Asus prosím o kontrolu

[Luckyphonyx]

zdravím přišel jsem k Asusu který Hučí jak startovací raketa od ventilatoru a nenačíta CD
DVD načíta bez problému čočka vyčištěná

ventilator vyčištěn stále hučí prosím o kontrolu popřípadně rady čím by to mohlo být


Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:13-08-2014 01
Ran by Verunka (administrator) on VERUNKA-PC on 14-08-2014 12:23:14
Running from C:\Users\Verunka\Desktop
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\AsLdrSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
() C:\Program Files\ASUS\ControlDeck\ControlDeckStartUp.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\WDC.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
(ASUS) C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AlcorMicro Co., Ltd.) C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Spigot, Inc.) C:\Users\Verunka\AppData\Roaming\Search Protection\SearchProtection.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.75\opera.exe
() C:\Program Files\Opera\23.0.1522.75\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.75\opera.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.75\opera.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.75\opera.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.75\opera.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.75\opera.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.1.355.0\SeaPort.EXE
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
(Nero AG) C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.75\opera.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.75\opera.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.75\opera.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.75\opera.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\RunOnce: [CleanSetup] => C:\Users\Verunka\AppData\Local\Temp\nro.tmp [0 2014-08-14] () <===== ATTENTION
HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-05-18] (Microsoft Corporation)
HKU\S-1-5-21-1276228741-272193672-2108438865-1000\...\Run: [EPSON Stylus DX4400 Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE [180736 2007-03-01] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1276228741-272193672-2108438865-1000\...\Run: [Facebook Update] => C:\Users\Verunka\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-08-27] (Facebook Inc.)
HKU\S-1-5-21-1276228741-272193672-2108438865-1000\...\Run: [SearchProtection] => C:\Users\Verunka\AppData\Roaming\Search Protection\SearchProtection.EXE [873832 2014-07-17] (Spigot, Inc.)
HKU\S-1-5-21-1276228741-272193672-2108438865-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2007-06-27] (Nero AG)
HKU\S-1-5-21-1276228741-272193672-2108438865-1000\...\MountPoints2: {4361f93c-d39b-11e0-acb8-e0cb4e638e7f} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-1276228741-272193672-2108438865-1000\...\MountPoints2: {4bfa2472-d4b4-11e0-a9a3-e0cb4e638e7f} - E:\Autorun.exe
HKU\S-1-5-21-1276228741-272193672-2108438865-1000\...\MountPoints2: {4bfa247d-d4b4-11e0-a9a3-e0cb4e638e7f} - E:\Autorun.exe
HKU\S-1-5-21-1276228741-272193672-2108438865-1000\...\MountPoints2: {4bfa248e-d4b4-11e0-a9a3-e0cb4e638e7f} - E:\Autorun.exe
HKU\S-1-5-21-1276228741-272193672-2108438865-1000\...\MountPoints2: {4bfa24b6-d4b4-11e0-a9a3-e0cb4e638e7f} - E:\Autorun.exe
HKU\S-1-5-21-1276228741-272193672-2108438865-1000\...\MountPoints2: {4bfa24d5-d4b4-11e0-a9a3-e0cb4e638e7f} - G:\Autorun.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=UP97&ocid=UP97DHP
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/UP97_FRPage
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {119B8D58-52FB-44D6-86F9-558AB900D597} URL = https://search.yahoo.com/search?fr=chr- ... earchTerms}
SearchScopes: HKCU - {119B8D58-52FB-44D6-86F9-558AB900D597} URL = https://search.yahoo.com/search?fr=chr- ... earchTerms}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Verunka\AppData\Roaming\Mozilla\Firefox\Profiles\20boljp9.default
FF SearchEngineOrder.3: Bing
FF Homepage: hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP|www.seznam.cz
FF DefaultSearchEngine: Yahoo!
FF SelectedSearchEngine: Yahoo!
FF Keyword.URL: https://search.yahoo.com/search?fr=gree ... =501549&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Verunka\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Users\Verunka\AppData\Roaming\Mozilla\Firefox\Profiles\20boljp9.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml

Chrome:
=======
CHR HomePage: hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP
CHR RestoreOnStartup: "hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP"
CHR DefaultSearchKeyword: bing.com
CHR DefaultSearchProvider: Bing
CHR DefaultSearchURL: http://www.bing.com/search?FORM=UP97DF& ... earchTerms}
CHR Plugin: (Shockwave Flash) - C:\Users\Verunka\AppData\Local\Google\Chrome\Application\15.0.874.102\gcswf32.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Verunka\AppData\Local\Google\Chrome\Application\15.0.874.102\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Verunka\AppData\Local\Google\Chrome\Application\15.0.874.102\pdf.dll ()
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR StartMenuInternet: Google Chrome - C:\Users\Verunka\AppData\Local\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [294400 2011-05-24] (Advanced Micro Devices, Inc.) [File not signed]
R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [84536 2009-06-15] (ASUS)
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] () [File not signed]
R2 EPSON_PM_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [113664 2007-01-11] (SEIKO EPSON CORPORATION)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2014-03-11] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [279776 2014-03-11] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [27136 2009-08-21] (Alcor Micro, Corp.)
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231960 2014-01-25] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [14392 2009-05-13] (ASUS)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [198656 2009-10-21] (Huawei Technologies Co., Ltd.)
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-14 12:23 - 2014-08-14 12:23 - 01107968 _____ () C:\Users\Verunka\Desktop\RSIT.exe
2014-08-14 12:23 - 2014-08-14 12:23 - 00011801 _____ () C:\Users\Verunka\Desktop\FRST.txt
2014-08-14 12:23 - 2014-08-14 12:23 - 00000000 ____D () C:\FRST
2014-08-14 12:22 - 2014-08-14 12:22 - 01092096 _____ (Farbar) C:\Users\Verunka\Downloads\FRST (1).exe
2014-08-14 12:22 - 2014-08-14 12:22 - 01092096 _____ (Farbar) C:\Users\Verunka\Desktop\FRST.exe
2014-08-14 12:21 - 2014-08-14 12:21 - 00112640 _____ (forum.viry.cz) C:\Users\Verunka\Desktop\FRSTLauncher.exe
2014-08-14 12:21 - 2014-08-14 12:21 - 00029696 _____ () C:\Users\Verunka\AppData\Local\MSGBOX.EXE
2014-08-14 12:21 - 2014-08-14 12:21 - 00015327 _____ () C:\Users\Verunka\Desktop\LM.bat
2014-08-14 09:41 - 2014-08-14 09:42 - 00000000 ____D () C:\Users\Verunka\AppData\Local\Ahead
2014-08-14 09:41 - 2014-08-14 09:41 - 00002698 _____ () C:\Users\Public\Desktop\Nero StartSmart.lnk
2014-08-14 09:41 - 2014-08-14 09:41 - 00002608 _____ () C:\Users\Public\Desktop\Nero Home.lnk
2014-08-14 09:41 - 2014-08-14 09:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Ultra Edition
2014-08-14 09:40 - 2014-08-14 09:43 - 00000000 ____D () C:\Users\Verunka\AppData\Roaming\Ahead
2014-08-14 09:11 - 2014-08-14 09:32 - 186976488 _____ () C:\Users\Verunka\Downloads\Nero-7.10.1.0+Cd-key (1).rar
2014-08-14 08:50 - 2014-08-14 08:50 - 00000000 ____D () C:\Users\Verunka\Desktop\nero
2014-08-14 08:47 - 2014-08-14 09:38 - 00000000 ____D () C:\ProgramData\Nero
2014-08-14 08:47 - 2014-08-14 08:52 - 00000000 ____D () C:\Program Files\Common Files\Nero
2014-08-14 03:09 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 03:09 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 03:09 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 03:09 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-13 09:40 - 2014-08-13 09:41 - 00000000 ____D () C:\Program Files\Defraggler
2014-08-13 09:40 - 2014-08-13 09:40 - 00001865 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2014-08-13 09:40 - 2014-08-13 09:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2014-08-13 09:39 - 2014-08-13 09:40 - 04362512 _____ (Piriform Ltd) C:\Users\Verunka\Downloads\dfsetup218.exe
2014-08-13 09:32 - 2014-08-13 10:29 - 498766128 _____ () C:\Users\Verunka\Downloads\Nero-9-PLNÁ-VERZE-CZ-KEY-100%-FUNKČNÍ.rar
2014-08-13 07:46 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-13 07:46 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-13 07:46 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-13 07:46 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-13 07:45 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-13 07:45 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-13 07:45 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-13 07:45 - 2014-07-25 15:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 07:45 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-13 07:45 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-13 07:45 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-13 07:45 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-13 07:45 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-13 07:45 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-13 07:45 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-13 07:45 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-13 07:45 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-13 07:45 - 2014-07-25 14:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-13 07:45 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-13 07:45 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-13 07:45 - 2014-07-25 13:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 07:45 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-13 07:45 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 07:45 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-13 07:45 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-13 07:45 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-13 07:45 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-13 07:45 - 2014-07-25 13:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-13 07:45 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-13 07:45 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-13 07:45 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-13 07:45 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-13 07:45 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-13 07:45 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-13 