VIRY.CZ

Zdravim,

prosim Vas, mohli by ste mi skontrolovat moj PC? V poslednej dobe sa mi dost spomalil a hlavne mi zamrza internet, obzvlast pri pozerani videi. Velmi pekne dakujem!

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-08-2014
Ran by JB (administrator) on JBW7 on 07-08-2014 18:00:20
Running from D:\Users\JB\Desktop
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) D:\Windows\System32\atiesrxx.exe
(AMD) D:\Windows\System32\atieclxx.exe
(Intel(R) Corporation) D:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Shield Plus) D:\Users\JB\AppData\Local\ShieldPlus\spprt\spsvc.exe
(Shield Plus) D:\Users\JB\AppData\Local\ShieldPlus\spprt\spprt.exe
(Gigabyte) D:\Program Files (x86)\Gigabyte\UpdManager\RunUpd.exe
(Intel Corporation) D:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Mozilla Corporation) D:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(forum.viry.cz) D:\Users\JB\Desktop\FRSTLauncher.exe
(Microsoft Corporation) D:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) D:\Windows\SysWOW64\PING.EXE

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [USB3MON] => D:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)
HKLM-x32\...\RunOnce: [GBTUpd] => D:\Program Files (x86)\Gigabyte\UpdManager\PreRun.exe [297480 2008-04-03] (PreRun)
HKU\S-1-5-21-4157831775-1258494213-393159632-1000\...\Run: [Overwolf] => D:\Overwolf.exe -silent

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_s ... 2&tsp=5285
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xBC1D93B79AFECD01
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTe ... 2&tsp=5285
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203
FF Plugin: @adobe.com/FlashPlayer -> D:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> D:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF user.js: detected! => D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203\user.js
FF SearchPlugin: D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203\searchplugins\buenosearch.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: United States English Spellchecker - D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203\Extensions\en-US@dictionaries.addons.mozilla.org [2013-10-27]
FF Extension: Skype Click to Call - D:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-07-30]
FF Extension: Skype Click to Call - D:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-07-30]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 jhi_service; D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 Service; D:\Users\JB\AppData\Local\ShieldPlus\spprt\spsvc.exe [134656 2014-06-12] (Shield Plus) [File not signed]
S3 OverwolfUpdaterService; D:OverwolfUpdater.exe [X]
S2 Skype C2C Service; "D:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 L1C; D:\Windows\System32\DRIVERS\L1C62x64.sys [110744 2012-07-19] (Qualcomm Atheros Co., Ltd.)
S3 gdrv; \??\D:\Windows\gdrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-07 18:00 - 2014-08-07 18:00 - 00006666 _____ () D:\Users\JB\Desktop\FRST.txt
2014-08-07 17:59 - 2014-08-07 17:59 - 00112640 _____ (forum.viry.cz) D:\Users\JB\Desktop\FRSTLauncher.exe
2014-08-07 17:59 - 2014-08-07 17:59 - 00029696 _____ () D:\Users\JB\AppData\Local\MSGBOX.EXE
2014-08-07 17:59 - 2014-08-07 17:59 - 00015327 _____ () D:\Users\JB\Desktop\LM.bat
2014-08-07 17:58 - 2014-08-07 17:58 - 00112107 _____ (forum.viry.cz) D:\Users\JB\Downloads\VerzeOS(1).exe
2014-08-03 17:22 - 2014-08-03 17:22 - 00000000 ____D () D:\Users\JB\Desktop\FRST-OlderVersion
2014-08-02 17:14 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) D:\Windows\system32\wuaueng.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) D:\Windows\system32\wuapi.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wuapi.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) D:\Windows\system32\wuauclt.exe
2014-08-02 17:14 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) D:\Windows\system32\wups2.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) D:\Windows\system32\wups.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wups.dll
2014-08-02 17:14 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) D:\Windows\system32\wucltux.dll
2014-08-02 17:14 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) D:\Windows\system32\wudriver.dll
2014-08-02 17:14 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wudriver.dll
2014-08-02 17:14 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) D:\Windows\system32\wuwebv.dll
2014-08-02 17:14 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wuwebv.dll
2014-08-02 17:14 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) D:\Windows\system32\wuapp.exe
2014-08-02 17:14 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wuapp.exe
2014-07-30 20:51 - 2014-07-30 20:51 - 00000000 ____D () D:\Program Files (x86)\Mozilla Firefox
2014-07-09 15:31 - 2014-06-30 04:09 - 00519168 _____ (Microsoft Corporation) D:\Windows\system32\aepdu.dll
2014-07-09 15:31 - 2014-06-30 04:04 - 00424448 _____ (Microsoft Corporation) D:\Windows\system32\aeinv.dll
2014-07-09 15:31 - 2014-06-20 22:14 - 00266424 _____ (Microsoft Corporation) D:\Windows\system32\iedkcs32.dll
2014-07-09 15:31 - 2014-06-20 21:39 - 00240824 _____ (Microsoft Corporation) D:\Windows\SysWOW64\iedkcs32.dll
2014-07-09 15:31 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) D:\Windows\system32\mshtml.dll
2014-07-09 15:31 - 2014-06-19 03:06 - 02724864 _____ (Microsoft Corporation) D:\Windows\system32\mshtml.tlb
2014-07-09 15:31 - 2014-06-19 03:06 - 00004096 _____ (Microsoft Corporation) D:\Windows\system32\ieetwcollectorres.dll
2014-07-09 15:31 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) D:\Windows\system32\iertutil.dll
2014-07-09 15:31 - 2014-06-19 02:42 - 00548352 _____ (Microsoft Corporation) D:\Windows\system32\vbscript.dll
2014-07-09 15:31 - 2014-06-19 02:42 - 00066048 _____ (Microsoft Corporation) D:\Windows\system32\iesetup.dll
2014-07-09 15:31 - 2014-06-19 02:41 - 00083968 _____ (Microsoft Corporation) D:\Windows\system32\MshtmlDac.dll
2014-07-09 15:31 - 2014-06-19 02:41 - 00048640 _____ (Microsoft Corporation) D:\Windows\system32\ieetwproxystub.dll
2014-07-09 15:31 - 2014-06-19 02:32 - 00051200 _____ (Microsoft Corporation) D:\Windows\system32\jsproxy.dll
2014-07-09 15:31 - 2014-06-19 02:31 - 00033792 _____ (Microsoft Corporation) D:\Windows\system32\iernonce.dll
2014-07-09 15:31 - 2014-06-19 02:26 - 00598016 _____ (Microsoft Corporation) D:\Windows\system32\ieui.dll
2014-07-09 15:31 - 2014-06-19 02:24 - 00139264 _____ (Microsoft Corporation) D:\Windows\system32\ieUnatt.exe
2014-07-09 15:31 - 2014-06-19 02:24 - 00111616 _____ (Microsoft Corporation) D:\Windows\system32\ieetwcollector.exe
2014-07-09 15:31 - 2014-06-19 02:23 - 00752640 _____ (Microsoft Corporation) D:\Windows\system32\jscript9diag.dll
2014-07-09 15:31 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) D:\Windows\SysWOW64\mshtml.dll
2014-07-09 15:31 - 2014-06-19 02:14 - 00940032 _____ (Microsoft Corporation) D:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-09 15:31 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) D:\Windows\system32\dxtmsft.dll
2014-07-09 15:31 - 2014-06-19 01:59 - 00038400 _____ (Microsoft Corporation) D:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-09 15:31 - 2014-06-19 01:56 - 02724864 _____ (Microsoft Corporation) D:\Windows\SysWOW64\mshtml.tlb
