Pomalý, pomalý, pomalejší

Zpráva

filippes · #1 Příspěvek od **filippes** » 17 srp 2014 09:42

Dobrý den
Prosím o kontrolu - PC je velice pomalý, FFox dlouho startuje
RSIT mi vytvořil následující log ale po pravdě jsem v něm nedokázal najít něco škodlivé

Logfile of random's system information tool 1.10 (written by random/random)
Run by paula at 2014-08-17 09:36:49
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 57 GB (74%) free of 76 GB
Total RAM: 1015 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:37:00, on 17.8.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.21348)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\OO Software\Defrag\oodag.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\SecretSauce\updateSecretSauce.exe
C:\Program Files\SecretSauce\bin\utilSecretSauce.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\OO Software\Defrag\oodtray.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\paula\Data aplikací\Dropbox\bin\Dropbox.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe
C:\Program Files\SecretSauce\bin\SecretSauce.PurBrowse.exe
C:\Program Files\SecretSauce\bin\SecretSauce.BrowserAdapter.exe
C:\Documents and Settings\paula\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\TC UP\totalcmd.exe
C:\Program Files\trend micro\paula.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {26842a09-ffa8-4e2c-ae12-0c80f01c3295} - C:\Program Files\MapsGalaxy_39\bar\1.bin\39SrcAs.dll
O2 - BHO: YoutubeAdblocker - {19ECC142-407C-F2BD-15FE-7C2B6633AF19} - C:\Program Files\YoutubeAdblocker\t9.dll
O2 - BHO: Toolbar BHO - {1e91a655-bb4b-4693-a05e-2edebc4c9d89} - C:\PROGRA~1\MAPSGA~2\bar\1.bin\39bar.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: UTubeAAdRemoval - {4B09DE32-1C7C-3768-96F8-8B6DE343AD34} - C:\Documents and Settings\All Users\Data aplikací\UTubeAAdRemoval\U86avF5L.dll
O2 - BHO: NewSSaveR - {6908CBE2-048C-019D-52A0-E0528559BEBD} - C:\Documents and Settings\All Users\Data aplikací\NewSSaveR\ta21Rjn.dll
O2 - BHO: Search Assistant BHO - {71c1d63a-c944-428a-a5bd-ba513190e5d2} - C:\Program Files\MapsGalaxy_39\bar\1.bin\39SrcAs.dll
O2 - BHO: RoboForm BHO - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: SNT - {776F47F6-1824-716C-0234-3DA47E8868DF} - C:\Program Files\SNT\tVtvVeW.dll
O2 - BHO: FindBesatDeal - {7D240004-34BE-42EF-C1D2-962BE8BE520B} - C:\Documents and Settings\All Users\Data aplikací\FindBesatDeal\yQf.dll
O2 - BHO: gReatSaver - {8A4C370A-B582-2E14-6FE7-A3C63E03644A} - C:\Program Files\gReatSaver\38W1mTk7.dll
O2 - BHO: CheaapMe - {92D688AE-BB0D-4AE6-B43C-3C3FBAD45CAA} - C:\Documents and Settings\All Users\Data aplikací\CheaapMe\ctOMzvLB4.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: MinimumiPrice - {E813B751-77DE-617A-3B97-A86A7F68373C} - C:\Documents and Settings\All Users\Data aplikací\MinimumiPrice\uVC.dll
O2 - BHO: GreuatSavie4Uu - {E827947F-7990-5A35-9F49-20F92B0477E1} - C:\Documents and Settings\All Users\Data aplikací\GreuatSavie4Uu\MDNtSni13.dll
O2 - BHO: JoniCoUUpOn - {F227D24B-FEF2-4A5A-BE1F-BA9231E38148} - C:\Documents and Settings\All Users\Data aplikací\JoniCoUUpOn\SITlRzqiXl.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: MapsGalaxy - {364ea597-e728-4ce4-bb4a-ed846ef47970} - C:\Program Files\MapsGalaxy_39\bar\1.bin\39bar.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe
O4 - HKLM\..\Run: [NtVdmSrv] C:\WINDOWS\inf\ntvdm.vbe
O4 - HKLM\..\Run: [Printsrv] c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKCU\..\Run: [Epson Stylus Photo PX720WD(Síť)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIGYE.EXE /FU "C:\DOCUME~1\paula\LOCALS~1\Temp\E_S54.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Dropbox.lnk = ?
O8 - Extra context menu item: &Search - http://tbedits.mapsgalaxy.com/one-toolb ... 70105&cv=1
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Přizpůsobit Menu - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: RF Nástrojová lišta - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComShowToolbar.html
O8 - Extra context menu item: Uložit formuláře - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComSavePass.html
O8 - Extra context menu item: Vyplnit formulář - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComFillForms.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Vyplnit formulář - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Vyplnit formulář - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Uložit - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Uložit formuláře - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Show Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF Nástrojová lišta - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{0EDA89F2-6D1A-4812-81CD-9C9259EA79EB}: NameServer = 78.156.32.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{0EDA89F2-6D1A-4812-81CD-9C9259EA79EB}: NameServer = 78.156.32.2
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: c:\docume~1\alluse~1\dataap~1\assist~1\assist~1.dll c:\progra~1\assist~1.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
O23 - Service: hpqwmiex - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: MapsGalaxyService (MapsGalaxy_39Service) - COMPANYVERS_NAME - C:\PROGRA~1\MAPSGA~2\bar\1.bin\39barsvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: O&O Defrag Agent (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: Update SecretSauce - Unknown owner - C:\Program Files\SecretSauce\updateSecretSauce.exe
O23 - Service: Util SecretSauce - Unknown owner - C:\Program Files\SecretSauce\bin\utilSecretSauce.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/paula/LOCALS~1/Temp/msohtml1/01/clip_image002.jpg

--
End of file - 13604 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\1-Click Maintenance.job - C:\Program Files\TuneUp Utilities 2008\OneClick.exe /schedulestart
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GS.Enabler-S-1768269309.job - c:\documents and settings\all users\data aplikací\quickset\gs.enabler\GS.Enabler.exe /schedule /profile "c:\documents and settings\all users\data aplikací\quickset\gs.enabler\1768269309.ini"
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-484763869-1844823847-725345543-1004.job - C:\Program Files\Real\RealUpgrade\realupgrade.exe /logoncheck
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-484763869-1844823847-725345543-1004.job - C:\Program Files\Real\RealUpgrade\realupgrade.exe /scheduledcheck
C:\WINDOWS\tasks\Torntv V6.0-firefoxinstaller.job - C:\Program Files\Torntv V6.0\Torntv V6.0-firefoxinstaller.exe /installxpi /agentregpath='Torntv V6.0' /extensionfilepath='C:\Program Files\Torntv V6.0\45960.xpi' /appid=45960 /srcid='000686' /subid='0' /zdata='0' /bic=9CB5BFE4E3E649B8997C5F2CA49AA69BIE /verifier=9201b13351788da9b844a610e83f0bcb /installerversion=1_31_153 /installerfullversion=1.31.153.0 /installationtime=1388649151 /statsdomain=http://stats.srvstatsdata.com /errorsdomain=http://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=e2fd07a6-e282-4f2e-8965-85565fcb6384@b69158e6-3c3b-476c-9d98-ae5838c5b707.com /extensionversion=0.93 /prefsbranch=ae2fd07a6e2824f2e896585565fcb6384b69158e63c3b476c9d98ae5838c5b707com45960 /updateurl=https://w9u6a2p6.ssl.hwcdn.net/plugin/f ... /45960.rdf /extensionname='Torntv V6.0' /extensiondesc='The must-have App extensions for Television fans! Watch free TV channels, live sports and more' /publishername='installdaddy' /allusers /allprofiles /externallog=''
C:\WINDOWS\tasks\Torntv V6.0-updater.job - C:\Program Files\Torntv V6.0\Torntv V6.0-updater.exe /runupdater /agentregpath='Torntv V6.0' /appid=45960 /srcid='000686' /subid='0' /zdata='0' /bic=9CB5BFE4E3E649B8997C5F2CA49AA69BIE /verifier=9201b13351788da9b844a610e83f0bcb /installerversion=1_31_153 /installationtime=1388649151 /statsdomain=http://stats.srvstatsdata.com /errorsdomain=http://errors.srvstatsdata.com /monetizationdomain=http://stats.syncstatsdata.com /geoserviceurl=http://ipgeoapi.com/ /updatejsondomain=http://update.srvstatsdata.com /updaterversion=2 /externallog=''
C:\WINDOWS\tasks\Upd Inst-S-1714527084.job - c:\documents and settings\all users\data aplikací\teddy app\upd inst\Upd Inst.exe /schedule /profile "c:\documents and settings\all users\data aplikací\teddy app\upd inst\1714527084.ini"

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\paula\Data aplikací\Mozilla\Firefox\Profiles\qrez0hel.default-1390128672375

prefs.js - "browser.startup.homepage" - "https://www.google.cz/search?num=50&new ... 3Rw8_Vl1kI"

"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"=C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"39ffxtbr@MapsGalaxy_39.com"=C:\Program Files\MapsGalaxy_39\bar\1.bin
"{22119944-ED35-4ab1-910B-E619EA06A115}"=C:\Program Files\Siber Systems\AI RoboForm\Firefox

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.21.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\WINDOWS\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@MapsGalaxy_39.com/Plugin]
"Description"=MapsGalaxy Plugin
"Path"=C:\Program Files\MapsGalaxy_39\bar\1.bin\NP39Stub.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.12.732]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files\real\realplayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=1.0.3.732]
"Description"=RealJukebox Netscape Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=1.0.0.0]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.732]
"Description"=6.0.12.732
"Path"=c:\program files\real\realplayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@siber.com/RoboForm]
"Description"=
"Path"=C:\Program Files\Siber Systems\AI RoboForm\chrome\plugin\np-rf-plugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