07:45 - 2014-07-16 04:47 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-13 07:45 - 2014-07-16 03:47 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-13 07:44 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-13 07:44 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-13 07:44 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-13 07:44 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-13 07:44 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-13 07:44 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-13 07:44 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-13 07:44 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-13 07:43 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-13 07:43 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-13 07:43 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-13 07:43 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-13 07:43 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-13 07:43 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-11 12:31 - 2014-08-13 09:27 - 69552992 _____ (Samsung Electronics Co., Ltd. ) C:\Users\Verunka\Downloads\KiesSetup (1).exe
2014-08-11 12:21 - 2014-08-11 12:21 - 00000000 ____D () C:\Program Files\MarkAny
2014-08-11 08:33 - 2014-08-11 08:33 - 00000000 ____D () C:\Users\Verunka\AppData\Local\Samsung
2014-08-11 08:33 - 2014-08-11 08:33 - 00000000 ____D () C:\Users\Public\Documents\NativeFus_Log
2014-08-11 08:32 - 2014-08-11 08:33 - 00000000 ____D () C:\Users\Verunka\AppData\Roaming\Samsung
2014-08-11 08:32 - 2014-08-11 08:32 - 00001950 _____ () C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2014-08-11 08:32 - 2014-08-11 08:32 - 00001940 _____ () C:\Users\Public\Desktop\Samsung Kies.lnk
2014-08-11 08:32 - 2014-08-11 08:32 - 00000000 ____D () C:\Users\Verunka\Documents\samsung
2014-08-11 08:31 - 2014-06-16 08:01 - 00184192 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2014-08-11 08:31 - 2014-06-16 08:01 - 00089856 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2014-08-11 08:27 - 2014-08-11 08:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2014-08-11 08:27 - 2014-04-30 19:47 - 00821824 _____ (Devguru Co., Ltd.) C:\Windows\system32\dgderapi.dll
2014-08-11 08:27 - 2014-04-30 19:43 - 04659712 _____ (Dmitry Streblechenko) C:\Windows\system32\Redemption.dll
2014-08-11 08:27 - 2014-04-30 19:43 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\system32\secman.dll
2014-08-11 08:25 - 2014-08-11 08:30 - 00000000 ____D () C:\Program Files\Samsung
2014-08-11 08:25 - 2014-08-11 08:28 - 00000000 ____D () C:\ProgramData\Samsung
2014-08-11 08:23 - 2014-08-11 08:23 - 00000000 ____D () C:\Users\Verunka\AppData\Local\Downloaded Installations
2014-08-11 08:20 - 2014-08-11 08:23 - 75709216 _____ (Samsung Electronics Co., Ltd.) C:\Users\Verunka\Downloads\KiesSetup.exe
2014-08-07 21:27 - 2014-08-07 21:29 - 00000000 ____D () C:\Users\Verunka\Desktop\nápady z internetu
2014-08-07 21:25 - 2014-08-07 21:25 - 00000000 ____D () C:\Users\Verunka\Desktop\KAMENIČKY
2014-08-07 21:14 - 2014-08-07 21:14 - 00000000 ____D () C:\Users\Verunka\Desktop\Sam
2014-08-05 23:09 - 2014-08-06 09:21 - 00000000 ____D () C:\Users\Verunka\Documents\Mozaika na zahradu
2014-08-05 23:09 - 2014-08-06 09:04 - 00000000 ____D () C:\Users\Verunka\Documents\Keramika Scan
2014-08-05 23:09 - 2014-08-05 23:09 - 00000000 ____D () C:\Users\Verunka\Documents\Dekorace scan
2014-08-05 22:52 - 2014-08-05 23:08 - 00000000 ____D () C:\Users\Verunka\Documents\Andilci scan
2014-08-05 22:45 - 2014-08-05 22:45 - 00001951 _____ () C:\Users\Public\Desktop\HP Photo Creations.lnk
2014-08-05 22:45 - 2014-08-05 22:45 - 00000000 ____D () C:\ProgramData\Visan
2014-08-05 22:45 - 2014-08-05 22:45 - 00000000 ____D () C:\ProgramData\HP Photo Creations
2014-08-05 22:45 - 2014-08-05 22:45 - 00000000 ____D () C:\Program Files\HP Photo Creations
2014-08-05 22:44 - 2014-08-13 07:14 - 00000000 ____D () C:\Users\Verunka\AppData\Roaming\HpUpdate
2014-08-05 22:44 - 2014-08-05 22:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-08-05 22:44 - 2014-08-05 22:44 - 00002274 _____ () C:\Users\Public\Desktop\HP Deskjet 2050 J510 series.lnk
2014-08-05 22:44 - 2014-08-05 22:44 - 00001196 _____ () C:\Users\Public\Desktop\Zakoupit spotřební materiál - HP Deskjet 2050 J510 series.lnk
2014-08-05 22:43 - 2014-08-05 22:48 - 00000000 ____D () C:\Users\Verunka\AppData\Local\HP
2014-08-05 22:43 - 2014-08-05 22:44 - 00000000 ____D () C:\Program Files\HP
2014-08-05 22:43 - 2014-08-05 22:43 - 00000057 _____ () C:\ProgramData\Ament.ini
2014-08-05 22:43 - 2014-08-05 22:43 - 00000000 ____D () C:\ProgramData\HP
2014-08-05 22:40 - 2014-08-05 22:42 - 51012704 _____ () C:\Users\Verunka\Downloads\DJ2050_J510_1313.exe
2014-08-05 08:18 - 2014-08-05 08:18 - 00290816 _____ () C:\Users\Verunka\Downloads\seznam_lekaren.xls
2014-08-01 13:38 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-01 13:38 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-01 13:38 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-01 13:38 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-01 13:37 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-01 13:37 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-01 13:37 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-01 13:37 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-01 13:37 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-07-26 10:20 - 2014-07-26 10:21 - 83775652 _____ () C:\Users\Verunka\Documents\1.Jak Křemílek a Vochomůrka zasadili semínko.avi.avi
2014-07-26 10:10 - 2014-07-26 10:10 - 40065279 _____ () C:\Users\Verunka\Documents\1.Jak Křemílek a Vochomůrka zasadili semínko.avi.mp4
2014-07-26 10:05 - 2014-07-26 10:05 - 00001249 _____ () C:\Users\Public\Desktop\YTD Video Downloader.lnk
2014-07-26 10:05 - 2014-07-26 10:05 - 00000000 ____D () C:\Users\Verunka\AppData\Roaming\Search Protection
2014-07-26 10:05 - 2014-07-26 10:05 - 00000000 ____D () C:\ProgramData\YTD Video Downloader
2014-07-26 10:05 - 2014-07-26 10:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader
2014-07-26 10:04 - 2014-07-26 10:04 - 00000000 ____D () C:\Program Files\GreenTree Applications
2014-07-26 10:01 - 2014-07-26 10:02 - 11227432 _____ () C:\Users\Verunka\Downloads\YTDSetup.exe
