07:27 - 01417216 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-09 17:27 - 2014-07-01 00:45 - 00688128 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-07-09 17:27 - 2014-06-28 09:48 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-09 17:27 - 2014-06-28 09:07 - 00385536 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-07-09 17:27 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-09 17:27 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-09 17:27 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-09 17:27 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-09 17:27 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-09 17:27 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-09 17:27 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-09 17:27 - 2014-06-19 01:46 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-09 17:27 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-09 17:27 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-09 17:27 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-09 17:27 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-09 17:27 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-09 17:27 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-09 17:27 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-09 17:27 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-09 17:27 - 2014-06-19 00:57 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-09 17:27 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-09 17:27 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-09 17:27 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-09 17:27 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-09 17:27 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-09 17:27 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-09 17:27 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-09 17:27 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-09 17:27 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-09 17:27 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-09 17:27 - 2014-06-06 15:04 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 17:27 - 2014-06-06 14:18 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-09 17:27 - 2014-05-31 12:07 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-07-09 17:27 - 2014-05-31 12:06 - 00555736 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2014-07-09 17:27 - 2014-05-31 05:40 - 13287936 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-07-09 17:27 - 2014-05-31 05:30 - 11792384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-07-09 17:27 - 2014-05-31 05:12 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 17:27 - 2014-05-31 05:06 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-07-09 17:27 - 2014-05-31 05:03 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-07-09 17:27 - 2014-05-31 05:01 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 17:27 - 2014-05-31 04:56 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-07-09 17:27 - 2014-05-31 04:54 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-07-09 17:27 - 2014-05-31 04:48 - 03463680 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-07-09 17:27 - 2014-05-31 04:37 - 01054208 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2014-07-09 17:27 - 2014-05-31 04:36 - 00923136 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-07-09 17:27 - 2014-05-31 04:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2014-07-09 17:27 - 2014-05-31 04:32 - 00756224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-05 13:02 - 2014-08-05 13:02 - 00014468 _____ () C:\Users\uzivatel\Desktop\FRST.txt
2014-08-05 13:02 - 2014-08-05 13:01 - 00000000 ____D () C:\FRST
2014-08-05 13:02 - 2014-06-30 16:41 - 00000000 ____D () C:\Program Files (x86)\WiFi Protector
2014-08-05 13:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2014-08-05 12:58 - 2014-08-05 12:58 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe
2014-08-05 12:56 - 2014-08-05 12:56 - 02094080 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2014-08-05 12:56 - 2013-12-16 18:43 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{AA48661C-E607-485F-B137-C24CFF0A9D21}
2014-08-05 12:33 - 2013-12-25 11:47 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-05 12:22 - 2013-12-16 18:56 - 00000966 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-05 12:17 - 2013-12-16 18:30 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-508275893-2750687962-2468024070-1002