C:\Program Files\Mozilla Firefox\components\
nppl3260.xpt
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
NPOFF12.DLL
nppdf32.dll
nppl3260.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
nprjplug.dll
nprpjplug.dll
QuickTimePlugin.class

C:\Documents and Settings\paula\Data aplikací\Mozilla\Firefox\Profiles\qrez0hel.default-1390128672375\extensions\
aeiyzd@osebjos.edu
ago.kcqgm@a-gyvdzj.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{19ECC142-407C-F2BD-15FE-7C2B6633AF19}]
YoutubeAdblocker - C:\Program Files\YoutubeAdblocker\t9.dll [2013-01-02 427008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1e91a655-bb4b-4693-a05e-2edebc4c9d89}]
Toolbar BHO - C:\PROGRA~1\MAPSGA~2\bar\1.bin\39bar.dll [2012-12-28 707728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-04-01 341600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4B09DE32-1C7C-3768-96F8-8B6DE343AD34}]
UTubeAAdRemoval - C:\Documents and Settings\All Users\Data aplikací\UTubeAAdRemoval\U86avF5L.dll [2014-01-30 428032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6908CBE2-048C-019D-52A0-E0528559BEBD}]
NewSSaveR - C:\Documents and Settings\All Users\Data aplikací\NewSSaveR\ta21Rjn.dll [2014-07-06 458240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{71c1d63a-c944-428a-a5bd-ba513190e5d2}]
Search Assistant BHO - C:\Program Files\MapsGalaxy_39\bar\1.bin\39SrcAs.dll [2012-12-28 62864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2014-07-06 19529944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-05-07 462752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{776F47F6-1824-716C-0234-3DA47E8868DF}]
SNT - C:\Program Files\SNT\tVtvVeW.dll [2013-01-02 427008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7D240004-34BE-42EF-C1D2-962BE8BE520B}]
FindBesatDeal - C:\Documents and Settings\All Users\Data aplikací\FindBesatDeal\yQf.dll [2014-08-16 332800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A4C370A-B582-2E14-6FE7-A3C63E03644A}]
gReatSaver - C:\Program Files\gReatSaver\38W1mTk7.dll [2013-01-02 427008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92D688AE-BB0D-4AE6-B43C-3C3FBAD45CAA}]
CheaapMe - C:\Documents and Settings\All Users\Data aplikací\CheaapMe\ctOMzvLB4.dll [2014-08-04 449024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-30 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10 3834016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-05-07 171424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E813B751-77DE-617A-3B97-A86A7F68373C}]
MinimumiPrice - C:\Documents and Settings\All Users\Data aplikací\MinimumiPrice\uVC.dll [2014-03-26 425472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E827947F-7990-5A35-9F49-20F92B0477E1}]
GreuatSavie4Uu - C:\Documents and Settings\All Users\Data aplikací\GreuatSavie4Uu\MDNtSni13.dll [2014-06-27 362496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F227D24B-FEF2-4A5A-BE1F-BA9231E38148}]
JoniCoUUpOn - C:\Documents and Settings\All Users\Data aplikací\JoniCoUUpOn\SITlRzqiXl.dll [2014-05-21 372224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2008-12-10 929224]
{364ea597-e728-4ce4-bb4a-ed846ef47970} - MapsGalaxy - C:\Program Files\MapsGalaxy_39\bar\1.bin\39bar.dll [2012-12-28 707728]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-30 266240]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2014-07-06 19529944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-03-01 472776]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-09-18 141848]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-09-18 166424]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-06-03 177456]
"Cpqset"=C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe [2007-09-20 61440]
"Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY.exe [2009-03-01 1871872]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe [2012-06-06 2774384]
"NtVdmSrv"=C:\WINDOWS\inf\ntvdm.vbe [2013-06-20 1219]
"Printsrv"=c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs [2013-05-01 543]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-09-18 137752]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Epson Stylus Photo PX720WD(Síť)"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIGYE.EXE [2010-01-12 201216]
"RoboForm"=C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [2014-07-06 109784]
""= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-12-29 687560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EEventManager]
C:\Program Files\Epson Software\Event Manager\EEventManager.exe [2009-12-03 976320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Epson Stylus Photo PX720WD(Síť)]
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIGYE.EXE [2010-01-12 201216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveSupport]
C:\Program Files\LiveSupport\LiveSupport.exe /noshow /log []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MapsGalaxy Search Scope Monitor]
C:\PROGRA~1\MAPSGA~2\bar\1.bin\39srchmn.exe [2012-12-28 42536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MapsGalaxy_39 Browser Plugin Loader]
C:\PROGRA~1\MAPSGA~2\bar\1.bin\39brmon.exe [2012-12-28 30096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mobilegeni daemon]
C:\Program Files\Mobogenie\DaemonProcess.exe [2013-12-27 761536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mshohbhhSrv]
C:\WINDOWS\inf\mshohbhh.vbe [2013-08-27 1558]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msxwabpSrv]
C:\WINDOWS\system32\msxwabp.vbe [2013-12-10 583]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NextLive]
C:\Documents and Settings\paula\Data aplikací\newnext.me\nengine.dll [2013-11-14 1283584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [2013-10-02 1090912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2009-11-30 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-01-18 1028096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-04-01 202256]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Yahoo! Search]
C:\Documents and Settings\paula\Data aplikací\Pay-By-Ads\Yahoo! Search\1.3.8.2\dsrlte.exe [2014-08-01 535472]

C:\Documents and Settings\paula\Nabídka Start\Programy\Po spuštění
Dropbox.lnk - C:\Documents and Settings\paula\Data aplikací\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\docume~1\alluse~1\dataap~1\assist~1\assist~1.dll c:\progra~1\assist~1.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-08-08 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ.exe"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\Hp\HP Software Update\HPWUCli.exe"="C:\Program Files\Hp\HP Software Update\HPWUCli.exe:*:Enabled:Aktualizace HP"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Documents and Settings\paula\Data aplikací\Dropbox\bin\Dropbox.exe"="C:\Documents and Settings\paula\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox"
"C:\WINDOWS\system32\muzapp.exe"="C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.tscc"=tsccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======List of files/folders created in the last 2 months======

2014-08-17 09:36:50 ----D---- C:\Program Files\trend micro
2014-08-17 09:36:49 ----D---- C:\rsit
2014-08-16 12:38:17 ----D---- C:\Documents and Settings\All Users\Data aplikací\FindBesatDeal
2014-08-10 16:06:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\SSScanAppDataDir
2014-08-10 16:05:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\MSScanAppDataDir
2014-08-10 15:47:03 ----D---- C:\Program Files\Microsoft Works
2014-08-10 15:45:35 ----D---- C:\Program Files\Microsoft Visual Studio
2014-08-10 15:45:35 ----D---- C:\Program Files\Common Files\DESIGNER
2014-08-10 15:44:28 ----D---- C:\Program Files\Microsoft.NET
2014-08-10 15:37:39 ----D---- C:\IDE
2014-08-10 15:37:32 ----D---- C:\Program Files\Microsoft Visual Studio 8
2014-08-10 15:35:57 ----D---- C:\WINDOWS\SHELLNEW
2014-08-10 15:34:25 ----RHD---- C:\MSOCache
2014-08-10 15:24:31 ----SHD---- C:\Config.Msi
2014-08-08 06:23:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\Supreme AdBlocker
2014-08-04 10:18:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\CheaapMe
2014-08-01 06:34:11 ----D---- C:\Documents and Settings\paula\Data aplikací\Pay-By-Ads
2014-07-30 12:22:42 ----HDC---- C:\WINDOWS\$NtUninstallWudf01009$
2014-07-30 10:57:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\NoMore Ads
2014-07-10 10:01:52 ----D---- C:\Documents and Settings\paula\Data aplikací\RoboForm
2014-07-10 08:58:25 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe
2014-07-10 08:46:08 ----D---- C:\Program Files\A4Proxy
2014-07-06 15:17:45 ----D---- C:\Program Files\Common Files\Nokia
2014-07-06 15:12:44 ----A---- C:\WINDOWS\system32\drivers\pccsmcfd.sys
2014-07-06 15:12:21 ----D---- C:\Program Files\PC Connectivity Solution
2014-07-06 15:10:15 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys
2014-07-06 15:10:13 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys
2014-07-06 15:10:11 ----A---- C:\WINDOWS\system32\drivers\ccdcmbo.sys
2014-07-06 15:10:09 ----A---- C:\WINDOWS\system32\drivers\ccdcmb.sys
2014-07-06 15:01:41 ----D---- C:\25e65fafff0a8cf6d0e995db3477
2014-07-06 14:39:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\RoboForm
2014-07-06 14:38:37 ----D---- C:\Program Files\Siber Systems
2014-07-06 11:35:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Teddy App
2014-07-06 11:34:47 ----A---- C:\Program Files\AssistantSvc.dll
2014-07-06 11:34:39 ----A---- C:\Program Files\Assistant.dll
2014-07-06 08:56:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\NewSSaveR
2014-06-27 16:16:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\GreuatSavie4Uu
2014-06-27 07:22:40 ----D---- C:\Program Files\mozilla firefox