2014-07-26 09:58 - 2014-07-26 10:19 - 186976488 _____ () C:\Users\Verunka\Downloads\Nero-7.10.1.0+Cd-key.rar
2014-07-25 23:06 - 2014-07-25 23:06 - 00186641 _____ () C:\Users\Verunka\Downloads\X12-30196 (1).exe
2014-07-25 22:36 - 2014-07-25 22:48 - 407010384 _____ (Microsoft Corporation) C:\Users\Verunka\Downloads\X12-30196.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-14 12:23 - 2014-08-14 12:23 - 01107968 _____ () C:\Users\Verunka\Desktop\RSIT.exe
2014-08-14 12:23 - 2014-08-14 12:23 - 00011801 _____ () C:\Users\Verunka\Desktop\FRST.txt
2014-08-14 12:23 - 2014-08-14 12:23 - 00000000 ____D () C:\FRST
2014-08-14 12:22 - 2014-08-14 12:22 - 01092096 _____ (Farbar) C:\Users\Verunka\Downloads\FRST (1).exe
2014-08-14 12:22 - 2014-08-14 12:22 - 01092096 _____ (Farbar) C:\Users\Verunka\Desktop\FRST.exe
2014-08-14 12:21 - 2014-08-14 12:21 - 00112640 _____ (forum.viry.cz) C:\Users\Verunka\Desktop\FRSTLauncher.exe
2014-08-14 12:21 - 2014-08-14 12:21 - 00029696 _____ () C:\Users\Verunka\AppData\Local\MSGBOX.EXE
2014-08-14 12:21 - 2014-08-14 12:21 - 00015327 _____ () C:\Users\Verunka\Desktop\LM.bat
2014-08-14 12:16 - 2011-08-23 23:05 - 01230941 _____ () C:\Windows\WindowsUpdate.log
2014-08-14 11:49 - 2014-05-02 06:51 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-14 11:47 - 2009-07-14 06:34 - 00019056 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-14 11:47 - 2009-07-14 06:34 - 00019056 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-14 09:43 - 2014-08-14 09:40 - 00000000 ____D () C:\Users\Verunka\AppData\Roaming\Ahead
2014-08-14 09:42 - 2014-08-14 09:41 - 00000000 ____D () C:\Users\Verunka\AppData\Local\Ahead
2014-08-14 09:41 - 2014-08-14 09:41 - 00002698 _____ () C:\Users\Public\Desktop\Nero StartSmart.lnk
2014-08-14 09:41 - 2014-08-14 09:41 - 00002608 _____ () C:\Users\Public\Desktop\Nero Home.lnk
2014-08-14 09:41 - 2014-08-14 09:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Ultra Edition
2014-08-14 09:39 - 2013-12-20 10:06 - 00000000 ____D () C:\Program Files\Common Files\Ahead
2014-08-14 09:38 - 2014-08-14 08:47 - 00000000 ____D () C:\ProgramData\Nero
2014-08-14 09:34 - 2012-08-27 09:29 - 00000936 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1276228741-272193672-2108438865-1000UA.job
2014-08-14 09:34 - 2012-08-27 09:29 - 00000914 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1276228741-272193672-2108438865-1000Core.job
2014-08-14 09:32 - 2014-08-14 09:11 - 186976488 _____ () C:\Users\Verunka\Downloads\Nero-7.10.1.0+Cd-key (1).rar
2014-08-14 09:03 - 2009-07-12 23:06 - 01590786 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-14 08:57 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-14 08:57 - 2009-07-14 06:33 - 00409960 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-14 08:56 - 2014-06-24 06:50 - 00008014 _____ () C:\Windows\PFRO.log
2014-08-14 08:56 - 2014-06-24 06:16 - 00004002 _____ () C:\Windows\setupact.log
2014-08-14 08:52 - 2014-08-14 08:47 - 00000000 ____D () C:\Program Files\Common Files\Nero
2014-08-14 08:50 - 2014-08-14 08:50 - 00000000 ____D () C:\Users\Verunka\Desktop\nero
2014-08-14 08:48 - 2013-12-20 10:06 - 00000000 ____D () C:\Program Files\Nero
2014-08-14 07:42 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-08-14 06:46 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-14 06:34 - 2012-08-07 06:09 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-08-14 03:35 - 2014-05-09 03:02 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-14 03:19 - 2011-08-23 14:58 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-14 03:17 - 2014-06-24 06:28 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 03:14 - 2014-06-24 06:27 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-13 10:29 - 2014-08-13 09:32 - 498766128 _____ () C:\Users\Verunka\Downloads\Nero-9-PLNÁ-VERZE-CZ-KEY-100%-FUNKČNÍ.rar
2014-08-13 09:41 - 2014-08-13 09:40 - 00000000 ____D () C:\Program Files\Defraggler
2014-08-13 09:40 - 2014-08-13 09:40 - 00001865 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2014-08-13 09:40 - 2014-08-13 09:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2014-08-13 09:40 - 2014-08-13 09:39 - 04362512 _____ (Piriform Ltd) C:\Users\Verunka\Downloads\dfsetup218.exe
2014-08-13 09:27 - 2014-08-11 12:31 - 69552992 _____ (Samsung Electronics Co., Ltd. ) C:\Users\Verunka\Downloads\KiesSetup (1).exe
2014-08-13 07:14 - 2014-08-05 22:44 - 00000000 ____D () C:\Users\Verunka\AppData\Roaming\HpUpdate
2014-08-12 10:39 - 2014-05-01 12:01 - 00000000 ____D () C:\Program Files\Opera
2014-08-11 12:21 - 2014-08-11 12:21 - 00000000 ____D () C:\Program Files\MarkAny
2014-08-11 08:33 - 2014-08-11 08:33 - 00000000 ____D () C:\Users\Verunka\AppData\Local\Samsung
2014-08-11 08:33 - 2014-08-11 08:33 - 00000000 ____D () C:\Users\Public\Documents\NativeFus_Log
2014-08-11 08:33 - 2014-08-11 08:32 - 00000000 ____D () C:\Users\Verunka\AppData\Roaming\Samsung
2014-08-11 08:32 - 2014-08-11 08:32 - 00001950 _____ () C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2014-08-11 08:32 - 2014-08-11 08:32 - 00001940 _____ () C:\Users\Public\Desktop\Samsung Kies.lnk
2014-08-11 08:32 - 2014-08-11 08:32 - 00000000 ____D () C:\Users\Verunka\Documents\samsung
2014-08-11 08:30 - 2014-08-11 08:25 - 00000000 ____D () C:\Program Files\Samsung
2014-08-11 08:28 - 2014-08-11 08:25 - 00000000 ____D () C:\ProgramData\Samsung
2014-08-11 08:27 - 2014-08-11 08:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2014-08-11 08:26 - 2011-08-23 15:14 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-08-11 08:23 - 2014-08-11 08:23 - 00000000 ____D () C:\Users\Verunka\AppData\Local\Downloaded Installations
2014-08-11 08:23 - 2014-08-11 08:20 - 75709216 _____ (Samsung Electronics Co., Ltd.) C:\Users\Verunka\Downloads\KiesSetup.exe
2014-08-07 21:29 - 2014-08-07 21:27 - 00000000 ____D () C:\Users\Verunka\Desktop\nápady z internetu
2014-08-07 21:29 - 2014-05-25 04:59 - 00000000 ____D () C:\Users\Verunka\Desktop\R U Č N Í KE RAM I K A M P V
2014-08-07 21:27 - 2011-09-06 08:20 - 00000000 ____D () C:\Users\Verunka\Desktop\Fotoalbum Stěžery
2014-08-07 21:25 - 2014-08-07 21:25 - 00000000 ____D () C:\Users\Verunka\Desktop\KAMENIČKY
2014-08-07 21:15 - 2014-04-10 06:58 - 00000000 ____D () C:\Users\Verunka\Desktop\Šimonek
