Preventivní kontrola

Zpráva

Steve89 · #1 Příspěvek od **Steve89** » 07 zář 2014 22:18

Dobrý sen, prosím o preventivní kontrolu, děkuji.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Game at 2014-09-07 23:18:13
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 495 GB (53%) free of 938 GB
Total RAM: 8059 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:18:16, on 7.9.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\SupTab\HpUI.exe
C:\Program Files (x86)\SupTab\Loader32.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Game.StepDell\Downloads\RSIT.exe
C:\Program Files (x86)\trend micro\Game.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1 ... 1688541688
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1 ... 1688541688
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1 ... 1688541688
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds& ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds& ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1 ... 1688541688
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Game.StepDell\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [TornTv Downloader] C:\Users\Game.StepDell\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup
O4 - Startup: TornTvDownloader.lnk = Game.StepDell\AppData\Roaming\TornTV.com\Torntv Downloader.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) - Dell Products, LP. - c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IePlugin Services (IePluginServices) - Cherished Technololgy LIMITED - C:\ProgramData\IePluginServices\PluginService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - Fuyu LIMITED - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 14308 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20 328248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-09-26 426736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
IETabPage Class - C:\Program Files (x86)\SupTab\SupTab.dll [2014-09-07 515464]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-09-06 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-09-06 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2014-08-12 751184]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]
"Avira Systray"=C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [2014-08-04 161584]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-04-11 3672384]
"uTorrent"=C:\Users\Game.StepDell\AppData\Roaming\uTorrent\uTorrent.exe [2014-04-04 1264984]
"TornTv Downloader"=C:\Users\Game.StepDell\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup []

C:\Users\Game.StepDell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
TornTvDownloader.lnk - C:\Users\Game.StepDell\AppData\Roaming\TornTV.com\Torntv Downloader.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\SysWOW64\nvinit.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"msacm.l3codecp"=l3codecp.acm
"msacm.siren"=sirenacm.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux1"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux2"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-09-07 22:40:55 ----D---- C:\Users\Game.StepDell\AppData\Roaming\Opera Software
2014-09-07 22:40:49 ----D---- C:\Program Files (x86)\Opera
2014-09-07 22:40:13 ----D---- C:\ProgramData\IePluginServices
2014-09-07 22:40:10 ----D---- C:\ProgramData\WindowsMangerProtect
2014-09-07 22:40:08 ----D---- C:\Program Files (x86)\SupTab
2014-09-07 15:37:49 ----D---- C:\Users\Game.StepDell\AppData\Roaming\Steam
2014-09-06 17:53:18 ----D---- C:\Users\Game.StepDell\AppData\Roaming\Tropico 5
2014-09-06 17:47:37 ----D---- C:\Program Files (x86)\Tropico 5
2014-09-06 00:43:19 ----A---- C:\Windows\SysWOW64\infocardapi.dll
2014-09-06 00:43:19 ----A---- C:\Windows\SysWOW64\icardagt.exe
2014-09-06 00:43:17 ----A---- C:\Windows\SysWOW64\icardres.dll
2014-09-06 00:42:49 ----A---- C:\Windows\SysWOW64\TsWpfWrp.exe
2014-09-06 00:41:55 ----A---- C:\Windows\SysWOW64\gdi32.dll
2014-09-06 00:41:27 ----A---- C:\Windows\SysWOW64\msxml6.dll
2014-09-06 00:41:26 ----A---- C:\Windows\SysWOW64\msxml6r.dll
2014-09-06 00:41:26 ----A---- C:\Windows\SysWOW64\msxml3r.dll
2014-09-06 00:41:26 ----A---- C:\Windows\SysWOW64\msxml3.dll
2014-09-06 00:41:21 ----A---- C:\Windows\SysWOW64\rpcrt4.dll
2014-09-06 00:41:20 ----A---- C:\Windows\SysWOW64\qedit.dll
2014-09-06 00:41:17 ----A---- C:\Windows\SysWOW64\usp10.dll
2014-09-06 00:41:10 ----A---- C:\Windows\SysWOW64\wdigest.dll
2014-09-06 00:41:10 ----A---- C:\Windows\SysWOW64\TSpkg.dll
2014-09-06 00:41:10 ----A---- C:\Windows\SysWOW64\schannel.dll
2014-09-06 00:41:10 ----A---- C:\Windows\SysWOW64\ncrypt.dll
2014-09-06 00:41:10 ----A---- C:\Windows\SysWOW64\msv1_0.dll
2014-09-06 00:41:10 ----A---- C:\Windows\SysWOW64\kerberos.dll
2014-09-06 00:41:09 ----A---- C:\Windows\SysWOW64\credssp.dll
2014-09-06 00:40:51 ----A---- C:\Windows\SysWOW64\osk.exe
2014-09-06 00:40:46 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2014-09-06 00:40:46 ----A---- C:\Windows\SysWOW64\jscript9diag.dll
2014-09-06 00:40:46 ----A---- C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-06 00:40:45 ----A---- C:\Windows\SysWOW64\iernonce.dll
2014-09-06 00:40:44 ----A---- C:\Windows\SysWOW64\urlmon.dll
2014-09-06 00:40:44 ----A---- C:\Windows\SysWOW64\mshtml.dll
2014-09-06 00:40:44 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2014-09-06 00:40:44 ----A---- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-06 00:40:44 ----A---- C:\Windows\SysWOW64\dxtmsft.dll
2014-09-06 00:40:41 ----A---- C:\Windows\SysWOW64\iesetup.dll
2014-09-06 00:40:40 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2014-09-06 00:40:37 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2014-09-06 00:40:37 ----A---- C:\Windows\SysWOW64\iertutil.dll
2014-09-06 00:40:36 ----A---- C:\Windows\SysWOW64\ieui.dll
2014-09-06 00:40:36 ----A---- C:\Windows\SysWOW64\ieframe.dll
2014-09-06 00:40:36 ----A---- C:\Windows\SysWOW64\dxtrans.dll
2014-09-06 00:40:32 ----A---- C:\Windows\SysWOW64\wininet.dll
2014-09-06 00:40:32 ----A---- C:\Windows\SysWOW64\vbscript.dll
2014-09-06 00:40:32 ----A---- C:\Windows\SysWOW64\msrating.dll
2014-09-06 00:40:32 ----A---- C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-06 00:40:32 ----A---- C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-06 00:40:32 ----A---- C:\Windows\SysWOW64\jscript9.dll
2014-09-06 00:40:32 ----A---- C:\Windows\SysWOW64\ieUnatt.exe
2014-09-06 00:40:32 ----A---- C:\Windows\SysWOW64\ieapfltr.dll
2014-09-06 00:40:10 ----A---- C:\Windows\SysWOW64\msihnd.dll
2014-09-06 00:40:10 ----A---- C:\Windows\SysWOW64\msi.dll
2014-09-06 00:40:10 ----A---- C:\Windows\SysWOW64\authui.dll
2014-09-06 00:39:55 ----A---- C:\Windows\SysWOW64\tzres.dll
2014-09-06 00:39:45 ----A---- C:\Windows\SysWOW64\sspicli.dll
2014-09-06 00:39:45 ----A---- C:\Windows\SysWOW64\secur32.dll
2014-09-06 00:38:30 ----A---- C:\Windows\SysWOW64\shell32.dll
2014-09-06 00:32:08 ----D---- C:\Program Files (x86)\Common Files\Java
2014-09-06 00:31:31 ----A---- C:\Windows\SysWOW64\javaws.exe
2014-09-06 00:30:45 ----A---- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-09-06 00:30:45 ----A---- C:\Windows\SysWOW64\javaw.exe
2014-09-06 00:30:45 ----A---- C:\Windows\SysWOW64\java.exe
2014-08-12 11:37:24 ----D---- C:\ProgramData\Package Cache