======List of files/folders modified in the last 2 months======

2014-08-17 09:36:50 ----RD---- C:\Program Files
2014-08-17 09:27:14 ----D---- C:\WINDOWS
2014-08-17 09:27:13 ----D---- C:\WINDOWS\Temp
2014-08-17 09:25:18 ----D---- C:\Program Files\CCleaner
2014-08-17 09:04:44 ----A---- C:\WINDOWS\win.ini
2014-08-17 08:59:41 ----D---- C:\Documents and Settings\paula\Data aplikací\Dropbox
2014-08-16 13:31:47 ----N---- C:\WINDOWS\SchedLgU.Txt
2014-08-16 12:34:29 ----D---- C:\WINDOWS\Prefetch
2014-08-13 20:48:01 ----D---- C:\WINDOWS\system32\drivers
2014-08-13 20:47:43 ----D---- C:\WINDOWS\system32\CatRoot2
2014-08-10 16:21:46 ----SD---- C:\WINDOWS\Tasks
2014-08-10 15:58:11 ----SHD---- C:\WINDOWS\Installer
2014-08-10 15:58:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2014-08-10 15:57:48 ----RSD---- C:\WINDOWS\assembly
2014-08-10 15:47:02 ----D---- C:\WINDOWS\system32
2014-08-10 15:46:47 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-08-10 15:45:57 ----D---- C:\Program Files\MSBuild
2014-08-10 15:45:47 ----D---- C:\Program Files\Microsoft Office
2014-08-10 15:45:35 ----D---- C:\Program Files\Common Files
2014-08-10 15:44:58 ----RSD---- C:\WINDOWS\Fonts
2014-08-10 15:44:29 ----SD---- C:\Documents and Settings\paula\Data aplikací\Microsoft
2014-08-10 15:44:29 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2014-08-10 15:36:45 ----D---- C:\Program Files\Common Files\System
2014-08-10 15:34:51 ----HD---- C:\WINDOWS\inf
2014-08-10 09:27:51 ----D---- C:\WINDOWS\WinSxS
2014-08-04 10:18:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\c6832e7d6f7ab03d
2014-08-03 12:47:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\Wueekappp
2014-08-02 14:46:09 ----D---- C:\Program Files\WinRAR
2014-08-02 14:45:48 ----D---- C:\Program Files\Wueekappp
2014-08-02 14:44:36 ----D---- C:\WINDOWS\system32\QuickTime
2014-08-02 14:44:36 ----D---- C:\Program Files\QuickTime
2014-08-02 14:41:26 ----HD---- C:\Program Files\InstallShield Installation Information
2014-08-02 14:40:27 ----D---- C:\WINDOWS\twain_32
2014-08-02 14:33:31 ----D---- C:\Program Files\SecretSauce
2014-08-02 14:33:31 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-08-02 14:26:41 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-30 12:24:04 ----D---- C:\Documents and Settings\paula\Data aplikací\PC Suite
2014-07-30 12:22:19 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-07-30 07:14:42 ----D---- C:\Documents and Settings\paula\Data aplikací\FileZilla
2014-07-27 07:59:26 ----D---- C:\Documents and Settings\paula\Data aplikací\Samsung
2014-07-27 07:59:25 ----D---- C:\Program Files\Samsung
2014-07-27 07:59:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\Samsung
2014-07-27 07:56:06 ----D---- C:\Program Files\Google
2014-07-25 06:40:22 ----D---- C:\Documents and Settings\paula\Data aplikací\newnext.me
2014-07-10 08:58:32 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2014-07-06 16:33:43 ----D---- C:\Documents and Settings\paula\Data aplikací\Skype
2014-07-06 15:12:44 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-07-06 15:10:06 ----D---- C:\Program Files\Nokia
2014-07-06 15:01:12 ----D---- C:\Documents and Settings\All Users\Data aplikací\PC Suite
2014-07-06 14:37:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallMate

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-03-02 717296]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904]
R1 {345422e3-72fa-447a-9550-97803edfacf3}t;{345422e3-72fa-447a-9550-97803edfacf3}t; C:\WINDOWS\system32\drivers\{345422e3-72fa-447a-9550-97803edfacf3}t.sys [2014-04-24 55232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2010-05-12 5632]
R1 VD_FileDisk;VD_FileDisk; C:\WINDOWS\system32\drivers\VD_FileDisk.sys [2006-01-13 15872]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2009-03-01 1287552]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2008-04-28 9344]
R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDAud.sys [2007-02-12 625664]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-08-08 5776864]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2013-01-23 18560]
R3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2013-01-23 23168]
R3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-01-18 220640]
R3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2013-01-23 8192]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbser;USB Modem Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-13 26112]
R3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2013-01-23 8192]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136]
R3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
R3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224]
S3 AVerFx2hbtv;AVerMedia USB SW Hybrid Tuner; C:\WINDOWS\system32\drivers\AVerFx2hbtv.sys [2007-08-16 220672]
S3 axei0lt6;axei0lt6; C:\WINDOWS\system32\drivers\axei0lt6.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2013-06-21 84248]
S3 dgderdrv;dgderdrv; C:\WINDOWS\System32\drivers\dgderdrv.sys []
S3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2006-10-31 165760]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 ovt530;Webcam Classic; C:\WINDOWS\System32\Drivers\ov530vid.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2013-06-21 181912]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WinUSB;SAMSUNG Android USB Driver; C:\WINDOWS\system32\DRIVERS\WinUSB.sys [2006-11-02 39368]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 744d6abc;Assistant; c:\docume~1\alluse~1\dataap~1\assist~1\AssistantSvc.dll [2014-03-27 177488]
R2 916e5338;Install Supporter; c:\progra~1\AssistantSvc.dll [2014-07-06 174928]
R2 EpsonBidirectionalService;EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [2006-12-19 94208]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-04 112152]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre7\bin\jqs.exe [2013-05-07 181664]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 OODefragAgent;O&O Defrag Agent; C:\Program Files\OO Software\Defrag\oodag.exe [2012-06-06 2505072]
R2 Update SecretSauce;Update SecretSauce; C:\Program Files\SecretSauce\updateSecretSauce.exe [2014-08-12 323360]
R2 Util SecretSauce;Util SecretSauce; C:\Program Files\SecretSauce\bin\utilSecretSauce.exe [2014-08-12 323360]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 wltrysvc;Broadcom Wireless LAN Tray Service; C:\WINDOWS\System32\WLTRYSVC.EXE [2009-03-01 24064]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2010-05-14 230968]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S2 MapsGalaxy_39Service;MapsGalaxyService; C:\PROGRA~1\MAPSGA~2\bar\1.bin\39barsvc.exe [2012-12-28 42504]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-11-09 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-10 262320]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-07-30 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2010-10-17 306432]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 17 srp 2014 09:59

Zdravim

To jste velmi spatne hledal, log je bordelem prolezly od sklepa az na pudu

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

filippes · #3 Příspěvek od **filippes** » 17 srp 2014 10:36

Tak jrt už vytvořil toto
Ještě spustím ten Adwc
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Microsoft Windows XP x86
Ran by paula on ne 17.08.2014 at 11:05:23,76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

Successfully stopped: [Service] mapsgalaxy_39service
Successfully deleted: [Service] mapsgalaxy_39service
Failed to stop: [Service] update secretsauce
Failed to stop: [Service] util secretsauce

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.dynamicbarbutton
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.dynamicbarbutton.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.feedmanager
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.feedmanager.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.htmlmenu
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.htmlmenu.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.htmlpanel
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.htmlpanel.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.multiplebutton
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.multiplebutton.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.pseudotransparentplugin
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.pseudotransparentplugin.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.radio
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.radio.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.radiosettings
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.radiosettings.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.scriptbutton
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.scriptbutton.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.settingsplugin
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.settingsplugin.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.skinlauncher
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.skinlauncher.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.skinlaunchersettings
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.skinlaunchersettings.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.thirdpartyinstaller
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.thirdpartyinstaller.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.urlalertbutton
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.urlalertbutton.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.xmlsessionplugin
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.xmlsessionplugin.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1241CEBD-9777-4BC6-AAE5-2A77E25DB246}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{13119113-0854-469D-807A-171568457991}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{173A5778-34BF-48A2-8A5E-6963CE922FED}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1796EC91-D094-4A5F-B681-E16015D1CEAC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1E91A655-BB4B-4693-A05E-2EDEBC4C9D89}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{26842A09-FFA8-4E2C-AE12-0C80F01C3295}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{33119133-0854-469D-807A-171568457991}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{364EA597-E728-4CE4-BB4A-ED846EF47970}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{37ED966D-4D0E-4D66-9633-BEA542C92860}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3ED5E5EC-0965-4DD3-B7D8-DBC48A1172B9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4B7D0B0C-CFF3-49C5-9BC3-FFABC031C822}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4F28FA5F-7D15-4753-B4FC-D548A0F02BFB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{5E1BDCF6-DD5F-4DD3-8783-B1454AEF1830}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{71C1D63A-C944-428A-A5BD-BA513190E5D2}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{7D4DFAF7-F2CE-4C91-91A4-514C9612914D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{9B58A6CE-B337-43D5-9C2F-8C6D92FBA094}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A083C35D-61A9-4625-BBB6-FB54E71B8527}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A35FF019-6DBE-4044-B080-6F3FA78A947F}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{B70E008C-967B-4104-BC7B-6F7C77DBC38D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{C4A25B73-8EF5-4282-9D21-C8920DD577A1}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{CAE88E60-CEA5-4FCB-B611-54EA6305D8AB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DB1384D8-1BDA-4C8D-A743-E9CA671FEB00}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E045DF14-BF1D-405C-A37B-A75C1551AD17}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{F3477E9D-D2F6-49F0-9B23-854D7958D07E}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{23119123-0854-469D-807A-171568457991}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{03119103-0854-469D-807A-171568457991}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{3E288F79-03E4-4983-A48E-0D879B51FF19}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Myfree Codec
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\installedbrowserextensions
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\mapsgalaxy_39
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yahoopartnertoolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&search
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Myfree Codec
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\dt soft\daemon tools toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\mapsgalaxy_39
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dttoolbar.toolbandobj
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dttoolbar.toolbandobj.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{c670dcae-e392-aa32-6f42-143c7fc4bdfd}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{47FFB1FA-671C-4996-A54C-7D20F9B4861D}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1E91A655-BB4B-4693-A05E-2EDEBC4C9D89}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{71C1D63A-C944-428A-A5BD-BA513190E5D2}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{19ECC142-407C-F2BD-15FE-7C2B6633AF19}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{19ECC142-407C-F2BD-15FE-7C2B6633AF19}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{19ECC142-407C-F2BD-15FE-7C2B6633AF19}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6908CBE2-048C-019D-52A0-E0528559BEBD}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{6908CBE2-048C-019D-52A0-E0528559BEBD}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6908CBE2-048C-019D-52A0-E0528559BEBD}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A4C370A-B582-2E14-6FE7-A3C63E03644A}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{8A4C370A-B582-2E14-6FE7-A3C63E03644A}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8A4C370A-B582-2E14-6FE7-A3C63E03644A}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E813B751-77DE-617A-3B97-A86A7F68373C}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E813B751-77DE-617A-3B97-A86A7F68373C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E813B751-77DE-617A-3B97-A86A7F68373C}