2014-08-07 21:14 - 2014-08-07 21:14 - 00000000 ____D () C:\Users\Verunka\Desktop\Sam
2014-08-07 03:43 - 2014-08-13 07:44 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 03:39 - 2014-08-13 07:44 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-06 09:21 - 2014-08-05 23:09 - 00000000 ____D () C:\Users\Verunka\Documents\Mozaika na zahradu
2014-08-06 09:04 - 2014-08-05 23:09 - 00000000 ____D () C:\Users\Verunka\Documents\Keramika Scan
2014-08-05 23:09 - 2014-08-05 23:09 - 00000000 ____D () C:\Users\Verunka\Documents\Dekorace scan
2014-08-05 23:08 - 2014-08-05 22:52 - 00000000 ____D () C:\Users\Verunka\Documents\Andilci scan
2014-08-05 22:48 - 2014-08-05 22:43 - 00000000 ____D () C:\Users\Verunka\AppData\Local\HP
2014-08-05 22:45 - 2014-08-05 22:45 - 00001951 _____ () C:\Users\Public\Desktop\HP Photo Creations.lnk
2014-08-05 22:45 - 2014-08-05 22:45 - 00000000 ____D () C:\ProgramData\Visan
2014-08-05 22:45 - 2014-08-05 22:45 - 00000000 ____D () C:\ProgramData\HP Photo Creations
2014-08-05 22:45 - 2014-08-05 22:45 - 00000000 ____D () C:\Program Files\HP Photo Creations
2014-08-05 22:45 - 2014-08-05 22:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-08-05 22:44 - 2014-08-05 22:44 - 00002274 _____ () C:\Users\Public\Desktop\HP Deskjet 2050 J510 series.lnk
2014-08-05 22:44 - 2014-08-05 22:44 - 00001196 _____ () C:\Users\Public\Desktop\Zakoupit spotřební materiál - HP Deskjet 2050 J510 series.lnk
2014-08-05 22:44 - 2014-08-05 22:43 - 00000000 ____D () C:\Program Files\HP
2014-08-05 22:43 - 2014-08-05 22:43 - 00000057 _____ () C:\ProgramData\Ament.ini
2014-08-05 22:43 - 2014-08-05 22:43 - 00000000 ____D () C:\ProgramData\HP
2014-08-05 22:43 - 2009-07-14 06:52 - 00000000 ____D () C:\Windows\twain_32
2014-08-05 22:42 - 2014-08-05 22:40 - 51012704 _____ () C:\Users\Verunka\Downloads\DJ2050_J510_1313.exe
2014-08-05 08:18 - 2014-08-05 08:18 - 00290816 _____ () C:\Users\Verunka\Downloads\seznam_lekaren.xls
2014-08-01 01:16 - 2014-08-13 07:45 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-26 10:21 - 2014-07-26 10:20 - 83775652 _____ () C:\Users\Verunka\Documents\1.Jak Křemílek a Vochomůrka zasadili semínko.avi.avi
2014-07-26 10:19 - 2014-07-26 09:58 - 186976488 _____ () C:\Users\Verunka\Downloads\Nero-7.10.1.0+Cd-key.rar
2014-07-26 10:10 - 2014-07-26 10:10 - 40065279 _____ () C:\Users\Verunka\Documents\1.Jak Křemílek a Vochomůrka zasadili semínko.avi.mp4
2014-07-26 10:05 - 2014-07-26 10:05 - 00001249 _____ () C:\Users\Public\Desktop\YTD Video Downloader.lnk
2014-07-26 10:05 - 2014-07-26 10:05 - 00000000 ____D () C:\Users\Verunka\AppData\Roaming\Search Protection
2014-07-26 10:05 - 2014-07-26 10:05 - 00000000 ____D () C:\ProgramData\YTD Video Downloader
2014-07-26 10:05 - 2014-07-26 10:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader
2014-07-26 10:04 - 2014-07-26 10:04 - 00000000 ____D () C:\Program Files\GreenTree Applications
2014-07-26 10:02 - 2014-07-26 10:01 - 11227432 _____ () C:\Users\Verunka\Downloads\YTDSetup.exe
2014-07-26 09:33 - 2011-08-23 14:26 - 00109280 _____ () C:\Users\Verunka\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-25 23:06 - 2014-07-25 23:06 - 00186641 _____ () C:\Users\Verunka\Downloads\X12-30196 (1).exe
2014-07-25 23:05 - 2011-08-23 15:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-07-25 23:01 - 2009-07-14 09:48 - 00000000 ____D () C:\Windows\ShellNew
2014-07-25 22:48 - 2014-07-25 22:36 - 407010384 _____ (Microsoft Corporation) C:\Users\Verunka\Downloads\X12-30196.exe
2014-07-25 15:51 - 2014-08-13 07:45 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-25 15:04 - 2014-08-13 07:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-25 15:03 - 2014-08-13 07:45 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-25 14:34 - 2014-08-13 07:45 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-25 14:34 - 2014-08-13 07:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-25 14:33 - 2014-08-13 07:45 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-25 14:30 - 2014-08-13 07:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-25 14:21 - 2014-08-13 07:45 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-25 14:18 - 2014-08-13 07:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-25 14:17 - 2014-08-13 07:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-25 14:12 - 2014-08-13 07:45 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-25 14:10 - 2014-08-13 07:45 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-25 14:10 - 2014-08-13 07:45 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-25 14:08 - 2014-08-13 07:45 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-25 14:06 - 2014-08-13 07:45 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-25 13:59 - 2014-08-13 07:45 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-25 13:52 - 2014-08-13 07:45 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-25 13:43 - 2014-08-13 07:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-25 13:36 - 2014-08-13 07:45 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-25 13:34 - 2014-08-13 07:45 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-25 13:29 - 2014-08-13 07:45 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-25 13:13 - 2014-08-13 07:45 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-25 13:09 - 2014-08-13 07:45 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-25 13:07 - 2014-08-13 07:45 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-25 13:07 - 2014-08-13 07:45 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-25 13:03 - 2014-08-13 07:45 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-25 12:09 - 2014-08-13 07:45 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-25 12:05 - 2014-08-13 07:45 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-25 12:00 - 2014-08-13 07:45 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-25 11:41 - 2014-04-24 04:43 - 00000000 ____D () C:\Users\Verunka\Desktop\Music auto
2014-07-16 04:47 - 2014-08-13 07:45 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-07-16 04:46 - 2014-08-13 07:44 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-07-16 03:47 - 2014-08-13 07:45 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