======List of files/folders modified in the last 1 month======

2014-09-07 23:18:14 ----D---- C:\Windows\temp
2014-09-07 23:18:14 ----D---- C:\Program Files (x86)\trend micro
2014-09-07 22:59:39 ----D---- C:\Games
2014-09-07 22:43:07 ----RD---- C:\Program Files (x86)
2014-09-07 22:40:13 ----D---- C:\ProgramData
2014-09-07 22:40:05 ----D---- C:\Users\Game.StepDell\AppData\Roaming\uTorrent
2014-09-07 22:39:54 ----D---- C:\Windows\Prefetch
2014-09-07 22:18:45 ----D---- C:\Users\Game.StepDell\AppData\Roaming\vlc
2014-09-07 21:57:04 ----D---- C:\Windows\System32
2014-09-07 21:57:04 ----D---- C:\Windows\inf
2014-09-07 21:06:18 ----SHD---- C:\Windows\Installer
2014-09-07 21:05:26 ----RSD---- C:\Windows\assembly
2014-09-07 21:04:41 ----SHD---- C:\System Volume Information
2014-09-07 18:15:35 ----D---- C:\Windows
2014-09-07 18:14:30 ----HD---- C:\Config.Msi
2014-09-07 18:13:20 ----D---- C:\Windows\SysWOW64
2014-09-07 15:28:32 ----D---- C:\Program Files (x86)\MSI Afterburner
2014-09-06 17:56:21 ----D---- C:\Windows\Logs
2014-09-06 17:47:08 ----D---- C:\Users\Game.StepDell\AppData\Roaming\DAEMON Tools Lite
2014-09-06 15:20:01 ----D---- C:\Windows\rescache
2014-09-06 14:16:18 ----D---- C:\Program Files (x86)\Common Files\Steam
2014-09-06 11:31:15 ----D---- C:\Windows\Microsoft.NET
2014-09-06 10:55:26 ----D---- C:\Program Files (x86)\Avira
2014-09-06 01:11:51 ----A---- C:\Windows\SysWOW64\log.txt
2014-09-06 01:10:21 ----D---- C:\Program Files (x86)\Dell DataSafe Local Backup
2014-09-06 01:07:00 ----D---- C:\Windows\winsxs
2014-09-06 01:05:13 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-09-06 01:03:42 ----D---- C:\Windows\SysWOW64\cs-CZ
2014-09-06 01:03:42 ----D---- C:\Windows\ehome
2014-09-06 01:03:29 ----D---- C:\Windows\SysWOW64\Dism
2014-09-06 01:03:25 ----D---- C:\Windows\SysWOW64\en-US
2014-09-06 01:03:25 ----D---- C:\Windows\PolicyDefinitions
2014-09-06 01:03:24 ----D---- C:\Program Files (x86)\Internet Explorer
2014-09-06 01:00:57 ----D---- C:\Windows\debug
2014-09-06 00:32:12 ----D---- C:\ProgramData\Oracle
2014-09-06 00:32:08 ----D---- C:\Program Files (x86)\Common Files
2014-09-06 00:30:20 ----D---- C:\Program Files (x86)\Java
2014-09-06 00:24:15 ----D---- C:\ProgramData\Origin
2014-09-02 20:40:22 ----D---- C:\Program Files (x86)\Origin
2014-08-12 11:37:29 ----D---- C:\ProgramData\Avira
2014-08-09 02:22:16 ----A---- C:\Windows\SysWOW64\nvspcap.dll
2014-08-09 02:22:16 ----A---- C:\Windows\SysWOW64\nvspbridge.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys []
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\drivers\iusb3hcs.sys []
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys []
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys []
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys []
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys []
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys []
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter; C:\Windows\system32\DRIVERS\AMPPAL.sys []
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64; C:\Windows\system32\DRIVERS\Apfiltr.sys []
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys []
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys []
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys []
R3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys []
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys []
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys []
R3 ibtfltcoex;ibtfltcoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys []
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys []
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys []
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys []
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys []
R3 iwdbus;IWD Bus Enumerator; C:\Windows\system32\DRIVERS\iwdbus.sys []
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys []
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys []
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-08-09 20440]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys []
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys []
R3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2014-06-10 13480]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys []
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys []
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys []
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys []
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys []
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys []
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys []
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys []
S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\Windows\system32\drivers\nvstusb.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys []
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys []
S3 tap0901;TAP-Win32 Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys []
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys []
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys []
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-01-09 659968]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2014-08-12 430160]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2014-08-12 430160]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-02-12 43336]
R2 Avira.OE.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [2014-08-04 149296]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-01-17 135952]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-03-29 626960]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-02-01 13592]
R2 IePluginServices;IePlugin Services; C:\ProgramData\IePluginServices\PluginService.exe [2014-09-07 715656]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-01-11 627936]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-01-20 277784]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-08-09 1720792]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-08-09 18973144]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-03-29 148752]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2012-02-16 1695040]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2012-02-14 313856]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-01-20 363800]
R2 WindowsMangerProtect;WindowsMangerProtect Service; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [2014-09-07 528896]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 DellDigitalDelivery;Dell Digital Delivery Service; c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2012-04-10 166912]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-11 136176]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-04-05 276248]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-11 136176]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe /V []
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-03-09 50921648]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-03-29 273168]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-08-28 833728]
S3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-15 257712]
S4 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2014-08-12 1021520]
S4 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-01-12 1014096]
S4 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-01-12 1304912]
S4 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-01-12 1104208]
S4 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
S4 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-02-21 641352]
S4 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NOBU;Dell DataSafe Online; C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe [2010-08-26 2823000]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 07 zář 2014 22:27

Zdravim

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Steve89 · #3 Příspěvek od **Steve89** » 07 zář 2014 23:22

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Game on po 08.09.2014 at 0:01:26,73
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\1clickdownload
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\features\a28b4d68debaa244eb686953b7074fef
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\products\a28b4d68debaa244eb686953b7074fef
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskToolbar_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\AskToolbar_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskToolbar_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\AskToolbar_RASMANCS

~~~ Files

~~~ Folders

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 08.09.2014 at 0:07:49,26
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

# AdwCleaner v3.309 - Report created 08/09/2014 at 00:12:57
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Game - STEPDELL
# Running from : C:\Users\Game.StepDell\Desktop\adwcleaner_3.309.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : IePluginServices
Service Deleted : WindowsMangerProtect

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\IePluginServices
Folder Deleted : C:\ProgramData\WindowsMangerProtect
Folder Deleted : C:\Program Files (x86)\SupTab
Folder Deleted : C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}

***** [ Scheduled Tasks ] *****

Task Deleted : Scheduled Update for Ask Toolbar

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Game.StepDell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\Game.StepDell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\Game.StepDell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