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\paula\Data aplikacˇ\mapsgalaxy_39"
Successfully deleted: [Folder] "C:\Documents and Settings\paula\Data aplikacˇ\newnext.me"
Successfully deleted: [Folder] "C:\Program Files\daemon tools toolbar"
Successfully deleted: [Folder] "C:\Program Files\icq6toolbar"
Successfully deleted: [Folder] "C:\Program Files\mapsgalaxy_39"
Successfully deleted: [Folder] "C:\Program Files\mobogenie"
Successfully deleted: [Folder] "C:\Program Files\myfree codec"
Failed to delete: [Folder] "C:\Program Files\secretsauce"
Successfully deleted: [Folder] "C:\Program Files\snt"
Successfully deleted: [Folder] "C:\Program Files\torntv.com"
Successfully deleted: [Folder] "C:\Program Files\youtubeadblocker"

~~~ FireFox

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\39ffxtbr@mapsgalaxy_39.com
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@mapsgalaxy_39.com/plugin
Successfully deleted the following from C:\Documents and Settings\paula\Data aplikacˇ\mozilla\firefox\profiles\qrez0hel.default-1390128672375\prefs.js

user_pref("extensions.31lPnoiU6xg3.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com
user_pref("extensions.EAx7Pv4QVx.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\"
user_pref("extensions.MVbpTm.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1
user_pref("extensions.OyrA_moQJ.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")
user_pref("extensions.QC8NayKv63b.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\
user_pref("extensions.Z4PkH.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1|
user_pref("extensions.yXYX.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 17.08.2014 at 11:33:08,85
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

filippes · #4 Příspěvek od **filippes** » 17 srp 2014 10:45

ADWC - po spuštění scan chvíli čekám a pak se (po dvakrát) objevila chybovka
Autolt Error
Line 3276 (File "C:\Documentandsettings\paula\Plocha\adwcleaner_3.306.exe"):
Error: Array variable has incorrect number of subscripts or subscript dimension range exceeded.

#5 Příspěvek od **vyosek** » 17 srp 2014 11:01

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

filippes · #6 Příspěvek od **filippes** » 17 srp 2014 11:44

Zoek dal

Zoek.exe v5.0.0.0 Updated 15-08-2014
Tool run by paula on ne 17.08.2014 at 12:06:46,21.
Microsoft Windows XP Home Edition 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\paula\Plocha\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

17.8.2014 12:08:29 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{776F47F6-1824-716C-0234-3DA47E8868DF} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{776F47F6-1824-716C-0234-3DA47E8868DF} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{364EA597-E728-4CE4-BB4A-ED846EF47970} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{364EA597-E728-4CE4-BB4A-ED846EF47970} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{776F47F6-1824-716C-0234-3DA47E8868DF} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{776F47F6-1824-716C-0234-3DA47E8868DF} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{776F47F6-1824-716C-0234-3DA47E8868DF} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{364EA597-E728-4CE4-BB4A-ED846EF47970} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Internet Explorer\URLSearchHooks\{26842a09-ffa8-4e2c-ae12-0c80f01c3295} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{364EA597-E728-4CE4-BB4A-ED846EF47970} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\916e5338 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\916e5338 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Util SecretSauce deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Util SecretSauce deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\Util SecretSauce deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Util SecretSauce deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update SecretSauce deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Update SecretSauce deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\Update SecretSauce deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Update SecretSauce deleted successfully

==== Deleting Files \ Folders ======================

C:\DOCUME~1\ALLUSE~1\DATAAP~1\lfiocpgecokhnghginadgiecfcidpenh deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\UTubeAAdRemoval deleted
C:\Documents and Settings\paula\AppData\LocalLow\{19ECC142-407C-F2BD-15FE-7C2B6633AF19} deleted
C:\Documents and Settings\paula\AppData\LocalLow\{4B09DE32-1C7C-3768-96F8-8B6DE343AD34} deleted
C:\Documents and Settings\paula\AppData\LocalLow\{6908CBE2-048C-019D-52A0-E0528559BEBD} deleted
C:\Documents and Settings\paula\AppData\LocalLow\{776F47F6-1824-716C-0234-3DA47E8868DF} deleted
C:\Documents and Settings\paula\AppData\LocalLow\{7D240004-34BE-42EF-C1D2-962BE8BE520B} deleted
C:\Documents and Settings\paula\AppData\LocalLow\{8A4C370A-B582-2E14-6FE7-A3C63E03644A} deleted
C:\Documents and Settings\paula\AppData\LocalLow\{92D688AE-BB0D-4AE6-B43C-3C3FBAD45CAA} deleted
C:\Documents and Settings\paula\AppData\LocalLow\{E813B751-77DE-617A-3B97-A86A7F68373C} deleted
C:\Documents and Settings\paula\AppData\LocalLow\{E827947F-7990-5A35-9F49-20F92B0477E1} deleted
C:\Documents and Settings\paula\AppData\LocalLow\{F227D24B-FEF2-4A5A-BE1F-BA9231E38148} deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\Assistant deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\c6832e7d6f7ab03d deleted
C:\Program Files\Torntv V6.0 deleted
C:\Documents and Settings\paula\daemonprocess.txt deleted
C:\Documents and Settings\paula\.android deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\YoutubeAdblocker deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\NewSSaveR deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\SNT deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\FindBesatDeal deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\gReatSaver deleted
C:\Program Files\gReatSaver deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\CheaapMe deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\MinimumiPrice deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\GreuatSavie4Uu deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\JoniCoUUpOn deleted
C:\Program Files\Assistant.dll deleted
C:\Program Files\AssistantSvc.dll deleted
C:\Program Files\ComPlus Applications deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\QuickSet deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\Teddy App deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\ICQ deleted
C:\DOCUME~1\ALLUSE~1\DATAAP~1\InstallMate deleted
C:\DOCUME~1\ALLUSE~1\NABDKA~1\Programy\MyFree Codec deleted
C:\DOCUME~1\paula\NABDKA~1\Programy\TornTV.com deleted
C:\WINDOWS\tasks\GS.Enabler-S-1768269309.job deleted
C:\WINDOWS\tasks\Torntv V6.0-firefoxinstaller.job deleted
C:\WINDOWS\tasks\Torntv V6.0-updater.job deleted
C:\WINDOWS\tasks\Upd Inst-S-1714527084.job deleted
C:\WINDOWS\System32\SET497.tmp deleted
C:\WINDOWS\System32\SET49B.tmp deleted
C:\WINDOWS\System32\SET49C.tmp deleted
C:\WINDOWS\System32\SET4A3.tmp deleted
C:\Documents and Settings\paula\Plocha\TornTV.lnk deleted
C:\Documents and Settings\paula\Dokumenty\Sta§en‚ soubory\Setup(1).exe deleted
"C:\Program Files\SecretSauce\updateSecretSauce.exe" deleted
"C:\Program Files\SecretSauce\updateSecretSauce.exe" deleted
"C:\Program Files\SecretSauce\bin\utilSecretSauce.exe" deleted
"C:\Program Files\SecretSauce\bin\utilSecretSauce.exe" deleted
"C:\Program Files\SecretSauce" not deleted
"C:\Program Files\SecretSauce" not deleted
"C:\Program Files\SecretSauce\bin" not deleted
"C:\Program Files\SecretSauce\bin" not deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{22119944-ED35-4ab1-910B-E619EA06A115}"="C:\Program Files\Siber Systems\AI RoboForm\Firefox" [06.07.2014 14:39]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{22119944-ED35-4ab1-910B-E619EA06A115}"="C:\Program Files\Siber Systems\AI RoboForm\Firefox" [06.07.2014 14:39]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dbpebffoameokfhnaaedmefjncfboino - C:\Program Files\SecretSauce\dbpebffoameokfhnaaedmefjncfboino.crx[]
jfmjfhklogoienhpfnppmbcbjfjnkonk - C:\Documents and Settings\All Users\Data aplikacˇ\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx[01.04.2010 19:07]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx[10.10.2011 12:09]
pnlccmojcmeohlpggmfnbbiapkmbliob - C:\Program Files\Siber Systems\AI RoboForm\Chrome\rf-chrome.crx[06.07.2014 14:38]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.cz/"
"ICQ Search"="http://search.icq.com/search/results.ph ... &ch_id=osd"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="C:\\Documents and Settings\\All Users\\Data aplikacˇ\\ICQ\\ICQNewTab\\newTab.html"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{b0441a0e-a49a-4e16-afc1-74ecced1921f}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"ICQ Search"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://google.cz/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4B09DE32-1C7C-3768-96F8-8B6DE343AD34} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4B09DE32-1C7C-3768-96F8-8B6DE343AD34} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{92D688AE-BB0D-4AE6-B43C-3C3FBAD45CAA} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E827947F-7990-5A35-9F49-20F92B0477E1} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E827947F-7990-5A35-9F49-20F92B0477E1} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F227D24B-FEF2-4A5A-BE1F-BA9231E38148} deleted successfully