2014-08-05 12:11 - 2014-07-24 18:32 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Seznam.cz
2014-08-05 12:07 - 2013-12-16 18:57 - 00002261 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-05 12:05 - 2014-08-05 11:54 - 00008726 _____ () C:\zoek-results.log
2014-08-05 12:05 - 2013-12-16 18:56 - 00000962 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-05 12:05 - 2013-12-16 18:24 - 00000000 ____D () C:\Users\uzivatel
2014-08-05 12:05 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-05 12:04 - 2013-10-15 08:40 - 00005342 _____ () C:\Windows\PFRO.log
2014-08-05 12:04 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-08-05 12:03 - 2014-08-05 11:52 - 00000000 ____D () C:\zoek_backup
2014-08-05 11:52 - 2014-08-05 12:04 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-08-05 11:52 - 2014-08-05 11:51 - 01288704 _____ () C:\Users\uzivatel\Downloads\zoek.exe
2014-08-05 10:20 - 2013-12-16 18:16 - 01508630 _____ () C:\Windows\WindowsUpdate.log
2014-08-05 10:02 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-08-05 09:41 - 2014-08-05 09:41 - 00002473 _____ () C:\Users\uzivatel\Desktop\JRT.txt
2014-08-05 09:27 - 2014-08-05 09:25 - 00000000 ____D () C:\AdwCleaner
2014-08-05 09:26 - 2013-12-13 11:25 - 00001218 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Feature Mananger.lnk
2014-08-05 09:23 - 2014-08-05 09:23 - 01361309 _____ () C:\Users\uzivatel\Downloads\adwcleaner_3.302.exe
2014-08-05 09:16 - 2014-08-05 09:16 - 00000000 ____D () C:\Windows\ERUNT
2014-08-05 09:13 - 2014-08-05 09:13 - 01016261 _____ (Thisisu) C:\Users\uzivatel\Downloads\JRT.exe
2014-08-04 15:53 - 2014-08-04 15:53 - 01222144 _____ () C:\Users\uzivatel\Downloads\RSITx64.exe
2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\rsit
2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\Program Files\trend micro
2014-08-02 21:24 - 2013-12-16 18:33 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-08-02 17:30 - 2014-08-02 17:30 - 00000000 ____D () C:\Users\uzivatel\Documents\Assassin's Creed IV Black Flag
2014-08-02 17:28 - 2013-12-25 17:37 - 00231718 _____ () C:\Windows\DirectX.log
2014-08-02 17:27 - 2014-08-02 17:27 - 00000914 _____ () C:\Users\Public\Desktop\Assassins Creed IV - Black Flag.lnk
2014-08-02 17:27 - 2014-08-02 17:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2014-08-02 17:14 - 2014-07-25 17:48 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\uTorrent
2014-07-31 18:46 - 2014-07-31 18:46 - 00262144 ____N () C:\Windows\Minidump\073114-13687-01.dmp
2014-07-31 18:46 - 2014-06-11 13:58 - 00000000 ____D () C:\Windows\Minidump
2014-07-31 18:46 - 2014-04-06 12:52 - 00124928 ___SH () C:\Users\uzivatel\Desktop\Thumbs.db
2014-07-31 17:34 - 2014-07-31 17:34 - 00262144 ____N () C:\Windows\Minidump\073114-22734-01.dmp
2014-07-31 17:34 - 2013-12-25 11:18 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-30 10:16 - 2014-07-30 10:16 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-29 16:29 - 2013-12-13 11:25 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-29 16:26 - 2014-07-25 17:29 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-29 15:56 - 2014-07-24 18:30 - 00000000 ____D () C:\Users\uzivatel\AppData\Local\13554
2014-07-29 15:44 - 2014-03-08 19:28 - 00000011 _____ () C:\Windows\Disney.ini
2014-07-29 15:44 - 2014-01-05 17:35 - 00000000 ____D () C:\ProgramData\Ubisoft
2014-07-29 15:44 - 2013-12-26 10:36 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-07-26 20:08 - 2013-10-15 08:47 - 01658450 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-26 20:08 - 2013-08-23 00:08 - 00704264 _____ () C:\Windows\system32\perfh005.dat
2014-07-26 20:08 - 2013-08-23 00:08 - 00143624 _____ () C:\Windows\system32\perfc005.dat
2014-07-25 21:50 - 2014-07-25 21:47 - 00000000 ____D () C:\Users\uzivatel\Desktop\nejnovější fotky
2014-07-25 18:04 - 2014-02-02 11:08 - 00025600 ___SH () C:\Users\uzivatel\Downloads\Thumbs.db
2014-07-25 17:58 - 2014-07-25 17:53 - 773943494 _____ () C:\Users\uzivatel\Downloads\Troja.mp4
2014-07-25 17:49 - 2014-07-25 17:49 - 00000896 _____ () C:\Users\uzivatel\Desktop\µTorrent.lnk
2014-07-25 17:49 - 2014-07-25 17:49 - 00000876 _____ () C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-07-25 17:47 - 2014-07-25 17:47 - 08008609 _____ () C:\Users\uzivatel\Downloads\uTorrent-setup.exe
2014-07-25 17:32 - 2014-07-25 17:32 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\DropboxMaster
2014-07-25 17:32 - 2014-07-25 17:30 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Dropbox
2014-07-25 17:31 - 2014-07-25 17:31 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-07-25 17:31 - 2013-10-15 09:26 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-07-25 17:30 - 2014-07-25 17:30 - 00001982 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-25 17:30 - 2014-07-25 17:30 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\AVAST Software
2014-07-25 17:30 - 2014-07-25 17:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-25 17:30 - 2013-08-22 16:46 - 00026259 _____ () C:\Windows\setupact.log
2014-07-25 17:29 - 2014-07-25 17:29 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-25 17:29 - 2014-07-25 17:29 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-25 17:29 - 2014-07-25 17:29 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-25 17:29 - 2014-07-25 17:29 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-25 17:28 - 2014-07-25 17:28 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-25 17:28 - 2014-07-25 17:27 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-25 17:27 - 2014-07-25 17:27 - 04862664 _____ (AVAST Software) C:\Users\uzivatel\Downloads\avast_free_antivirus_setup_online.exe
2014-07-25 15:48 - 2013-10-15 11:59 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-25 15:48 - 2013-10-15 11:59 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-25 15:43 - 2014-07-24 18:32 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-07-24 20:20 - 2014-05-18 19:02 - 00004096 ___SH () C:\Users\uzivatel\Documents\Thumbs.db
2014-07-24 20:20 - 2014-05-18 18:59 - 00000000 ____D () C:\Users\uzivatel\Documents\Příběh kmotra
2014-07-24 18:34 - 2014-07-24 18:34 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\DivX
2014-07-24 18:32 - 2014-07-24 18:32 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2014-07-24 14:02 - 2013-10-15 11:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-24 08:32 - 2014-07-24 08:29 - 00000000 ____D () C:\Users\uzivatel\AppData\Roaming\TMNT
2014-07-24 08:28 - 2014-07-24 08:28 - 00000175 _____ () C:\Windows\DXError.log
2014-07-24 08:28 - 2014-07-24 08:28 - 00000000 __SHD () C:\Users\uzivatel\AppData\Local\EmieUserList
2014-07-24 08:28 - 2014-07-24 08:28 - 00000000 __SHD () C:\Users\uzivatel\AppData\Local\EmieSiteList
2014-07-12 20:14 - 2014-07-12 20:14 - 00117649 ____T () C:\Users\uzivatel\Desktop\seznam věcí- Anička.oxps
2014-07-12 12:57 - 2013-12-16 18:43 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-12 12:56 - 2013-12-16 18:43 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-12 11:19 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache
2014-07-12 11:17 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-07-10 08:46 - 2013-08-22 16:44 - 00479416 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-09 21:11 - 2014-07-09 21:11 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-09 21:11 - 2013-08-22 17:36 - 00000000 ___RD () C:\Windows\ToastData
2014-07-09 21:11 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-09 21:11 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-09 21:11 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\WinStore
2014-07-09 18:57 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-07-09 18:56 - 2013-12-16 18:30 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-09 18:55 - 2013-08-23 00:10 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-09 17:33 - 2013-12-25 11:47 - 00003802 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-07-30 09:19
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:466.25 GB) (Free:424.47 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:464.46 GB) (Free:426.1 GB) NTFS
Available physical RAM: 6773.11 MB
Total physical RAM: 8150.89 MB
Percentage of memory in use: 16%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: F409FF27)
Partition 1: (Active) - (Size=817 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=464 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\uzivatel\Desktop" je 304 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Re: prosím o kontrolu logu
Tvorba fixlistu pro FRST
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
Start HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] () HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe HKU\S-1-5-21-508275893-2750687962-2468024070-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] () HKU\S-1-5-21-508275893-2750687962-2468024070-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] () FF Extension: Seznam lištička - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-07-24] CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-07-24] 2014-08-05 13:02 - 2014-08-05 13:02 - 00014468 _____ () C:\Users\uzivatel\Desktop\FRST.txt 2014-08-05 12:58 - 2014-08-05 12:58 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe 2014-08-05 12:04 - 2014-08-05 11:52 - 00024064 _____ () C:\Windows\zoek-delete.exe 2014-08-05 11:54 - 2014-08-05 12:05 - 00008726 _____ () C:\zoek-results.log 2014-08-05 11:52 - 2014-08-05 12:03 - 00000000 ____D () C:\zoek_backup 2014-08-05 11:51 - 2014-08-05 11:52 - 01288704 _____ () C:\Users\uzivatel\Downloads\zoek.exe 2014-08-05 09:41 - 2014-08-05 09:41 - 00002473 _____ () C:\Users\uzivatel\Desktop\JRT.txt 2014-08-05 09:26 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll 2014-08-05 09:25 - 2014-08-05 09:27 - 00000000 ____D () C:\AdwCleaner 2014-08-05 09:23 - 2014-08-05 09:23 - 01361309 _____ () C:\Users\uzivatel\Downloads\adwcleaner_3.302.exe 2014-08-05 09:16 - 2014-08-05 09:16 - 00000000 ____D () C:\Windows\ERUNT 2014-08-05 09:13 - 2014-08-05 09:13 - 01016261 _____ (Thisisu) C:\Users\uzivatel\Downloads\JRT.exe 2014-08-04 15:53 - 2014-08-04 15:53 - 01222144 _____ () C:\Users\uzivatel\Downloads\RSITx64.exe 2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\rsit 2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\Program Files\trend micro Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Hosts: Reboot: End- Ulozte vytvoreny TXT jako fixlist.txt
- Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
- Kliknete na Fix
- Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: prosím o kontrolu logu
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-08-2014
Ran by uzivatel at 2014-08-05 16:10:01 Run:1
Running from C:\Users\uzivatel\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
FF Extension: Seznam lištička - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-07-24]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-07-24]
2014-08-05 13:02 - 2014-08-05 13:02 - 00014468 _____ () C:\Users\uzivatel\Desktop\FRST.txt
2014-08-05 12:58 - 2014-08-05 12:58 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe
2014-08-05 12:04 - 2014-08-05 11:52 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-08-05 11:54 - 2014-08-05 12:05 - 00008726 _____ () C:\zoek-results.log
2014-08-05 11:52 - 2014-08-05 12:03 - 00000000 ____D () C:\zoek_backup
2014-08-05 11:51 - 2014-08-05 11:52 - 01288704 _____ () C:\Users\uzivatel\Downloads\zoek.exe
2014-08-05 09:41 - 2014-08-05 09:41 - 00002473 _____ () C:\Users\uzivatel\Desktop\JRT.txt
2014-08-05 09:26 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-08-05 09:25 - 2014-08-05 09:27 - 00000000 ____D () C:\AdwCleaner
2014-08-05 09:23 - 2014-08-05 09:23 - 01361309 _____ () C:\Users\uzivatel\Downloads\adwcleaner_3.302.exe
2014-08-05 09:16 - 2014-08-05 09:16 - 00000000 ____D () C:\Windows\ERUNT
2014-08-05 09:13 - 2014-08-05 09:13 - 01016261 _____ (Thisisu) C:\Users\uzivatel\Downloads\JRT.exe
2014-08-04 15:53 - 2014-08-04 15:53 - 01222144 _____ () C:\Users\uzivatel\Downloads\RSITx64.exe
2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\rsit
2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\Program Files\trend micro
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Hosts:
Reboot:
End
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\DivXMediaServer => value deleted successfully.
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => value deleted successfully.
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => value deleted successfully.
C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} => Moved successfully.
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak => Moved successfully.
"C:\Users\uzivatel\Desktop\FRST.txt" => File/Directory not found.
C:\Users\uzivatel\Desktop\FRSTLauncher.exe => Moved successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\uzivatel\Downloads\zoek.exe => Moved successfully.
C:\Users\uzivatel\Desktop\JRT.txt => Moved successfully.
C:\Windows\SysWOW64\sqlite3.dll => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\uzivatel\Downloads\adwcleaner_3.302.exe => Moved successfully.
C:\Windows\ERUNT => Moved successfully.
C:\Users\uzivatel\Downloads\JRT.exe => Moved successfully.
C:\Users\uzivatel\Downloads\RSITx64.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
The system needed a reboot.
==== End of Fixlog ====
Ran by uzivatel at 2014-08-05 16:10:01 Run:1
Running from C:\Users\uzivatel\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\uzivatel\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] ()
FF Extension: Seznam lištička - C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2014-07-24]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2014-07-24]
2014-08-05 13:02 - 2014-08-05 13:02 - 00014468 _____ () C:\Users\uzivatel\Desktop\FRST.txt
2014-08-05 12:58 - 2014-08-05 12:58 - 00112640 _____ (forum.viry.cz) C:\Users\uzivatel\Desktop\FRSTLauncher.exe
2014-08-05 12:04 - 2014-08-05 11:52 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-08-05 11:54 - 2014-08-05 12:05 - 00008726 _____ () C:\zoek-results.log
2014-08-05 11:52 - 2014-08-05 12:03 - 00000000 ____D () C:\zoek_backup
2014-08-05 11:51 - 2014-08-05 11:52 - 01288704 _____ () C:\Users\uzivatel\Downloads\zoek.exe
2014-08-05 09:41 - 2014-08-05 09:41 - 00002473 _____ () C:\Users\uzivatel\Desktop\JRT.txt
2014-08-05 09:26 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-08-05 09:25 - 2014-08-05 09:27 - 00000000 ____D () C:\AdwCleaner
2014-08-05 09:23 - 2014-08-05 09:23 - 01361309 _____ () C:\Users\uzivatel\Downloads\adwcleaner_3.302.exe
2014-08-05 09:16 - 2014-08-05 09:16 - 00000000 ____D () C:\Windows\ERUNT
2014-08-05 09:13 - 2014-08-05 09:13 - 01016261 _____ (Thisisu) C:\Users\uzivatel\Downloads\JRT.exe
2014-08-04 15:53 - 2014-08-04 15:53 - 01222144 _____ () C:\Users\uzivatel\Downloads\RSITx64.exe
2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\rsit
2014-08-04 15:53 - 2014-08-04 15:53 - 00000000 ____D () C:\Program Files\trend micro
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Hosts:
Reboot:
End
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\DivXMediaServer => value deleted successfully.
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate => value deleted successfully.
HKU\S-1-5-21-508275893-2750687962-2468024070-1002\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop => value deleted successfully.
C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\k4fjvfab.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} => Moved successfully.
C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak => Moved successfully.
"C:\Users\uzivatel\Desktop\FRST.txt" => File/Directory not found.
C:\Users\uzivatel\Desktop\FRSTLauncher.exe => Moved successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\uzivatel\Downloads\zoek.exe => Moved successfully.
C:\Users\uzivatel\Desktop\JRT.txt => Moved successfully.
C:\Windows\SysWOW64\sqlite3.dll => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\uzivatel\Downloads\adwcleaner_3.302.exe => Moved successfully.
C:\Windows\ERUNT => Moved successfully.
C:\Users\uzivatel\Downloads\JRT.exe => Moved successfully.
C:\Users\uzivatel\Downloads\RSITx64.exe => Moved successfully.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
The system needed a reboot.
==== End of Fixlog ====
Re: prosím o kontrolu logu
Tak jeste uklidime 
T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
OTC http://oldtimer.geekstogo.com/OTC.exe
TFC http://oldtimer.geekstogo.com/TFC.exe
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
A pokud nejsou problemy ci dotazy, je to z me strany vse 
T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
A pokud nejsou problemy ci dotazy, je to z me strany vse "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: prosím o kontrolu logu
mockrát děkuji za pomoc
Re: prosím o kontrolu logu
Zase nekdy 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?