***** [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Torntv Downloader]
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Key Deleted : HKCU\Software\SupHpUISoft
Key Deleted : HKLM\SOFTWARE\istartsurfSoftware
Key Deleted : HKLM\SOFTWARE\SupDp
Key Deleted : HKLM\SOFTWARE\SupTab
Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\supWPM
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Google Chrome v37.0.2062.103

*************************

AdwCleaner[R0].txt - [2714 octets] - [25/09/2013 10:00:06]
AdwCleaner[R1].txt - [8663 octets] - [08/09/2014 00:11:53]
AdwCleaner[S0].txt - [2788 octets] - [25/09/2013 10:01:33]
AdwCleaner[S1].txt - [6506 octets] - [08/09/2014 00:12:57]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [6566 octets] ##########

#4 Příspěvek od **vyosek** » 08 zář 2014 00:20

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Steve89 · #5 Příspěvek od **Steve89** » 08 zář 2014 10:42

Zoek.exe v5.0.0.0 Updated 04-August-2014
Tool run by Game on po 08.09.2014 at 11:15:37,19.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Game.StepDell\Desktop\zoek.scr [Scan all users] [Script inserted]

==== System Restore Info ======================

8.9.2014 11:17:27 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3973457392-1235821605-1250522722-1007\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\PROGRA~2\SopCast deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Game.StepDell\Searches deleted
C:\Users\Game.StepDell\AppData\LocalLow\AskToolbar deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [04.12.2012 23:28]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [04.12.2012 23:28]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
flliilndjeohchalpbbcdekjklbdgfkk - No path found[]
jfmjfhklogoienhpfnppmbcbjfjnkonk - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx[26.09.2012 20:50]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
ochbjojkpcmlfeagbaahkofepalngihg - C:\Users\Game.StepDell\AppData\Roaming\TorrentStream\extensions\chrome\magicplayer.crx[19.07.2013 17:30]

RealPlayer HTML5Video Downloader Extension - Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk
TS Magic Player - Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ochbjojkpcmlfeagbaahkofepalngihg

==== Chromium Startpages ======================

C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://seznam.cz/",
"startup_urls": [ "http://www.istartsurf.com/?type=hp&ts=1 ... 1688541688" ],

==== Chrome Fix ======================

C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx deleted successfully
C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma deleted successfully
C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pelmeidfhdlhlbjimpabfcbnnojbboma_0.localstorage deleted successfully
C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pelmeidfhdlhlbjimpabfcbnnojbboma_0.localstorage-journal deleted successfully
C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com"
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{59987306-1E47-487B-908C-5FA14B1781BA} Google Url="http://www.google.com/search?q={searchT ... GB_csCZ509"

==== Reset Google Chrome ======================

C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcui_exe deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Stage Remote deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Game.StepDell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Game.StepDell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Game_2\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Game_2.StepDell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=269 folders=109 34699790 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\game\AppData\Local\temp emptied successfully
C:\Users\Game.StepDell\AppData\Local\Temp will be emptied at reboot
C:\Users\Game_2\AppData\Local\temp emptied successfully
C:\Users\Game_2.StepDell\AppData\Local\temp emptied successfully
C:\Users\Mondice\AppData\Local\temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\GAME~1.STE\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on po 08.09.2014 at 11:36:10,35 ======================