HKEY_USERS\S-1-5-21-484763869-1844823847-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F227D24B-FEF2-4A5A-BE1F-BA9231E38148} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4B09DE32-1C7C-3768-96F8-8B6DE343AD34} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{4B09DE32-1C7C-3768-96F8-8B6DE343AD34} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4B09DE32-1C7C-3768-96F8-8B6DE343AD34} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7D240004-34BE-42EF-C1D2-962BE8BE520B} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{7D240004-34BE-42EF-C1D2-962BE8BE520B} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7D240004-34BE-42EF-C1D2-962BE8BE520B} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{92D688AE-BB0D-4AE6-B43C-3C3FBAD45CAA} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{92D688AE-BB0D-4AE6-B43C-3C3FBAD45CAA} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92D688AE-BB0D-4AE6-B43C-3C3FBAD45CAA} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E827947F-7990-5A35-9F49-20F92B0477E1} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{E827947F-7990-5A35-9F49-20F92B0477E1} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E827947F-7990-5A35-9F49-20F92B0477E1} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F227D24B-FEF2-4A5A-BE1F-BA9231E38148} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{F227D24B-FEF2-4A5A-BE1F-BA9231E38148} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F227D24B-FEF2-4A5A-BE1F-BA9231E38148} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\1df47cd5-3316-4fd0-8b20-9d28df81bb2c deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\2bc1f17d-3bb0-4078-83fd-244d4172899d deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\dcad24f9-2f09-4270-849f-bb9966a0756a deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{DA457FE1-B7F3-EA63-1E6B-17762BB526C3} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\dbpebffoameokfhnaaedmefjncfboino deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\S-1714527084 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1C60D9BB-E5C5-3DEB-97E7-57505435E501} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CA41BB14-E67B-1653-C57B-5CA99418A866} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Torntv V6.0 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{6A08B379-76FB-B4CF-0C70-CAFCD3635A77} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B5DB572D-EA87-D3B0-08F6-4D153EA6A783} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F6C44C71-2CFE-8176-3A4D-CBD0DCE5AEFA} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CA1838EF-A497-194E-3850-37A62CEE398B} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{45606A90-3363-3A3B-1C15-C40E77F4DAA0} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{51417852-174C-88D4-34A0-D0FE7858BE47} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D32067CD-7409-4792-BFA0-1469BCD8F0C8} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{744d6abc} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{916e5338} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\S-1768269309 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\MapsGalaxy_39bar Uninstall deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\DC76023D90472974FB0A4196CB8D0F8C deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveSupport deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MapsGalaxy Search Scope Monitor deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MapsGalaxy_39 Browser Plugin Loader deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mobilegeni daemon deleted successfully

==== Empty IE Cache ======================

C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\paula\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=248 folders=79 39725571 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\paula\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Documents and Settings\paula\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Program Files\SecretSauce" not found
"C:\Program Files\SecretSauce" not found

==== EOF on ne 17.08.2014 at 12:39:29,18 ======================

filippes · #7 Příspěvek od **filippes** » 17 srp 2014 19:10

Tak nevím, zda mám čekat ještě radu, nebo jestli už je to v pořádku.

#8 Příspěvek od **vyosek** » 18 srp 2014 07:28

Omlouvam se, pracovni vikend

Dejte log z FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

filippes · #9 Příspěvek od **filippes** » 18 srp 2014 18:44

Dobrý večer
Nic se neděje, aj já měl dnes už pracovní den.
Jen se teď nedostanu na NB (ten testovaný). Ale přece jen poprosím, zda se můžete kouknout na FRST log z PC, které asi bude také červavé

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:16-08-2014 03
Ran by Stan (administrator) on ROSTARS on 18-08-2014 19:32:07
Running from C:\Documents and Settings\Stan\Plocha
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Čeština
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST:

http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkService.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EBAPI\eEBSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore.exe
(Threat Expert Ltd.) C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
(Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
(Microsoft Corporation) C:\WINDOWS\system32\inetsrv\inetinfo.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Sunbelt Software) C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
() C:\Program Files\NetTime\NetTimeService.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Microsoft Corporation) C:\WINDOWS\system32\tcpsvcs.exe
(Sunbelt Software) C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
(Microsoft Corporation) C:\WINDOWS\system32\snmp.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
(SEIKO EPSON CORPORATION) C:\WINDOWS\system32\SAgent4.exe
(Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe
(Microsoft Corporation) C:\WINDOWS\system32\mqtgsvc.exe
() C:\Program Files\NetTime\NetTime.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Dropbox, Inc.) C:\Documents and Settings\Stan\Data aplikací\Dropbox\bin\Dropbox.exe
(Sunbelt Software) C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
(Mozilla Corporation) C:\Program Files\Firefox\firefox.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(Microsoft Corporation) C:\WINDOWS\system32\cidaemon.exe
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
() C:\DOCUME~1\Stan\LOCALS~1\DATAAP~1\MSGBOX.EXE

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file

will not be moved.)

HKU\.DEFAULT\...\Run: [BrowserChoice] => C:\WINDOWS\system32\browserchoice.exe [293376 2010-06-23] (Microsoft

Corporation)
HKU\S-1-5-19\...\Run: [BrowserChoice] => C:\WINDOWS\system32\browserchoice.exe [293376 2010-06-23] (Microsoft

Corporation)
HKU\S-1-5-21-1085031214-448539723-1177238915-1004\...\Run: [Epson Stylus Photo PX720WD(Síe)] =>

C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIGYE.EXE [201216 2010-01-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1085031214-448539723-1177238915-1004\...\Run: [] => [X]
HKU\S-1-5-21-1085031214-448539723-1177238915-1004\...\Run: [SUPERAntiSpyware] => C:\Program

Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6688024 2014-08-14] (SUPERAntiSpyware)
HKU\S-1-5-21-1085031214-448539723-1177238915-1004\...\MountPoints2: {663d68ba-1df7-11e3-a2ad-000272d13149} -

G:\AutoRun.exe
Startup: C:\Documents and Settings\Administrator.PC\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a

spuštění aplikace OneNote 2007.lnk
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft

Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Documents and Settings\Stan\Nabídka Start\Programy\Po spuštění\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Documents and Settings\Stan\Data aplikací\Dropbox\bin\Dropbox.exe (Dropbox,

Inc.)
SSODL: EldosMountNotificator - {C28617FD-4FE7-4043-AD51-C8132CE90106} - C:\WINDOWS\system32\SSCbFsMntNtf3.dll

(EldoS Corporation)
ShellIconOverlayIdentifiers: "DropboxExt1" -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and

Settings\Stan\Data aplikací\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt2" -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and

Settings\Stan\Data aplikací\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt3" -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and

Settings\Stan\Data aplikací\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt4" -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and

Settings\Stan\Data aplikací\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt5" -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and

Settings\Stan\Data aplikací\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt6" -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and

Settings\Stan\Data aplikací\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt7" -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and

Settings\Stan\Data aplikací\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt8" -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and