Files to move or delete:
====================
C:\Users\Verunka\AppData\Local\Temp\nro.tmp


Some content of TEMP:
====================
C:\Users\Verunka\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-07 07:46

==================== End Of Log ============================

[Luckyphonyx]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Verunka at 2014-08-14 12:30:45
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 182 GB (39%) free of 462 GB
Total RAM: 3327 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:30:47, on 14.8.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\P4G\BatteryLife.exe
C:\Program Files\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Windows\Explorer.EXE
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Verunka\AppData\Roaming\Search Protection\SearchProtection.exe
C:\Windows\System32\ACEngSvr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Opera\23.0.1522.75\opera.exe
C:\Program Files\Opera\23.0.1522.75\opera_crashreporter.exe
C:\Program Files\Opera\23.0.1522.75\opera.exe
C:\Program Files\Opera\23.0.1522.75\opera.exe
C:\Program Files\Opera\23.0.1522.75\opera.exe
C:\Program Files\Opera\23.0.1522.75\opera.exe
C:\Program Files\Opera\23.0.1522.75\opera.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Opera\23.0.1522.75\opera.exe
C:\Users\Verunka\Desktop\RSIT.exe
C:\Users\Verunka\Desktop\RSIT.exe
C:\Program Files\trend micro\Verunka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.msn.com/1ewenusDefaultPack/UP97_FRPage
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.1.355.0\BingExt.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\7.1.355.0\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HControlUser] C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\RunOnce: [CleanSetup] cmd /C rmdir /S /Q "C:\Users\Verunka\AppData\Local\Temp\nro.tmp\"
O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE /FU "C:\Windows\TEMP\E_S2D33.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Verunka\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SearchProtection] "C:\Users\Verunka\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostart
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

--
End of file - 7634 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1276228741-272193672-2108438865-1000Core.job - C:\Users\Verunka\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1276228741-272193672-2108438865-1000UA.job - C:\Users\Verunka\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25 1253144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25 1253144]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-05-24 336384]
"HControlUser"=C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"ATKOSD2"=C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe [2009-08-17 6859392]
"AmIcoSinglun"=C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe [2009-09-01 233472]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 951576]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2011-10-28 49208]
""= []
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2014-07-25 311616]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"CleanSetup"=cmd /C rmdir /S /Q C:\Users\Verunka\AppData\Local\Temp\nro.tmp\ []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EPSON Stylus DX4400 Series"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE [2007-03-01 180736]
"Facebook Update"=C:\Users\Verunka\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-08-27 138096]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"SearchProtection"=C:\Users\Verunka\AppData\Roaming\Search Protection\SearchProtection.EXE [2014-07-17 873832]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Setwallpaper]
c:\programdata\SetWallpaper.cmd []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\202B13~1.181\SSSCHE~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Verunka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~1\MICROS~2\Office12\ONENOTEM.EXE [2009-02-26 97680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.l3fhg"=mp3fhg.acm
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-08-14 12:26:07 ----D---- C:\rsit
2014-08-14 12:26:07 ----D---- C:\Program Files\trend micro
2014-08-14 12:23:08 ----D---- C:\FRST
2014-08-14 09:40:12 ----D---- C:\Users\Verunka\AppData\Roaming\Ahead
2014-08-14 08:47:41 ----D---- C:\ProgramData\Nero
2014-08-14 08:47:37 ----D---- C:\Program Files\Common Files\Nero
2014-08-14 06:23:02 ----A---- C:\Windows\ntbtlog.txt
2014-08-14 03:09:59 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-14 03:09:52 ----A---- C:\Windows\system32\icardres.dll
2014-08-14 03:09:41 ----A---- C:\Windows\system32\icardagt.exe
2014-08-14 03:09:31 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-13 09:40:36 ----D---- C:\Program Files\Defraggler
2014-08-13 07:46:06 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-13 07:46:00 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-08-13 07:46:00 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-13 07:46:00 ----A---- C:\Windows\system32\cdd.dll
2014-08-13 07:45:55 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-08-13 07:45:54 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 07:45:54 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-08-13 07:45:53 ----A---- C:\Windows\system32\urlmon.dll
2014-08-13 07:45:53 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 07:45:53 ----A---- C:\Windows\system32\iernonce.dll
2014-08-13 07:45:52 ----A---- C:\Windows\system32\jsproxy.dll
2014-08-13 07:45:52 ----A---- C:\Windows\system32\ieUnatt.exe
2014-08-13 07:45:52 ----A---- C:\Windows\system32\iedkcs32.dll
2014-08-13 07:45:51 ----A---- C:\Windows\system32\msfeeds.dll
2014-08-13 07:45:51 ----A---- C:\Windows\system32\dxtmsft.dll
2014-08-13 07:45:49 ----A---- C:\Windows\system32\msrating.dll
2014-08-13 07:45:49 ----A---- C:\Windows\system32\iesetup.dll
2014-08-13 07:45:49 ----A---- C:\Windows\system32\ie4uinit.exe
2014-08-13 07:45:48 ----A---- C:\Windows\system32\vbscript.dll
2014-08-13 07:45:48 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 07:45:48 ----A---- C:\Windows\system32\ieapfltr.dll
2014-08-13 07:45:47 ----A---- C:\Windows\system32\wininet.dll
2014-08-13 07:45:46 ----A---- C:\Windows\system32\dxtrans.dll
2014-08-13 07:45:45 ----A---- C:\Windows\system32\ieui.dll
2014-08-13 07:45:43 ----A---- C:\Windows\system32\ieframe.dll
2014-08-13 07:45:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-08-13 07:45:42 ----A---- C:\Windows\system32\mshtmled.dll
2014-08-13 07:45:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-08-13 07:45:41 ----A---- C:\Windows\system32\iertutil.dll
2014-08-13 07:45:39 ----A---- C:\Windows\system32\jscript9diag.dll
2014-08-13 07:45:38 ----A---- C:\Windows\system32\jscript9.dll
2014-08-13 07:45:32 ----A---- C:\Windows\system32\mshtml.dll
2014-08-13 07:45:02 ----A---- C:\Windows\system32\win32k.sys
2014-08-13 07:45:02 ----A---- C:\Windows\system32\gdi32.dll
2014-08-13 07:44:50 ----A---- C:\Windows\system32\tzres.dll
2014-08-13 07:44:39 ----A---- C:\Windows\system32\msi.dll
2014-08-13 07:44:38 ----A---- C:\Windows\system32\authui.dll
2014-08-13 07:44:37 ----A---- C:\Windows\system32\msihnd.dll
2014-08-13 07:44:37 ----A---- C:\Windows\system32\consent.exe
2014-08-13 07:44:30 ----A---- C:\Windows\system32\aepdu.dll
2014-08-13 07:44:26 ----A---- C:\Windows\system32\aeinv.dll
2014-08-13 07:44:22 ----A---- C:\Windows\system32\shell32.dll
2014-08-13 07:43:28 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-08-13 07:43:28 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-08-13 07:43:28 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-08-13 07:43:28 ----A---- C:\Windows\system32\KBDRU.DLL
2014-08-13 07:43:27 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-08-11 12:21:50 ----D---- C:\Program Files\MarkAny
2014-08-11 08:32:58 ----D---- C:\Users\Verunka\AppData\Roaming\Samsung
2014-08-11 08:31:32 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-08-11 08:31:32 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-08-11 08:27:19 ----A---- C:\Windows\system32\secman.dll
2014-08-11 08:27:15 ----A---- C:\Windows\system32\Redemption.dll
2014-08-11 08:27:02 ----A---- C:\Windows\system32\dgderapi.dll
2014-08-11 08:25:20 ----D---- C:\ProgramData\Samsung
2014-08-11 08:25:20 ----D---- C:\Program Files\Samsung
2014-08-05 22:45:13 ----D---- C:\Program Files\Microsoft
2014-08-05 22:45:02 ----D---- C:\ProgramData\Visan
2014-08-05 22:45:02 ----D---- C:\ProgramData\HP Photo Creations
2014-08-05 22:45:02 ----D---- C:\Program Files\HP Photo Creations
2014-08-05 22:44:46 ----D---- C:\Users\Verunka\AppData\Roaming\HpUpdate
2014-08-05 22:43:55 ----D---- C:\ProgramData\HP
2014-08-05 22:43:47 ----D---- C:\Program Files\HP
2014-08-05 22:43:41 ----A---- C:\ProgramData\Ament.ini
2014-08-01 13:38:10 ----A---- C:\Windows\system32\wups2.dll
2014-08-01 13:38:10 ----A---- C:\Windows\system32\wuauclt.exe
2014-08-01 13:38:09 ----A---- C:\Windows\system32\wucltux.dll
2014-08-01 13:38:09 ----A---- C:\Windows\system32\wuaueng.dll
2014-08-01 13:37:37 ----A---- C:\Windows\system32\wups.dll
2014-08-01 13:37:37 ----A---- C:\Windows\system32\wudriver.dll
2014-08-01 13:37:37 ----A---- C:\Windows\system32\wuapi.dll
2014-08-01 13:37:07 ----A---- C:\Windows\system32\wuwebv.dll
2014-08-01 13:37:07 ----A---- C:\Windows\system32\wuapp.exe
2014-07-26 10:05:26 ----D---- C:\Users\Verunka\AppData\Roaming\Search Protection
2014-07-26 10:05:13 ----D---- C:\ProgramData\YTD Video Downloader
2014-07-26 10:04:56 ----D---- C:\Program Files\GreenTree Applications