#6 Příspěvek od **vyosek** » 08 zář 2014 15:12

Dejte log z FRST http://forum.viry.cz/viewtopic.php?f=30&t=133101

Steve89 · #7 Příspěvek od **Steve89** » 08 zář 2014 18:14

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-09-2014 01
Ran by Game (administrator) on STEPDELL on 08-09-2014 19:10:26
Running from C:\Users\Game.StepDell\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403288 2014-08-09] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-12] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [161584 2014-08-04] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3973457392-1235821605-1250522722-1007\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [166568 2014-07-02] (NVIDIA Corporation)
AppInit_DLLs: ,C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [166568 2014-07-02] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146480 2014-07-02] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=15.0.6.14 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprjplug;version=15.0.6.14 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=15.0.6.14 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @torrentstream.net/tsplugin,version=1.0.6 -> C:\Users\Game.StepDell\AppData\Roaming\TorrentStream\player\npts.dll (The Torrent Stream and VideoLAN and Delft University of Technology)
FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF HKLM-x32\...\Firefox\Extensions: [{0153E448-190B-4987-BDE1-F256CADA672F}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-09-26]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-12-04]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Users\Game.StepDell\AppData\Roaming\TorrentStream\extensions\firefox\magicplayer@torrentstream.org
FF Extension: TS Magic Player - C:\Users\Game.StepDell\AppData\Roaming\TorrentStream\extensions\firefox\magicplayer@torrentstream.org [2012-10-04]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:
=======
CHR HomePage: Default -> 3418267C6E7722082C56D8C2B7A3890325E8EBB83BFE5BAFF3628BA268FF31A6
CHR DefaultSearchKeyword: Default -> 2F13D9984283DA2718C80ABD47B8D6CC3C84B3222A4AB0A76B8367241AA3BD1D
CHR DefaultSearchURL: Default -> C8BC06AA4C1E79B2EEA94317B684F448F47F2297845FB571C559596FA1C7F954
CHR Profile: C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-08]
CHR Extension: (Dokumenty Google) - C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-08]
CHR Extension: (Disk Google) - C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-08]
CHR Extension: (James White) - C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkeidgmehkdjmpjodpjkepolokanalkm [2014-09-07]
CHR Extension: (YouTube) - C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-08]
CHR Extension: (Vyhledávání Google) - C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-08]
CHR Extension: (Tabulky Google) - C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-08]
CHR Extension: (Peněženka Google) - C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-27]
CHR Extension: (TS Magic Player) - C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ochbjojkpcmlfeagbaahkofepalngihg [2012-11-11]
CHR Extension: (Quick start) - C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma [2014-09-08]
CHR Extension: (Gmail) - C:\Users\Game.StepDell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-08]
CHR HKCU\...\Chrome\Extension: [ochbjojkpcmlfeagbaahkofepalngihg] - C:\Users\Game.StepDell\AppData\Roaming\TorrentStream\extensions\chrome\magicplayer.crx [2013-07-24]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-08-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-12] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1021520 2014-08-12] (Avira Operations GmbH & Co. KG)
S2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [149296 2014-08-04] (Avira Operations GmbH & Co. KG)
S2 DellDigitalDelivery; c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [166912 2012-04-10] (Dell Products, LP.) [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2012-03-29] ()
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720792 2014-08-09] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18973144 2014-08-09] (NVIDIA Corporation)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [File not signed]
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2669840 2012-03-29] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-07-04] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-22] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-06] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [42040 2014-07-15] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-08-21] (DT Soft Ltd)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20440 2014-08-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-08 19:10 - 2014-09-08 19:11 - 00018745 _____ () C:\Users\Game.StepDell\Desktop\FRST.txt
2014-09-08 19:10 - 2014-09-08 19:10 - 00000000 ____D () C:\FRST
2014-09-08 19:09 - 2014-09-08 19:07 - 00112640 _____ () C:\Users\Game.StepDell\Desktop\FRSTLauncher.exe
2014-09-08 19:03 - 2014-09-08 19:03 - 00112640 _____ (forum.viry.cz) C:\Users\Game.StepDell\Downloads\Nepotvrzeno 215678.crdownload
2014-09-08 18:57 - 2014-09-08 18:57 - 00000786 _____ () C:\Users\Game.StepDell\Desktop\TSEV Skyrim LE.lnk
2014-09-08 18:57 - 2014-09-08 18:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TSEV Skyrim LE
2014-09-08 18:49 - 2014-09-08 18:48 - 02105344 _____ (Farbar) C:\Users\Game.StepDell\Desktop\FRST64.exe
2014-09-08 18:47 - 2014-09-08 18:48 - 02105344 _____ (Farbar) C:\Users\Game.StepDell\Downloads\FRST64.exe
2014-09-08 13:29 - 2014-09-08 13:29 - 00000000 ____D () C:\Users\Game.StepDell\Documents\Larian Studios
2014-09-08 11:51 - 2014-09-08 11:51 - 00000741 _____ () C:\Users\Public\Desktop\Divinity Original Sin.lnk
2014-09-08 11:31 - 2014-02-13 23:59 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-08 11:17 - 2014-09-08 11:36 - 00009459 _____ () C:\zoek-results.log
2014-09-08 11:16 - 2014-09-08 11:16 - 00003138 _____ () C:\Windows\System32\Tasks\{8ECFAB18-1E97-4652-A3C3-8C0EB0FF52DF}
2014-09-08 11:16 - 2014-09-08 11:16 - 00003138 _____ () C:\Windows\System32\Tasks\{797C11D2-8234-4232-BEB8-3452B199A010}
2014-09-08 11:15 - 2014-09-08 11:29 - 00000000 ____D () C:\zoek_backup
2014-09-08 11:15 - 2014-08-09 15:52 - 01419472 _____ () C:\Users\Game.StepDell\Desktop\zoek.com
2014-09-08 11:15 - 2014-07-14 15:11 - 01417360 _____ () C:\Users\Game.StepDell\Desktop\zoek.scr
2014-09-08 11:15 - 2014-07-14 15:11 - 01417360 _____ () C:\Users\Game.StepDell\Desktop\zoek.pif
2014-09-08 11:14 - 2014-09-08 11:14 - 00002942 _____ () C:\Windows\System32\Tasks\{15358164-A539-4B1C-81E9-5747346185F1}
2014-09-08 11:13 - 2014-09-08 11:13 - 00002942 _____ () C:\Windows\System32\Tasks\{BD727892-8A4A-412C-B583-2008E1DEE4C3}
2014-09-08 00:12 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-09-08 00:01 - 2014-09-08 00:01 - 00000000 ____D () C:\Windows\ERUNT
2014-09-08 00:00 - 2014-09-08 00:00 - 01370467 _____ () C:\Users\Game.StepDell\Desktop\adwcleaner_3.309.exe
2014-09-08 00:00 - 2014-09-08 00:00 - 01016261 _____ (Thisisu) C:\Users\Game.StepDell\Desktop\JRT.exe
2014-09-07 22:42 - 2014-09-07 22:42 - 00000000 __SHD () C:\Users\Game.StepDell\AppData\Local\EmieUserList
2014-09-07 22:42 - 2014-09-07 22:42 - 00000000 __SHD () C:\Users\Game.StepDell\AppData\Local\EmieSiteList
2014-09-07 22:40 - 2014-09-07 22:42 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-09-07 22:40 - 2014-09-07 22:40 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Roaming\Opera Software
2014-09-07 22:40 - 2014-09-07 22:40 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Local\Opera Software
2014-09-07 22:26 - 2014-09-08 00:35 - 00000000 ____D () C:\Users\Game.StepDell\Documents\Paradox Interactive
2014-09-07 18:35 - 2014-09-07 18:35 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Local\4A Games
2014-09-07 18:15 - 2014-09-07 21:05 - 00037326 _____ () C:\Windows\DirectX.log
2014-09-07 15:37 - 2014-09-07 15:37 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Roaming\Steam
2014-09-06 17:53 - 2014-09-06 19:10 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Roaming\Tropico 5
2014-09-06 17:47 - 2014-09-07 16:17 - 00000000 ____D () C:\Program Files (x86)\Tropico 5
2014-09-06 10:55 - 2014-09-06 10:55 - 00001135 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-09-06 01:05 - 2014-09-08 13:55 - 00001055 _____ () C:\Windows\setupact.log
2014-09-06 01:05 - 2014-09-08 11:34 - 00003484 _____ () C:\Windows\PFRO.log
2014-09-06 01:05 - 2014-09-06 01:05 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-06 00:43 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-09-06 00:43 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-09-06 00:43 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-09-06 00:43 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-09-06 00:43 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-09-06 00:43 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-09-06 00:42 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-09-06 00:42 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-09-06 00:41 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-09-06 00:41 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-09-06 00:41 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-09-06 00:41 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-09-06 00:41 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-09-06 00:41 - 2014-06-06 12:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-09-06 00:41 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-09-06 00:41 - 2014-05-30 10:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-06 00:41 - 2014-05-30 10:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-09-06 00:41 - 2014-05-30 10:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-09-06 00:41 - 2014-05-30 10:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-09-06 00:41 - 2014-05-30 10:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-09-06 00:41 - 2014-05-30 10:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-09-06 00:41 - 2014-05-30 10:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-09-06 00:41 - 2014-05-30 09:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-06 00:41 - 2014-05-30 09:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-09-06 00:41 - 2014-05-30 09:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-09-06 00:41 - 2014-05-30 09:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-09-06 00:41 - 2014-05-30 09:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-09-06 00:41 - 2014-05-30 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-09-06 00:41 - 2014-05-30 09:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-09-06 00:41 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-09-06 00:41 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-09-06 00:41 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-09-06 