Settings\Stan\Data aplikací\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: EldosIconOverlay -> {69925D1B-6A0F-4413-861A-81AB98039DB9} =>

C:\WINDOWS\system32\SSCbFsMntNtf3.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program

Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program

Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program

Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program

Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program

Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program

Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: SugarSyncBackedUp -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program

Files\SugarSync\SugarSyncShellExt.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: SugarSyncPending -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program

Files\SugarSync\SugarSyncShellExt.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: SugarSyncRoot -> {39D54CC2-69CF-43b4-B167-577D25E7F496} => C:\Program

Files\SugarSync\SugarSyncShellExt.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: SugarSyncShared -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program

Files\SugarSync\SugarSyncShellExt.dll (SugarSync, Inc.)
ShellIconOverlayIdentifiers: SugarSyncSharedPending -> {F7395C2E-A5D8-4a32-9536-5C6A9F1DC450} => C:\Program

Files\SugarSync\SugarSyncShellExt.dll (SugarSync, Inc.)
BootExecute: autocheck autochk * OODBS

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

https://www.google.cz/search?hl=cs&neww ... ogle&cad=h
URLSearchHook: HKCU - (No Name) - {472734EA-242A-422b-ADF8-83D1E48CC825} - No File
BHO: RoboForm Toolbar Helper -> {724d43a9-0d85-11d4-9908-00400523e39a} -> C:\Program Files\Siber Systems\AI

RoboForm\roboform.dll (Siber Systems Inc.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft

Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program

Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo

Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common

Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program

Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program

Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson

Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - No Name - {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program

Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber

Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
Toolbar: HKCU - &RoboForm Toolbar - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files\Siber

Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
Toolbar: HKCU - No Name - {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}

http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA}

http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}

http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft

Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common

Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} -

C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2010-06-23] (Microsoft Corporation)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program

Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-08] (SuperAdBlocker.com)
Winsock: Catalog5 04 C:\WINDOWS\system32\pnrpnsp.dll [58880] (Microsoft Corporation)
Winsock: Catalog5 05 C:\WINDOWS\system32\pnrpnsp.dll [58880] (Microsoft Corporation)
Tcpip\..\Interfaces\{01D0F79F-E80A-45B8-93A3-BA42D919A9C3}: [NameServer]78.156.32.2
Tcpip\..\Interfaces\{A00A7291-567E-4E1D-A1F7-8497DE5871CC}: [NameServer]78.156.32.2
Tcpip\..\Interfaces\{FE2A2397-AA97-4137-AE91-F62464399FB2}: [NameServer]78.156.32.2,0.0.0.0

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Stan\Data

aplikací\Mozilla\Firefox\Profiles\zec8kpxa.default-1381762049391
FF DefaultSearchEngine: Ask Search
FF SearchEngineOrder.1: PorovnĂ„â€šĂ‹â€ˇnĂ„â€šĂ‚Â cen
FF SelectedSearchEngine: Ask Search
FF Homepage: https://www.google.cz/#newwindow=1&psj=1&q=google
FF NetworkProxy: "backup.ftp", "42.3.224.11"
FF NetworkProxy: "backup.ftp_port", 8080
FF NetworkProxy: "backup.socks", "42.3.224.11"
FF NetworkProxy: "backup.socks_port", 8080
FF NetworkProxy: "backup.ssl", "42.3.224.11"
FF NetworkProxy: "backup.ssl_port", 8080
FF NetworkProxy: "ftp", "42.3.224.11"
FF NetworkProxy: "ftp_port", 8080
FF NetworkProxy: "http", "42.3.224.11"
FF NetworkProxy: "http_port", 8080
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "42.3.224.11"
FF NetworkProxy: "socks_port", 8080
FF NetworkProxy: "ssl", "42.3.224.11"
FF NetworkProxy: "ssl_port", 8080
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

(Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle

Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll

( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation

Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program

Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program

Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common

Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npnul32.dll (mozilla.org)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: AutoPager - C:\Documents and Settings\Stan\Data

aplikací\Mozilla\Firefox\Profiles\zec8kpxa.default-1381762049391\Extensions\autopager@mozilla.org

[2014-04-12]
FF Extension: IE Tab + - C:\Documents and Settings\Stan\Data

aplikací\Mozilla\Firefox\Profiles\zec8kpxa.default-1381762049391\Extensions\coralietab@mozdev.org

[2014-03-03]
FF Extension: FireDiff - C:\Documents and Settings\Stan\Data

aplikací\Mozilla\Firefox\Profiles\zec8kpxa.default-1381762049391\Extensions\firediff@johnjbarton.com

[2014-04-12]
FF Extension: Fire IE - C:\Documents and Settings\Stan\Data

aplikací\Mozilla\Firefox\Profiles\zec8kpxa.default-1381762049391\Extensions\fireie@fireie.org [2014-07-06]
FF Extension: Sdílení Pridat.eu - C:\Documents and Settings\Stan\Data

aplikací\Mozilla\Firefox\Profiles\zec8kpxa.default-1381762049391\Extensions\info@pridat.eu [2014-04-04]
FF Extension: Whois Lookup & Hosting & DNS & Site Flags Firefox - C:\Documents and

Settings\Stan\Data aplikací\Mozilla\Firefox\Profiles\zec8kpxa.default-1381762049391\Extensions\myipms@myip.ms

[2014-03-03]
FF Extension: Adblock Plus Filter Uploader - C:\Documents and Settings\Stan\Data

aplikací\Mozilla\Firefox\Profiles\zec8kpxa.default-1381762049391\Extensions\uploader@adblockfilters.mozdev.or

g [2014-04-12]
FF Extension: NoScript - C:\Documents and Settings\Stan\Data

aplikací\Mozilla\Firefox\Profiles\zec8kpxa.default-1381762049391\Extensions\{73a6fe31-595d-460b-a920-fcc0f884

3232} [2014-08-14]
FF Extension: Memory Fox - C:\Documents and Settings\Stan\Data

aplikací\Mozilla\Firefox\Profiles\zec8kpxa.default-1381762049391\Extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0C

A55B} [2014-03-03]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] -

C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows

Presentation Foundation\DotNetAssistantExtension [2013-02-09]
FF HKLM\...\Firefox\Extensions: [{cb84136f-9c44-433a-9048-c5cd9df1dc16}] - C:\Program Files\PC Tools\PC Tools

Security\BDT\FireFox
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat

11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn

[2013-11-29]
FF HKLM\...\Firefox\Extensions: [{22119944-ED35-4ab1-910B-E619EA06A115}] - C:\Program Files\Siber Systems\AI

RoboForm\Firefox
FF Extension: RoboForm Toolbar for Firefox - C:\Program Files\Siber Systems\AI RoboForm\Firefox [2014-02-26]
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Firefox\firefox.exe

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchProvider: name
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Stan\Local Settings\Data

aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-29]
CHR Extension: (Disk Google) - C:\Documents and Settings\Stan\Local Settings\Data aplikací\Google\Chrome\User

Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-29]
CHR Extension: (YouTube) - C:\Documents and Settings\Stan\Local Settings\Data aplikací\Google\Chrome\User

Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-29]
CHR Extension: (Vyhledávání Google) - C:\Documents and Settings\Stan\Local Settings\Data

aplikací\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-29]
CHR Extension: (Clear Cache) - C:\Documents and Settings\Stan\Local Settings\Data aplikací\Google\Chrome\User

Data\Default\Extensions\cppjkneekbjaeellbfkmgnhonkkjfpdn [2013-12-29]
CHR Extension: (Nokia Drop) - C:\Documents and Settings\Stan\Local Settings\Data aplikací\Google\Chrome\User

Data\Default\Extensions\ddgankdgamemlpbbfnbdphddncdcmkhf [2013-12-29]
CHR Extension: (SEO Site Tools) - C:\Documents and Settings\Stan\Local Settings\Data

aplikací\Google\Chrome\User Data\Default\Extensions\diahigjngdnkdgajdbpjdeomopbpkjjc [2013-12-29]
CHR Extension: (Blitz Full Screen URL Launcher) - C:\Documents and Settings\Stan\Local Settings\Data

aplikací\Google\Chrome\User Data\Default\Extensions\eaemaefgnoddejclbjbkdjhnejojlnda [2013-12-29]
CHR Extension: (Adobe Acrobat - Vytvořit PDF) - C:\Documents and Settings\Stan\Local Settings\Data

aplikací\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2013-12-29]
CHR Extension: (Closed tabs) - C:\Documents and Settings\Stan\Local Settings\Data aplikací\Google\Chrome\User

Data\Default\Extensions\eonffnnfmbfnmjpaiigdclmfelolemah [2013-12-29]
CHR Extension: (Weather Europe) - C:\Documents and Settings\Stan\Local Settings\Data