2014-07-09 15:31 - 2014-06-19 01:53 - 00195584 _____ (Microsoft Corporation) D:\Windows\system32\msrating.dll
2014-07-09 15:31 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) D:\Windows\system32\jscript9.dll
2014-07-09 15:31 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) D:\Windows\system32\mshtmled.dll
2014-07-09 15:31 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) D:\Windows\system32\dxtrans.dll
2014-07-09 15:31 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) D:\Windows\system32\ie4uinit.exe
2014-07-09 15:31 - 2014-06-19 01:38 - 00455168 _____ (Microsoft Corporation) D:\Windows\SysWOW64\vbscript.dll
2014-07-09 15:31 - 2014-06-19 01:37 - 00061952 _____ (Microsoft Corporation) D:\Windows\SysWOW64\iesetup.dll
2014-07-09 15:31 - 2014-06-19 01:36 - 00051200 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-09 15:31 - 2014-06-19 01:35 - 00062464 _____ (Microsoft Corporation) D:\Windows\SysWOW64\MshtmlDac.dll
2014-07-09 15:31 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) D:\Windows\system32\msfeeds.dll
2014-07-09 15:31 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) D:\Windows\SysWOW64\iertutil.dll
2014-07-09 15:31 - 2014-06-19 01:28 - 00043008 _____ (Microsoft Corporation) D:\Windows\SysWOW64\jsproxy.dll
2014-07-09 15:31 - 2014-06-19 01:28 - 00032768 _____ (Microsoft Corporation) D:\Windows\SysWOW64\iernonce.dll
2014-07-09 15:31 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) D:\Windows\system32\inetcpl.cpl
2014-07-09 15:31 - 2014-06-19 01:27 - 01249280 _____ (Microsoft Corporation) D:\Windows\system32\mshtmlmedia.dll
2014-07-09 15:31 - 2014-06-19 01:25 - 00442368 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieui.dll
2014-07-09 15:31 - 2014-06-19 01:23 - 00112128 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieUnatt.exe
2014-07-09 15:31 - 2014-06-19 01:22 - 00592896 _____ (Microsoft Corporation) D:\Windows\SysWOW64\jscript9diag.dll
2014-07-09 15:31 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) D:\Windows\SysWOW64\dxtmsft.dll
2014-07-09 15:31 - 2014-06-19 01:06 - 00032256 _____ (Microsoft Corporation) D:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-09 15:31 - 2014-06-19 01:01 - 00164864 _____ (Microsoft Corporation) D:\Windows\SysWOW64\msrating.dll
2014-07-09 15:31 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) D:\Windows\SysWOW64\mshtmled.dll
2014-07-09 15:31 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) D:\Windows\system32\wininet.dll
2014-07-09 15:31 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) D:\Windows\SysWOW64\dxtrans.dll
2014-07-09 15:31 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) D:\Windows\SysWOW64\jscript9.dll
2014-07-09 15:31 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) D:\Windows\system32\ieframe.dll
2014-07-09 15:31 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) D:\Windows\SysWOW64\msfeeds.dll
2014-07-09 15:31 - 2014-06-19 00:46 - 01068032 _____ (Microsoft Corporation) D:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-09 15:31 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) D:\Windows\SysWOW64\inetcpl.cpl
2014-07-09 15:31 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieframe.dll
2014-07-09 15:31 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) D:\Windows\system32\urlmon.dll
2014-07-09 15:31 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) D:\Windows\system32\ieapfltr.dll
2014-07-09 15:31 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wininet.dll
2014-07-09 15:31 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) D:\Windows\SysWOW64\urlmon.dll
2014-07-09 15:31 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieapfltr.dll
2014-07-09 15:31 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) D:\Windows\system32\osk.exe
2014-07-09 15:31 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) D:\Windows\SysWOW64\osk.exe
2014-07-09 15:31 - 2014-06-18 03:10 - 03157504 _____ (Microsoft Corporation) D:\Windows\system32\win32k.sys
2014-07-09 15:31 - 2014-06-06 12:10 - 00624128 _____ (Microsoft Corporation) D:\Windows\system32\qedit.dll
2014-07-09 15:31 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) D:\Windows\SysWOW64\qedit.dll
2014-07-09 15:31 - 2014-05-30 10:08 - 00728064 _____ (Microsoft Corporation) D:\Windows\system32\kerberos.dll
2014-07-09 15:31 - 2014-05-30 10:08 - 00340992 _____ (Microsoft Corporation) D:\Windows\system32\schannel.dll
2014-07-09 15:31 - 2014-05-30 10:08 - 00314880 _____ (Microsoft Corporation) D:\Windows\system32\msv1_0.dll
2014-07-09 15:31 - 2014-05-30 10:08 - 00307200 _____ (Microsoft Corporation) D:\Windows\system32\ncrypt.dll
2014-07-09 15:31 - 2014-05-30 10:08 - 00210944 _____ (Microsoft Corporation) D:\Windows\system32\wdigest.dll
2014-07-09 15:31 - 2014-05-30 10:08 - 00086528 _____ (Microsoft Corporation) D:\Windows\system32\TSpkg.dll
2014-07-09 15:31 - 2014-05-30 10:08 - 00022016 _____ (Microsoft Corporation) D:\Windows\system32\credssp.dll
2014-07-09 15:31 - 2014-05-30 09:52 - 00550912 _____ (Microsoft Corporation) D:\Windows\SysWOW64\kerberos.dll
2014-07-09 15:31 - 2014-05-30 09:52 - 00259584 _____ (Microsoft Corporation) D:\Windows\SysWOW64\msv1_0.dll
2014-07-09 15:31 - 2014-05-30 09:52 - 00247808 _____ (Microsoft Corporation) D:\Windows\SysWOW64\schannel.dll
2014-07-09 15:31 - 2014-05-30 09:52 - 00220160 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ncrypt.dll
2014-07-09 15:31 - 2014-05-30 09:52 - 00172032 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wdigest.dll
2014-07-09 15:31 - 2014-05-30 09:52 - 00065536 _____ (Microsoft Corporation) D:\Windows\SysWOW64\TSpkg.dll
2014-07-09 15:31 - 2014-05-30 09:52 - 00017408 _____ (Microsoft Corporation) D:\Windows\SysWOW64\credssp.dll
2014-07-09 15:31 - 2014-05-30 08:45 - 00497152 _____ (Microsoft Corporation) D:\Windows\system32\Drivers\afd.sys
2014-07-09 15:30 - 2014-06-05 16:45 - 01460736 _____ (Microsoft Corporation) D:\Windows\system32\lsasrv.dll
2014-07-09 15:30 - 2014-06-05 16:26 - 00022016 _____ (Microsoft Corporation) D:\Windows\SysWOW64\secur32.dll
2014-07-09 15:30 - 2014-06-05 16:25 - 00096768 _____ (Microsoft Corporation) D:\Windows\SysWOW64\sspicli.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-07 18:01 - 2014-08-07 18:00 - 00006666 _____ () D:\Users\JB\Desktop\FRST.txt
2014-08-07 18:00 - 2014-01-21 18:46 - 00000000 ____D () D:\FRST
2014-08-07 17:59 - 2014-08-07 17:59 - 00112640 _____ (forum.viry.cz) D:\Users\JB\Desktop\FRSTLauncher.exe
2014-08-07 17:59 - 2014-08-07 17:59 - 00029696 _____ () D:\Users\JB\AppData\Local\MSGBOX.EXE
2014-08-07 17:59 - 2014-08-07 17:59 - 00015327 _____ () D:\Users\JB\Desktop\LM.bat
2014-08-07 17:58 - 2014-08-07 17:58 - 00112107 _____ (forum.viry.cz) D:\Users\JB\Downloads\VerzeOS(1).exe
2014-08-07 17:56 - 2009-07-14 07:08 - 00000006 ____H () D:\Windows\Tasks\SA.DAT
2014-08-07 17:56 - 2009-07-14 06:51 - 00052464 _____ () D:\Windows\setupact.log
2014-08-07 03:09 - 2013-01-30 04:46 - 01126249 _____ () D:\Windows\WindowsUpdate.log
2014-08-07 02:16 - 2013-01-30 00:58 - 00000830 _____ () D:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-06 12:38 - 2009-07-14 06:45 - 00015168 ____H () D:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-06 12:38 - 2009-07-14 06:45 - 00015168 ____H () D:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-05 21:07 - 2009-07-14 05:20 - 00000000 ____D () D:\Windows\rescache