00:41 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-09-06 00:41 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-09-06 00:41 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-09-06 00:41 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-09-06 00:41 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-09-06 00:41 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-09-06 00:41 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-09-06 00:41 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-09-06 00:41 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-09-06 00:40 - 2014-08-01 01:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-06 00:40 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-06 00:40 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-06 00:40 - 2014-07-25 16:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-06 00:40 - 2014-07-25 16:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-06 00:40 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-06 00:40 - 2014-07-25 15:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-06 00:40 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-06 00:40 - 2014-07-25 15:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-06 00:40 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-06 00:40 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-06 00:40 - 2014-07-25 15:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-06 00:40 - 2014-07-25 15:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-06 00:40 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-06 00:40 - 2014-07-25 15:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-06 00:40 - 2014-07-25 15:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-06 00:40 - 2014-07-25 15:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-06 00:40 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-06 00:40 - 2014-07-25 14:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-06 00:40 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-06 00:40 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-06 00:40 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-06 00:40 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-06 00:40 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-06 00:40 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-06 00:40 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-06 00:40 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-06 00:40 - 2014-07-25 14:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-06 00:40 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-06 00:40 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-06 00:40 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-06 00:40 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-06 00:40 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-06 00:40 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-06 00:40 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-06 00:40 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-06 00:40 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-06 00:40 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-06 00:40 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-06 00:40 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-06 00:40 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-06 00:40 - 2014-07-25 13:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-06 00:40 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-06 00:40 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-06 00:40 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-06 00:40 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-06 00:40 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-06 00:40 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-06 00:40 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-06 00:40 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-06 00:40 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-06 00:40 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-06 00:40 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-06 00:40 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-06 00:40 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-06 00:40 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-06 00:40 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-09-06 00:40 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-09-06 00:40 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-09-06 00:40 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-09-06 00:40 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-09-06 00:40 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-09-06 00:40 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-09-06 00:40 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-09-06 00:40 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-09-06 00:39 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-06 00:39 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-09-06 00:39 - 2014-06-05 16:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-06 00:39 - 2014-06-05 16:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-06 00:39 - 2014-06-05 16:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-06 00:39 - 2014-05-30 08:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-09-06 00:38 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-09-06 00:38 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-09-06 00:38 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-09-06 00:38 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-09-06 00:38 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-09-06 00:31 - 2014-09-06 00:30 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-09-06 00:30 - 2014-09-06 00:30 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-09-06 00:30 - 2014-09-06 00:30 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-09-06 00:30 - 2014-09-06 00:30 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-31 20:06 - 2014-08-31 21:10 - 1448073216 _____ () C:\Users\Game.StepDell\Downloads\3-10 vlak do Yumy.avi.crdownload
2014-08-29 19:51 - 2014-08-29 20:07 - 1066954752 _____ () C:\Users\Game.StepDell\Downloads\Non-Stop (2014) CZ.avi
2014-08-29 19:46 - 2014-08-29 20:01 - 1355995136 _____ () C:\Users\Game.StepDell\Downloads\Captain America- Návrat prvního Avengera (2014) Novinka CZ dabing Akční Dobrodružný Sci-Fi výborná kvalita.avi
2014-08-28 10:53 - 2014-08-28 10:54 - 02486838 _____ () C:\Users\Game.StepDell\Downloads\Žádost o změnu odběrové místo 8110659159 strana 2.jpeg
2014-08-28 10:53 - 2014-08-28 10:54 - 02440255 _____ () C:\Users\Game.StepDell\Downloads\Žádost o změnu odběrové místo 8110659146 strana 2.jpeg
2014-08-28 10:53 - 2014-08-28 10:54 - 02423057 _____ () C:\Users\Game.StepDell\Downloads\Žádost o změnu odběrové místo 8110659159 strana 1.jpeg
2014-08-28 10:53 - 2014-08-28 10:54 - 02302495 _____ () C:\Users\Game.StepDell\Downloads\Žádost o změnu odběrové místo 8110659146 strana 1.jpeg
2014-08-19 18:22 - 2014-08-27 11:57 - 02340700 _____ () C:\Users\Game.StepDell\Downloads\TP AUDI A3 9A22317 (1).jpeg
2014-08-19 18:22 - 2014-08-19 18:22 - 02346937 _____ () C:\Users\Game.StepDell\Downloads\TP AUDI A3 9A22317 (2).jpeg
2014-08-19 17:08 - 2014-08-19 17:12 - 03238257 _____ () C:\Users\Game.StepDell\Downloads\Štěpán Havelka ČKP.jpeg
2014-08-18 22:41 - 2014-08-18 22:41 - 01058200 _____ (Adobe) C:\Users\Game.StepDell\Downloads\install_flashplayer14x32au_mssa_aaa_aih.exe
2014-08-17 19:21 - 2014-08-17 19:35 - 1009604608 _____ () C:\Users\Game.StepDell\Downloads\Památkáři 2014 Drama cz.avi
2014-08-16 21:14 - 2014-08-16 21:25 - 2163570936 _____ () C:\Users\Game.StepDell\Downloads\Poslední pokušení Krista =1988-Drama-DVD-CZ.avi.crdownload
2014-08-16 18:50 - 2014-08-16 18:50 - 02363500 _____ () C:\Users\Game.StepDell\Downloads\image (3).jpeg
2014-08-16 18:39 - 2014-08-16 18:39 - 01521914 _____ () C:\Users\Game.StepDell\Downloads\Žádost o splátkový kalendář - Štěpán Havelka.bmp
2014-08-15 12:06 - 2014-08-15 12:06 - 02186837 _____ () C:\Users\Game.StepDell\Downloads\image.jpeg
2014-08-15 12:06 - 2014-08-15 12:06 - 02090398 _____ () C:\Users\Game.StepDell\Downloads\image (2).jpeg
2014-08-15 12:06 - 2014-08-15 12:06 - 01928376 _____ () C:\Users\Game.StepDell\Downloads\image (1).jpeg
2014-08-11 13:49 - 2014-08-11 13:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Playback Software
2014-08-11 11:00 - 2014-08-11 11:04 - 325026097 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E10.HDTV.x264-LOL.mp4
2014-08-11 11:00 - 2014-08-11 11:00 - 00051642 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E09.HDTV.x264-LOL.srt
2014-08-11 11:00 - 2014-08-11 11:00 - 00042021 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E10.HDTV.x264-LOL.srt
2014-08-11 10:59 - 2014-08-11 11:04 - 312192009 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E09.HDTV.x264-LOL.mp4
2014-08-11 10:58 - 2014-08-11 11:02 - 271892148 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E08.HDTV.x264-LOL.mp4
2014-08-11 10:58 - 2014-08-11 11:00 - 244936032 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E07.HDTV.x264-LOL.mp4
2014-08-11 10:58 - 2014-08-11 10:58 - 00052652 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E08.HDTV.x264-LOL.srt
2014-08-11 10:58 - 2014-08-11 10:58 - 00046467 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E07.HDTV.x264-LOL.srt
2014-08-10 22:37 - 2014-08-10 22:37 - 00031871 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E06.HDTV.x264-LOL.srt
2014-08-10 22:32 - 2014-08-10 22:35 - 321154949 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E06.HDTV.x264-LOL.mp4
2014-08-10 20:09 - 2014-08-10 20:10 - 213388137 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E05.HDTV.x264-LOL.mp4
2014-08-10 20:09 - 2014-08-10 20:09 - 00049572 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E05.HDTV.x264-LOL.srt
2014-08-10 20:06 - 2014-08-10 20:06 - 00047260 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E04.HDTV.x264-2HD.srt
2014-08-10 20:05 - 2014-08-10 20:07 - 374859637 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E04.HDTV.x264-2HD.mp4
2014-08-10 19:00 - 2014-08-10 19:02 - 373580692 _____ () C:\Users\Game.StepDell\Downloads\Fargo-s01e03_cz-titulky.mp4.crdownload
2014-08-10 11:00 - 2014-08-10 11:00 - 00000000 ____D () C:\Users\Game.StepDell\Downloads\Fargo-S01E02(0000235621)
2014-08-10 11:00 - 2014-08-10 10:59 - 00052217 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E02.HDTV.x264-2HD.srt
2014-08-10 10:59 - 2014-08-10 10:59 - 00021629 _____ () C:\Users\Game.StepDell\Downloads\Fargo-S01E02(0000235621).zip
2014-08-10 09:04 - 2014-08-10 09:08 - 310748596 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E02.HDTV.x264-2HD.mp4
2014-08-10 09:03 - 2014-08-10 09:12 - 535629496 _____ () C:\Users\Game.StepDell\Downloads\Fargo-s01e01_cz-titulky.mp4