aplikací\Google\Chrome\User Data\Default\Extensions\kadgobdfbdigmegffjkflccgkdnjpine [2013-12-29]
CHR Extension: (IP Address and Domain Information) - C:\Documents and Settings\Stan\Local Settings\Data

aplikací\Google\Chrome\User Data\Default\Extensions\lhgkegeccnckoiliokondpaaalbhafoa [2013-12-29]
CHR Extension: (HexaClock) - C:\Documents and Settings\Stan\Local Settings\Data aplikací\Google\Chrome\User

Data\Default\Extensions\lignfghfimhdhpnnkeaajjhjoecbkjao [2013-12-29]
CHR Extension: (Notes) - C:\Documents and Settings\Stan\Local Settings\Data aplikací\Google\Chrome\User

Data\Default\Extensions\molpbbfgiohpdmhnpadnonkfgahjfbem [2013-12-29]
CHR Extension: (Peněženka Google) - C:\Documents and Settings\Stan\Local Settings\Data

aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-29]
CHR Extension: (Gmail) - C:\Documents and Settings\Stan\Local Settings\Data aplikací\Google\Chrome\User

Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-29]
CHR Extension: (RoboForm) - C:\Program Files\Siber Systems\AI RoboForm\Chrome [2014-02-26]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files\Adobe\Acrobat

11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-09-05]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be

moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [142648 2014-07-23] (SUPERAntiSpyware.com)
R2 Browser Defender Update Service; C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe

[247760 2011-01-07] (Threat Expert Ltd.)
R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkService.exe [417792 2007-08-28]

(DisplayLink Corp.) [File not signed]
R2 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO

EPSON CORPORATION) [File not signed]
R2 EPSON_EB_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [153600 2009-09-14] (SEIKO

EPSON CORPORATION) [File not signed]
R2 EPSON_PM_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [121856 2009-09-14] (SEIKO

EPSON CORPORATION) [File not signed]
R2 IISADMIN; C:\WINDOWS\system32\inetsrv\inetinfo.exe [15872 2008-04-14] (Microsoft Corporation)
R2 Iprip; C:\WINDOWS\System32\iprip.dll [35840 2008-04-14] (Microsoft Corporation)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-04-23] (Oracle Corporation)
R2 KPF4; C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe [1205784 2013-03-19] (Sunbelt

Software) [File not signed]
S3 LPDSVC; C:\WINDOWS\system32\tcpsvcs.exe [19456 2008-04-14] (Microsoft Corporation)
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft

Corporation) [File not signed]
R2 MSFtpsvc; C:\WINDOWS\system32\inetsrv\inetinfo.exe [15872 2008-04-14] (Microsoft Corporation)
R2 MSMQ; C:\WINDOWS\system32\mqsvc.exe [4608 2008-04-14] (Microsoft Corporation)
R2 MSMQTriggers; C:\WINDOWS\system32\mqtgsvc.exe [117248 2008-04-14] (Microsoft Corporation)
R2 NetTimeSvc; C:\Program Files\NetTime\NetTimeService.exe [473088 2012-05-12] () [File not signed]
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [2505072 2012-06-06] (O&O Software GmbH)
S3 p2pgasvc; C:\WINDOWS\system32\p2pgasvc.dll [105472 2008-04-14] (Microsoft Corporation)
R2 SMTPSVC; C:\WINDOWS\system32\inetsrv\inetinfo.exe [15872 2008-04-14] (Microsoft Corporation)
R2 StatusAgent4; C:\WINDOWS\system32\SAgent4.exe [131072 2006-12-20] (SEIKO EPSON CORPORATION) [File not

signed]
R2 W3SVC; C:\WINDOWS\system32\inetsrv\inetinfo.exe [15872 2008-04-14] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be

moved unless listed separately.)

S3 ac97intc; C:\WINDOWS\System32\drivers\ac97intc.sys [96256 2001-08-17] (Intel Corporation)
R3 cmuda3; C:\WINDOWS\System32\drivers\cmudax3.sys [1872192 2009-05-20] (C-Media Inc) [File not signed]
R3 DisplayLinkGA; C:\WINDOWS\System32\DRIVERS\DisplayLinkGAport.sys [25704 2007-03-09] (DisplayLink Corp.)
R3 DisplayLinkmirror; C:\WINDOWS\System32\DRIVERS\DisplayLinkmirrorport.sys [23400 2007-03-09] (DisplayLink

Corp.)
S3 DisplayLinkUsbPort; C:\WINDOWS\System32\DRIVERS\DisplayLinkUsbPort.sys [26600 2007-06-06]

(http://libusb-win32.sourceforge.net)
S1 DumpDrv; C:\WINDOWS\system32\Drivers\DumpDrv.sys [9472 2010-06-23] (Microsoft Corporation)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [13192 2011-07-29] () [File not signed]
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [8456 2011-07-29] () [File not signed]
R1 fwdrv; C:\WINDOWS\system32\drivers\fwdrv.sys [284184 2006-07-18] (Sunbelt Software)
R1 khips; C:\WINDOWS\system32\drivers\khips.sys [91672 2006-07-18] (Sunbelt Software)
R3 MQAC; C:\WINDOWS\system32\drivers\mqac.sys [92544 2010-06-23] (Microsoft Corporation)
S3 PCTBD; C:\WINDOWS\System32\Drivers\PCTBD.sys [62688 2012-10-23] (PC Tools)
R0 PCTCore; C:\WINDOWS\System32\drivers\PCTCore.sys [368616 2012-10-22] (PC Tools)
R0 pctDS; C:\WINDOWS\System32\drivers\pctDS.sys [342168 2012-02-28] (PC Tools)
R0 pctEFA; C:\WINDOWS\System32\drivers\pctEFA.sys [909728 2012-02-28] (PC Tools)
R1 pctgntdi; C:\WINDOWS\system32\drivers\pctgntdi.sys [260760 2012-10-31] (PC Tools)
S3 pctplsm; C:\WINDOWS\system32\drivers\pctplsm.sys [68272 2012-11-01] (PC Tools)
R1 PCTSD; C:\WINDOWS\System32\Drivers\PCTSD.sys [202280 2012-11-01] (PC Tools)
R3 PRISM; C:\WINDOWS\System32\DRIVERS\PRISMNDS.sys [50688 2006-08-15] (Intersil Corporation) [File not

signed]
S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and

SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and

SUPERAntiSpyware.com)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [685816 2013-12-25] () [File not signed]
R3 SSCBFS3; C:\WINDOWS\System32\DRIVERS\sscbfs3.sys [295936 2013-01-30] (EldoS Corporation)
R1 VD_FileDisk; C:\WINDOWS\system32\Drivers\VD_FileDisk.sys [15872 2006-01-13] (Flint Incorporation) [File

not signed]
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S1 jagewflp; \??\C:\WINDOWS\system32\drivers\jagewflp.sys [X]
S1 lvwugkph; \??\C:\WINDOWS\system32\drivers\lvwugkph.sys [X]
S3 mcdbus; system32\DRIVERS\mcdbus.sys [X]
U5 Sdbus; C:\Windows\System32\Drivers\Sdbus.sys [80384 2010-06-23] (Microsoft Corporation)
S3 SliceDisk5; \??\C:\DOCUME~1\Stan\LOCALS~1\Temp\HBCD\PartitionFindAndMount\slicedisk.sys [X]
U5 TMUSB; C:\WINDOWS\System32\DRIVERS\TMUSBXP.SYS [49408 2012-12-05] (Seiko Epson Corporation)
S3 WpdUsb; system32\DRIVERS\wpdusb.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be

listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-18 19:32 - 2014-08-18 19:33 - 00027668 _____ () C:\Documents and Settings\Stan\Plocha\FRST.txt
2014-08-18 19:31 - 2014-08-18 19:31 - 00015327 _____ () C:\Documents and Settings\Stan\Plocha\LM.bat
2014-08-17 21:52 - 2014-08-17 21:52 - 00000508 _____ () C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task

20babf9b-83c6-48a5-b8df-96eaec11a563.job
2014-08-17 21:09 - 2014-08-17 21:09 - 00000000 ____D () C:\Documents and Settings\Stan\Data

aplikací\SUPERAntiSpyware.com
2014-08-17 21:03 - 2014-08-18 19:10 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-08-17 21:03 - 2014-08-17 21:03 - 00001691 _____ () C:\Documents and Settings\All

Users\Plocha\SUPERAntiSpyware Professional.lnk
2014-08-17 21:03 - 2014-08-17 21:03 - 00000000 ____D () C:\Documents and Settings\All Users\Data

aplikací\SUPERAntiSpyware.com
2014-08-17 20:46 - 2014-08-17 20:49 - 00000000 ____D () C:\Avenger
2014-08-17 20:46 - 2014-08-17 20:46 - 00000886 _____ () C:\avenger.txt
2014-08-17 20:35 - 2014-08-17 20:35 - 00000733 _____ () C:\JRT.txt
2014-08-17 20:05 - 2014-08-18 19:31 - 00029696 _____ () C:\Documents and Settings\Stan\Local Settings\Data

aplikací\MSGBOX.EXE
2014-08-17 20:04 - 2014-08-18 19:32 - 00000000 ____D () C:\FRST
2014-08-17 20:02 - 2014-08-17 20:03 - 01093632 _____ (Farbar) C:\Documents and Settings\Stan\Plocha\FRST.exe
2014-08-17 19:52 - 2014-08-17 19:52 - 00000000 ____D () C:\rsit
2014-08-17 19:52 - 2014-08-17 19:52 - 00000000 ____D () C:\Program Files\trend micro
2014-08-17 19:34 - 2014-08-17 19:35 - 00004747 _____ () C:\AdwCleaner[S0].txt
2014-08-17 19:10 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team)

C:\WINDOWS\system32\sqlite3.dll
2014-08-17 19:04 - 2014-08-17 19:30 - 00000000 ____D () C:\AdwCleaner
2014-08-17 18:57 - 2014-08-18 19:09 - 00005863 _____ () C:\WINDOWS\setupapi.log
2014-08-17 18:56 - 2014-08-17 18:56 - 00312376 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-08-17 18:43 - 2014-08-17 18:43 - 01361671 _____ () C:\Documents and

Settings\Stan\Plocha\adwcleaner_3.307.exe
2014-08-17 18:42 - 2014-08-17 18:43 - 01016261 _____ (Thisisu) C:\Documents and Settings\Stan\Plocha\JRT.exe
2014-08-12 19:33 - 2014-08-12 19:33 - 00000000 ____D () C:\Documents and Settings\Stan\Local Settings\Data

aplikací\Xenocode
2014-08-12 19:30 - 2014-08-12 19:30 - 00000002 _____ () C:\WINDOWS\system32\krx240.dat
2014-08-12 19:29 - 2014-08-12 19:30 - 00000000 ____D () C:\Documents and Settings\Stan\Dokumenty\Web Button

Maker Deluxe
2014-08-12 19:29 - 2014-08-12 19:29 - 00000875 _____ () C:\Documents and Settings\Stan\Plocha\Web Button

Maker Deluxe.lnk
2014-08-12 19:29 - 2014-08-12 19:29 - 00000000 ____D () C:\Program Files\Web Button Maker Deluxe
2014-08-12 19:29 - 2014-08-12 19:29 - 00000000 ____D () C:\Documents and Settings\Stan\Nabídka

Start\Programy\Web Button Maker Deluxe
2014-08-12 19:24 - 2014-08-12 19:25 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-08-04 20:47 - 2014-08-04 20:47 - 00000000 ____D () C:\Program Files\FFDec
2014-08-04 20:47 - 2014-08-04 20:47 - 00000000 ____D () C:\Documents and Settings\Stan\Data aplikací\JPEXS
2014-08-04 20:47 - 2014-08-04 20:47 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka

Start\Programy\JPEXS Free Flash Decompiler
2014-08-04 18:15 - 2014-08-04 18:16 - 00319488 _____ () C:\Documents and

Settings\Stan\Dokumenty\Authors1.accdb
2014-08-04 17:26 - 2014-08-04 17:26 - 00000303 _____ () C:\WINDOWS\ST6UNST.000
2014-07-30 17:29 - 2014-07-30 17:29 - 00000000 ____D () C:\Program Files\Firefox
2014-07-19 17:01 - 2001-08-17 18:20 - 00096256 ____C (Intel Corporation)

C:\WINDOWS\system32\dllcache\ac97intc.sys
2014-07-19 17:01 - 2001-08-17 18:20 - 00096256 _____ (Intel Corporation)

C:\WINDOWS\system32\Drivers\ac97intc.sys
2014-07-19 16:37 - 2014-07-19 16:37 - 00000000 ____D () C:\Documents and Settings\Stan\Plocha\Nepoužívané

odkazy plochy

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-18 19:35 - 2013-02-09 20:45 - 00000000 ____D () C:\Documents and Settings\Stan\Local Settings\Temp
2014-08-18 19:33 - 2014-08-18 19:32 - 00027668 _____ () C:\Documents and Settings\Stan\Plocha\FRST.txt
2014-08-18 19:32 - 2014-08-17 20:04 - 00000000 ____D () C:\FRST
2014-08-18 19:32 - 2013-02-09 20:45 - 00000000 ____D () C:\Documents and Settings\Stan\Plocha
2014-08-18 19:31 - 2014-08-18 19:31 - 00015327 _____ () C:\Documents and Settings\Stan\Plocha\LM.bat
2014-08-18 19:31 - 2014-08-17 20:05 - 00029696 _____ () C:\Documents and Settings\Stan\Local Settings\Data

aplikací\MSGBOX.EXE
2014-08-18 19:31 - 2013-02-09 20:45 - 00000000 ___HD () C:\Documents and Settings\Stan\Local Settings\Data

aplikací
2014-08-18 19:12 - 2002-01-01 07:09 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2014-08-18 19:11 - 2013-02-10 13:12 - 00000000 ___RD () C:\Documents and Settings\Stan\Dokumenty\Dropbox
2014-08-18 19:10 - 2014-08-17 21:03 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-08-18 19:10 - 2013-04-27 14:22 - 00000000 ____D () C:\Documents and Settings\Stan\Data aplikací\Dropbox
2014-08-18 19:09 - 2014-08-17 18:57 - 00005863 _____ () C:\WINDOWS\setupapi.log
2014-08-18 19:09 - 2013-11-03 21:19 - 01851952 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-18 19:08 - 2013-03-15 12:47 - 00000000 ____D () C:\Documents and Settings\All Users\Data

aplikací\TEMP
2014-08-18 19:08 - 2013-02-10 13:05 - 00382800 _____ () C:\WINDOWS\system32\oodbs.lor
2014-08-18 19:08 - 2013-02-09 20:36 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-08-18 19:08 - 2002-01-01 07:19 - 00000157 _____ () C:\WINDOWS\wiadebug.log
2014-08-18 19:08 - 2002-01-01 07:19 - 00000000 _____ () C:\WINDOWS\wiaservc.log
2014-08-17 21:52 - 2014-08-17 21:52 - 00000508 _____ () C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task

20babf9b-83c6-48a5-b8df-96eaec11a563.job
2014-08-17 21:28 - 2013-02-09 20:36 - 00032412 _____ () C:\WINDOWS\SchedLgU.Txt
2014-08-17 21:15 - 2013-02-09 20:50 - 00000000 ____D () C:\Documents and Settings\All Users\Plocha
2014-08-17 21:09 - 2014-08-17 21:09 - 00000000 ____D () C:\Documents and Settings\Stan\Data

aplikací\SUPERAntiSpyware.com
2014-08-17 21:09 - 2013-02-09 20:47 - 00000000 __RHD () C:\Documents and Settings\All Users\Data aplikací
2014-08-17 21:09 - 2013-02-09 20:45 - 00000000 __RHD () C:\Documents and Settings\Stan\Data aplikací
2014-08-17 21:07 - 2013-08-09 15:34 - 00000000 ____D () C:\Documents and Settings\Stan\Dokumenty\Stažené

soubory
2014-08-17 21:03 - 2014-08-17 21:03 - 00001691 _____ () C:\Documents and Settings\All

Users\Plocha\SUPERAntiSpyware Professional.lnk
2014-08-17 21:03 - 2014-08-17 21:03 - 00000000 ____D () C:\Documents and Settings\All Users\Data

aplikací\SUPERAntiSpyware.com
2014-08-17 21:03 - 2013-02-09 20:50 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka Start
2014-08-17 20:49 - 2014-08-17 20:46 - 00000000 ____D () C:\Avenger
2014-08-17 20:46 - 2014-08-17 20:46 - 00000886 _____ () C:\avenger.txt
2014-08-17 20:35 - 2014-08-17 20:35 - 00000733 _____ () C:\JRT.txt
2014-08-17 20:03 - 2014-08-17 20:02 - 01093632 _____ (Farbar) C:\Documents and Settings\Stan\Plocha\FRST.exe
2014-08-17 19:52 - 2014-08-17 19:52 - 00000000 ____D () C:\rsit
2014-08-17 19:52 - 2014-08-17 19:52 - 00000000 ____D () C:\Program Files\trend micro
2014-08-17 19:40 - 2002-01-01 06:36 - 00000193 ____H () C:\boot.ini
2014-08-17 19:35 - 2014-08-17 19:34 - 00004747 _____ () C:\AdwCleaner[S0].txt
2014-08-17 19:30 - 2014-08-17 19:04 - 00000000 ____D () C:\AdwCleaner
2014-08-17 19:30 - 2013-02-09 22:39 - 00000657 _____ () C:\Documents and Settings\All Users\Nabídka

Start\Programy\Opera.lnk
2014-08-17 19:30 - 2013-02-09 20:50 - 00000000 ___RD () C:\Documents and Settings\All Users\Nabídka

Start\Programy
2014-08-17 19:29 - 2013-02-09 20:45 - 00000000 ___RD () C:\Documents and Settings\Stan\Dokumenty
2014-08-17 19:29 - 2013-02-09 20:45 - 00000000 ____D () C:\Documents and Settings\Stan
2014-08-17 19:08 - 2013-02-11 21:30 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS\Data

aplikací
2014-08-17 18:56 - 2014-08-17 18:56 - 00312376 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-08-17 18:54 - 2013-02-09 22:42 - 00065536 _____ () C:\WINDOWS\system32\config\ODiag.evt
2014-08-17 18:54 - 2013-02-09 20:36 - 00065536 _____ () C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-08-17 18:54 - 2013-02-09 20:18 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2014-08-17 18:54 - 2013-02-09 20:03 - 00065536 _____ ()

C:\WINDOWS\system32\config\EventForwarding-Operational.Evt
2014-08-17 18:43 - 2014-08-17 18:43 - 01361671 _____ () C:\Documents and

Settings\Stan\Plocha\adwcleaner_3.307.exe
2014-08-17 18:43 - 2014-08-17 18:42 - 01016261 _____ (Thisisu) C:\Documents and Settings\Stan\Plocha\JRT.exe
2014-08-17 18:17 - 2013-03-15 12:48 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka

Start\Programy\CCleaner
2014-08-17 18:17 - 2013-03-01 23:26 - 00000000 ____D () C:\Program Files\CCleaner
2014-08-17 18:17 - 2013-02-11 20:41 - 00000695 _____ () C:\Documents and Settings\All

Users\Plocha\CCleaner.lnk
2014-08-16 19:15 - 2013-02-11 21:36 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-08-16 17:46 - 2002-01-01 07:16 - 00650296 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-08-16 17:39 - 2008-04-14 14:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-08-14 21:26 - 2013-02-09 20:45 - 00000178 ___SH () C:\Documents and Settings\Stan\ntuser.ini
2014-08-14 18:58 - 2013-11-03 15:44 - 00000000 ____D () C:\Program Files\TopStyle 5
2014-08-12 19:33 - 2014-08-12 19:33 - 00000000 ____D () C:\Documents and Settings\Stan\Local Settings\Data

aplikací\Xenocode
2014-08-12 19:30 - 2014-08-12 19:30 - 00000002 _____ () C:\WINDOWS\system32\krx240.dat
2014-08-12 19:30 - 2014-08-12 19:29 - 00000000 ____D () C:\Documents and Settings\Stan\Dokumenty\Web Button

Maker Deluxe
2014-08-12 19:29 - 2014-08-12 19:29 - 00000875 _____ () C:\Documents and Settings\Stan\Plocha\Web Button

Maker Deluxe.lnk
2014-08-12 19:29 - 2014-08-12 19:29 - 00000000 ____D () C:\Program Files\Web Button Maker Deluxe
2014-08-12 19:29 - 2014-08-12 19:29 - 00000000 ____D () C:\Documents and Settings\Stan\Nabídka

Start\Programy\Web Button Maker Deluxe
2014-08-12 19:29 - 2013-02-09 20:45 - 00000000 ___RD () C:\Documents and Settings\Stan\Nabídka Start\Programy
2014-08-12 19:25 - 2014-08-12 19:24 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-08-12 18:11 - 2013-02-09 20:45 - 00000000 ___RD () C:\Documents and Settings\Stan\Nabídka

Start\Programy\Po spuštění
2014-08-12 18:10 - 2013-04-27 14:24 - 00000000 ____D () C:\Documents and Settings\Stan\Nabídka

Start\Programy\Dropbox
2014-08-04 20:47 - 2014-08-04 20:47 - 00000000 ____D () C:\Program Files\FFDec
2014-08-04 20:47 - 2014-08-04 20:47 - 00000000 ____D () C:\Documents and Settings\Stan\Data aplikací\JPEXS
2014-08-04 20:47 - 2014-08-04 20:47 - 00000000 ____D () C:\Documents and Settings\All Users\Nabídka

Start\Programy\JPEXS Free Flash Decompiler
2014-08-04 18:16 - 2014-08-04 18:15 - 00319488 _____ () C:\Documents and

Settings\Stan\Dokumenty\Authors1.accdb
2014-08-04 17:26 - 2014-08-04 17:26 - 00000303 _____ () C:\WINDOWS\ST6UNST.000
2014-08-02 19:38 - 2013-02-10 13:08 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-07-30 17:29 - 2014-07-30 17:29 - 00000000 ____D () C:\Program Files\Firefox
2014-07-25 06:31 - 2013-02-10 23:42 - 00000000 ____D () C:\Documents and Settings\Stan\Data aplikací\Winamp
2014-07-19 19:22 - 2013-02-11 20:28 - 00000000 ____D () C:\Documents and Settings\Stan\Data aplikací\Skype
2014-07-19 16:37 - 2014-07-19 16:37 - 00000000 ____D () C:\Documents and Settings\Stan\Plocha\Nepoužívané

odkazy plochy

Some content of TEMP:
====================
C:\Documents and Settings\Stan\Local

Settings\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp88o_ck.dll
C:\Documents and Settings\Stan\Local Settings\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

#10 Příspěvek od **vyosek** » 19 srp 2014 15:13

Nejak se log spatne naformatoval, muzete prosim FRST.txt uploadnout sem http://leteckaposta.cz/

VIRY.CZ

Pomalý, pomalý, pomalejší

Pomalý, pomalý, pomalejší

Re: Pomalý, pomalý, pomalejší

Re: Pomalý, pomalý, pomalejší

Re: Pomalý, pomalý, pomalejší

Re: Pomalý, pomalý, pomalejší

Re: Pomalý, pomalý, pomalejší

Re: Pomalý, pomalý, pomalejší

Re: Pomalý, pomalý, pomalejší

Re: Pomalý, pomalý, pomalejší

Re: Pomalý, pomalý, pomalejší