2014-08-03 17:22 - 2014-08-03 17:22 - 00000000 ____D () D:\Users\JB\Desktop\FRST-OlderVersion
2014-08-03 17:22 - 2014-01-21 18:44 - 02094080 _____ (Farbar) D:\Users\JB\Desktop\FRST64.exe
2014-08-03 17:20 - 2009-07-14 05:20 - 00000000 ____D () D:\Windows\SysWOW64\sk-SK
2014-08-03 17:20 - 2009-07-14 05:20 - 00000000 ____D () D:\Windows\system32\sk-SK
2014-08-01 23:26 - 2013-01-30 04:36 - 00037680 _____ () D:\Windows\PFRO.log
2014-08-01 23:26 - 2013-01-30 00:56 - 00000000 ____D () D:\Program Files (x86)\Mozilla Maintenance Service
2014-08-01 02:41 - 2013-01-30 02:19 - 00000000 ____D () D:\Guild Wars 2
2014-07-31 18:21 - 2014-06-19 21:48 - 00000000 ____D () D:\Program Files (x86)\Mozilla Firefox.bak
2014-07-30 20:51 - 2014-07-30 20:51 - 00000000 ____D () D:\Program Files (x86)\Mozilla Firefox
2014-07-11 03:54 - 2013-09-30 23:59 - 00000000 ____D () D:\Users\JB\AppData\Roaming\TS3Client
2014-07-11 02:56 - 2013-09-30 23:58 - 00000000 ____D () D:\Program Files (x86)\TeamSpeak 3 Client
2014-07-10 20:16 - 2013-01-30 00:58 - 00699056 _____ (Adobe Systems Incorporated) D:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-10 20:16 - 2013-01-30 00:58 - 00071344 _____ (Adobe Systems Incorporated) D:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-10 20:16 - 2013-01-30 00:58 - 00003768 _____ () D:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-07-10 03:23 - 2009-07-14 06:45 - 00276128 _____ () D:\Windows\system32\FNTCACHE.DAT
2014-07-10 03:21 - 2014-05-23 03:18 - 00000000 ___SD () D:\Windows\system32\CompatTel
2014-07-10 03:21 - 2009-07-14 11:15 - 00000000 ____D () D:\Program Files\Windows Journal
2014-07-10 03:21 - 2009-07-14 05:20 - 00000000 ____D () D:\Windows\SysWOW64\Dism
2014-07-10 03:21 - 2009-07-14 05:20 - 00000000 ____D () D:\Windows\system32\Dism
2014-07-10 03:04 - 2013-08-15 03:02 - 00000000 ____D () D:\Windows\system32\MRT
2014-07-10 03:03 - 2013-01-30 01:26 - 96441528 _____ (Microsoft Corporation) D:\Windows\system32\MRT.exe

Some content of TEMP:
====================
D:\Users\JB\AppData\Local\Temp\13-9-legacy_vista_win7_64_dd_ccc_whql.exe
D:\Users\JB\AppData\Local\Temp\htmlayout.dll
D:\Users\JB\AppData\Local\Temp\toolbar4265780.exe
D:\Users\JB\AppData\Local\Temp\toolbar4388790.exe
D:\Users\JB\AppData\Local\Temp\uninstall-updater4780899.exe
D:\Users\JB\AppData\Local\Temp\uninstall4641862.exe
D:\Users\JB\AppData\Local\Temp\uninstall4656469.exe
D:\Users\JB\AppData\Local\Temp\uninstall4656484.exe
D:\Users\JB\AppData\Local\Temp\uninstall4791435.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

D:\Windows\System32\winlogon.exe => File is digitally signed
D:\Windows\System32\wininit.exe => File is digitally signed
D:\Windows\SysWOW64\wininit.exe => File is digitally signed
D:\Windows\explorer.exe => File is digitally signed
D:\Windows\SysWOW64\explorer.exe => File is digitally signed
D:\Windows\System32\svchost.exe => File is digitally signed
D:\Windows\SysWOW64\svchost.exe => File is digitally signed
D:\Windows\System32\services.exe => File is digitally signed
D:\Windows\System32\User32.dll => File is digitally signed
D:\Windows\SysWOW64\User32.dll => File is digitally signed
D:\Windows\System32\userinit.exe => File is digitally signed
D:\Windows\SysWOW64\userinit.exe => File is digitally signed
D:\Windows\System32\rpcss.dll => File is digitally signed
D:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-08-07 00:49

==================== End Of Log ============================

Zdravim

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Zdravim

takze toto je vysledok

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Professional x64
Ran by JB on pi 08. 08. 2014 at 6:46:25,46
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-4157831775-1258494213-393159632-1000\Software\Microsoft\Internet Explorer\Main\\Start Page

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yourfiledownloader
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\yourfiledownloader
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "D:\ProgramData\dsearchlink"
Successfully deleted: [Folder] "D:\Users\JB\AppData\Roaming\yourfiledownloader"

~~~ FireFox

Successfully deleted: [File] D:\Users\JB\AppData\Roaming\mozilla\firefox\profiles\8w0vn9tt.default-1382822020203\user.js
Successfully deleted: [File] D:\Users\JB\AppData\Roaming\mozilla\firefox\profiles\8w0vn9tt.default-1382822020203\invalidprefs.js
Successfully deleted the following from D:\Users\JB\AppData\Roaming\mozilla\firefox\profiles\8w0vn9tt.default-1382822020203\prefs.js

user_pref("extensions.buenosearch.tb_url", "hxxp://www.buenosearch.com/?q={searchTerms}&ba ... 2&tsp=5285");
user_pref("extensions.buenosearch.tlbrSrchUrl", "hxxp://www.buenosearch.com/?q={searchTerms}&ba ... 2&tsp=5285");
Emptied folder: D:\Users\JB\AppData\Roaming\mozilla\firefox\profiles\8w0vn9tt.default-1382822020203\minidumps [63 files]

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on pi 08. 08. 2014 at 6:49:36,10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

a druhy log

# AdwCleaner v3.303 - Report created 08/08/2014 at 06:55:09
# Updated 06/08/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : JB - JBW7
# Running from : D:\Users\JB\Desktop\adwcleaner_3.303.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

File Deleted : D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203\searchplugins\buenosearch.xml

***** [ Scheduled Tasks ] *****

[x] Not Deleted : YourFile DownloaderUpdate

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17207

-\\ Mozilla Firefox v31.0 (x86 sk)

[ File : D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203\prefs.js ]

Line Deleted : user_pref("extensions.buenosearch.admin", false);
Line Deleted : user_pref("extensions.buenosearch.aflt", "babsst");
Line Deleted : user_pref("extensions.buenosearch.appId", "{37EB75F2-7392-4DBE-B5AD-147EC6D7BF5F}");
Line Deleted : user_pref("extensions.buenosearch.autoRvrt", "false");
Line Deleted : user_pref("extensions.buenosearch.dfltLng", "en");
Line Deleted : user_pref("extensions.buenosearch.excTlbr", false);
Line Deleted : user_pref("extensions.buenosearch.ffxUnstlRst", true);
Line Deleted : user_pref("extensions.buenosearch.id", "00000000000000000000902b345ec168");
Line Deleted : user_pref("extensions.buenosearch.instlDay", "16242");
Line Deleted : user_pref("extensions.buenosearch.instlRef", "sst");
Line Deleted : user_pref("extensions.buenosearch.newTab", false);
Line Deleted : user_pref("extensions.buenosearch.prdct", "buenosearch");
Line Deleted : user_pref("extensions.buenosearch.prtnrId", "buenosearch");
Line Deleted : user_pref("extensions.buenosearch.rvrt", "false");
Line Deleted : user_pref("extensions.buenosearch.smplGrp", "none");
Line Deleted : user_pref("extensions.buenosearch.tlbrId", "base");
Line Deleted : user_pref("extensions.buenosearch.vrsn", "1.8.28.7");
Line Deleted : user_pref("extensions.buenosearch.vrsnTs", "1.8.28.718:12:48");
Line Deleted : user_pref("extensions.buenosearch.vrsni", "1.8.28.7");

*************************

AdwCleaner[R0].txt - [2334 octets] - [08/08/2014 06:53:28]
AdwCleaner[S0].txt - [2300 octets] - [08/08/2014 06:55:09]

########## EOF - D:\AdwCleaner\AdwCleaner[S0].txt - [2360 octets] ##########

Dakujem velmi pekne!

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Nech sa paci log

Zoek.exe v5.0.0.0 Updated 07-August-2014
Tool run by JB on pi 08. 08. 2014 at 18:43:03,96.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: D:\Users\JB\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

8. 8. 2014 18:43:27 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203\prefs.js:

Added to D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

==== Deleting Files \ Folders ======================

D:\PROGRA~3\Overwolf deleted
D:\owUpdater.exe deleted
D:\Users\JB\Searches deleted
D:\windows\SysNative\tasks\YourFile DownloaderUpdate deleted
D:\Windows\SysNative\config\systemprofile\Searches deleted
D:\Users\JB\AppData\Local\MSGBOX.EXE deleted
"D:\Users\JB\AppData\Local\ShieldPlus\spprt\spprt.exe" not deleted
"D:\Users\JB\AppData\Local\ShieldPlus\spprt\spsvc.exe" not deleted
"D:\Users\JB\AppData\Local\ShieldPlus" not deleted
"D:\Users\JB\AppData\Local\ShieldPlus\spprt" not deleted

==== Firefox Extensions ======================

ProfilePath: D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203
- United States English Spellchecker - %ProfilePath%\extensions\en-US@dictionaries.addons.mozilla.org

AppDir: D:\Program Files (x86)\Mozilla Firefox
- Skype Click to Call - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
- Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203
4390CCD3790F8D9C427C0C29590C62D7 - D:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll - Shockwave Flash

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== Reset Google Chrome ======================

Nothing found to reset

==== Empty IE Cache ======================

D:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
D:\Users\JB\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
D:\Users\JB\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
D:\Users\JB\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully
D:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
D:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
D:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

D:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache is not empty, a reboot is needed

==== Empty All Java Cache ======================

No Java Cache Found

==== D:\zoek_backup content ======================

D:\zoek_backup (files=15 folders=8 141448293 bytes)

==== Empty Temp Folders ======================

D:\Users\Default\AppData\Local\Temp emptied successfully
D:\Users\Default User\AppData\Local\Temp emptied successfully
D:\Users\JB\AppData\Local\Temp will be emptied at reboot
D:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
D:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
D:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

D:\Windows\Temp successfully emptied
D:\Users\JB\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

D:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"D:\Users\JB\AppData\Local\ShieldPlus\spprt\spprt.exe" not found
"D:\Users\JB\AppData\Local\ShieldPlus\spprt\spsvc.exe" not found
"D:\Users\JB\AppData\Local\ShieldPlus" not found
"D:\Users\JB\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\D8FWQJWR\inres2.uspech.sk" not found
"D:\Users\JB\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\D8FWQJWR\s3.amazonaws.com" not found
"D:\Users\JB\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\D8FWQJWR\www.awin1.com" not found

==== EOF on pi 08. 08. 2014 at 18:50:17,04 ======================

Poprosim o novy log z FRST

Zdravim, dakujem za trpezlivost, ale bola som mimo domu. Moj internet je dost spomaleny, aj pisanie ma asi tak 3 sekundove opozdeni. Ja uz fakt neviem, co s tym. Taktiez pri spusteni noveho scanu FRST vsetko zamrzlo asi tak na 15 sekund, uz som si myslela, ze budem musiet spustit spravcu uloh, ale potom sa vsetko zase rozbehlo. Nech sa paci novy scan:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-08-2014 01
Ran by JB (administrator) on JBW7 on 12-08-2014 01:49:30
Running from D:\Users\JB\Desktop
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) D:\Windows\System32\atiesrxx.exe
(AMD) D:\Windows\System32\atieclxx.exe
(Intel(R) Corporation) D:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Gigabyte) D:\Program Files (x86)\Gigabyte\UpdManager\RunUpd.exe
(Intel Corporation) D:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation) D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) D:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) D:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(Adobe Systems, Inc.) D:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [USB3MON] => D:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)
HKLM-x32\...\RunOnce: [GBTUpd] => D:\Program Files (x86)\Gigabyte\UpdManager\PreRun.exe [297480 2008-04-03] (PreRun)
HKU\S-1-5-21-4157831775-1258494213-393159632-1000\...\Run: [Overwolf] => D:\Overwolf.exe -silent

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xBC1D93B79AFECD01
SearchScopes: HKCU - DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203
FF NewTab: hxxp://www.google.com/
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> D:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> D:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: United States English Spellchecker - D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203\Extensions\en-US@dictionaries.addons.mozilla.org [2013-10-27]
FF Extension: Skype Click to Call - D:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-07-30]
FF Extension: Skype Click to Call - D:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-07-30]

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 jhi_service; D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 OverwolfUpdaterService; D:OverwolfUpdater.exe [X]
S2 Service; D:\Users\JB\AppData\Local\ShieldPlus\spprt\spsvc.exe [X]
S2 Skype C2C Service; "D:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 L1C; D:\Windows\System32\DRIVERS\L1C62x64.sys [110744 2012-07-19] (Qualcomm Atheros Co., Ltd.)
S3 gdrv; \??\D:\Windows\gdrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-08 18:49 - 2014-08-08 18:43 - 00024064 _____ () D:\Windows\zoek-delete.exe
2014-08-08 18:43 - 2014-08-08 18:50 - 00007425 _____ () D:\zoek-results.log
2014-08-08 18:42 - 2014-08-08 18:48 - 00000000 ____D () D:\zoek_backup
2014-08-08 18:41 - 2014-08-08 18:41 - 01288704 _____ () D:\Users\JB\Desktop\zoek.exe
2014-08-08 06:53 - 2014-08-08 06:55 - 00000000 ____D () D:\AdwCleaner
2014-08-08 06:49 - 2014-08-08 06:49 - 00002788 _____ () D:\Users\JB\Desktop\JRT.txt
2014-08-08 06:46 - 2014-08-08 06:46 - 00000000 ____D () D:\Windows\ERUNT
2014-08-08 06:45 - 2014-08-08 06:45 - 01475072 _____ () D:\Users\JB\Desktop\adwcleaner_3.303.exe
2014-08-08 06:45 - 2014-08-08 06:45 - 01016261 _____ (Thisisu) D:\Users\JB\Desktop\JRT.exe
2014-08-07 18:00 - 2014-08-12 01:49 - 00006289 _____ () D:\Users\JB\Desktop\FRST.txt
2014-08-07 17:59 - 2014-08-07 17:59 - 00015327 _____ () D:\Users\JB\Desktop\LM.bat
2014-08-07 17:58 - 2014-08-07 17:58 - 00112107 _____ (forum.viry.cz) D:\Users\JB\Downloads\VerzeOS(1).exe
2014-08-03 17:22 - 2014-08-12 01:49 - 00000000 ____D () D:\Users\JB\Desktop\FRST-OlderVersion
2014-08-02 17:14 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) D:\Windows\system32\wuaueng.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) D:\Windows\system32\wuapi.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wuapi.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) D:\Windows\system32\wuauclt.exe
2014-08-02 17:14 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) D:\Windows\system32\wups2.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) D:\Windows\system32\wups.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wups.dll
2014-08-02 17:14 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) D:\Windows\system32\wucltux.dll
2014-08-02 17:14 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) D:\Windows\system32\wudriver.dll
2014-08-02 17:14 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wudriver.dll
2014-08-02 17:14 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) D:\Windows\system32\wuwebv.dll
2014-08-02 17:14 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wuwebv.dll
2014-08-02 17:14 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) D:\Windows\system32\wuapp.exe
2014-08-02 17:14 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wuapp.exe
2014-07-30 20:51 - 2014-07-30 20:51 - 00000000 ____D () D:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-12 01:50 - 2014-08-07 18:00 - 00006289 _____ () D:\Users\JB\Desktop\FRST.txt
2014-08-12 01:49 - 2014-08-03 17:22 - 00000000 ____D () D:\Users\JB\Desktop\FRST-OlderVersion
2014-08-12 01:49 - 2014-01-21 18:46 - 00000000 ____D () D:\FRST
2014-08-12 01:49 - 2014-01-21 18:44 - 02099712 _____ (Farbar) D:\Users\JB\Desktop\FRST64.exe
2014-08-12 01:45 - 2013-01-30 00:58 - 00000830 _____ () D:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-11 20:45 - 2013-01-30 04:46 - 01240478 _____ () D:\Windows\WindowsUpdate.log
2014-08-11 01:17 - 2009-07-14 06:51 - 00054312 _____ () D:\Windows\setupact.log
2014-08-10 13:23 - 2009-07-14 06:45 - 00015168 ____H () D:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-10 13:23 - 2009-07-14 06:45 - 00015168 ____H () D:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-10 13:15 - 2009-07-14 07:08 - 00000006 ____H () D:\Windows\Tasks\SA.DAT
2014-08-08 18:50 - 2014-08-08 18:43 - 00007425 _____ () D:\zoek-results.log
2014-08-08 18:49 - 2013-01-30 04:36 - 00038526 _____ () D:\Windows\PFRO.log
2014-08-08 18:48 - 2014-08-08 18:42 - 00000000 ____D () D:\zoek_backup
2014-08-08 18:48 - 2013-01-30 04:50 - 00000000 ____D () D:\Users\JB
2014-08-08 18:43 - 2014-08-08 18:49 - 00024064 _____ () D:\Windows\zoek-delete.exe
2014-08-08 18:41 - 2014-08-08 18:41 - 01288704 _____ () D:\Users\JB\Desktop\zoek.exe
2014-08-08 06:55 - 2014-08-08 06:53 - 00000000 ____D () D:\AdwCleaner
2014-08-08 06:49 - 2014-08-08 06:49 - 00002788 _____ () D:\Users\JB\Desktop\JRT.txt
2014-08-08 06:46 - 2014-08-08 06:46 - 00000000 ____D () D:\Windows\ERUNT
2014-08-08 06:45 - 2014-08-08 06:45 - 01475072 _____ () D:\Users\JB\Desktop\adwcleaner_3.303.exe
2014-08-08 06:45 - 2014-08-08 06:45 - 01016261 _____ (Thisisu) D:\Users\JB\Desktop\JRT.exe
2014-08-08 03:08 - 2013-09-30 23:59 - 00000000 ____D () D:\Users\JB\AppData\Roaming\TS3Client
2014-08-08 02:22 - 2013-09-30 23:58 - 00000000 ____D () D:\Program Files (x86)\TeamSpeak 3 Client
2014-08-07 17:59 - 2014-08-07 17:59 - 00015327 _____ () D:\Users\JB\Desktop\LM.bat
2014-08-07 17:58 - 2014-08-07 17:58 - 00112107 _____ (forum.viry.cz) D:\Users\JB\Downloads\VerzeOS(1).exe
2014-08-05 21:07 - 2009-07-14 05:20 - 00000000 ____D () D:\Windows\rescache
2014-08-03 17:20 - 2009-07-14 05:20 - 00000000 ____D () D:\Windows\SysWOW64\sk-SK
2014-08-03 17:20 - 2009-07-14 05:20 - 00000000 ____D () D:\Windows\system32\sk-SK
2014-08-01 23:26 - 2013-01-30 00:56 - 00000000 ____D () D:\Program Files (x86)\Mozilla Maintenance Service
2014-08-01 02:41 - 2013-01-30 02:19 - 00000000 ____D () D:\Guild Wars 2
2014-07-31 18:21 - 2014-06-19 21:48 - 00000000 ____D () D:\Program Files (x86)\Mozilla Firefox.bak
2014-07-30 20:51 - 2014-07-30 20:51 - 00000000 ____D () D:\Program Files (x86)\Mozilla Firefox

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

D:\Windows\System32\winlogon.exe => File is digitally signed
D:\Windows\System32\wininit.exe => File is digitally signed
D:\Windows\SysWOW64\wininit.exe => File is digitally signed
D:\Windows\explorer.exe => File is digitally signed
D:\Windows\SysWOW64\explorer.exe => File is digitally signed
D:\Windows\System32\svchost.exe => File is digitally signed
D:\Windows\SysWOW64\svchost.exe => File is digitally signed
D:\Windows\System32\services.exe => File is digitally signed
D:\Windows\System32\User32.dll => File is digitally signed
D:\Windows\SysWOW64\User32.dll => File is digitally signed
D:\Windows\System32\userinit.exe => File is digitally signed
D:\Windows\SysWOW64\userinit.exe => File is digitally signed
D:\Windows\System32\rpcss.dll => File is digitally signed
D:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-08-07 00:49

==================== End Of Log ============================

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
S2 Service; D:\Users\JB\AppData\Local\ShieldPlus\spprt\spsvc.exe [X]
S2 Skype C2C Service; "D:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe" [X]
D:\Users\JB\AppData\Local\ShieldPlus
D:\ProgramData\Skype\Toolbars

S3 gdrv; \??\D:\Windows\gdrv.sys [X]

2014-08-08 18:49 - 2014-08-08 18:43 - 00024064 _____ () D:\Windows\zoek-delete.exe
2014-08-08 18:43 - 2014-08-08 18:50 - 00007425 _____ () D:\zoek-results.log
2014-08-08 18:42 - 2014-08-08 18:48 - 00000000 ____D () D:\zoek_backup
2014-08-08 18:41 - 2014-08-08 18:41 - 01288704 _____ () D:\Users\JB\Desktop\zoek.exe
2014-08-08 06:53 - 2014-08-08 06:55 - 00000000 ____D () D:\AdwCleaner
2014-08-08 06:49 - 2014-08-08 06:49 - 00002788 _____ () D:\Users\JB\Desktop\JRT.txt
2014-08-08 06:46 - 2014-08-08 06:46 - 00000000 ____D () D:\Windows\ERUNT
2014-08-08 06:45 - 2014-08-08 06:45 - 01475072 _____ () D:\Users\JB\Desktop\adwcleaner_3.303.exe
2014-08-08 06:45 - 2014-08-08 06:45 - 01016261 _____ (Thisisu) D:\Users\JB\Desktop\JRT.exe
2014-08-07 18:00 - 2014-08-12 01:49 - 00006289 _____ () D:\Users\JB\Desktop\FRST.txt
2014-08-07 17:59 - 2014-08-07 17:59 - 00015327 _____ () D:\Users\JB\Desktop\LM.bat
2014-08-07 17:58 - 2014-08-07 17:58 - 00112107 _____ (forum.viry.cz) D:\Users\JB\Downloads\VerzeOS(1).exe
2014-08-03 17:22 - 2014-08-12 01:49 - 00000000 ____D () D:\Users\JB\Desktop\FRST-OlderVersion

Hosts:
Reboot:
End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Nech sa paci log:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-08-2014 04
Ran by JB (administrator) on JBW7 on 17-08-2014 22:50:04
Running from D:\Users\JB\Desktop
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Slovenčina (Slovensko)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) D:\Windows\System32\atiesrxx.exe
(AMD) D:\Windows\System32\atieclxx.exe
(Intel(R) Corporation) D:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Gigabyte) D:\Program Files (x86)\Gigabyte\UpdManager\RunUpd.exe
(Intel Corporation) D:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Mozilla Corporation) D:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [USB3MON] => D:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)
HKLM-x32\...\RunOnce: [GBTUpd] => D:\Program Files (x86)\Gigabyte\UpdManager\PreRun.exe [297480 2008-04-03] (PreRun)
HKU\S-1-5-21-4157831775-1258494213-393159632-1000\...\Run: [Overwolf] => D:\Overwolf.exe -silent

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xBC1D93B79AFECD01
SearchScopes: HKCU - DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203
FF NewTab: hxxp://www.google.com/
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> D:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> D:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: D:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: United States English Spellchecker - D:\Users\JB\AppData\Roaming\Mozilla\Firefox\Profiles\8w0vn9tt.default-1382822020203\Extensions\en-US@dictionaries.addons.mozilla.org [2013-10-27]
FF Extension: Skype Click to Call - D:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-07-30]
FF Extension: Skype Click to Call - D:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-07-30]

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 jhi_service; D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 OverwolfUpdaterService; D:OverwolfUpdater.exe [X]
S2 Service; D:\Users\JB\AppData\Local\ShieldPlus\spprt\spsvc.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 L1C; D:\Windows\System32\DRIVERS\L1C62x64.sys [110744 2012-07-19] (Qualcomm Atheros Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-17 22:50 - 2014-08-17 22:50 - 00005876 _____ () D:\Users\JB\Desktop\FRST.txt
2014-08-14 03:01 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) D:\Windows\system32\icardres.dll
2014-08-14 03:01 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) D:\Windows\SysWOW64\icardres.dll
2014-08-14 03:01 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) D:\Windows\system32\icardagt.exe
2014-08-14 03:01 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) D:\Windows\system32\infocardapi.dll
2014-08-14 03:01 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) D:\Windows\SysWOW64\icardagt.exe
2014-08-14 03:01 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) D:\Windows\SysWOW64\infocardapi.dll
2014-08-14 03:00 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) D:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-14 03:00 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) D:\Windows\system32\TsWpfWrp.exe
2014-08-13 23:45 - 2014-08-01 01:41 - 00348856 _____ (Microsoft Corporation) D:\Windows\system32\iedkcs32.dll
2014-08-13 23:45 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) D:\Windows\SysWOW64\iedkcs32.dll
2014-08-13 23:45 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) D:\Windows\system32\mshtml.dll
2014-08-13 23:45 - 2014-07-25 16:02 - 02724864 _____ (Microsoft Corporation) D:\Windows\system32\mshtml.tlb
2014-08-13 23:45 - 2014-07-25 16:01 - 00004096 _____ (Microsoft Corporation) D:\Windows\system32\ieetwcollectorres.dll
2014-08-13 23:45 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) D:\Windows\SysWOW64\mshtml.dll
2014-08-13 23:45 - 2014-07-25 15:30 - 00066048 _____ (Microsoft Corporation) D:\Windows\system32\iesetup.dll
2014-08-13 23:45 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) D:\Windows\system32\vbscript.dll
2014-08-13 23:45 - 2014-07-25 15:28 - 00048640 _____ (Microsoft Corporation) D:\Windows\system32\ieetwproxystub.dll
2014-08-13 23:45 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) D:\Windows\system32\iertutil.dll
2014-08-13 23:45 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) D:\Windows\system32\MshtmlDac.dll
2014-08-13 23:45 - 2014-07-25 15:11 - 00051200 _____ (Microsoft Corporation) D:\Windows\system32\jsproxy.dll
2014-08-13 23:45 - 2014-07-25 15:10 - 00033792 _____ (Microsoft Corporation) D:\Windows\system32\iernonce.dll
2014-08-13 23:45 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) D:\Windows\SysWOW64\mshtml.tlb
2014-08-13 23:45 - 2014-07-25 15:03 - 00598016 _____ (Microsoft Corporation) D:\Windows\system32\ieui.dll
2014-08-13 23:45 - 2014-07-25 15:00 - 00139264 _____ (Microsoft Corporation) D:\Windows\system32\ieUnatt.exe
2014-08-13 23:45 - 2014-07-25 15:00 - 00111616 _____ (Microsoft Corporation) D:\Windows\system32\ieetwcollector.exe
2014-08-13 23:45 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) D:\Windows\system32\jscript9diag.dll
2014-08-13 23:45 - 2014-07-25 14:47 - 00940032 _____ (Microsoft Corporation) D:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 23:45 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) D:\Windows\system32\dxtmsft.dll
2014-08-13 23:45 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) D:\Windows\SysWOW64\vbscript.dll
2014-08-13 23:45 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) D:\Windows\SysWOW64\iesetup.dll
2014-08-13 23:45 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-13 23:45 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) D:\Windows\SysWOW64\MshtmlDac.dll
2014-08-13 23:45 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) D:\Windows\system32\jscript9.dll
2014-08-13 23:45 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) D:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 23:45 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) D:\Windows\SysWOW64\iertutil.dll
2014-08-13 23:45 - 2014-07-25 14:19 - 00195584 _____ (Microsoft Corporation) D:\Windows\system32\msrating.dll
2014-08-13 23:45 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) D:\Windows\SysWOW64\jsproxy.dll
2014-08-13 23:45 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) D:\Windows\system32\mshtmled.dll
2014-08-13 23:45 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) D:\Windows\SysWOW64\iernonce.dll
2014-08-13 23:45 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieui.dll
2014-08-13 23:45 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) D:\Windows\system32\dxtrans.dll
2014-08-13 23:45 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieUnatt.exe
2014-08-13 23:45 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) D:\Windows\SysWOW64\jscript9diag.dll
2014-08-13 23:45 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) D:\Windows\SysWOW64\jscript9.dll
2014-08-13 23:45 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) D:\Windows\SysWOW64\dxtmsft.dll
2014-08-13 23:45 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) D:\Windows\system32\msfeeds.dll
2014-08-13 23:45 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) D:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-13 23:45 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) D:\Windows\system32\ie4uinit.exe
2014-08-13 23:45 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) D:\Windows\system32\inetcpl.cpl
2014-08-13 23:45 - 2014-07-25 13:39 - 01249280 _____ (Microsoft Corporation) D:\Windows\system32\mshtmlmedia.dll
2014-08-13 23:45 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) D:\Windows\SysWOW64\msrating.dll
2014-08-13 23:45 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) D:\Windows\SysWOW64\mshtmled.dll
2014-08-13 23:45 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) D:\Windows\SysWOW64\dxtrans.dll
2014-08-13 23:45 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) D:\Windows\system32\ieframe.dll
2014-08-13 23:45 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) D:\Windows\SysWOW64\msfeeds.dll
2014-08-13 23:45 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) D:\Windows\SysWOW64\inetcpl.cpl
2014-08-13 23:45 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) D:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-13 23:45 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieframe.dll
2014-08-13 23:45 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) D:\Windows\system32\wininet.dll
2014-08-13 23:45 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) D:\Windows\system32\urlmon.dll
2014-08-13 23:45 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) D:\Windows\system32\ieapfltr.dll
2014-08-13 23:45 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieapfltr.dll
2014-08-13 23:45 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wininet.dll
2014-08-13 23:45 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) D:\Windows\SysWOW64\urlmon.dll
2014-08-13 23:45 - 2014-07-16 05:25 - 00404480 _____ (Microsoft Corporation) D:\Windows\system32\gdi32.dll
2014-08-13 23:45 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) D:\Windows\system32\tzres.dll
2014-08-13 23:45 - 2014-07-16 04:46 - 00311808 _____ (Microsoft Corporation) D:\Windows\SysWOW64\gdi32.dll
2014-08-13 23:45 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) D:\Windows\SysWOW64\tzres.dll
2014-08-13 23:45 - 2014-07-16 04:12 - 03163648 _____ (Microsoft Corporation) D:\Windows\system32\win32k.sys
2014-08-13 23:45 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) D:\Windows\system32\KBDYAK.DLL
2014-08-13 23:45 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) D:\Windows\system32\KBDTAT.DLL
2014-08-13 23:45 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) D:\Windows\system32\KBDRU1.DLL
2014-08-13 23:45 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) D:\Windows\system32\KBDBASH.DLL
2014-08-13 23:45 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) D:\Windows\system32\KBDRU.DLL
2014-08-13 23:45 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) D:\Windows\SysWOW64\KBDYAK.DLL
2014-08-13 23:45 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) D:\Windows\SysWOW64\KBDTAT.DLL
2014-08-13 23:45 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) D:\Windows\SysWOW64\KBDRU1.DLL
2014-08-13 23:45 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) D:\Windows\SysWOW64\KBDRU.DLL
2014-08-13 23:45 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) D:\Windows\SysWOW64\KBDBASH.DLL
2014-08-13 23:45 - 2014-07-09 00:38 - 00419992 _____ () D:\Windows\system32\locale.nls
2014-08-13 23:45 - 2014-07-09 00:30 - 00419992 _____ () D:\Windows\SysWOW64\locale.nls
2014-08-13 23:45 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) D:\Windows\system32\shell32.dll
2014-08-13 23:45 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) D:\Windows\SysWOW64\shell32.dll
2014-08-13 23:45 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) D:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-13 23:45 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) D:\Windows\system32\msi.dll
2014-08-13 23:45 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) D:\Windows\system32\authui.dll
2014-08-13 23:45 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) D:\Windows\system32\msihnd.dll
2014-08-13 23:45 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) D:\Windows\system32\consent.exe
2014-08-13 23:45 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) D:\Windows\SysWOW64\msi.dll
2014-08-13 23:45 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) D:\Windows\SysWOW64\authui.dll
2014-08-13 23:45 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) D:\Windows\SysWOW64\msihnd.dll
2014-08-13 23:43 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) D:\Windows\system32\aepdu.dll
2014-08-13 23:43 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) D:\Windows\system32\aeinv.dll
2014-08-13 23:43 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) D:\Windows\system32\rpcrt4.dll
2014-08-13 23:43 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) D:\Windows\SysWOW64\rpcrt4.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) D:\Windows\system32\wuaueng.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) D:\Windows\system32\wuapi.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wuapi.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) D:\Windows\system32\wuauclt.exe
2014-08-02 17:14 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) D:\Windows\system32\wups2.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) D:\Windows\system32\wups.dll
2014-08-02 17:14 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wups.dll
2014-08-02 17:14 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) D:\Windows\system32\wucltux.dll
2014-08-02 17:14 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) D:\Windows\system32\wudriver.dll
2014-08-02 17:14 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wudriver.dll
2014-08-02 17:14 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) D:\Windows\system32\wuwebv.dll
2014-08-02 17:14 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wuwebv.dll
2014-08-02 17:14 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) D:\Windows\system32\wuapp.exe
2014-08-02 17:14 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wuapp.exe
2014-07-30 20:51 - 2014-07-30 20:51 - 00000000 ____D () D:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-17 22:51 - 2014-08-17 22:50 - 00005876 _____ () D:\Users\JB\Desktop\FRST.txt
2014-08-17 22:50 - 2014-01-21 18:46 - 00000000 ____D () D:\FRST
2014-08-17 22:47 - 2014-01-21 18:44 - 02101760 _____ (Farbar) D:\Users\JB\Desktop\FRST64.exe
2014-08-17 22:47 - 2013-01-30 04:46 - 01552334 _____ () D:\Windows\WindowsUpdate.log
2014-08-17 22:47 - 2009-07-14 07:08 - 00000006 ____H () D:\Windows\Tasks\SA.DAT
2014-08-17 22:47 - 2009-07-14 06:51 - 00055208 _____ () D:\Windows\setupact.log
2014-08-17 22:16 - 2013-01-30 00:58 - 00000830 _____ () D:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-17 22:06 - 2009-07-14 06:45 - 00026336 ____H () D:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-17 22:06 - 2009-07-14 06:45 - 00026336 ____H () D:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-17 22:04 - 2013-01-30 00:58 - 00699568 _____ (Adobe Systems Incorporated) D:\Windows\SysWOW64\FlashPlayerApp.exe
2014-08-17 22:04 - 2013-01-30 00:58 - 00071344 _____ (Adobe Systems Incorporated) D:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-17 22:04 - 2013-01-30 00:58 - 00003768 _____ () D:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-08-17 21:59 - 2009-07-14 06:45 - 00276128 _____ () D:\Windows\system32\FNTCACHE.DAT
2014-08-15 07:20 - 2009-07-14 05:20 - 00000000 ____D () D:\Windows\rescache
2014-08-14 03:30 - 2013-01-30 04:50 - 00000000 ____D () D:\Users\JB
2014-08-14 03:24 - 2009-07-14 05:20 - 00000000 ____D () D:\Windows\SysWOW64\sk-SK
2014-08-14 03:24 - 2009-07-14 05:20 - 00000000 ____D () D:\Windows\system32\sk-SK
2014-08-14 03:24 - 2009-07-14 05:20 - 00000000 ____D () D:\Windows\PolicyDefinitions
2014-08-14 03:05 - 2013-08-15 03:02 - 00000000 ____D () D:\Windows\system32\MRT
2014-08-14 03:04 - 2013-01-30 01:26 - 99218768 _____ (Microsoft Corporation) D:\Windows\system32\MRT.exe
2014-08-14 03:00 - 2014-05-23 03:18 - 00000000 ___SD () D:\Windows\system32\CompatTel
2014-08-08 18:49 - 2013-01-30 04:36 - 00038526 _____ () D:\Windows\PFRO.log
2014-08-08 03:08 - 2013-09-30 23:59 - 00000000 ____D () D:\Users\JB\AppData\Roaming\TS3Client
2014-08-08 02:22 - 2013-09-30 23:58 - 00000000 ____D () D:\Program Files (x86)\TeamSpeak 3 Client
2014-08-07 04:06 - 2014-08-13 23:43 - 00529920 _____ (Microsoft Corporation) D:\Windows\system32\aepdu.dll
2014-08-07 04:01 - 2014-08-13 23:43 - 00424448 _____ (Microsoft Corporation) D:\Windows\system32\aeinv.dll
2014-08-01 23:26 - 2013-01-30 00:56 - 00000000 ____D () D:\Program Files (x86)\Mozilla Maintenance Service
2014-08-01 02:41 - 2013-01-30 02:19 - 00000000 ____D () D:\Guild Wars 2
2014-08-01 01:41 - 2014-08-13 23:45 - 00348856 _____ (Microsoft Corporation) D:\Windows\system32\iedkcs32.dll
2014-08-01 01:16 - 2014-08-13 23:45 - 00307384 _____ (Microsoft Corporation) D:\Windows\SysWOW64\iedkcs32.dll
2014-07-31 18:21 - 2014-06-19 21:48 - 00000000 ____D () D:\Program Files (x86)\Mozilla Firefox.bak
2014-07-30 20:51 - 2014-07-30 20:51 - 00000000 ____D () D:\Program Files (x86)\Mozilla Firefox
2014-07-25 16:52 - 2014-08-13 23:45 - 23645696 _____ (Microsoft Corporation) D:\Windows\system32\mshtml.dll
2014-07-25 16:02 - 2014-08-13 23:45 - 02724864 _____ (Microsoft Corporation) D:\Windows\system32\mshtml.tlb
2014-07-25 16:01 - 2014-08-13 23:45 - 00004096 _____ (Microsoft Corporation) D:\Windows\system32\ieetwcollectorres.dll
2014-07-25 15:51 - 2014-08-13 23:45 - 17524224 _____ (Microsoft Corporation) D:\Windows\SysWOW64\mshtml.dll
2014-07-25 15:30 - 2014-08-13 23:45 - 00066048 _____ (Microsoft Corporation) D:\Windows\system32\iesetup.dll
2014-07-25 15:28 - 2014-08-13 23:45 - 00548352 _____ (Microsoft Corporation) D:\Windows\system32\vbscript.dll
2014-07-25 15:28 - 2014-08-13 23:45 - 00048640 _____ (Microsoft Corporation) D:\Windows\system32\ieetwproxystub.dll
2014-07-25 15:25 - 2014-08-13 23:45 - 02774528 _____ (Microsoft Corporation) D:\Windows\system32\iertutil.dll
2014-07-25 15:25 - 2014-08-13 23:45 - 00083968 _____ (Microsoft Corporation) D:\Windows\system32\MshtmlDac.dll
2014-07-25 15:11 - 2014-08-13 23:45 - 00051200 _____ (Microsoft Corporation) D:\Windows\system32\jsproxy.dll
2014-07-25 15:10 - 2014-08-13 23:45 - 00033792 _____ (Microsoft Corporation) D:\Windows\system32\iernonce.dll
2014-07-25 15:04 - 2014-08-13 23:45 - 02724864 _____ (Microsoft Corporation) D:\Windows\SysWOW64\mshtml.tlb
2014-07-25 15:03 - 2014-08-13 23:45 - 00598016 _____ (Microsoft Corporation) D:\Windows\system32\ieui.dll
2014-07-25 15:00 - 2014-08-13 23:45 - 00139264 _____ (Microsoft Corporation) D:\Windows\system32\ieUnatt.exe
2014-07-25 15:00 - 2014-08-13 23:45 - 00111616 _____ (Microsoft Corporation) D:\Windows\system32\ieetwcollector.exe
2014-07-25 14:59 - 2014-08-13 23:45 - 00758272 _____ (Microsoft Corporation) D:\Windows\system32\jscript9diag.dll
2014-07-25 14:47 - 2014-08-13 23:45 - 00940032 _____ (Microsoft Corporation) D:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-25 14:40 - 2014-08-13 23:45 - 00452096 _____ (Microsoft Corporation) D:\Windows\system32\dxtmsft.dll
2014-07-25 14:34 - 2014-08-13 23:45 - 00455168 _____ (Microsoft Corporation) D:\Windows\SysWOW64\vbscript.dll
2014-07-25 14:34 - 2014-08-13 23:45 - 00061952 _____ (Microsoft Corporation) D:\Windows\SysWOW64\iesetup.dll
2014-07-25 14:33 - 2014-08-13 23:45 - 00051200 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-25 14:30 - 2014-08-13 23:45 - 00061952 _____ (Microsoft Corporation) D:\Windows\SysWOW64\MshtmlDac.dll
2014-07-25 14:28 - 2014-08-13 23:45 - 05824512 _____ (Microsoft Corporation) D:\Windows\system32\jscript9.dll
2014-07-25 14:28 - 2014-08-13 23:45 - 00072704 _____ (Microsoft Corporation) D:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-25 14:21 - 2014-08-13 23:45 - 02184704 _____ (Microsoft Corporation) D:\Windows\SysWOW64\iertutil.dll
2014-07-25 14:19 - 2014-08-13 23:45 - 00195584 _____ (Microsoft Corporation) D:\Windows\system32\msrating.dll
2014-07-25 14:18 - 2014-08-13 23:45 - 00043008 _____ (Microsoft Corporation) D:\Windows\SysWOW64\jsproxy.dll
2014-07-25 14:17 - 2014-08-13 23:45 - 00085504 _____ (Microsoft Corporation) D:\Windows\system32\mshtmled.dll
2014-07-25 14:17 - 2014-08-13 23:45 - 00032768 _____ (Microsoft Corporation) D:\Windows\SysWOW64\iernonce.dll
2014-07-25 14:12 - 2014-08-13 23:45 - 00438784 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieui.dll
2014-07-25 14:10 - 2014-08-13 23:45 - 00292864 _____ (Microsoft Corporation) D:\Windows\system32\dxtrans.dll
2014-07-25 14:10 - 2014-08-13 23:45 - 00112128 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieUnatt.exe
2014-07-25 14:08 - 2014-08-13 23:45 - 00597504 _____ (Microsoft Corporation) D:\Windows\SysWOW64\jscript9diag.dll
2014-07-25 14:06 - 2014-08-13 23:45 - 04204032 _____ (Microsoft Corporation) D:\Windows\SysWOW64\jscript9.dll
2014-07-25 13:52 - 2014-08-13 23:45 - 00367104 _____ (Microsoft Corporation) D:\Windows\SysWOW64\dxtmsft.dll
2014-07-25 13:47 - 2014-08-13 23:45 - 00631808 _____ (Microsoft Corporation) D:\Windows\system32\msfeeds.dll
2014-07-25 13:43 - 2014-08-13 23:45 - 00060416 _____ (Microsoft Corporation) D:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-25 13:42 - 2014-08-13 23:45 - 00692736 _____ (Microsoft Corporation) D:\Windows\system32\ie4uinit.exe
2014-07-25 13:39 - 2014-08-13 23:45 - 02087936 _____ (Microsoft Corporation) D:\Windows\system32\inetcpl.cpl
2014-07-25 13:39 - 2014-08-13 23:45 - 01249280 _____ (Microsoft Corporation) D:\Windows\system32\mshtmlmedia.dll
2014-07-25 13:36 - 2014-08-13 23:45 - 00164864 _____ (Microsoft Corporation) D:\Windows\SysWOW64\msrating.dll
2014-07-25 13:34 - 2014-08-13 23:45 - 00069632 _____ (Microsoft Corporation) D:\Windows\SysWOW64\mshtmled.dll
2014-07-25 13:29 - 2014-08-13 23:45 - 00239616 _____ (Microsoft Corporation) D:\Windows\SysWOW64\dxtrans.dll
2014-07-25 13:23 - 2014-08-13 23:45 - 13547008 _____ (Microsoft Corporation) D:\Windows\system32\ieframe.dll
2014-07-25 13:13 - 2014-08-13 23:45 - 00526336 _____ (Microsoft Corporation) D:\Windows\SysWOW64\msfeeds.dll
2014-07-25 13:07 - 2014-08-13 23:45 - 02001920 _____ (Microsoft Corporation) D:\Windows\SysWOW64\inetcpl.cpl
2014-07-25 13:07 - 2014-08-13 23:45 - 01068032 _____ (Microsoft Corporation) D:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-25 13:03 - 2014-08-13 23:45 - 11772928 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieframe.dll
2014-07-25 12:52 - 2014-08-13 23:45 - 02266624 _____ (Microsoft Corporation) D:\Windows\system32\wininet.dll
2014-07-25 12:26 - 2014-08-13 23:45 - 01431040 _____ (Microsoft Corporation) D:\Windows\system32\urlmon.dll
2014-07-25 12:17 - 2014-08-13 23:45 - 00846336 _____ (Microsoft Corporation) D:\Windows\system32\ieapfltr.dll
2014-07-25 12:09 - 2014-08-13 23:45 - 00704512 _____ (Microsoft Corporation) D:\Windows\SysWOW64\ieapfltr.dll
2014-07-25 12:05 - 2014-08-13 23:45 - 01792512 _____ (Microsoft Corporation) D:\Windows\SysWOW64\wininet.dll
2014-07-25 12:00 - 2014-08-13 23:45 - 01169920 _____ (Microsoft Corporation) D:\Windows\SysWOW64\urlmon.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

D:\Windows\System32\winlogon.exe => File is digitally signed
D:\Windows\System32\wininit.exe => File is digitally signed
D:\Windows\SysWOW64\wininit.exe => File is digitally signed
D:\Windows\explorer.exe => File is digitally signed
D:\Windows\SysWOW64\explorer.exe => File is digitally signed
D:\Windows\System32\svchost.exe => File is digitally signed
D:\Windows\SysWOW64\svchost.exe => File is digitally signed
D:\Windows\System32\services.exe => File is digitally signed
D:\Windows\System32\User32.dll => File is digitally signed
D:\Windows\SysWOW64\User32.dll => File is digitally signed
D:\Windows\System32\userinit.exe => File is digitally signed
D:\Windows\SysWOW64\userinit.exe => File is digitally signed
D:\Windows\System32\rpcss.dll => File is digitally signed
D:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-08-07 00:49

==================== End Of Log ============================

tohle jste dal znovu scan a ne Fix, zkuste to jeste jednou dle navodu = vytvorit fixlist a dat ve FRST FIX

Ospravedlnujem sa, my bad. Nech sa paci tu je fixlog:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 16-08-2014 04
Ran by JB at 2014-08-20 20:16:50 Run:3
Running from D:\Users\JB\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
S2 Service; D:\Users\JB\AppData\Local\ShieldPlus\spprt\spsvc.exe [X]
S2 Skype C2C Service; "D:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe" [X]
D:\Users\JB\AppData\Local\ShieldPlus
D:\ProgramData\Skype\Toolbars

S3 gdrv; \??\D:\Windows\gdrv.sys [X]

2014-08-08 18:49 - 2014-08-08 18:43 - 00024064 _____ () D:\Windows\zoek-delete.exe
2014-08-08 18:43 - 2014-08-08 18:50 - 00007425 _____ () D:\zoek-results.log
2014-08-08 18:42 - 2014-08-08 18:48 - 00000000 ____D () D:\zoek_backup
2014-08-08 18:41 - 2014-08-08 18:41 - 01288704 _____ () D:\Users\JB\Desktop\zoek.exe
2014-08-08 06:53 - 2014-08-08 06:55 - 00000000 ____D () D:\AdwCleaner
2014-08-08 06:49 - 2014-08-08 06:49 - 00002788 _____ () D:\Users\JB\Desktop\JRT.txt
2014-08-08 06:46 - 2014-08-08 06:46 - 00000000 ____D () D:\Windows\ERUNT
2014-08-08 06:45 - 2014-08-08 06:45 - 01475072 _____ () D:\Users\JB\Desktop\adwcleaner_3.303.exe
2014-08-08 06:45 - 2014-08-08 06:45 - 01016261 _____ (Thisisu) D:\Users\JB\Desktop\JRT.exe
2014-08-07 18:00 - 2014-08-12 01:49 - 00006289 _____ () D:\Users\JB\Desktop\FRST.txt
2014-08-07 17:59 - 2014-08-07 17:59 - 00015327 _____ () D:\Users\JB\Desktop\LM.bat
2014-08-07 17:58 - 2014-08-07 17:58 - 00112107 _____ (forum.viry.cz) D:\Users\JB\Downloads\VerzeOS(1).exe
2014-08-03 17:22 - 2014-08-12 01:49 - 00000000 ____D () D:\Users\JB\Desktop\FRST-OlderVersion

Hosts:
Reboot:
End
*****************

Service => Service not found.
Skype C2C Service => Service not found.
"D:\Users\JB\AppData\Local\ShieldPlus" => File/Directory not found.
"D:\ProgramData\Skype\Toolbars" => File/Directory not found.
gdrv => Service not found.
"D:\Windows\zoek-delete.exe" => File/Directory not found.
"D:\zoek-results.log" => File/Directory not found.
"D:\zoek_backup" => File/Directory not found.
"D:\Users\JB\Desktop\zoek.exe" => File/Directory not found.
"D:\AdwCleaner" => File/Directory not found.
"D:\Users\JB\Desktop\JRT.txt" => File/Directory not found.
"D:\Windows\ERUNT" => File/Directory not found.
"D:\Users\JB\Desktop\adwcleaner_3.303.exe" => File/Directory not found.
"D:\Users\JB\Desktop\JRT.exe" => File/Directory not found.
D:\Users\JB\Desktop\FRST.txt => Moved successfully.
"D:\Users\JB\Desktop\LM.bat" => File/Directory not found.
"D:\Users\JB\Downloads\VerzeOS(1).exe" => File/Directory not found.
"D:\Users\JB\Desktop\FRST-OlderVersion" => File/Directory not found.
D:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

The system needed a reboot.

==== End of Fixlog ====

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Jak se chova PC??

No, prave som mala BDS a momentalne som v nudzovom rezime. Prave som si chcela spravit uklid podla Vasich pokynov...a hla, BDS

Cim to moze byt? Ja len dufam, ze mi neodchadza HD alebo jeden z diskov (mam 2) alebo GC? Co s tym mam urobit, prosim Vas?
Idem teraz vykonat Vase pokyny....

O 10 min neskor....
Takze som urobila vsetko ako ste napisali. PC sa je urcite rychlejsi teraz

(neviem, ci to tak ma byt, ale startovanie Windowsu trva asi tak 30 sec...predtym to bolo 40-50 sec) Velmi pekne dakujem za trpezlivost so mnou a Vasu pomoc!

BSOD se opakuji nebo tam byl jen jeden pad??

Zatial sa nezopakoval a dufam, ze sa to uz nestane (mam vsak opacnu skusenost). Neviete, co to mohlo sposobit?

VIRY.CZ

Prosim o skontrolovanie - PC zamrza a je spomaleny

Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny

Re: Prosim o skontrolovanie - PC zamrza a je spomaleny