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-08 19:11 - 2014-09-08 19:10 - 00018745 _____ () C:\Users\Game.StepDell\Desktop\FRST.txt
2014-09-08 19:10 - 2014-09-08 19:10 - 00000000 ____D () C:\FRST
2014-09-08 19:07 - 2014-09-08 19:09 - 00112640 _____ () C:\Users\Game.StepDell\Desktop\FRSTLauncher.exe
2014-09-08 19:03 - 2014-09-08 19:03 - 00112640 _____ (forum.viry.cz) C:\Users\Game.StepDell\Downloads\Nepotvrzeno 215678.crdownload
2014-09-08 19:00 - 2012-07-16 18:37 - 01764466 _____ () C:\Windows\WindowsUpdate.log
2014-09-08 18:57 - 2014-09-08 18:57 - 00000786 _____ () C:\Users\Game.StepDell\Desktop\TSEV Skyrim LE.lnk
2014-09-08 18:57 - 2014-09-08 18:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TSEV Skyrim LE
2014-09-08 18:52 - 2012-09-28 16:55 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Roaming\vlc
2014-09-08 18:48 - 2014-09-08 18:49 - 02105344 _____ (Farbar) C:\Users\Game.StepDell\Desktop\FRST64.exe
2014-09-08 18:48 - 2014-09-08 18:47 - 02105344 _____ (Farbar) C:\Users\Game.StepDell\Downloads\FRST64.exe
2014-09-08 18:46 - 2012-08-21 14:36 - 00000000 ____D () C:\Games
2014-09-08 18:32 - 2013-02-06 18:08 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-08 18:27 - 2012-07-16 16:46 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-08 18:02 - 2012-08-22 14:44 - 00000000 ____D () C:\ProgramData\Origin
2014-09-08 18:01 - 2012-08-22 14:44 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-09-08 16:07 - 2011-03-02 09:38 - 00669116 _____ () C:\Windows\system32\perfh005.dat
2014-09-08 16:07 - 2011-03-02 09:38 - 00141744 _____ () C:\Windows\system32\perfc005.dat
2014-09-08 16:07 - 2009-07-14 07:13 - 01584554 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-08 16:05 - 2012-11-20 00:24 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Local\Deployment
2014-09-08 14:03 - 2009-07-14 06:45 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-08 14:03 - 2009-07-14 06:45 - 00021296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-08 13:57 - 2014-08-02 17:09 - 00003020 _____ () C:\Windows\System32\Tasks\MSIAfterburner
2014-09-08 13:55 - 2014-09-06 01:05 - 00001055 _____ () C:\Windows\setupact.log
2014-09-08 13:55 - 2012-07-16 17:12 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
2014-09-08 13:54 - 2013-02-06 18:08 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-08 13:54 - 2012-07-16 17:25 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-09-08 13:54 - 2012-07-16 17:25 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-09-08 13:53 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-08 13:29 - 2014-09-08 13:29 - 00000000 ____D () C:\Users\Game.StepDell\Documents\Larian Studios
2014-09-08 11:51 - 2014-09-08 11:51 - 00000741 _____ () C:\Users\Public\Desktop\Divinity Original Sin.lnk
2014-09-08 11:36 - 2014-09-08 11:17 - 00009459 _____ () C:\zoek-results.log
2014-09-08 11:34 - 2014-09-06 01:05 - 00003484 _____ () C:\Windows\PFRO.log
2014-09-08 11:29 - 2014-09-08 11:15 - 00000000 ____D () C:\zoek_backup
2014-09-08 11:28 - 2012-09-26 10:08 - 00000000 ____D () C:\Users\Game.StepDell
2014-09-08 11:16 - 2014-09-08 11:16 - 00003138 _____ () C:\Windows\System32\Tasks\{8ECFAB18-1E97-4652-A3C3-8C0EB0FF52DF}
2014-09-08 11:16 - 2014-09-08 11:16 - 00003138 _____ () C:\Windows\System32\Tasks\{797C11D2-8234-4232-BEB8-3452B199A010}
2014-09-08 11:14 - 2014-09-08 11:14 - 00002942 _____ () C:\Windows\System32\Tasks\{15358164-A539-4B1C-81E9-5747346185F1}
2014-09-08 11:13 - 2014-09-08 11:13 - 00002942 _____ () C:\Windows\System32\Tasks\{BD727892-8A4A-412C-B583-2008E1DEE4C3}
2014-09-08 00:35 - 2014-09-07 22:26 - 00000000 ____D () C:\Users\Game.StepDell\Documents\Paradox Interactive
2014-09-08 00:23 - 2012-10-04 20:55 - 00000000 ____D () C:\Windows\pss
2014-09-08 00:21 - 2014-04-04 14:38 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Roaming\uTorrent
2014-09-08 00:12 - 2013-09-25 09:59 - 00000000 ____D () C:\AdwCleaner
2014-09-08 00:12 - 2012-11-11 15:47 - 00001292 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-08 00:12 - 2012-11-11 15:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-08 00:12 - 2012-09-26 10:09 - 00000947 _____ () C:\Users\Game.StepDell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-08 00:01 - 2014-09-08 00:01 - 00000000 ____D () C:\Windows\ERUNT
2014-09-08 00:00 - 2014-09-08 00:00 - 01370467 _____ () C:\Users\Game.StepDell\Desktop\adwcleaner_3.309.exe
2014-09-08 00:00 - 2014-09-08 00:00 - 01016261 _____ (Thisisu) C:\Users\Game.StepDell\Desktop\JRT.exe
2014-09-07 23:18 - 2013-09-24 21:07 - 00000000 ____D () C:\Program Files (x86)\trend micro
2014-09-07 22:42 - 2014-09-07 22:42 - 00000000 __SHD () C:\Users\Game.StepDell\AppData\Local\EmieUserList
2014-09-07 22:42 - 2014-09-07 22:42 - 00000000 __SHD () C:\Users\Game.StepDell\AppData\Local\EmieSiteList
2014-09-07 22:42 - 2014-09-07 22:40 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-09-07 22:40 - 2014-09-07 22:40 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Roaming\Opera Software
2014-09-07 22:40 - 2014-09-07 22:40 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Local\Opera Software
2014-09-07 22:26 - 2012-11-23 15:03 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Local\SKIDROW
2014-09-07 21:05 - 2014-09-07 18:15 - 00037326 _____ () C:\Windows\DirectX.log
2014-09-07 18:35 - 2014-09-07 18:35 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Local\4A Games
2014-09-07 16:17 - 2014-09-06 17:47 - 00000000 ____D () C:\Program Files (x86)\Tropico 5
2014-09-07 15:37 - 2014-09-07 15:37 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Roaming\Steam
2014-09-07 15:37 - 2012-09-27 00:33 - 00000000 ____D () C:\Users\Game.StepDell\Documents\My Games
2014-09-07 15:28 - 2012-11-25 22:56 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner
2014-09-06 19:10 - 2014-09-06 17:53 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Roaming\Tropico 5
2014-09-06 17:56 - 2013-11-17 09:07 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Local\NVIDIA Corporation
2014-09-06 17:47 - 2012-11-01 15:00 - 00000000 ____D () C:\Users\Game.StepDell\AppData\Roaming\DAEMON Tools Lite
2014-09-06 15:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-09-06 10:55 - 2014-09-06 10:55 - 00001135 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-09-06 10:55 - 2013-12-06 16:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-09-06 10:55 - 2013-12-06 16:06 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-09-06 01:05 - 2014-09-06 01:05 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-06 01:05 - 2013-03-18 01:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-09-06 01:05 - 2009-07-14 06:45 - 00409000 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-06 01:03 - 2010-11-21 09:17 - 00000000 ____D () C:\Program Files\Windows Journal