======List of files/folders modified in the last 1 month======

2014-08-14 12:26:07 ----RD---- C:\Program Files
2014-08-14 12:25:04 ----D---- C:\Windows\inf
2014-08-14 12:24:43 ----D---- C:\Windows\Temp
2014-08-14 12:23:13 ----D---- C:\Windows
2014-08-14 11:52:24 ----D---- C:\Windows\system32\config
2014-08-14 09:42:09 ----SHD---- C:\Windows\Installer
2014-08-14 09:40:16 ----D---- C:\Windows\Prefetch
2014-08-14 09:39:31 ----D---- C:\Program Files\Common Files\Ahead
2014-08-14 09:39:27 ----D---- C:\Windows\ehome
2014-08-14 09:39:26 ----D---- C:\Windows\System32
2014-08-14 09:36:58 ----SHD---- C:\System Volume Information
2014-08-14 09:03:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-14 09:00:15 ----D---- C:\Windows\system32\Tasks
2014-08-14 08:48:19 ----D---- C:\Program Files\Nero
2014-08-14 08:47:41 ----HD---- C:\ProgramData
2014-08-14 08:47:37 ----D---- C:\Program Files\Common Files
2014-08-14 08:45:38 ----D---- C:\Windows\winsxs
2014-08-14 07:42:25 ----D---- C:\Windows\rescache
2014-08-14 06:46:00 ----D---- C:\Windows\Microsoft.NET
2014-08-14 06:44:31 ----RSD---- C:\Windows\assembly
2014-08-14 06:34:14 ----A---- C:\Windows\system32\acovcnt.exe
2014-08-14 03:36:39 ----D---- C:\Windows\system32\drivers
2014-08-14 03:36:37 ----D---- C:\Windows\PolicyDefinitions
2014-08-14 03:36:36 ----D---- C:\Windows\system32\cs-CZ
2014-08-14 03:36:34 ----D---- C:\Windows\system32\en-US
2014-08-14 03:36:20 ----D---- C:\Program Files\Internet Explorer
2014-08-14 03:35:46 ----SD---- C:\Windows\system32\CompatTel
2014-08-14 03:34:29 ----RSD---- C:\Windows\Fonts
2014-08-14 03:19:01 ----D---- C:\ProgramData\Microsoft Help
2014-08-14 03:17:32 ----D---- C:\Windows\system32\MRT
2014-08-14 03:14:56 ----A---- C:\Windows\system32\MRT.exe
2014-08-14 03:11:10 ----D---- C:\Windows\system32\catroot
2014-08-14 03:11:08 ----D---- C:\Windows\system32\catroot2
2014-08-12 10:39:01 ----D---- C:\Program Files\Opera
2014-08-11 08:32:07 ----D---- C:\Windows\system32\DriverStore
2014-08-11 08:26:55 ----HD---- C:\Program Files\InstallShield Installation Information
2014-08-05 22:47:04 ----SD---- C:\ProgramData\Microsoft
2014-08-05 22:43:49 ----D---- C:\Windows\twain_32
2014-08-01 21:08:55 ----SD---- C:\Users\Verunka\AppData\Roaming\Microsoft
2014-07-25 23:01:25 ----D---- C:\Windows\ShellNew
2014-07-17 07:16:02 ----D---- C:\Windows\Logs

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 231960]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-07-24 13880]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 104264]
R3 amdiox86;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox86.sys [2010-02-18 37944]
R3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-08-21 27136]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-10-05 1221632]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2009-05-13 14392]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-14 139776]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 89856]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-09-10 102912]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-10-12 101120]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-14 4231168]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-08-17 18176]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2009-07-14 1068032]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 184192]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-05-24 294400]
R2 ASLDRService;ASLDR Service; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [2009-06-15 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [2007-01-11 113664]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 22216]
R3 BBUpdate;BBUpdate; C:\Program Files\Microsoft\BingBar\7.1.355.0\SeaPort.exe [2012-01-25 240408]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 279776]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S2 BBSvc;BingBar Service; C:\Program Files\Microsoft\BingBar\7.1.355.0\BBSvc.exe [2012-01-25 192792]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 108032]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-04-14 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[vyosek]

Zdravim a pekne poledne preji

Mate tam MSE a Avast - jeden z nich musi pryc

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

• Ulozte nejlepe na plochu
• Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
• Probehne vytvoreni zalohy a nasledne prohledavani
• Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

[Luckyphonyx]

avast nemužu najít ccleaner ho take nevidí

[vyosek]

Projedte to tedy JRT a AdwCleanerem - at se prozatim zbavime reklam

[Luckyphonyx]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x86
Ran by Verunka on źt 14.08.2014 at 17:00:48,54
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\searchprotection



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\secman.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\Users\Verunka\AppData\Roaming\search protection"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 14.08.2014 at 17:03:46,73
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[vyosek]

Jeste poprosim o AdwCleaner

[Luckyphonyx]

# AdwCleaner v3.305 - Report created 14/08/2014 at 18:01:23
# Updated 14/08/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Verunka - VERUNKA-PC
# Running from : C:\Users\Verunka\Desktop\adwcleaner_3.305.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\GreenTree Applications

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Key Deleted : HKCU\Software\AppDataLow\Software\Search Protection
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Search Protection

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239


-\\ Mozilla Firefox v

[ File : C:\Users\Verunka\AppData\Roaming\Mozilla\Firefox\Profiles\20boljp9.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\Verunka\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Extension] : fbmimoidopbghbcmdmpkjaffffmcbmbg

*************************

AdwCleaner[R0].txt - [1992 octets] - [18/06/2014 07:09:51]
AdwCleaner[R1].txt - [1559 octets] - [14/08/2014 18:00:29]
AdwCleaner[S0].txt - [2079 octets] - [18/06/2014 07:11:54]
AdwCleaner[S1].txt - [1494 octets] - [14/08/2014 18:01:23]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1554 octets] ##########

[vyosek]

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  emptyclsid;
  iedefaults;
  FFdefaults;
  CHRdefaults;
  emptyalltemp;
  resethosts;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[Luckyphonyx]

Zoek.exe v5.0.0.0 Updated 13-08-2014
Tool run by Verunka on p  15.08.2014 at 9:53:01,40.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Verunka\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

15.8.2014 9:55:21 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

[Luckyphonyx]

pc Hučí stále a mechanika pořad nefunguje

[vyosek]

Zkontrolujte jestli nejsou vetraky a vetraci pruduchy zaneseny prachem

[Luckyphonyx]

psal jsem že jsem to čistil rozebral a vyčistil pravě proto se vás ptám jnestli nejní chyba v něčem o čem byste mohli vědět

[vyosek]

Pak tam muze byt jeste chybejici teplovodiva pasta...Proverime teploty - viz navod kolegy

Spusť HeavyLoad a Hardware Monitor. V HeavyLoad spusť zátěžový test, po 15 min sejmi screen Hardware Monitoru a hoď ho sem.

[Luckyphonyx]

posiloval jsem a test jsem nestihl vyfotit vyfotil jsem ho až po 40 MInutach testu ale to snad nevadí

http://leteckaposta.cz/875615655

nmejde mi sem nahrát obrázek nemám čas na uprau nahral jsem to na leteckou postu