2014-09-06 01:03 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-09-06 01:03 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-09-06 01:03 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-09-06 00:52 - 2013-09-12 22:46 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-06 00:47 - 2013-03-18 01:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-09-06 00:46 - 2013-03-18 01:40 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-09-06 00:32 - 2014-07-30 11:30 - 00000000 ____D () C:\ProgramData\Oracle
2014-09-06 00:30 - 2014-09-06 00:31 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-09-06 00:30 - 2014-09-06 00:30 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-09-06 00:30 - 2014-09-06 00:30 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-09-06 00:30 - 2014-09-06 00:30 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-09-06 00:30 - 2012-09-21 11:08 - 00000000 ____D () C:\Program Files (x86)\Java
2014-09-02 21:15 - 2013-09-26 08:39 - 00000000 ____D () C:\Users\Game.StepDell\Documents\FIFA 14
2014-08-31 21:10 - 2014-08-31 20:06 - 1448073216 _____ () C:\Users\Game.StepDell\Downloads\3-10 vlak do Yumy.avi.crdownload
2014-08-29 20:07 - 2014-08-29 19:51 - 1066954752 _____ () C:\Users\Game.StepDell\Downloads\Non-Stop (2014) CZ.avi
2014-08-29 20:01 - 2014-08-29 19:46 - 1355995136 _____ () C:\Users\Game.StepDell\Downloads\Captain America- Návrat prvního Avengera (2014) Novinka CZ dabing Akční Dobrodružný Sci-Fi výborná kvalita.avi
2014-08-28 10:54 - 2014-08-28 10:53 - 02486838 _____ () C:\Users\Game.StepDell\Downloads\Žádost o změnu odběrové místo 8110659159 strana 2.jpeg
2014-08-28 10:54 - 2014-08-28 10:53 - 02440255 _____ () C:\Users\Game.StepDell\Downloads\Žádost o změnu odběrové místo 8110659146 strana 2.jpeg
2014-08-28 10:54 - 2014-08-28 10:53 - 02423057 _____ () C:\Users\Game.StepDell\Downloads\Žádost o změnu odběrové místo 8110659159 strana 1.jpeg
2014-08-28 10:54 - 2014-08-28 10:53 - 02302495 _____ () C:\Users\Game.StepDell\Downloads\Žádost o změnu odběrové místo 8110659146 strana 1.jpeg
2014-08-27 11:57 - 2014-08-19 18:22 - 02340700 _____ () C:\Users\Game.StepDell\Downloads\TP AUDI A3 9A22317 (1).jpeg
2014-08-25 06:53 - 2010-11-21 05:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-08-23 04:07 - 2014-09-06 00:41 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 03:45 - 2014-09-06 00:41 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-23 02:59 - 2014-09-06 00:41 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-19 18:22 - 2014-08-19 18:22 - 02346937 _____ () C:\Users\Game.StepDell\Downloads\TP AUDI A3 9A22317 (2).jpeg
2014-08-19 17:12 - 2014-08-19 17:08 - 03238257 _____ () C:\Users\Game.StepDell\Downloads\Štěpán Havelka ČKP.jpeg
2014-08-18 22:41 - 2014-08-18 22:41 - 01058200 _____ (Adobe) C:\Users\Game.StepDell\Downloads\install_flashplayer14x32au_mssa_aaa_aih.exe
2014-08-17 19:35 - 2014-08-17 19:21 - 1009604608 _____ () C:\Users\Game.StepDell\Downloads\Památkáři 2014 Drama cz.avi
2014-08-16 21:25 - 2014-08-16 21:14 - 2163570936 _____ () C:\Users\Game.StepDell\Downloads\Poslední pokušení Krista =1988-Drama-DVD-CZ.avi.crdownload
2014-08-16 18:50 - 2014-08-16 18:50 - 02363500 _____ () C:\Users\Game.StepDell\Downloads\image (3).jpeg
2014-08-16 18:39 - 2014-08-16 18:39 - 01521914 _____ () C:\Users\Game.StepDell\Downloads\Žádost o splátkový kalendář - Štěpán Havelka.bmp
2014-08-15 12:06 - 2014-08-15 12:06 - 02186837 _____ () C:\Users\Game.StepDell\Downloads\image.jpeg
2014-08-15 12:06 - 2014-08-15 12:06 - 02090398 _____ () C:\Users\Game.StepDell\Downloads\image (2).jpeg
2014-08-15 12:06 - 2014-08-15 12:06 - 01928376 _____ () C:\Users\Game.StepDell\Downloads\image (1).jpeg
2014-08-12 11:37 - 2013-12-06 16:06 - 00000000 ____D () C:\ProgramData\Avira
2014-08-11 13:49 - 2014-08-11 13:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Playback Software
2014-08-11 11:04 - 2014-08-11 11:00 - 325026097 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E10.HDTV.x264-LOL.mp4
2014-08-11 11:04 - 2014-08-11 10:59 - 312192009 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E09.HDTV.x264-LOL.mp4
2014-08-11 11:02 - 2014-08-11 10:58 - 271892148 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E08.HDTV.x264-LOL.mp4
2014-08-11 11:00 - 2014-08-11 11:00 - 00051642 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E09.HDTV.x264-LOL.srt
2014-08-11 11:00 - 2014-08-11 11:00 - 00042021 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E10.HDTV.x264-LOL.srt
2014-08-11 11:00 - 2014-08-11 10:58 - 244936032 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E07.HDTV.x264-LOL.mp4
2014-08-11 10:58 - 2014-08-11 10:58 - 00052652 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E08.HDTV.x264-LOL.srt
2014-08-11 10:58 - 2014-08-11 10:58 - 00046467 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E07.HDTV.x264-LOL.srt
2014-08-10 22:37 - 2014-08-10 22:37 - 00031871 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E06.HDTV.x264-LOL.srt
2014-08-10 22:35 - 2014-08-10 22:32 - 321154949 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E06.HDTV.x264-LOL.mp4
2014-08-10 20:10 - 2014-08-10 20:09 - 213388137 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E05.HDTV.x264-LOL.mp4
2014-08-10 20:09 - 2014-08-10 20:09 - 00049572 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E05.HDTV.x264-LOL.srt
2014-08-10 20:07 - 2014-08-10 20:05 - 374859637 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E04.HDTV.x264-2HD.mp4
2014-08-10 20:06 - 2014-08-10 20:06 - 00047260 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E04.HDTV.x264-2HD.srt
2014-08-10 19:02 - 2014-08-10 19:00 - 373580692 _____ () C:\Users\Game.StepDell\Downloads\Fargo-s01e03_cz-titulky.mp4.crdownload
2014-08-10 11:00 - 2014-08-10 11:00 - 00000000 ____D () C:\Users\Game.StepDell\Downloads\Fargo-S01E02(0000235621)
2014-08-10 10:59 - 2014-08-10 11:00 - 00052217 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E02.HDTV.x264-2HD.srt
2014-08-10 10:59 - 2014-08-10 10:59 - 00021629 _____ () C:\Users\Game.StepDell\Downloads\Fargo-S01E02(0000235621).zip
2014-08-10 09:12 - 2014-08-10 09:03 - 535629496 _____ () C:\Users\Game.StepDell\Downloads\Fargo-s01e01_cz-titulky.mp4
2014-08-10 09:08 - 2014-08-10 09:04 - 310748596 _____ () C:\Users\Game.StepDell\Downloads\Fargo.S01E02.HDTV.x264-2HD.mp4
2014-08-09 15:52 - 2014-09-08 11:15 - 01419472 _____ () C:\Users\Game.StepDell\Desktop\zoek.com
2014-08-09 02:22 - 2014-08-02 16:23 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-08-09 02:22 - 2014-08-02 16:23 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-08-09 02:22 - 2014-08-02 16:23 - 01283136 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-08-09 02:22 - 2014-08-02 16:23 - 01126480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll

Some content of TEMP:
====================
C:\Users\Game.StepDell\AppData\Local\Temp\avgnt.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-09-06 15:12

==================== End Of Log ============================

#8 Příspěvek od **vyosek** » 09 zář 2014 08:54

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403288 2014-08-09] (NVIDIA Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\S-1-5-21-3973457392-1235821605-1250522722-1007\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch

CHR HomePage: Default -> 3418267C6E7722082C56D8C2B7A3890325E8EBB83BFE5BAFF3628BA268FF31A6
CHR DefaultSearchKeyword: Default -> 2F13D9984283DA2718C80ABD47B8D6CC3C84B3222A4AB0A76B8367241AA3BD1D
CHR DefaultSearchURL: Default -> C8BC06AA4C1E79B2EEA94317B684F448F47F2297845FB571C559596FA1C7F954

S3 catchme; \??\C:\ComboFix\catchme.sys [X]

2014-09-08 19:10 - 2014-09-08 19:11 - 00018745 _____ () C:\Users\Game.StepDell\Desktop\FRST.txt
2014-09-08 19:09 - 2014-09-08 19:07 - 00112640 _____ () C:\Users\Game.StepDell\Desktop\FRSTLauncher.exe
2014-09-08 19:03 - 2014-09-08 19:03 - 00112640 _____ (forum.viry.cz) C:\Users\Game.StepDell\Downloads\Nepotvrzeno 215678.crdownload
2014-09-08 11:31 - 2014-02-13 23:59 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-08 11:17 - 2014-09-08 11:36 - 00009459 _____ () C:\zoek-results.log
2014-09-08 11:15 - 2014-09-08 11:29 - 00000000 ____D () C:\zoek_backup
2014-09-08 11:15 - 2014-08-09 15:52 - 01419472 _____ () C:\Users\Game.StepDell\Desktop\zoek.com
2014-09-08 11:15 - 2014-07-14 15:11 - 01417360 _____ () C:\Users\Game.StepDell\Desktop\zoek.scr
2014-09-08 11:15 - 2014-07-14 15:11 - 01417360 _____ () C:\Users\Game.StepDell\Desktop\zoek.pif
2014-09-08 00:12 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-09-08 00:01 - 2014-09-08 00:01 - 00000000 ____D () C:\Windows\ERUNT
2014-09-08 00:00 - 2014-09-08 00:00 - 01370467 _____ () C:\Users\Game.StepDell\Desktop\adwcleaner_3.309.exe
2014-09-08 00:00 - 2014-09-08 00:00 - 01016261 _____ (Thisisu) C:\Users\Game.StepDell\Desktop\JRT.exe

Reboot:
End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

Steve89 · #9 Příspěvek od **Steve89** » 09 zář 2014 12:39

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-09-2014 01
Ran by Game at 2014-09-09 13:07:08 Run:1
Running from C:\Users\Game.StepDell\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403288 2014-08-09] (NVIDIA Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\S-1-5-21-3973457392-1235821605-1250522722-1007\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch

CHR HomePage: Default -> 3418267C6E7722082C56D8C2B7A3890325E8EBB83BFE5BAFF3628BA268FF31A6
CHR DefaultSearchKeyword: Default -> 2F13D9984283DA2718C80ABD47B8D6CC3C84B3222A4AB0A76B8367241AA3BD1D
CHR DefaultSearchURL: Default -> C8BC06AA4C1E79B2EEA94317B684F448F47F2297845FB571C559596FA1C7F954

S3 catchme; \??\C:\ComboFix\catchme.sys [X]

2014-09-08 19:10 - 2014-09-08 19:11 - 00018745 _____ () C:\Users\Game.StepDell\Desktop\FRST.txt
2014-09-08 19:09 - 2014-09-08 19:07 - 00112640 _____ () C:\Users\Game.StepDell\Desktop\FRSTLauncher.exe
2014-09-08 19:03 - 2014-09-08 19:03 - 00112640 _____ (forum.viry.cz) C:\Users\Game.StepDell\Downloads\Nepotvrzeno 215678.crdownload
2014-09-08 11:31 - 2014-02-13 23:59 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-08 11:17 - 2014-09-08 11:36 - 00009459 _____ () C:\zoek-results.log
2014-09-08 11:15 - 2014-09-08 11:29 - 00000000 ____D () C:\zoek_backup
2014-09-08 11:15 - 2014-08-09 15:52 - 01419472 _____ () C:\Users\Game.StepDell\Desktop\zoek.com
2014-09-08 11:15 - 2014-07-14 15:11 - 01417360 _____ () C:\Users\Game.StepDell\Desktop\zoek.scr
2014-09-08 11:15 - 2014-07-14 15:11 - 01417360 _____ () C:\Users\Game.StepDell\Desktop\zoek.pif
2014-09-08 00:12 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-09-08 00:01 - 2014-09-08 00:01 - 00000000 ____D () C:\Windows\ERUNT
2014-09-08 00:00 - 2014-09-08 00:00 - 01370467 _____ () C:\Users\Game.StepDell\Desktop\adwcleaner_3.309.exe
2014-09-08 00:00 - 2014-09-08 00:00 - 01016261 _____ (Thisisu) C:\Users\Game.StepDell\Desktop\JRT.exe

Reboot:
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKU\S-1-5-21-3973457392-1235821605-1250522722-1007\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
Chrome HomePage deleted successfully.
Chrome DefaultSearchKeyword deleted successfully.
Chrome DefaultSearchURL deleted successfully.
catchme => Service deleted successfully.
"C:\Users\Game.StepDell\Desktop\FRST.txt" => File/Directory not found.
"C:\Users\Game.StepDell\Desktop\FRSTLauncher.exe" => File/Directory not found.
C:\Users\Game.StepDell\Downloads\Nepotvrzeno 215678.crdownload => Moved successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Game.StepDell\Desktop\zoek.com => Moved successfully.
C:\Users\Game.StepDell\Desktop\zoek.scr => Moved successfully.
C:\Users\Game.StepDell\Desktop\zoek.pif => Moved successfully.
C:\Windows\SysWOW64\sqlite3.dll => Moved successfully.
C:\Windows\ERUNT => Moved successfully.
C:\Users\Game.StepDell\Desktop\adwcleaner_3.309.exe => Moved successfully.
C:\Users\Game.StepDell\Desktop\JRT.exe => Moved successfully.

The system needed a reboot.

==== End of Fixlog ====

#10 Příspěvek od **vyosek** » 09 zář 2014 12:48

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

Steve89 · #11 Příspěvek od **Steve89** » 09 zář 2014 14:35

Děkuji mnohokrát

#12 Příspěvek od **vyosek** » 09 zář 2014 14:36

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

A na zaklade Pravidla o zamykani temat

VIRY.CZ

Preventivní kontrola

Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola