Dobry den, Chtel bych se jen zeptat taky jsem nasel adresar wangzhisong a nevim jestli je to diky nejakemu viru nebo z kama se to mohlo vzit dekuji. Jeste prilozim log z adwcleanru, MBAM a RK
# AdwCleaner v3.309 - Report created 08/09/2014 at 12:22:57
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Martin - MARTIN-PC
# Running from : C:\Users\Martin\Desktop\adwcleaner_3.309.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\SoftSafe
Folder Deleted : C:\Program Files\AVG Secure Search
Folder Deleted : C:\Program Files\Mobogenie
Folder Deleted : C:\Program Files\SimilarSites
Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
Folder Deleted : C:\Users\Martin\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Martin\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\Martin\AppData\Roaming\Solvusoft
Folder Deleted : C:\Users\Martin\Documents\Mobogenie
Folder Deleted : C:\Users\wangzhisong\AppData\Local\Mobogenie
File Deleted : C:\Windows\system32\roboot.exe
File Deleted : C:\Users\Martin\daemonprocess.txt
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F3DC9E0-C459-4A40-BCF8-747BD9322E10}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FFE66D00-A56A-4F7F-81D7-4A28C5816D6C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17239
-\\ Google Chrome v37.0.2062.103
[ File : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted [Search Provider] : hxxp://www.pkmodelar.cz/?page=websearch&srchtext={searchTerms}
*************************
AdwCleaner[R0].txt - [5810 octets] - [08/09/2014 12:20:14]
AdwCleaner[S0].txt - [5949 octets] - [08/09/2014 12:22:57]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6009 octets] ##########
# AdwCleaner v3.309 - Report created 08/09/2014 at 12:22:57
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Martin - MARTIN-PC
# Running from : C:\Users\Martin\Desktop\adwcleaner_3.309.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\SoftSafe
Folder Deleted : C:\Program Files\AVG Secure Search
Folder Deleted : C:\Program Files\Mobogenie
Folder Deleted : C:\Program Files\SimilarSites
Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
Folder Deleted : C:\Users\Martin\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Martin\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\Martin\AppData\Roaming\Solvusoft
Folder Deleted : C:\Users\Martin\Documents\Mobogenie
Folder Deleted : C:\Users\wangzhisong\AppData\Local\Mobogenie
File Deleted : C:\Windows\system32\roboot.exe
File Deleted : C:\Users\Martin\daemonprocess.txt
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F3DC9E0-C459-4A40-BCF8-747BD9322E10}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FFE66D00-A56A-4F7F-81D7-4A28C5816D6C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17239
-\\ Google Chrome v37.0.2062.103
[ File : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted [Search Provider] : hxxp://www.pkmodelar.cz/?page=websearch&srchtext={searchTerms}
*************************
AdwCleaner[R0].txt - [5810 octets] - [08/09/2014 12:20:14]
AdwCleaner[S0].txt - [5949 octets] - [08/09/2014 12:22:57]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6009 octets] ##########
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
zpomalený pc - hadiprd
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: prosim o kontrolu zpomalený pc
pardon dal jsem to tam dvakrat 
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 8.9.2014
Čas skenování: 12:38:06
Protokol: MBAM.txt
Správce: Ano
Verze: 2.00.2.1012
Databáze malwaru: v2014.09.08.02
Databáze rootkitů: v2014.08.21.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Self-protection: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Martin
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 532854
Uplynulý čas: 56 min, 8 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristics: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(No malicious items detected)
Moduly: 0
(No malicious items detected)
Klíče registru: 0
(No malicious items detected)
Hodnoty registru: 0
(No malicious items detected)
Data registru: 0
(No malicious items detected)
Složky: 0
(No malicious items detected)
Soubory: 0
(No malicious items detected)
Fyzické sektory: 0
(No malicious items detected)
(end)
RogueKiller V9.2.9.0 [Jul 11 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : https://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Kontrola -- Datum : 09/09/2014 08:19:28
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 14 ¤¤¤
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\DebugLog -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\etdrv -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\gdrv -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DebugLog -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\etdrv -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\gdrv -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\DebugLog -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\etdrv -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\gdrv -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NALEZENO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 10 (Driver: NAHRÁNO) ¤¤¤
[SSDT:Inl(Hook.SSDT)] NtCreateKey[70] : C:\Windows\system32\DRIVERS\aksfridge.sys @ 0x8343dfe2
[SSDT:Inl(Hook.SSDT)] NtOpenKey[182] : C:\Windows\system32\DRIVERS\aksfridge.sys @ 0x8343dfe7
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CREATE[0] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CLOSE[2] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_DEVICE_CONTROL[14] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_INTERNAL_DEVICE_CONTROL[15] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_POWER[22] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_SYSTEM_CONTROL[23] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_PNP[27] : Unknown @ 0x860e01e8
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\cdrom @ \Device\CdRom0 (\SystemRoot\system32\DRIVERS\dtsoftbus01.sys)
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST31000524AS ATA Device +++++
--- User ---
[MBR] deba30aa053053806c7fb1073b5e8604
[BSP] bfdde08fbafa9ff86a3669dff21bec8d : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 283 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 581632 | Size: 100000 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 205381632 | Size: 853584 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive1: ST31000524AS ATA Device +++++
--- User ---
[MBR] 14fb53cd529d4961e0d5ee13cb0c759b
[BSP] 8ac5172d7498b14d2b2a1f2275e04389 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive2: Canon MG5100 series USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive3: Generic- SD/MMC USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive4: Generic- Compact Flash USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive5: Generic- SM/xD-Picture USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive6: Generic- MS/MS-Pro USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 8.9.2014
Čas skenování: 12:38:06
Protokol: MBAM.txt
Správce: Ano
Verze: 2.00.2.1012
Databáze malwaru: v2014.09.08.02
Databáze rootkitů: v2014.08.21.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Self-protection: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Martin
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 532854
Uplynulý čas: 56 min, 8 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristics: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(No malicious items detected)
Moduly: 0
(No malicious items detected)
Klíče registru: 0
(No malicious items detected)
Hodnoty registru: 0
(No malicious items detected)
Data registru: 0
(No malicious items detected)
Složky: 0
(No malicious items detected)
Soubory: 0
(No malicious items detected)
Fyzické sektory: 0
(No malicious items detected)
(end)
RogueKiller V9.2.9.0 [Jul 11 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : https://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Kontrola -- Datum : 09/09/2014 08:19:28
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 14 ¤¤¤
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\DebugLog -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\etdrv -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\gdrv -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DebugLog -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\etdrv -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\gdrv -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\DebugLog -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\etdrv -> NALEZENO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\gdrv -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NALEZENO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NALEZENO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 10 (Driver: NAHRÁNO) ¤¤¤
[SSDT:Inl(Hook.SSDT)] NtCreateKey[70] : C:\Windows\system32\DRIVERS\aksfridge.sys @ 0x8343dfe2
[SSDT:Inl(Hook.SSDT)] NtOpenKey[182] : C:\Windows\system32\DRIVERS\aksfridge.sys @ 0x8343dfe7
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CREATE[0] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CLOSE[2] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_DEVICE_CONTROL[14] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_INTERNAL_DEVICE_CONTROL[15] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_POWER[22] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_SYSTEM_CONTROL[23] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_PNP[27] : Unknown @ 0x860e01e8
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\cdrom @ \Device\CdRom0 (\SystemRoot\system32\DRIVERS\dtsoftbus01.sys)
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST31000524AS ATA Device +++++
--- User ---
[MBR] deba30aa053053806c7fb1073b5e8604
[BSP] bfdde08fbafa9ff86a3669dff21bec8d : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 283 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 581632 | Size: 100000 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 205381632 | Size: 853584 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive1: ST31000524AS ATA Device +++++
--- User ---
[MBR] 14fb53cd529d4961e0d5ee13cb0c759b
[BSP] 8ac5172d7498b14d2b2a1f2275e04389 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive2: Canon MG5100 series USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive3: Generic- SD/MMC USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive4: Generic- Compact Flash USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive5: Generic- SM/xD-Picture USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive6: Generic- MS/MS-Pro USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
Re: zpomalený pc - hadiprd
Zdravim 
Prispevky jsem Vam oddelil do samostatneho tematu, at se nam to neplete
Spustte znovu RogueKiller
Prispevky jsem Vam oddelil do samostatneho tematu, at se nam to neplete Spustte znovu RogueKiller
- Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
- Zvolte moznost Prohledat a pote Smazat a nasledne Zprava - otevre se log, ten sem vlozte
- Pak kliknete na Oprava Host a Zprava - otevre se log, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: zpomalený pc - hadiprd
RogueKiller V9.2.9.0 [Jul 11 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : https://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Odebrat -- Datum : 09/09/2014 10:04:35
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 14 ¤¤¤
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\DebugLog -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\etdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\gdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DebugLog -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\etdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\gdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\DebugLog -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\etdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\gdrv -> NEVYBRÁNO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NEVYBRÁNO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NEVYBRÁNO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NEVYBRÁNO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NEVYBRÁNO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NEVYBRÁNO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 10 (Driver: NAHRÁNO) ¤¤¤
[SSDT:Inl(Hook.SSDT)] NtCreateKey[70] : C:\Windows\system32\DRIVERS\aksfridge.sys @ 0x83456fe2
[SSDT:Inl(Hook.SSDT)] NtOpenKey[182] : C:\Windows\system32\DRIVERS\aksfridge.sys @ 0x83456fe7
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CREATE[0] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CLOSE[2] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_DEVICE_CONTROL[14] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_INTERNAL_DEVICE_CONTROL[15] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_POWER[22] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_SYSTEM_CONTROL[23] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_PNP[27] : Unknown @ 0x860e01e8
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\cdrom @ \Device\CdRom0 (\SystemRoot\system32\DRIVERS\dtsoftbus01.sys)
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST31000524AS ATA Device +++++
--- User ---
[MBR] deba30aa053053806c7fb1073b5e8604
[BSP] bfdde08fbafa9ff86a3669dff21bec8d : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 283 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 581632 | Size: 100000 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 205381632 | Size: 853584 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive1: ST31000524AS ATA Device +++++
--- User ---
[MBR] 14fb53cd529d4961e0d5ee13cb0c759b
[BSP] 8ac5172d7498b14d2b2a1f2275e04389 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive2: Canon MG5100 series USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive3: Generic- SD/MMC USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive4: Generic- Compact Flash USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive5: Generic- SM/xD-Picture USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive6: Generic- MS/MS-Pro USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
============================================
RKreport_SCN_09092014_081928.log - RKreport_SCN_09092014_100423.log
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : https://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Odebrat -- Datum : 09/09/2014 10:04:35
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 14 ¤¤¤
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\DebugLog -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\etdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\gdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DebugLog -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\etdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\gdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\DebugLog -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\etdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\gdrv -> NEVYBRÁNO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NEVYBRÁNO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NEVYBRÁNO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NEVYBRÁNO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NEVYBRÁNO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NEVYBRÁNO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 10 (Driver: NAHRÁNO) ¤¤¤
[SSDT:Inl(Hook.SSDT)] NtCreateKey[70] : C:\Windows\system32\DRIVERS\aksfridge.sys @ 0x83456fe2
[SSDT:Inl(Hook.SSDT)] NtOpenKey[182] : C:\Windows\system32\DRIVERS\aksfridge.sys @ 0x83456fe7
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CREATE[0] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CLOSE[2] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_DEVICE_CONTROL[14] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_INTERNAL_DEVICE_CONTROL[15] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_POWER[22] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_SYSTEM_CONTROL[23] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_PNP[27] : Unknown @ 0x860e01e8
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\cdrom @ \Device\CdRom0 (\SystemRoot\system32\DRIVERS\dtsoftbus01.sys)
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST31000524AS ATA Device +++++
--- User ---
[MBR] deba30aa053053806c7fb1073b5e8604
[BSP] bfdde08fbafa9ff86a3669dff21bec8d : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 283 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 581632 | Size: 100000 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 205381632 | Size: 853584 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive1: ST31000524AS ATA Device +++++
--- User ---
[MBR] 14fb53cd529d4961e0d5ee13cb0c759b
[BSP] 8ac5172d7498b14d2b2a1f2275e04389 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive2: Canon MG5100 series USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive3: Generic- SD/MMC USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive4: Generic- Compact Flash USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive5: Generic- SM/xD-Picture USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive6: Generic- MS/MS-Pro USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
============================================
RKreport_SCN_09092014_081928.log - RKreport_SCN_09092014_100423.log
Re: zpomalený pc - hadiprd
RogueKiller V9.2.9.0 [Jul 11 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : https://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Odebrat -- Datum : 09/09/2014 10:04:35
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 14 ¤¤¤
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\DebugLog -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\etdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\gdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DebugLog -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\etdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\gdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\DebugLog -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\etdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\gdrv -> NEVYBRÁNO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NEVYBRÁNO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NEVYBRÁNO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NEVYBRÁNO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NEVYBRÁNO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NEVYBRÁNO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 10 (Driver: NAHRÁNO) ¤¤¤
[SSDT:Inl(Hook.SSDT)] NtCreateKey[70] : C:\Windows\system32\DRIVERS\aksfridge.sys @ 0x83456fe2
[SSDT:Inl(Hook.SSDT)] NtOpenKey[182] : C:\Windows\system32\DRIVERS\aksfridge.sys @ 0x83456fe7
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CREATE[0] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CLOSE[2] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_DEVICE_CONTROL[14] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_INTERNAL_DEVICE_CONTROL[15] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_POWER[22] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_SYSTEM_CONTROL[23] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_PNP[27] : Unknown @ 0x860e01e8
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\cdrom @ \Device\CdRom0 (\SystemRoot\system32\DRIVERS\dtsoftbus01.sys)
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST31000524AS ATA Device +++++
--- User ---
[MBR] deba30aa053053806c7fb1073b5e8604
[BSP] bfdde08fbafa9ff86a3669dff21bec8d : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 283 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 581632 | Size: 100000 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 205381632 | Size: 853584 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive1: ST31000524AS ATA Device +++++
--- User ---
[MBR] 14fb53cd529d4961e0d5ee13cb0c759b
[BSP] 8ac5172d7498b14d2b2a1f2275e04389 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive2: Canon MG5100 series USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive3: Generic- SD/MMC USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive4: Generic- Compact Flash USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive5: Generic- SM/xD-Picture USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive6: Generic- MS/MS-Pro USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
============================================
RKreport_SCN_09092014_081928.log - RKreport_SCN_09092014_100423.log
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : https://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Martin [Práva správce]
Mód : Odebrat -- Datum : 09/09/2014 10:04:35
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 14 ¤¤¤
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\DebugLog -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\etdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\gdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\DebugLog -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\etdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\gdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\DebugLog -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\etdrv -> NEVYBRÁNO
[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\gdrv -> NEVYBRÁNO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NEVYBRÁNO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NEVYBRÁNO
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D} | NameServer : 172.16.1.2 -> NEVYBRÁNO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NEVYBRÁNO
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NEVYBRÁNO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 10 (Driver: NAHRÁNO) ¤¤¤
[SSDT:Inl(Hook.SSDT)] NtCreateKey[70] : C:\Windows\system32\DRIVERS\aksfridge.sys @ 0x83456fe2
[SSDT:Inl(Hook.SSDT)] NtOpenKey[182] : C:\Windows\system32\DRIVERS\aksfridge.sys @ 0x83456fe7
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CREATE[0] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_CLOSE[2] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_DEVICE_CONTROL[14] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_INTERNAL_DEVICE_CONTROL[15] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_POWER[22] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_SYSTEM_CONTROL[23] : Unknown @ 0x860e01e8
[IRP:Addr(Hook.IRP)] \SystemRoot\System32\drivers\mountmgr.sys - IRP_MJ_PNP[27] : Unknown @ 0x860e01e8
[Filter(Kernel.Filter)] \Driver\atapi @ Unknown : \Driver\cdrom @ \Device\CdRom0 (\SystemRoot\system32\DRIVERS\dtsoftbus01.sys)
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST31000524AS ATA Device +++++
--- User ---
[MBR] deba30aa053053806c7fb1073b5e8604
[BSP] bfdde08fbafa9ff86a3669dff21bec8d : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 283 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 581632 | Size: 100000 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 205381632 | Size: 853584 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive1: ST31000524AS ATA Device +++++
--- User ---
[MBR] 14fb53cd529d4961e0d5ee13cb0c759b
[BSP] 8ac5172d7498b14d2b2a1f2275e04389 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive2: Canon MG5100 series USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive3: Generic- SD/MMC USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive4: Generic- Compact Flash USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive5: Generic- SM/xD-Picture USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
+++++ PhysicalDrive6: Generic- MS/MS-Pro USB Device +++++
Error reading User MBR! ([15] Za?ízení není p?ipraveno. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Po?adavek není podporován. )
============================================
RKreport_SCN_09092014_081928.log - RKreport_SCN_09092014_100423.log
Re: zpomalený pc - hadiprd
Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
- Do okna vlozte skript nize
Kód: Vybrat vše
autoclean; emptyclsid; iedefaults; FFdefaults; CHRdefaults; emptyalltemp; resethosts;- Nasledne kliknete na Run Script
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: zpomalený pc - hadiprd
Zoek.exe v5.0.0.0 Updated 08-September-2014
Tool run by Martin on Łt 09.09.2014 at 10:10:21,50.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Martin\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
9.9.2014 10:12:13 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Internet Explorer\SearchScopes\{85D67D82-FF69-4b60-A853-BE3E20E89839} deleted successfully
HKEY_USERS\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Internet Explorer\SearchScopes\{EE96A828-9F44-45A9-B23D-47EC9AC03D23} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater10.2.0 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater10.2.0 deleted successfully
==== Deleting Files \ Folders ======================
C:\Windows\system32\appdata deleted
C:\Users\Martin\AppData\Roaming\Splashtop deleted
C:\PROGRA~2\.bf45c81f8dc8abfeecf09.dat deleted
C:\PROGRA~2\Splashtop deleted
C:\PROGRA~2\InstallMate deleted
C:\Users\Martin\AppData\Local\cache deleted
C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted
C:\Users\wangzhisong deleted
C:\Windows\system32\config\systemprofile\Searches deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn" [19.05.2014 06:15]
==== Chrome Look ======================
Send to c:geo - Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmjnanlejfopnmlbaglhakppcgfiehmi
AdBlock - Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
==== Chromium Startpages ======================
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://google.cz/",
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.cz/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.cz/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{4205D10E-CE72-4964-A334-D3D6EB32222B} Google Url="http://www.google.com/cse?cx=partner-pu ... earchTerms}"
{8A83E35D-6884-4431-ABB4-E3BB418C86E3} Bing Url="http://www.bing.com/search?q={searchTer ... R1&pc=SPLH"
{DA83B5BC-2E9A-4613-ACC8-D9B49A661EDA} Unknown Url="Not_Found"
==== Reset Google Chrome ======================
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Internet Explorer\SearchScopes\{DA83B5BC-2E9A-4613-ACC8-D9B49A661EDA} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{00439B36-15DA-484A-AAA1-5DF8DBA0B9C0} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7F695029-D6F6-4721-A5CA-9ED4A48A72DF} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{89A78E99-20C1-463C-A4D7-68E35244AC6F} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{95182C29-DE62-46E7-A40C-96404EFB0EDF} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AD92D381-9DF3-43DF-A134-D5D17671F177} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D9CD3902-BCA6-481E-AAF5-F484022E1BF4} deleted successfully
==== Empty IE Cache ======================
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Martin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Martin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Martin\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Martin\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=277 folders=38 15598969 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Martin\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Martin\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on Łt 09.09.2014 at 10:24:13,29 ======================
Tool run by Martin on Łt 09.09.2014 at 10:10:21,50.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Martin\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
9.9.2014 10:12:13 Zoek.exe System Restore Point Created Succesfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Internet Explorer\SearchScopes\{85D67D82-FF69-4b60-A853-BE3E20E89839} deleted successfully
HKEY_USERS\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Internet Explorer\SearchScopes\{EE96A828-9F44-45A9-B23D-47EC9AC03D23} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater10.2.0 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater10.2.0 deleted successfully
==== Deleting Files \ Folders ======================
C:\Windows\system32\appdata deleted
C:\Users\Martin\AppData\Roaming\Splashtop deleted
C:\PROGRA~2\.bf45c81f8dc8abfeecf09.dat deleted
C:\PROGRA~2\Splashtop deleted
C:\PROGRA~2\InstallMate deleted
C:\Users\Martin\AppData\Local\cache deleted
C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search deleted
C:\Users\wangzhisong deleted
C:\Windows\system32\config\systemprofile\Searches deleted
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn" [19.05.2014 06:15]
==== Chrome Look ======================
Send to c:geo - Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmjnanlejfopnmlbaglhakppcgfiehmi
AdBlock - Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
==== Chromium Startpages ======================
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Preferences
"homepage": "http://google.cz/",
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.cz/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.cz/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{4205D10E-CE72-4964-A334-D3D6EB32222B} Google Url="http://www.google.com/cse?cx=partner-pu ... earchTerms}"
{8A83E35D-6884-4431-ABB4-E3BB418C86E3} Bing Url="http://www.bing.com/search?q={searchTer ... R1&pc=SPLH"
{DA83B5BC-2E9A-4613-ACC8-D9B49A661EDA} Unknown Url="Not_Found"
==== Reset Google Chrome ======================
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Internet Explorer\SearchScopes\{DA83B5BC-2E9A-4613-ACC8-D9B49A661EDA} deleted successfully
==== Deleting CLSID Registry Values ======================
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{00439B36-15DA-484A-AAA1-5DF8DBA0B9C0} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7F695029-D6F6-4721-A5CA-9ED4A48A72DF} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{89A78E99-20C1-463C-A4D7-68E35244AC6F} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{95182C29-DE62-46E7-A40C-96404EFB0EDF} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AD92D381-9DF3-43DF-A134-D5D17671F177} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D9CD3902-BCA6-481E-AAF5-F484022E1BF4} deleted successfully
==== Empty IE Cache ======================
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Martin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Martin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Martin\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Martin\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
==== C:\zoek_backup content ======================
C:\zoek_backup (files=277 folders=38 15598969 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Martin\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Martin\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on Łt 09.09.2014 at 10:24:13,29 ======================
Re: zpomalený pc - hadiprd
Dejte log z FRST http://forum.viry.cz/viewtopic.php?f=30&t=133101
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: zpomalený pc - hadiprd
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 07-09-2014
Ran by Martin at 2014-09-09 10:48:03
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG Internet Security 2013 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2013 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2013 (Disabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
@BIOS (HKLM\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Adobe Acrobat X Pro - Eastern European (Group 1) (HKLM\...\{AC76BA86-1029-4770-7760-000000000005}) (Version: 10.1.11 - Adobe Systems)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Content Viewer (HKLM\...\com.adobe.dmp.contentviewer) (Version: 1.4.0 - Adobe Systems Incorporated)
Adobe Content Viewer (Version: 1.4.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 5.5 Design Standard (HKLM\...\{53CF3920-648B-4F99-8D05-6A6C5298F57B}) (Version: 5.5 - Adobe Systems Incorporated)
Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Aktualizace NVIDIA 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
Apple Application Support (HKLM\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Astroburn Lite (HKLM\...\Astroburn Lite) (Version: 1.8.0.0182 - Disc Soft Ltd)
ATLAS Czech 2011 NT (HKLM\...\{A5A82A64-AA95-4BB0-8270-371BE1ADD26A}) (Version: 10.00 - Picodas Praha, spol. s r.o.)
AutoGreen B10.1021.1 (HKLM\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.1021.1 (Version: 1.00.0000 - GIGABYTE) Hidden
AVG 2013 (HKLM\...\AVG) (Version: 2013.0.3485 - AVG Technologies CZ, s.r.o.)
AVG 2013 (Version: 13.0.3485 - AVG Technologies CZ, s.r.o.) Hidden
AVG 2013 (Version: 13.0.4015 - AVG Technologies CZ, s.r.o.) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Canon Easy-PhotoPrint EX (HKLM\...\Easy-PhotoPrint EX) (Version: - )
Canon MG5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5100_series) (Version: - )
Canon Solution Menu EX (HKLM\...\CanonSolutionMenuEX) (Version: - )
Combined Community Codec Pack 2010-10-10 (HKLM\...\Combined Community Codec Pack_is1) (Version: 2010.10.10.0 - CCCP Project)
CrystalDiskMark 3.0.1 (HKLM\...\CrystalDiskMark_is1) (Version: 3.0.1 - Crystal Dew World)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.47.1.0337 - Disc Soft Ltd)
DES 2.0 (HKLM\...\{675F86A8-E093-4002-87D5-915CC2C45571}) (Version: 1.00.0000 - Gigabyte)
Easy Tune 6 B10.1216.1 (HKLM\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B10.1216.1 (Version: 1.00.0000 - GIGABYTE) Hidden
easyCapsa 1.0.6 (HKLM\...\{7A718EAD-F826-4933-86FD-394B1210FB7A}_is1) (Version: 1.0.6 - Capsa.cz)
EFI Media Profiles (HKLM\...\{D661D955-DE47-421B-8501-CA00BD16AB74}) (Version: 4.5.0 - EFI)
EFI XF (HKLM\...\{EF45A79E-0C57-4891-996E-CDD8FAAA75D3}) (Version: 4.5.8 - EFI)
GoldWave v5.58 (HKLM\...\GoldWave v5.58) (Version: - )
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
HandBrake 0.9.9.1 (HKLM\...\HandBrake) (Version: 0.9.9.1 - )
iCloud (HKLM\...\{00A61104-74B5-4056-AD00-4397EF4FB141}) (Version: 3.1.0.40 - Apple Inc.)
ICQ7.7 (HKLM\...\{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}) (Version: 7.7 - ICQ)
Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
ISO Image Burner 1.1 (HKLM\...\{B2B123D3-E780-4EB0-B540-18F5FCC6EFE9}_is1) (Version: - ISOImageBurner.com)
iTunes (HKLM\...\{86D04316-F49A-4AF2-B3F1-A1E943886CE7}) (Version: 11.3.1.2 - Apple Inc.)
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (Version: 2.1.67.1 - Oracle, Inc.) Hidden
Java(TM) 7 Update 5 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217005F0}) (Version: 7.0.50 - Oracle)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LibreOffice 4.2.4.2 (HKLM\...\{6B4977CB-5B9F-4B24-8310-3BA527A8AF22}) (Version: 4.2.4.2 - The Document Foundation)
Mapy na ceste 3.06 (HKLM\...\Mapy na ceste - Maps capture_is1) (Version: - Milan Travnicek)
Metronom v1.0 (HKLM\...\Metronom v1.0) (Version: - )
Microsoft .NET Framework 4.5.1 (CSY) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office Visio Viewer 2007 (HKLM\...\{95120000-0052-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000 - Adobe) Hidden
MiniTool Partition Wizard Home Edition 8.1.1 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
MKVToolNix 6.2.0 (HKLM\...\MKVToolNix) (Version: 6.2.0 - Moritz Bunkus)
MotoCalc 8.08 (HKLM\...\MotoCalc 8_is1) (Version: - Capable Computing, Inc.)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač 3D Vision 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA PhysX (Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA ShadowPlay 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Systémový software PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Update Core (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
ON_OFF Charge B11.0110.1 (HKLM\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice 4.1.0 (HKLM\...\{43245B34-BAEA-4716-B877-38E7E7026698}) (Version: 4.10.9764 - Apache Software Foundation)
Ovládací panel NVIDIA 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden
PlayReady PC Runtime x86 (HKLM\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Pracovní kalendář (HKLM\...\Pracovní kalendář) (Version: - )
Profili 2 (HKLM\...\Profili 2) (Version: - )
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
REALTEK DTV USB DEVICE (HKLM\...\{DDBB7C89-1A09-441E-AA0F-6AA465755C17}) (Version: 1.00.0000 - Realtek)
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.36.1224.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6282 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
SHIELD Streaming (Version: 3.1.100 - NVIDIA Corporation) Hidden
SketchUp 2014 (HKLM\...\{A608A8D3-E77C-4BEE-8F2A-F8124F5F0FE2}) (Version: 14.0.4900 - Trimble Navigation Limited)
Smart 6 B10.1221.1 (HKLM\...\{3B35725F-C623-4A1E-B5CC-99C0868679E3}) (Version: 1.00.0000 - GIGABYTE)
Spelling Dictionaries Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
Stereoscopic Player (HKLM\...\{0969EE0E-3CE2-434B-BFC4-940ABC8A39BE}) (Version: 2.0.6 - 3dtv.at)
Těžiště 1.0 (HKLM\...\Těžiště_is1) (Version: - Pavel König)
Tone Mapping Plug-In 2.1 (HKLM\...\CS432_is1) (Version: 2.1 - HDRsoft Sarl)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH)
UltraVuer4 (HKLM\...\UltraVuer4) (Version: - )
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM\...\{068B46A0-8858-4CEB-80BC-A4AE787A05FC}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-3393032927-722208142-1737332873-1000_Classes\CLSID\{1c492e6a-2803-5ed7-83e1-1b1d4d41eb39}\InprocServer32 -> E:\soukrome Martin\tt\Trials Evolution\datapack\orbit\npuplaypc.dll No File
==================== Restore Points =========================
09-09-2014 08:11:58 zoek.exe restore point
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:04 - 2014-09-09 10:12 - 00000840 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {4BD9C3F6-30D8-4AAC-8AE2-D683FE532EAD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09] (Adobe Systems Incorporated)
Task: {54A70305-DD5F-497C-9AD9-FE1B6F0CFD4A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-02-21] (Google Inc.)
Task: {97B43085-D0DD-4CB5-BF49-615DC8CE2B19} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {AAA3C85F-C3D1-436D-B48C-8AB32102AED4} - System32\Tasks\AdobeAAMUpdater-1.0-Martin-PC-Martin => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated)
Task: {B1CAF06E-19F3-41AC-B364-3888B03055DA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-02-21] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-08-24 14:16 - 2014-07-02 21:42 - 00107992 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-10-10 11:50 - 2005-03-31 15:26 - 00172032 _____ () C:\ProgramData\EFI\EFI XF\Server\Debuglog.exe
2011-10-04 06:18 - 2009-06-17 16:13 - 00068136 _____ () C:\Program Files\GIGABYTE\EnergySaver2\des2svr.exe
2011-10-04 06:18 - 2009-05-04 17:56 - 00102400 _____ () C:\Program Files\GIGABYTE\EnergySaver2\ycc.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00337920 ____N () C:\Program Files\EFI\EFI XF\Server\efi_basics.dll
2011-10-18 10:03 - 2012-12-17 15:05 - 00180224 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\JetrionFinish.fll
2014-03-20 14:22 - 2012-12-17 15:05 - 00399872 _____ () C:\Program Files\EFI\EFI XF\Server\cnwicdl.dll
2011-10-10 11:51 - 2010-10-21 14:39 - 00159744 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\DummyPort.pll
2014-03-20 14:12 - 2012-06-25 10:01 - 00274432 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\EfiRPort.pll
2011-10-10 11:51 - 2010-10-21 14:39 - 00262144 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\Hp9000sPort.pll
2011-10-10 11:51 - 2012-12-17 15:05 - 00552960 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\HpL25500Port.pll
2011-10-10 11:51 - 2011-11-30 13:38 - 00397312 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\HpPort.pll
2011-10-10 11:51 - 2009-05-18 16:14 - 00399872 ____N () C:\Program Files\EFI\EFI XF\Server\hpbidiusb.dll
2011-10-10 11:51 - 2010-10-21 14:39 - 00176128 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\IpPort.pll
2011-10-10 11:51 - 2010-10-21 14:39 - 00233472 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\MimakiPort.pll
2011-10-10 11:51 - 2010-10-21 14:39 - 00208896 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\MimakiUsbPort.pll
2014-03-20 14:12 - 2012-03-19 03:47 - 00188416 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\RolandBNPort.pll
2011-10-10 11:51 - 2010-10-21 14:37 - 00225280 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\SiiUsbPort.pll
2011-10-10 11:51 - 2010-10-21 14:39 - 00176128 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\SysPort.pll
2011-10-10 11:51 - 2010-10-21 14:38 - 00184320 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\UsbPort.pll
2011-10-18 10:03 - 2012-03-19 03:28 - 00294912 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\vutekport.pll
2011-10-18 10:03 - 2012-12-17 15:05 - 00245760 _____ () C:\Program Files\EFI\EFI XF\Server\JMFPort.dll
2011-10-18 10:03 - 2010-09-01 12:13 - 08540160 ____N () C:\Program Files\EFI\EFI XF\Server\JDFWrapperDLL.dll
2011-10-18 10:03 - 2010-11-16 12:28 - 00917504 ____N () C:\Program Files\EFI\EFI XF\Server\JDFToolsDLL.dll
2011-10-18 10:03 - 2011-06-08 11:14 - 00180224 ____N () C:\Program Files\EFI\EFI XF\Server\NetworkLayer.dll
2011-10-10 11:51 - 2012-12-17 15:05 - 00208896 _____ () C:\Program Files\EFI\EFI XF\Server\ipfmlib.dll
2011-10-10 11:51 - 2003-06-20 21:42 - 00118784 ____N () C:\Program Files\EFI\EFI XF\Server\jetreadyDLL.dll
2011-10-10 11:51 - 2012-12-17 15:05 - 01097728 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\RPPrn.oll
2011-10-10 11:51 - 2010-10-21 14:38 - 00061440 ____N () C:\Program Files\EFI\EFI XF\Server\zLib.dll
2011-10-10 11:51 - 2010-03-16 13:36 - 00607232 ____N () C:\Program Files\EFI\EFI XF\Server\libeficsl.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00659968 ____N () C:\Program Files\EFI\EFI XF\Server\libacsredux.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00083456 ____N () C:\Program Files\EFI\EFI XF\Server\libtranslib.dll
2011-10-10 11:51 - 2010-03-15 18:29 - 00160768 ____N () C:\Program Files\EFI\EFI XF\Server\pdfwind.dll
2011-10-10 11:51 - 2010-03-15 18:29 - 00368640 ____N () C:\Program Files\EFI\EFI XF\Server\pdfeye.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00084992 ____N () C:\Program Files\EFI\EFI XF\Server\libefizlib.dll
2011-10-10 11:51 - 2010-03-15 18:29 - 00017408 ____N () C:\Program Files\EFI\EFI XF\Server\pdfgale.dll
2011-10-10 11:51 - 2010-03-15 18:29 - 00015872 ____N () C:\Program Files\EFI\EFI XF\Server\pdfclouds.dll
2011-10-10 11:51 - 2010-03-15 18:24 - 00135168 ____R () C:\Program Files\EFI\EFI XF\Server\LIBEXPAT.dll
2011-10-10 11:51 - 2010-03-15 18:29 - 00236544 ____N () C:\Program Files\EFI\EFI XF\Server\pdfblizzard.dll
2011-10-10 11:51 - 2010-03-15 18:29 - 00311296 ____N () C:\Program Files\EFI\EFI XF\Server\pdftyphoon.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00013312 ____N () C:\Program Files\EFI\EFI XF\Server\libetldcraw.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00314368 ____N () C:\Program Files\EFI\EFI XF\Server\libefidcraw.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00143360 ____N () C:\Program Files\EFI\EFI XF\Server\libefijpeg.dll
2011-10-10 11:51 - 2010-12-11 11:10 - 00155648 ____N () C:\Program Files\EFI\EFI XF\Server\CutMarkCreator.dll
2011-10-10 11:51 - 2010-10-21 14:43 - 00143360 ____N () C:\Program Files\EFI\EFI XF\Server\EFIPAPS.dll
2011-10-04 12:07 - 2010-06-02 10:55 - 02179072 ____N () C:\Program Files\FlexLM\EFI.exe
2011-10-10 11:53 - 2011-01-19 11:25 - 00143360 _____ () C:\Program Files\EFI\EFI XF\JDF\JDFConnectorService.exe
2011-10-10 11:53 - 2011-10-11 12:23 - 00561152 ____N () C:\Program Files\EFI\EFI XF\JDF\JDFFrameWork.dll
2011-10-10 11:53 - 2011-01-18 12:49 - 00917504 _____ () C:\Program Files\EFI\EFI XF\JDF\JDFToolsDLL.dll
2011-10-10 11:53 - 2011-01-18 12:57 - 00368640 _____ () C:\Program Files\EFI\EFI XF\JDF\JDFWrapperCoreDLL.dll
2011-10-10 11:53 - 2011-01-18 12:56 - 08769536 _____ () C:\Program Files\EFI\EFI XF\JDF\JDFWrapperDLL.dll
2011-10-10 11:53 - 2011-09-20 08:37 - 00421888 ____N () C:\Program Files\EFI\EFI XF\JDF\ConfigurationControl.dll
2011-10-10 11:53 - 2011-09-29 08:25 - 00450560 ____N () C:\Program Files\EFI\EFI XF\JDF\data_layer.dll
2011-10-10 11:53 - 2011-09-29 08:25 - 00024064 ____N () C:\Program Files\EFI\EFI XF\JDF\Logger.dll
2011-10-10 11:53 - 2011-10-11 12:23 - 00233472 ____N () C:\Program Files\EFI\EFI XF\JDF\soapinterface.dll
2011-10-10 11:53 - 2011-09-29 08:24 - 00188416 ____N () C:\Program Files\EFI\EFI XF\JDF\NetworkLayer.dll
2011-10-18 10:04 - 2011-07-04 16:21 - 00249856 _____ () C:\Program Files\EFI\EFI XF\JDF\libcurl.dll
2011-10-10 11:53 - 2012-08-15 11:09 - 00057344 _____ () C:\Program Files\EFI\EFI XF\JDF\mimedecoder.dll
2011-10-10 11:53 - 2011-09-29 08:24 - 00192512 ____N () C:\Program Files\EFI\EFI XF\JDF\PrintMessageBroker.dll
2011-10-10 11:52 - 2011-09-29 08:24 - 00204800 ____N () C:\Program Files\EFI\EFI XF\JDF\jdfsoapclient.dll
2011-10-10 11:53 - 2011-10-11 12:23 - 00577536 ____N () C:\Program Files\EFI\EFI XF\JDF\XFAdapter.dll
2011-10-10 11:53 - 2010-03-31 08:15 - 00005120 ____N () C:\Program Files\EFI\EFI XF\JDF\EXDLLPROJECT.DLL
2014-03-20 14:22 - 2012-12-17 15:04 - 00131072 _____ () C:\Program Files\EFI\EFI XF\JDF\JMFPortProxyServerComponent.dll
2014-03-20 14:22 - 2012-12-17 15:04 - 00245760 _____ () C:\Program Files\EFI\EFI XF\JDF\JMFPort.dll
2011-10-10 11:53 - 2011-10-11 12:23 - 00073728 ____N () C:\Program Files\EFI\EFI XF\JDF\PGConverter.dll
2011-10-10 11:53 - 2011-10-11 12:23 - 00143360 ____N () C:\Program Files\EFI\EFI XF\JDF\IntentConverter.dll
2011-10-10 11:53 - 2010-03-31 08:15 - 01110016 ____N () C:\Program Files\EFI\EFI XF\JDF\pdfeye.dll
2011-10-10 11:53 - 2010-03-31 08:15 - 00073728 ____N () C:\Program Files\EFI\EFI XF\JDF\libefizlibd.dll
2011-10-10 11:53 - 2010-03-31 08:15 - 00266240 ____N () C:\Program Files\EFI\EFI XF\JDF\pdftyphoon.dll
2011-10-10 11:53 - 2010-03-31 08:15 - 00155648 ____N () C:\Program Files\EFI\EFI XF\JDF\pdfwind.dll
2011-10-10 11:53 - 2011-10-11 12:23 - 00090112 ____N () C:\Program Files\EFI\EFI XF\JDF\RunlistPreflighter.dll
2011-10-10 11:52 - 2011-02-08 15:01 - 00782336 _____ () C:\Program Files\EFI\EFI XF\JDF\ComGUI.Dll
2011-10-04 06:18 - 2011-10-04 06:18 - 00009728 _____ () C:\Windows\assembly\GAC_32\GBHO\1.0.0.0__709f1911357dc329\GBHO.dll
2014-05-08 13:23 - 2014-05-08 13:23 - 00019968 _____ () C:\Program Files\Adobe\Acrobat 10.0\Acrobat\locale\cs_cz\acrotray.cze
2014-07-30 06:25 - 2014-02-10 13:44 - 04592128 _____ () C:\Users\Martin\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-07-30 06:25 - 2014-02-10 13:44 - 00112128 _____ () C:\Users\Martin\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
2014-09-05 11:06 - 2014-08-30 04:49 - 08577864 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\pdf.dll
2014-09-05 11:06 - 2014-08-30 04:49 - 00331592 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\ppGoogleNaClPluginChrome.dll
2014-09-05 11:06 - 2014-08-30 04:49 - 01660232 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\ffmpegsumo.dll
2014-09-05 11:06 - 2014-08-30 04:49 - 14669128 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: vToolbarUpdater10.2.0 => 2
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/09/2014 10:23:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/09/2014 09:58:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program RogueKiller.exe verze 9.2.9.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1ed0
Čas spuštění: 01cfcc03335fcabe
Čas ukončení: 17
Cesta k aplikaci: C:\Users\Martin\Desktop\RogueKiller.exe
ID hlášení:
Error: (09/09/2014 09:33:21 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13026
Error: (09/09/2014 09:33:21 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13026
Error: (09/09/2014 09:33:21 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (09/09/2014 09:33:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12028
Error: (09/09/2014 09:33:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12028
Error: (09/09/2014 09:33:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (09/09/2014 09:33:19 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11029
Error: (09/09/2014 09:33:19 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11029
System errors:
=============
Error: (09/09/2014 10:20:55 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto chybou:
%%5
Error: (09/09/2014 10:17:49 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:49 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:48 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:48 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:47 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:47 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:46 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:46 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:45 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Microsoft Office Sessions:
=========================
Error: (09/09/2014 10:23:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/09/2014 09:58:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: RogueKiller.exe9.2.9.01ed001cfcc03335fcabe17C:\Users\Martin\Desktop\RogueKiller.exe
Error: (09/09/2014 09:33:21 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13026
Error: (09/09/2014 09:33:21 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13026
Error: (09/09/2014 09:33:21 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (09/09/2014 09:33:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12028
Error: (09/09/2014 09:33:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12028
Error: (09/09/2014 09:33:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (09/09/2014 09:33:19 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11029
Error: (09/09/2014 09:33:19 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11029
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz
Percentage of memory in use: 48%
Total physical RAM: 3575.37 MB
Available physical RAM: 1841.81 MB
Total Pagefile: 7149.02 MB
Available Pagefile: 4703.68 MB
Total Virtual: 2047.88 MB
Available Virtual: 1894.68 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:97.66 GB) (Free:15.92 GB) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:886.63 GB) NTFS
Drive e: () (Fixed) (Total:833.58 GB) (Free:703.57 GB) NTFS
Drive o: () (Fixed) (Total:0.28 GB) (Free:0.23 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D84EF3D6)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2BAB359D)
Partition 1: (Active) - (Size=283 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=833.6 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Ran by Martin at 2014-09-09 10:48:03
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG Internet Security 2013 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2013 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2013 (Disabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
@BIOS (HKLM\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Adobe Acrobat X Pro - Eastern European (Group 1) (HKLM\...\{AC76BA86-1029-4770-7760-000000000005}) (Version: 10.1.11 - Adobe Systems)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Content Viewer (HKLM\...\com.adobe.dmp.contentviewer) (Version: 1.4.0 - Adobe Systems Incorporated)
Adobe Content Viewer (Version: 1.4.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 5.5 Design Standard (HKLM\...\{53CF3920-648B-4F99-8D05-6A6C5298F57B}) (Version: 5.5 - Adobe Systems Incorporated)
Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Aktualizace NVIDIA 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
Apple Application Support (HKLM\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Astroburn Lite (HKLM\...\Astroburn Lite) (Version: 1.8.0.0182 - Disc Soft Ltd)
ATLAS Czech 2011 NT (HKLM\...\{A5A82A64-AA95-4BB0-8270-371BE1ADD26A}) (Version: 10.00 - Picodas Praha, spol. s r.o.)
AutoGreen B10.1021.1 (HKLM\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.1021.1 (Version: 1.00.0000 - GIGABYTE) Hidden
AVG 2013 (HKLM\...\AVG) (Version: 2013.0.3485 - AVG Technologies CZ, s.r.o.)
AVG 2013 (Version: 13.0.3485 - AVG Technologies CZ, s.r.o.) Hidden
AVG 2013 (Version: 13.0.4015 - AVG Technologies CZ, s.r.o.) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Canon Easy-PhotoPrint EX (HKLM\...\Easy-PhotoPrint EX) (Version: - )
Canon MG5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5100_series) (Version: - )
Canon Solution Menu EX (HKLM\...\CanonSolutionMenuEX) (Version: - )
Combined Community Codec Pack 2010-10-10 (HKLM\...\Combined Community Codec Pack_is1) (Version: 2010.10.10.0 - CCCP Project)
CrystalDiskMark 3.0.1 (HKLM\...\CrystalDiskMark_is1) (Version: 3.0.1 - Crystal Dew World)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.47.1.0337 - Disc Soft Ltd)
DES 2.0 (HKLM\...\{675F86A8-E093-4002-87D5-915CC2C45571}) (Version: 1.00.0000 - Gigabyte)
Easy Tune 6 B10.1216.1 (HKLM\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B10.1216.1 (Version: 1.00.0000 - GIGABYTE) Hidden
easyCapsa 1.0.6 (HKLM\...\{7A718EAD-F826-4933-86FD-394B1210FB7A}_is1) (Version: 1.0.6 - Capsa.cz)
EFI Media Profiles (HKLM\...\{D661D955-DE47-421B-8501-CA00BD16AB74}) (Version: 4.5.0 - EFI)
EFI XF (HKLM\...\{EF45A79E-0C57-4891-996E-CDD8FAAA75D3}) (Version: 4.5.8 - EFI)
GoldWave v5.58 (HKLM\...\GoldWave v5.58) (Version: - )
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
HandBrake 0.9.9.1 (HKLM\...\HandBrake) (Version: 0.9.9.1 - )
iCloud (HKLM\...\{00A61104-74B5-4056-AD00-4397EF4FB141}) (Version: 3.1.0.40 - Apple Inc.)
ICQ7.7 (HKLM\...\{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}) (Version: 7.7 - ICQ)
Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
ISO Image Burner 1.1 (HKLM\...\{B2B123D3-E780-4EB0-B540-18F5FCC6EFE9}_is1) (Version: - ISOImageBurner.com)
iTunes (HKLM\...\{86D04316-F49A-4AF2-B3F1-A1E943886CE7}) (Version: 11.3.1.2 - Apple Inc.)
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (Version: 2.1.67.1 - Oracle, Inc.) Hidden
Java(TM) 7 Update 5 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217005F0}) (Version: 7.0.50 - Oracle)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LibreOffice 4.2.4.2 (HKLM\...\{6B4977CB-5B9F-4B24-8310-3BA527A8AF22}) (Version: 4.2.4.2 - The Document Foundation)
Mapy na ceste 3.06 (HKLM\...\Mapy na ceste - Maps capture_is1) (Version: - Milan Travnicek)
Metronom v1.0 (HKLM\...\Metronom v1.0) (Version: - )
Microsoft .NET Framework 4.5.1 (CSY) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office Visio Viewer 2007 (HKLM\...\{95120000-0052-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000 - Adobe) Hidden
MiniTool Partition Wizard Home Edition 8.1.1 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
MKVToolNix 6.2.0 (HKLM\...\MKVToolNix) (Version: 6.2.0 - Moritz Bunkus)
MotoCalc 8.08 (HKLM\...\MotoCalc 8_is1) (Version: - Capable Computing, Inc.)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač 3D Vision 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA PhysX (Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA ShadowPlay 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Systémový software PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Update Core (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
ON_OFF Charge B11.0110.1 (HKLM\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice 4.1.0 (HKLM\...\{43245B34-BAEA-4716-B877-38E7E7026698}) (Version: 4.10.9764 - Apache Software Foundation)
Ovládací panel NVIDIA 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden
PlayReady PC Runtime x86 (HKLM\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Pracovní kalendář (HKLM\...\Pracovní kalendář) (Version: - )
Profili 2 (HKLM\...\Profili 2) (Version: - )
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
REALTEK DTV USB DEVICE (HKLM\...\{DDBB7C89-1A09-441E-AA0F-6AA465755C17}) (Version: 1.00.0000 - Realtek)
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.36.1224.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6282 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
SHIELD Streaming (Version: 3.1.100 - NVIDIA Corporation) Hidden
SketchUp 2014 (HKLM\...\{A608A8D3-E77C-4BEE-8F2A-F8124F5F0FE2}) (Version: 14.0.4900 - Trimble Navigation Limited)
Smart 6 B10.1221.1 (HKLM\...\{3B35725F-C623-4A1E-B5CC-99C0868679E3}) (Version: 1.00.0000 - GIGABYTE)
Spelling Dictionaries Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
Stereoscopic Player (HKLM\...\{0969EE0E-3CE2-434B-BFC4-940ABC8A39BE}) (Version: 2.0.6 - 3dtv.at)
Těžiště 1.0 (HKLM\...\Těžiště_is1) (Version: - Pavel König)
Tone Mapping Plug-In 2.1 (HKLM\...\CS432_is1) (Version: 2.1 - HDRsoft Sarl)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH)
UltraVuer4 (HKLM\...\UltraVuer4) (Version: - )
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM\...\{068B46A0-8858-4CEB-80BC-A4AE787A05FC}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-3393032927-722208142-1737332873-1000_Classes\CLSID\{1c492e6a-2803-5ed7-83e1-1b1d4d41eb39}\InprocServer32 -> E:\soukrome Martin\tt\Trials Evolution\datapack\orbit\npuplaypc.dll No File
==================== Restore Points =========================
09-09-2014 08:11:58 zoek.exe restore point
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:04 - 2014-09-09 10:12 - 00000840 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {4BD9C3F6-30D8-4AAC-8AE2-D683FE532EAD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09] (Adobe Systems Incorporated)
Task: {54A70305-DD5F-497C-9AD9-FE1B6F0CFD4A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-02-21] (Google Inc.)
Task: {97B43085-D0DD-4CB5-BF49-615DC8CE2B19} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {AAA3C85F-C3D1-436D-B48C-8AB32102AED4} - System32\Tasks\AdobeAAMUpdater-1.0-Martin-PC-Martin => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated)
Task: {B1CAF06E-19F3-41AC-B364-3888B03055DA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-02-21] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-08-24 14:16 - 2014-07-02 21:42 - 00107992 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-10-10 11:50 - 2005-03-31 15:26 - 00172032 _____ () C:\ProgramData\EFI\EFI XF\Server\Debuglog.exe
2011-10-04 06:18 - 2009-06-17 16:13 - 00068136 _____ () C:\Program Files\GIGABYTE\EnergySaver2\des2svr.exe
2011-10-04 06:18 - 2009-05-04 17:56 - 00102400 _____ () C:\Program Files\GIGABYTE\EnergySaver2\ycc.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00337920 ____N () C:\Program Files\EFI\EFI XF\Server\efi_basics.dll
2011-10-18 10:03 - 2012-12-17 15:05 - 00180224 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\JetrionFinish.fll
2014-03-20 14:22 - 2012-12-17 15:05 - 00399872 _____ () C:\Program Files\EFI\EFI XF\Server\cnwicdl.dll
2011-10-10 11:51 - 2010-10-21 14:39 - 00159744 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\DummyPort.pll
2014-03-20 14:12 - 2012-06-25 10:01 - 00274432 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\EfiRPort.pll
2011-10-10 11:51 - 2010-10-21 14:39 - 00262144 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\Hp9000sPort.pll
2011-10-10 11:51 - 2012-12-17 15:05 - 00552960 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\HpL25500Port.pll
2011-10-10 11:51 - 2011-11-30 13:38 - 00397312 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\HpPort.pll
2011-10-10 11:51 - 2009-05-18 16:14 - 00399872 ____N () C:\Program Files\EFI\EFI XF\Server\hpbidiusb.dll
2011-10-10 11:51 - 2010-10-21 14:39 - 00176128 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\IpPort.pll
2011-10-10 11:51 - 2010-10-21 14:39 - 00233472 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\MimakiPort.pll
2011-10-10 11:51 - 2010-10-21 14:39 - 00208896 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\MimakiUsbPort.pll
2014-03-20 14:12 - 2012-03-19 03:47 - 00188416 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\RolandBNPort.pll
2011-10-10 11:51 - 2010-10-21 14:37 - 00225280 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\SiiUsbPort.pll
2011-10-10 11:51 - 2010-10-21 14:39 - 00176128 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\SysPort.pll
2011-10-10 11:51 - 2010-10-21 14:38 - 00184320 ____N () C:\Program Files\EFI\EFI XF\Server\Plugins\UsbPort.pll
2011-10-18 10:03 - 2012-03-19 03:28 - 00294912 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\vutekport.pll
2011-10-18 10:03 - 2012-12-17 15:05 - 00245760 _____ () C:\Program Files\EFI\EFI XF\Server\JMFPort.dll
2011-10-18 10:03 - 2010-09-01 12:13 - 08540160 ____N () C:\Program Files\EFI\EFI XF\Server\JDFWrapperDLL.dll
2011-10-18 10:03 - 2010-11-16 12:28 - 00917504 ____N () C:\Program Files\EFI\EFI XF\Server\JDFToolsDLL.dll
2011-10-18 10:03 - 2011-06-08 11:14 - 00180224 ____N () C:\Program Files\EFI\EFI XF\Server\NetworkLayer.dll
2011-10-10 11:51 - 2012-12-17 15:05 - 00208896 _____ () C:\Program Files\EFI\EFI XF\Server\ipfmlib.dll
2011-10-10 11:51 - 2003-06-20 21:42 - 00118784 ____N () C:\Program Files\EFI\EFI XF\Server\jetreadyDLL.dll
2011-10-10 11:51 - 2012-12-17 15:05 - 01097728 _____ () C:\Program Files\EFI\EFI XF\Server\Plugins\RPPrn.oll
2011-10-10 11:51 - 2010-10-21 14:38 - 00061440 ____N () C:\Program Files\EFI\EFI XF\Server\zLib.dll
2011-10-10 11:51 - 2010-03-16 13:36 - 00607232 ____N () C:\Program Files\EFI\EFI XF\Server\libeficsl.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00659968 ____N () C:\Program Files\EFI\EFI XF\Server\libacsredux.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00083456 ____N () C:\Program Files\EFI\EFI XF\Server\libtranslib.dll
2011-10-10 11:51 - 2010-03-15 18:29 - 00160768 ____N () C:\Program Files\EFI\EFI XF\Server\pdfwind.dll
2011-10-10 11:51 - 2010-03-15 18:29 - 00368640 ____N () C:\Program Files\EFI\EFI XF\Server\pdfeye.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00084992 ____N () C:\Program Files\EFI\EFI XF\Server\libefizlib.dll
2011-10-10 11:51 - 2010-03-15 18:29 - 00017408 ____N () C:\Program Files\EFI\EFI XF\Server\pdfgale.dll
2011-10-10 11:51 - 2010-03-15 18:29 - 00015872 ____N () C:\Program Files\EFI\EFI XF\Server\pdfclouds.dll
2011-10-10 11:51 - 2010-03-15 18:24 - 00135168 ____R () C:\Program Files\EFI\EFI XF\Server\LIBEXPAT.dll
2011-10-10 11:51 - 2010-03-15 18:29 - 00236544 ____N () C:\Program Files\EFI\EFI XF\Server\pdfblizzard.dll
2011-10-10 11:51 - 2010-03-15 18:29 - 00311296 ____N () C:\Program Files\EFI\EFI XF\Server\pdftyphoon.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00013312 ____N () C:\Program Files\EFI\EFI XF\Server\libetldcraw.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00314368 ____N () C:\Program Files\EFI\EFI XF\Server\libefidcraw.dll
2011-10-10 11:51 - 2010-03-15 18:18 - 00143360 ____N () C:\Program Files\EFI\EFI XF\Server\libefijpeg.dll
2011-10-10 11:51 - 2010-12-11 11:10 - 00155648 ____N () C:\Program Files\EFI\EFI XF\Server\CutMarkCreator.dll
2011-10-10 11:51 - 2010-10-21 14:43 - 00143360 ____N () C:\Program Files\EFI\EFI XF\Server\EFIPAPS.dll
2011-10-04 12:07 - 2010-06-02 10:55 - 02179072 ____N () C:\Program Files\FlexLM\EFI.exe
2011-10-10 11:53 - 2011-01-19 11:25 - 00143360 _____ () C:\Program Files\EFI\EFI XF\JDF\JDFConnectorService.exe
2011-10-10 11:53 - 2011-10-11 12:23 - 00561152 ____N () C:\Program Files\EFI\EFI XF\JDF\JDFFrameWork.dll
2011-10-10 11:53 - 2011-01-18 12:49 - 00917504 _____ () C:\Program Files\EFI\EFI XF\JDF\JDFToolsDLL.dll
2011-10-10 11:53 - 2011-01-18 12:57 - 00368640 _____ () C:\Program Files\EFI\EFI XF\JDF\JDFWrapperCoreDLL.dll
2011-10-10 11:53 - 2011-01-18 12:56 - 08769536 _____ () C:\Program Files\EFI\EFI XF\JDF\JDFWrapperDLL.dll
2011-10-10 11:53 - 2011-09-20 08:37 - 00421888 ____N () C:\Program Files\EFI\EFI XF\JDF\ConfigurationControl.dll
2011-10-10 11:53 - 2011-09-29 08:25 - 00450560 ____N () C:\Program Files\EFI\EFI XF\JDF\data_layer.dll
2011-10-10 11:53 - 2011-09-29 08:25 - 00024064 ____N () C:\Program Files\EFI\EFI XF\JDF\Logger.dll
2011-10-10 11:53 - 2011-10-11 12:23 - 00233472 ____N () C:\Program Files\EFI\EFI XF\JDF\soapinterface.dll
2011-10-10 11:53 - 2011-09-29 08:24 - 00188416 ____N () C:\Program Files\EFI\EFI XF\JDF\NetworkLayer.dll
2011-10-18 10:04 - 2011-07-04 16:21 - 00249856 _____ () C:\Program Files\EFI\EFI XF\JDF\libcurl.dll
2011-10-10 11:53 - 2012-08-15 11:09 - 00057344 _____ () C:\Program Files\EFI\EFI XF\JDF\mimedecoder.dll
2011-10-10 11:53 - 2011-09-29 08:24 - 00192512 ____N () C:\Program Files\EFI\EFI XF\JDF\PrintMessageBroker.dll
2011-10-10 11:52 - 2011-09-29 08:24 - 00204800 ____N () C:\Program Files\EFI\EFI XF\JDF\jdfsoapclient.dll
2011-10-10 11:53 - 2011-10-11 12:23 - 00577536 ____N () C:\Program Files\EFI\EFI XF\JDF\XFAdapter.dll
2011-10-10 11:53 - 2010-03-31 08:15 - 00005120 ____N () C:\Program Files\EFI\EFI XF\JDF\EXDLLPROJECT.DLL
2014-03-20 14:22 - 2012-12-17 15:04 - 00131072 _____ () C:\Program Files\EFI\EFI XF\JDF\JMFPortProxyServerComponent.dll
2014-03-20 14:22 - 2012-12-17 15:04 - 00245760 _____ () C:\Program Files\EFI\EFI XF\JDF\JMFPort.dll
2011-10-10 11:53 - 2011-10-11 12:23 - 00073728 ____N () C:\Program Files\EFI\EFI XF\JDF\PGConverter.dll
2011-10-10 11:53 - 2011-10-11 12:23 - 00143360 ____N () C:\Program Files\EFI\EFI XF\JDF\IntentConverter.dll
2011-10-10 11:53 - 2010-03-31 08:15 - 01110016 ____N () C:\Program Files\EFI\EFI XF\JDF\pdfeye.dll
2011-10-10 11:53 - 2010-03-31 08:15 - 00073728 ____N () C:\Program Files\EFI\EFI XF\JDF\libefizlibd.dll
2011-10-10 11:53 - 2010-03-31 08:15 - 00266240 ____N () C:\Program Files\EFI\EFI XF\JDF\pdftyphoon.dll
2011-10-10 11:53 - 2010-03-31 08:15 - 00155648 ____N () C:\Program Files\EFI\EFI XF\JDF\pdfwind.dll
2011-10-10 11:53 - 2011-10-11 12:23 - 00090112 ____N () C:\Program Files\EFI\EFI XF\JDF\RunlistPreflighter.dll
2011-10-10 11:52 - 2011-02-08 15:01 - 00782336 _____ () C:\Program Files\EFI\EFI XF\JDF\ComGUI.Dll
2011-10-04 06:18 - 2011-10-04 06:18 - 00009728 _____ () C:\Windows\assembly\GAC_32\GBHO\1.0.0.0__709f1911357dc329\GBHO.dll
2014-05-08 13:23 - 2014-05-08 13:23 - 00019968 _____ () C:\Program Files\Adobe\Acrobat 10.0\Acrobat\locale\cs_cz\acrotray.cze
2014-07-30 06:25 - 2014-02-10 13:44 - 04592128 _____ () C:\Users\Martin\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-07-30 06:25 - 2014-02-10 13:44 - 00112128 _____ () C:\Users\Martin\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
2014-09-05 11:06 - 2014-08-30 04:49 - 08577864 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\pdf.dll
2014-09-05 11:06 - 2014-08-30 04:49 - 00331592 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\ppGoogleNaClPluginChrome.dll
2014-09-05 11:06 - 2014-08-30 04:49 - 01660232 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\ffmpegsumo.dll
2014-09-05 11:06 - 2014-08-30 04:49 - 14669128 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: vToolbarUpdater10.2.0 => 2
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/09/2014 10:23:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/09/2014 09:58:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program RogueKiller.exe verze 9.2.9.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1ed0
Čas spuštění: 01cfcc03335fcabe
Čas ukončení: 17
Cesta k aplikaci: C:\Users\Martin\Desktop\RogueKiller.exe
ID hlášení:
Error: (09/09/2014 09:33:21 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13026
Error: (09/09/2014 09:33:21 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13026
Error: (09/09/2014 09:33:21 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (09/09/2014 09:33:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12028
Error: (09/09/2014 09:33:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12028
Error: (09/09/2014 09:33:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (09/09/2014 09:33:19 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11029
Error: (09/09/2014 09:33:19 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11029
System errors:
=============
Error: (09/09/2014 10:20:55 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Volání ScRegSetValueExW skončilo neúspěšné pro FailureActions s touto chybou:
%%5
Error: (09/09/2014 10:17:49 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:49 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:48 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:48 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:47 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:47 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:46 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:46 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (09/09/2014 10:17:45 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Microsoft Office Sessions:
=========================
Error: (09/09/2014 10:23:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/09/2014 09:58:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: RogueKiller.exe9.2.9.01ed001cfcc03335fcabe17C:\Users\Martin\Desktop\RogueKiller.exe
Error: (09/09/2014 09:33:21 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13026
Error: (09/09/2014 09:33:21 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13026
Error: (09/09/2014 09:33:21 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (09/09/2014 09:33:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12028
Error: (09/09/2014 09:33:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12028
Error: (09/09/2014 09:33:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (09/09/2014 09:33:19 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11029
Error: (09/09/2014 09:33:19 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11029
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz
Percentage of memory in use: 48%
Total physical RAM: 3575.37 MB
Available physical RAM: 1841.81 MB
Total Pagefile: 7149.02 MB
Available Pagefile: 4703.68 MB
Total Virtual: 2047.88 MB
Available Virtual: 1894.68 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:97.66 GB) (Free:15.92 GB) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:886.63 GB) NTFS
Drive e: () (Fixed) (Total:833.58 GB) (Free:703.57 GB) NTFS
Drive o: () (Fixed) (Total:0.28 GB) (Free:0.23 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D84EF3D6)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2BAB359D)
Partition 1: (Active) - (Size=283 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=833.6 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Re: zpomalený pc - hadiprd
pardon asi to pustim jeste jednou bez efi
Re: zpomalený pc - hadiprd
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-09-2014
Ran by Martin (administrator) on MARTIN-PC on 09-09-2014 10:50:57
Running from C:\Users\Martin\Desktop
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\ProgramData\EFI\EFI XF\Server\Debuglog.exe
() C:\Program Files\GIGABYTE\EnergySaver2\des2svr.exe
(Acresso Software Inc.) C:\Program Files\FlexLM\lmgrd.exe
(Acresso Software Inc.) C:\Program Files\FlexLM\lmgrd.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
() C:\Program Files\EFI\EFI XF\JDF\JDFConnectorService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Gigabyte Technology CO., LTD.) C:\Program Files\GIGABYTE\SMART6\timelock\TimeMgmtDaemon.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Gigabyte Technology CO., LTD.) C:\Program Files\GIGABYTE\SMART6\timelock\AlarmClock.exe
(Gigabyte Technology CO.) C:\Program Files\GIGABYTE\SMART6\Recovery\RPMDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Renesas Electronics Corporation) C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcfgex.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\Program Files\FlexLM\EFI.exe
(forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10021480 2011-01-04] (Realtek Semiconductor)
HKLM\...\Run: [NUSB3MON] => C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM\...\Run: [ISUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-02-17] (InstallShield Software Corporation)
HKLM\...\Run: [EFI_XF_Control] => C:\Program Files\EFI\EFI XF\Server\EFI_XF_Control.exe [1890304 2012-03-15] (EFI)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41336 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840568 2014-05-08] (Adobe Systems Inc.)
HKLM\...\Run: [CanonSolutionMenuEx] => C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1612920 2011-08-04] (CANON INC.)
HKLM\...\Run: [IR_SERVER] => C:\PROGRA~1\Realtek\REALTE~1\IR_SERVER.exe
HKLM\...\Run: [] => [X]
HKLM\...\Run: [HDD Regenerator] => C:\Program Files\HDD Regenerator\HDD Regenerator.exe
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2013\avgui.exe [4411952 2014-01-21] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Nvtmru] => "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe [1750528 2010-08-24] (Gigabyte Technology CO., LTD.)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-17] (InstallShield Software Corporation)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe [1104256 2014-05-08] (Adobe Systems Incorporated)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [MobileDocuments] => C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6] => C:\Program Files\Google\Chrome\Application\chrome.exe [852808 2014-08-30] (Google Inc.)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [GoogleDriveSync] => "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {573e9842-edb8-11e0-827e-806e6f6e6963} - F:\startdvd.exe
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {7ce7096e-f93d-11e0-a338-801f022438c0} - L:\LaunchU3.exe -a
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {f2772099-7757-11e3-a52f-801f022438c0} - L:\MediaManager.exe
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {f7f890e8-0627-11e3-a6b4-801f022438c0} - explorer.exe .\
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nmd.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.tsbohemia.cz
SearchScopes: HKCU - DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {4205D10E-CE72-4964-A334-D3D6EB32222B} URL = http://www.google.com/cse?cx=partner-pu ... earchTerms}
SearchScopes: HKCU - {8A83E35D-6884-4431-ABB4-E3BB418C86E3} URL = http://www.bing.com/search?q={searchTer ... R1&pc=SPLH
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: GBHO.BHO -> {c20391ee-b6fd-4a35-9f1b-2892dda5b107} -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Smart Recovery 2 - {a011d643-4a67-4934-a775-46139847d7f2} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} http://kitchenplanner.ikea.com/CZ/Core/ ... _Win32.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll No File
Winsock: Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\..\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D}: [NameServer] 172.16.1.2
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: ubisoft.com/uplaypc -> E:\soukrome Martin\tt\Trials Evolution\datapack\orbit\npuplaypc.dll No File
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-02-01]
Chrome:
=======
CHR HomePage: Default -> hxxp://google.cz/
CHR DefaultSearchKeyword: Default -> A40723CF6F6406CA51B8DA1392DAAC7EB2A0BA19041D4EAE452B94A3335864F0
CHR DefaultSearchURL: Default -> 9722840B2BF7BCFC96C50493F0FFDB0C2B105071B62F451B102D14AC7DF89DEA
CHR CustomProfile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Foto & Album Správa pro Picasa a Google Plus) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\enejmalmkbmnbojaekkipgihohemgppg [2014-09-09]
CHR Extension: (Black metallic theme) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbhhihkiaeeioepkklgfpdohnemkjcoi [2014-09-09]
CHR Extension: (AdBlock) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-09-09]
CHR Extension: (Peněženka Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-10]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 avgfws; C:\Program Files\AVG\AVG2013\avgfws.exe [1432080 2013-10-23] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-11-20] (AVG Technologies CZ, s.r.o.)
R2 DebugLog; C:\ProgramData\EFI\EFI XF\Server\Debuglog.exe [172032 2005-03-31] () [File not signed]
R2 DES2 Service; C:\Program Files\GIGABYTE\EnergySaver2\des2svr.exe [68136 2009-06-17] ()
R2 EFI License Manager; C:\Program Files\FlexLM\lmgrd.exe [1431440 2008-08-04] (Acresso Software Inc.)
S2 EFI XF Server; C:\Program Files\EFI\EFI XF\Server\EFI_XF_Server.exe [4833280 2012-12-17] (Electronics for Imaging) [File not signed]
R2 hasplms; C:\Windows\system32\hasplms.exe [3750400 2009-12-16] (SafeNet Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 JDF Connector Service; C:\Program Files\EFI\EFI XF\JDF/JDFConnectorService.exe [143360 2011-01-19] () [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [17536800 2014-07-25] (NVIDIA Corporation)
R2 Smart TimeLock; C:\Program Files\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [114688 2009-10-13] (Gigabyte Technology CO., LTD.) [File not signed]
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aksfridge; C:\Windows\System32\DRIVERS\aksfridge.sys [358400 2010-04-13] (SafeNet Inc.)
R3 akshasp; C:\Windows\System32\DRIVERS\akshasp.sys [238208 2009-03-13] (Aladdin Knowledge Systems Ltd.)
R3 akshhl; C:\Windows\System32\DRIVERS\akshhl.sys [46336 2007-07-23] (Aladdin Knowledge Systems Ltd.)
R3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [16384 2009-06-22] (Aladdin Knowledge Systems Ltd.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [18544 2011-01-10] ()
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6x.sys [50296 2012-09-04] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-02-08] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [171320 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182072 2014-04-15] (AVG Technologies CZ, s.r.o.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2013-08-16] (Disc Soft Ltd)
S3 etdrv; C:\Windows\etdrv.sys [17488 2012-02-02] (Windows (R) 2000 DDK provider)
R3 gdrv; C:\Windows\gdrv.sys [17488 2014-09-09] (Windows (R) 2000 DDK provider)
S3 GVTDrv; C:\Windows\system32\Drivers\GVTDrv.sys [24944 2012-04-13] ()
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [588800 2009-12-09] (SafeNet Inc.)
S3 i1; C:\Windows\System32\Drivers\i1.sys [26045 2008-11-18] (GretagMacbeth)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-09-21] (Intel Corporation)
R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [62208 2010-11-19] (Renesas Electronics Corporation)
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [141568 2010-11-19] (Renesas Electronics Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19232 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2014-03-31] (NVIDIA Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [15688 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [10320 2013-09-30] ()
S3 RTL2832UBDA; C:\Windows\System32\drivers\RTL2832UBDA.sys [188392 2010-07-01] (REALTEK SEMICONDUCTOR Corp.)
S3 RTL2832UUSB; C:\Windows\System32\Drivers\RTL2832UUSB.sys [32872 2010-07-01] (REALTEK SEMICONDUCTOR Corp.)
S3 RTL2832U_IRHID; C:\Windows\System32\DRIVERS\RTL2832U_IRHID.sys [31872 2009-10-05] (Realtek)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [473656 2012-01-26] (Duplex Secure Ltd.)
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [43520 2012-02-15] (Apple, Inc.) [File not signed]
S3 X-Rite; C:\Windows\System32\DRIVERS\XrUsb.sys [18168 2007-01-11] (X-Rite, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-09 10:47 - 2014-09-09 10:51 - 00022231 _____ () C:\Users\Martin\Desktop\FRST.txt
2014-09-09 10:47 - 2014-09-09 10:50 - 00000000 ____D () C:\FRST
2014-09-09 10:46 - 2014-09-09 10:46 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe
2014-09-09 10:45 - 2014-09-09 10:45 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 124261.crdownload
2014-09-09 10:44 - 2014-09-09 10:44 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 204334.crdownload
2014-09-09 10:39 - 2014-09-09 10:39 - 01097728 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2014-09-09 10:29 - 2014-09-09 10:29 - 00008527 _____ () C:\Users\Martin\Desktop\zoek-results.txt
2014-09-09 10:20 - 2014-09-09 10:10 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-09 10:11 - 2014-09-09 10:24 - 00008527 _____ () C:\zoek-results.log
2014-09-09 10:10 - 2014-09-09 10:17 - 00000000 ____D () C:\zoek_backup
2014-09-09 10:09 - 2014-09-09 10:09 - 01290240 _____ () C:\Users\Martin\Desktop\zoek.exe
2014-09-09 08:23 - 2014-09-09 08:23 - 00005370 _____ () C:\Users\Martin\Desktop\RKreport_SCN_09092014_081928.log
2014-09-08 13:57 - 2014-09-09 09:59 - 00033512 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-09-08 13:57 - 2014-09-08 13:57 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-09-08 13:55 - 2014-09-08 13:55 - 04857944 _____ () C:\Users\Martin\Desktop\RogueKiller.exe
2014-09-08 13:38 - 2014-09-08 13:38 - 00001103 _____ () C:\Users\Martin\Desktop\MBAM.txt
2014-09-08 12:34 - 2014-09-08 12:34 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Martin\Downloads\mbam-clean-2.1.1.1001.exe
2014-09-08 12:33 - 2014-09-08 12:33 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Martin\Downloads\mbam-setup-1.75.0.1300.exe
2014-09-08 12:27 - 2014-09-08 12:27 - 00006089 _____ () C:\Users\Martin\Desktop\AdwCleaner[S0].txt
2014-09-08 12:22 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-09-08 11:53 - 2014-09-09 07:57 - 00000000 ____D () C:\AdwCleaner
2014-09-08 11:52 - 2014-09-08 11:52 - 01370467 _____ () C:\Users\Martin\Desktop\adwcleaner_3.309.exe
2014-09-08 09:41 - 2014-09-08 10:01 - 00011040 _____ () C:\Users\Martin\Desktop\Nmc_2014-09-08_09-41-55.log
2014-09-08 09:39 - 2014-09-08 09:40 - 353468496 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner (1).exe
2014-09-08 09:32 - 2014-09-08 09:33 - 350127064 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner.exe
2014-09-03 07:49 - 2014-09-03 08:40 - 05253830 _____ () C:\Users\Martin\Documents\stul prace.skb
2014-09-03 07:32 - 2014-09-03 08:45 - 09614797 _____ () C:\Users\Martin\Documents\stul prace.skp
2014-08-28 08:18 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 08:18 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-26 09:20 - 2011-10-06 14:45 - 00000690 _____ () C:\Users\Martin\Desktop\Printjobs – zástupce.lnk
2014-08-26 05:59 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-26 05:59 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-26 05:59 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-26 05:59 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-26 05:58 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-26 05:58 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-26 05:58 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-26 05:58 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-26 05:58 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-18 06:34 - 2014-08-18 06:34 - 00001790 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-18 06:34 - 2014-08-18 06:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-18 06:32 - 2014-08-18 06:33 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-08-18 06:32 - 2014-08-18 06:33 - 00000000 ____D () C:\Program Files\iTunes
2014-08-18 06:32 - 2014-08-18 06:32 - 00000000 ____D () C:\Program Files\iPod
2014-08-18 06:28 - 2014-08-18 06:28 - 00001852 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-08-18 06:28 - 2014-08-18 06:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-08-18 06:28 - 2014-08-18 06:28 - 00000000 ____D () C:\Program Files\QuickTime
2014-08-13 11:07 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-13 11:07 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-13 11:07 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-13 11:07 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-13 06:11 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-13 06:11 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-13 06:11 - 2014-07-25 15:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 06:11 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-13 06:11 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-13 06:11 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-13 06:11 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-13 06:11 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-13 06:11 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-13 06:11 - 2014-07-25 14:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-13 06:11 - 2014-07-25 13:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 06:11 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-13 06:11 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 06:11 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-13 06:11 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-13 06:11 - 2014-07-25 13:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-13 06:11 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-13 06:11 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-13 06:11 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-13 06:11 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-13 06:11 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-13 06:11 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-13 06:11 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-13 06:11 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-13 06:10 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-13 06:10 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-13 06:10 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-13 06:10 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-13 06:10 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-13 06:10 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-13 06:10 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-13 06:10 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-13 06:10 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-13 06:10 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-13 06:10 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-13 06:10 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-13 06:10 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-13 06:10 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-13 06:10 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-13 06:10 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-13 06:10 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-13 06:10 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-13 06:10 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-13 06:10 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-13 06:10 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-13 06:10 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-13 06:10 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-13 06:10 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-09 10:51 - 2014-09-09 10:47 - 00022231 _____ () C:\Users\Martin\Desktop\FRST.txt
2014-09-09 10:50 - 2014-09-09 10:47 - 00000000 ____D () C:\FRST
2014-09-09 10:46 - 2014-09-09 10:46 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe
2014-09-09 10:45 - 2014-09-09 10:45 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 124261.crdownload
2014-09-09 10:45 - 2012-04-03 06:02 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-09 10:44 - 2014-09-09 10:44 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 204334.crdownload
2014-09-09 10:44 - 2009-07-14 06:34 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-09 10:44 - 2009-07-14 06:34 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-09 10:39 - 2014-09-09 10:39 - 01097728 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2014-09-09 10:29 - 2014-09-09 10:29 - 00008527 _____ () C:\Users\Martin\Desktop\zoek-results.txt
2014-09-09 10:26 - 2011-10-03 14:14 - 01618258 _____ () C:\Windows\WindowsUpdate.log
2014-09-09 10:24 - 2014-09-09 10:11 - 00008527 _____ () C:\zoek-results.log
2014-09-09 10:24 - 2011-10-04 12:01 - 00017488 _____ (Windows (R) 2000 DDK provider) C:\Windows\gdrv.sys
2014-09-09 10:22 - 2012-08-24 14:16 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-09-09 10:22 - 2012-02-21 10:50 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-09 10:22 - 2011-10-04 12:07 - 00000000 ____D () C:\Program Files\FlexLM
2014-09-09 10:22 - 2010-11-20 23:48 - 00141538 _____ () C:\Windows\PFRO.log
2014-09-09 10:22 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-09 10:22 - 2009-07-14 06:39 - 00152424 _____ () C:\Windows\setupact.log
2014-09-09 10:17 - 2014-09-09 10:10 - 00000000 ____D () C:\zoek_backup
2014-09-09 10:10 - 2014-09-09 10:20 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-09 10:09 - 2014-09-09 10:09 - 01290240 _____ () C:\Users\Martin\Desktop\zoek.exe
2014-09-09 10:02 - 2012-02-21 10:50 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-09 09:59 - 2014-09-08 13:57 - 00033512 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-09-09 09:30 - 2011-10-04 06:43 - 00000000 ____D () C:\ProgramData\MFAData
2014-09-09 08:23 - 2014-09-09 08:23 - 00005370 _____ () C:\Users\Martin\Desktop\RKreport_SCN_09092014_081928.log
2014-09-09 07:57 - 2014-09-08 11:53 - 00000000 ____D () C:\AdwCleaner
2014-09-09 06:01 - 2011-10-03 14:18 - 00000000 ____D () C:\Users\Martin\AppData\Local\Adobe
2014-09-08 14:12 - 2013-05-29 08:53 - 00007634 _____ () C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
2014-09-08 13:57 - 2014-09-08 13:57 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-09-08 13:55 - 2014-09-08 13:55 - 04857944 _____ () C:\Users\Martin\Desktop\RogueKiller.exe
2014-09-08 13:38 - 2014-09-08 13:38 - 00001103 _____ () C:\Users\Martin\Desktop\MBAM.txt
2014-09-08 12:34 - 2014-09-08 12:34 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Martin\Downloads\mbam-clean-2.1.1.1001.exe
2014-09-08 12:33 - 2014-09-08 12:33 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Martin\Downloads\mbam-setup-1.75.0.1300.exe
2014-09-08 12:27 - 2014-09-08 12:27 - 00006089 _____ () C:\Users\Martin\Desktop\AdwCleaner[S0].txt
2014-09-08 12:22 - 2011-10-03 14:14 - 00000000 ____D () C:\Users\Martin
2014-09-08 11:52 - 2014-09-08 11:52 - 01370467 _____ () C:\Users\Martin\Desktop\adwcleaner_3.309.exe
2014-09-08 10:01 - 2014-09-08 09:41 - 00011040 _____ () C:\Users\Martin\Desktop\Nmc_2014-09-08_09-41-55.log
2014-09-08 09:40 - 2014-09-08 09:39 - 353468496 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner (1).exe
2014-09-08 09:33 - 2014-09-08 09:32 - 350127064 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner.exe
2014-09-08 09:24 - 2012-04-10 13:50 - 00028160 ___SH () C:\Users\Martin\Thumbs.db
2014-09-08 09:23 - 2012-02-21 10:50 - 00000000 ____D () C:\Program Files\Google
2014-09-08 09:12 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Registration
2014-09-08 09:04 - 2012-08-21 07:00 - 00000000 ____D () C:\Program Files\HDD Regenerator
2014-09-05 06:49 - 2010-11-20 23:01 - 01584626 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-03 08:45 - 2014-09-03 07:32 - 09614797 _____ () C:\Users\Martin\Documents\stul prace.skp
2014-09-03 08:40 - 2014-09-03 07:49 - 05253830 _____ () C:\Users\Martin\Documents\stul prace.skb
2014-08-29 05:57 - 2009-07-14 06:33 - 08537648 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-27 11:07 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-08-26 07:21 - 2012-02-21 10:50 - 00000000 ____D () C:\Users\Martin\AppData\Local\Google
2014-08-23 03:46 - 2014-08-28 08:18 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 02:42 - 2014-08-28 08:18 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-18 06:34 - 2014-08-18 06:34 - 00001790 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-18 06:34 - 2014-08-18 06:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-18 06:33 - 2014-08-18 06:32 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-08-18 06:33 - 2014-08-18 06:32 - 00000000 ____D () C:\Program Files\iTunes
2014-08-18 06:32 - 2014-08-18 06:32 - 00000000 ____D () C:\Program Files\iPod
2014-08-18 06:32 - 2011-10-25 07:47 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-08-18 06:28 - 2014-08-18 06:28 - 00001852 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-08-18 06:28 - 2014-08-18 06:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-08-18 06:28 - 2014-08-18 06:28 - 00000000 ____D () C:\Program Files\QuickTime
2014-08-13 12:11 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-13 11:41 - 2014-05-07 05:57 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-13 11:11 - 2013-08-15 14:30 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-13 11:09 - 2011-10-27 07:02 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-11 14:07 - 2011-10-04 06:28 - 00000000 ____D () C:\install
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-08 11:36
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:97.66 GB) (Free:15.92 GB) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:886.63 GB) NTFS
Drive e: () (Fixed) (Total:833.58 GB) (Free:703.57 GB) NTFS
Drive o: () (Fixed) (Total:0.28 GB) (Free:0.23 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Available physical RAM: 2073.59 MB
Total physical RAM: 3575.37 MB
Percentage of memory in use: 42%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D84EF3D6)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2BAB359D)
Partition 1: (Active) - (Size=283 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=833.6 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: AVG Internet Security 2013 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2013 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2013 (Disabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Martin\Desktop" je 4967 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun [x]
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Ran by Martin (administrator) on MARTIN-PC on 09-09-2014 10:50:57
Running from C:\Users\Martin\Desktop
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\ProgramData\EFI\EFI XF\Server\Debuglog.exe
() C:\Program Files\GIGABYTE\EnergySaver2\des2svr.exe
(Acresso Software Inc.) C:\Program Files\FlexLM\lmgrd.exe
(Acresso Software Inc.) C:\Program Files\FlexLM\lmgrd.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
() C:\Program Files\EFI\EFI XF\JDF\JDFConnectorService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Gigabyte Technology CO., LTD.) C:\Program Files\GIGABYTE\SMART6\timelock\TimeMgmtDaemon.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Gigabyte Technology CO., LTD.) C:\Program Files\GIGABYTE\SMART6\timelock\AlarmClock.exe
(Gigabyte Technology CO.) C:\Program Files\GIGABYTE\SMART6\Recovery\RPMDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Renesas Electronics Corporation) C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcfgex.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\Program Files\FlexLM\EFI.exe
(forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10021480 2011-01-04] (Realtek Semiconductor)
HKLM\...\Run: [NUSB3MON] => C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM\...\Run: [ISUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-02-17] (InstallShield Software Corporation)
HKLM\...\Run: [EFI_XF_Control] => C:\Program Files\EFI\EFI XF\Server\EFI_XF_Control.exe [1890304 2012-03-15] (EFI)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41336 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840568 2014-05-08] (Adobe Systems Inc.)
HKLM\...\Run: [CanonSolutionMenuEx] => C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1612920 2011-08-04] (CANON INC.)
HKLM\...\Run: [IR_SERVER] => C:\PROGRA~1\Realtek\REALTE~1\IR_SERVER.exe
HKLM\...\Run: [] => [X]
HKLM\...\Run: [HDD Regenerator] => C:\Program Files\HDD Regenerator\HDD Regenerator.exe
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2013\avgui.exe [4411952 2014-01-21] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Nvtmru] => "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe [1750528 2010-08-24] (Gigabyte Technology CO., LTD.)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-17] (InstallShield Software Corporation)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe [1104256 2014-05-08] (Adobe Systems Incorporated)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [MobileDocuments] => C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6] => C:\Program Files\Google\Chrome\Application\chrome.exe [852808 2014-08-30] (Google Inc.)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [GoogleDriveSync] => "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {573e9842-edb8-11e0-827e-806e6f6e6963} - F:\startdvd.exe
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {7ce7096e-f93d-11e0-a338-801f022438c0} - L:\LaunchU3.exe -a
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {f2772099-7757-11e3-a52f-801f022438c0} - L:\MediaManager.exe
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {f7f890e8-0627-11e3-a6b4-801f022438c0} - explorer.exe .\
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nmd.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.tsbohemia.cz
SearchScopes: HKCU - DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {4205D10E-CE72-4964-A334-D3D6EB32222B} URL = http://www.google.com/cse?cx=partner-pu ... earchTerms}
SearchScopes: HKCU - {8A83E35D-6884-4431-ABB4-E3BB418C86E3} URL = http://www.bing.com/search?q={searchTer ... R1&pc=SPLH
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: GBHO.BHO -> {c20391ee-b6fd-4a35-9f1b-2892dda5b107} -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Smart Recovery 2 - {a011d643-4a67-4934-a775-46139847d7f2} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} http://kitchenplanner.ikea.com/CZ/Core/ ... _Win32.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll No File
Winsock: Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\..\Interfaces\{824861D3-859E-4EF3-9D57-8085923AFE0D}: [NameServer] 172.16.1.2
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: ubisoft.com/uplaypc -> E:\soukrome Martin\tt\Trials Evolution\datapack\orbit\npuplaypc.dll No File
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-02-01]
Chrome:
=======
CHR HomePage: Default -> hxxp://google.cz/
CHR DefaultSearchKeyword: Default -> A40723CF6F6406CA51B8DA1392DAAC7EB2A0BA19041D4EAE452B94A3335864F0
CHR DefaultSearchURL: Default -> 9722840B2BF7BCFC96C50493F0FFDB0C2B105071B62F451B102D14AC7DF89DEA
CHR CustomProfile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Foto & Album Správa pro Picasa a Google Plus) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\enejmalmkbmnbojaekkipgihohemgppg [2014-09-09]
CHR Extension: (Black metallic theme) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbhhihkiaeeioepkklgfpdohnemkjcoi [2014-09-09]
CHR Extension: (AdBlock) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-09-09]
CHR Extension: (Peněženka Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-10]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 avgfws; C:\Program Files\AVG\AVG2013\avgfws.exe [1432080 2013-10-23] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-11-20] (AVG Technologies CZ, s.r.o.)
R2 DebugLog; C:\ProgramData\EFI\EFI XF\Server\Debuglog.exe [172032 2005-03-31] () [File not signed]
R2 DES2 Service; C:\Program Files\GIGABYTE\EnergySaver2\des2svr.exe [68136 2009-06-17] ()
R2 EFI License Manager; C:\Program Files\FlexLM\lmgrd.exe [1431440 2008-08-04] (Acresso Software Inc.)
S2 EFI XF Server; C:\Program Files\EFI\EFI XF\Server\EFI_XF_Server.exe [4833280 2012-12-17] (Electronics for Imaging) [File not signed]
R2 hasplms; C:\Windows\system32\hasplms.exe [3750400 2009-12-16] (SafeNet Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 JDF Connector Service; C:\Program Files\EFI\EFI XF\JDF/JDFConnectorService.exe [143360 2011-01-19] () [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [17536800 2014-07-25] (NVIDIA Corporation)
R2 Smart TimeLock; C:\Program Files\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [114688 2009-10-13] (Gigabyte Technology CO., LTD.) [File not signed]
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aksfridge; C:\Windows\System32\DRIVERS\aksfridge.sys [358400 2010-04-13] (SafeNet Inc.)
R3 akshasp; C:\Windows\System32\DRIVERS\akshasp.sys [238208 2009-03-13] (Aladdin Knowledge Systems Ltd.)
R3 akshhl; C:\Windows\System32\DRIVERS\akshhl.sys [46336 2007-07-23] (Aladdin Knowledge Systems Ltd.)
R3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [16384 2009-06-22] (Aladdin Knowledge Systems Ltd.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [18544 2011-01-10] ()
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6x.sys [50296 2012-09-04] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-02-08] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [171320 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182072 2014-04-15] (AVG Technologies CZ, s.r.o.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2013-08-16] (Disc Soft Ltd)
S3 etdrv; C:\Windows\etdrv.sys [17488 2012-02-02] (Windows (R) 2000 DDK provider)
R3 gdrv; C:\Windows\gdrv.sys [17488 2014-09-09] (Windows (R) 2000 DDK provider)
S3 GVTDrv; C:\Windows\system32\Drivers\GVTDrv.sys [24944 2012-04-13] ()
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [588800 2009-12-09] (SafeNet Inc.)
S3 i1; C:\Windows\System32\Drivers\i1.sys [26045 2008-11-18] (GretagMacbeth)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-09-21] (Intel Corporation)
R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [62208 2010-11-19] (Renesas Electronics Corporation)
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [141568 2010-11-19] (Renesas Electronics Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19232 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2014-03-31] (NVIDIA Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [15688 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [10320 2013-09-30] ()
S3 RTL2832UBDA; C:\Windows\System32\drivers\RTL2832UBDA.sys [188392 2010-07-01] (REALTEK SEMICONDUCTOR Corp.)
S3 RTL2832UUSB; C:\Windows\System32\Drivers\RTL2832UUSB.sys [32872 2010-07-01] (REALTEK SEMICONDUCTOR Corp.)
S3 RTL2832U_IRHID; C:\Windows\System32\DRIVERS\RTL2832U_IRHID.sys [31872 2009-10-05] (Realtek)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [473656 2012-01-26] (Duplex Secure Ltd.)
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [43520 2012-02-15] (Apple, Inc.) [File not signed]
S3 X-Rite; C:\Windows\System32\DRIVERS\XrUsb.sys [18168 2007-01-11] (X-Rite, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-09 10:47 - 2014-09-09 10:51 - 00022231 _____ () C:\Users\Martin\Desktop\FRST.txt
2014-09-09 10:47 - 2014-09-09 10:50 - 00000000 ____D () C:\FRST
2014-09-09 10:46 - 2014-09-09 10:46 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe
2014-09-09 10:45 - 2014-09-09 10:45 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 124261.crdownload
2014-09-09 10:44 - 2014-09-09 10:44 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 204334.crdownload
2014-09-09 10:39 - 2014-09-09 10:39 - 01097728 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2014-09-09 10:29 - 2014-09-09 10:29 - 00008527 _____ () C:\Users\Martin\Desktop\zoek-results.txt
2014-09-09 10:20 - 2014-09-09 10:10 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-09 10:11 - 2014-09-09 10:24 - 00008527 _____ () C:\zoek-results.log
2014-09-09 10:10 - 2014-09-09 10:17 - 00000000 ____D () C:\zoek_backup
2014-09-09 10:09 - 2014-09-09 10:09 - 01290240 _____ () C:\Users\Martin\Desktop\zoek.exe
2014-09-09 08:23 - 2014-09-09 08:23 - 00005370 _____ () C:\Users\Martin\Desktop\RKreport_SCN_09092014_081928.log
2014-09-08 13:57 - 2014-09-09 09:59 - 00033512 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-09-08 13:57 - 2014-09-08 13:57 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-09-08 13:55 - 2014-09-08 13:55 - 04857944 _____ () C:\Users\Martin\Desktop\RogueKiller.exe
2014-09-08 13:38 - 2014-09-08 13:38 - 00001103 _____ () C:\Users\Martin\Desktop\MBAM.txt
2014-09-08 12:34 - 2014-09-08 12:34 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Martin\Downloads\mbam-clean-2.1.1.1001.exe
2014-09-08 12:33 - 2014-09-08 12:33 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Martin\Downloads\mbam-setup-1.75.0.1300.exe
2014-09-08 12:27 - 2014-09-08 12:27 - 00006089 _____ () C:\Users\Martin\Desktop\AdwCleaner[S0].txt
2014-09-08 12:22 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-09-08 11:53 - 2014-09-09 07:57 - 00000000 ____D () C:\AdwCleaner
2014-09-08 11:52 - 2014-09-08 11:52 - 01370467 _____ () C:\Users\Martin\Desktop\adwcleaner_3.309.exe
2014-09-08 09:41 - 2014-09-08 10:01 - 00011040 _____ () C:\Users\Martin\Desktop\Nmc_2014-09-08_09-41-55.log
2014-09-08 09:39 - 2014-09-08 09:40 - 353468496 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner (1).exe
2014-09-08 09:32 - 2014-09-08 09:33 - 350127064 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner.exe
2014-09-03 07:49 - 2014-09-03 08:40 - 05253830 _____ () C:\Users\Martin\Documents\stul prace.skb
2014-09-03 07:32 - 2014-09-03 08:45 - 09614797 _____ () C:\Users\Martin\Documents\stul prace.skp
2014-08-28 08:18 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 08:18 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-26 09:20 - 2011-10-06 14:45 - 00000690 _____ () C:\Users\Martin\Desktop\Printjobs – zástupce.lnk
2014-08-26 05:59 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-26 05:59 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-26 05:59 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-26 05:59 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-26 05:58 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-26 05:58 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-26 05:58 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-26 05:58 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-26 05:58 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-18 06:34 - 2014-08-18 06:34 - 00001790 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-18 06:34 - 2014-08-18 06:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-18 06:32 - 2014-08-18 06:33 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-08-18 06:32 - 2014-08-18 06:33 - 00000000 ____D () C:\Program Files\iTunes
2014-08-18 06:32 - 2014-08-18 06:32 - 00000000 ____D () C:\Program Files\iPod
2014-08-18 06:28 - 2014-08-18 06:28 - 00001852 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-08-18 06:28 - 2014-08-18 06:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-08-18 06:28 - 2014-08-18 06:28 - 00000000 ____D () C:\Program Files\QuickTime
2014-08-13 11:07 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-13 11:07 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-13 11:07 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-13 11:07 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-13 06:11 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-13 06:11 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-13 06:11 - 2014-07-25 15:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 06:11 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-13 06:11 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-13 06:11 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-13 06:11 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-13 06:11 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-13 06:11 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-13 06:11 - 2014-07-25 14:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-13 06:11 - 2014-07-25 13:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 06:11 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-13 06:11 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 06:11 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-13 06:11 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-13 06:11 - 2014-07-25 13:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-13 06:11 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-13 06:11 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-13 06:11 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-13 06:11 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-13 06:11 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-13 06:11 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-13 06:11 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-13 06:11 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-13 06:10 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-13 06:10 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-13 06:10 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-13 06:10 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-13 06:10 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-13 06:10 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-13 06:10 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-13 06:10 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-13 06:10 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-13 06:10 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-13 06:10 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-13 06:10 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-13 06:10 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-13 06:10 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-13 06:10 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-13 06:10 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-13 06:10 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-13 06:10 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-13 06:10 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-13 06:10 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-13 06:10 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-13 06:10 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-13 06:10 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-13 06:10 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-09 10:51 - 2014-09-09 10:47 - 00022231 _____ () C:\Users\Martin\Desktop\FRST.txt
2014-09-09 10:50 - 2014-09-09 10:47 - 00000000 ____D () C:\FRST
2014-09-09 10:46 - 2014-09-09 10:46 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe
2014-09-09 10:45 - 2014-09-09 10:45 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 124261.crdownload
2014-09-09 10:45 - 2012-04-03 06:02 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-09 10:44 - 2014-09-09 10:44 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 204334.crdownload
2014-09-09 10:44 - 2009-07-14 06:34 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-09 10:44 - 2009-07-14 06:34 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-09 10:39 - 2014-09-09 10:39 - 01097728 _____ (Farbar) C:\Users\Martin\Desktop\FRST.exe
2014-09-09 10:29 - 2014-09-09 10:29 - 00008527 _____ () C:\Users\Martin\Desktop\zoek-results.txt
2014-09-09 10:26 - 2011-10-03 14:14 - 01618258 _____ () C:\Windows\WindowsUpdate.log
2014-09-09 10:24 - 2014-09-09 10:11 - 00008527 _____ () C:\zoek-results.log
2014-09-09 10:24 - 2011-10-04 12:01 - 00017488 _____ (Windows (R) 2000 DDK provider) C:\Windows\gdrv.sys
2014-09-09 10:22 - 2012-08-24 14:16 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-09-09 10:22 - 2012-02-21 10:50 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-09 10:22 - 2011-10-04 12:07 - 00000000 ____D () C:\Program Files\FlexLM
2014-09-09 10:22 - 2010-11-20 23:48 - 00141538 _____ () C:\Windows\PFRO.log
2014-09-09 10:22 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-09 10:22 - 2009-07-14 06:39 - 00152424 _____ () C:\Windows\setupact.log
2014-09-09 10:17 - 2014-09-09 10:10 - 00000000 ____D () C:\zoek_backup
2014-09-09 10:10 - 2014-09-09 10:20 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-09 10:09 - 2014-09-09 10:09 - 01290240 _____ () C:\Users\Martin\Desktop\zoek.exe
2014-09-09 10:02 - 2012-02-21 10:50 - 00000940 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-09 09:59 - 2014-09-08 13:57 - 00033512 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-09-09 09:30 - 2011-10-04 06:43 - 00000000 ____D () C:\ProgramData\MFAData
2014-09-09 08:23 - 2014-09-09 08:23 - 00005370 _____ () C:\Users\Martin\Desktop\RKreport_SCN_09092014_081928.log
2014-09-09 07:57 - 2014-09-08 11:53 - 00000000 ____D () C:\AdwCleaner
2014-09-09 06:01 - 2011-10-03 14:18 - 00000000 ____D () C:\Users\Martin\AppData\Local\Adobe
2014-09-08 14:12 - 2013-05-29 08:53 - 00007634 _____ () C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
2014-09-08 13:57 - 2014-09-08 13:57 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-09-08 13:55 - 2014-09-08 13:55 - 04857944 _____ () C:\Users\Martin\Desktop\RogueKiller.exe
2014-09-08 13:38 - 2014-09-08 13:38 - 00001103 _____ () C:\Users\Martin\Desktop\MBAM.txt
2014-09-08 12:34 - 2014-09-08 12:34 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Martin\Downloads\mbam-clean-2.1.1.1001.exe
2014-09-08 12:33 - 2014-09-08 12:33 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Martin\Downloads\mbam-setup-1.75.0.1300.exe
2014-09-08 12:27 - 2014-09-08 12:27 - 00006089 _____ () C:\Users\Martin\Desktop\AdwCleaner[S0].txt
2014-09-08 12:22 - 2011-10-03 14:14 - 00000000 ____D () C:\Users\Martin
2014-09-08 11:52 - 2014-09-08 11:52 - 01370467 _____ () C:\Users\Martin\Desktop\adwcleaner_3.309.exe
2014-09-08 10:01 - 2014-09-08 09:41 - 00011040 _____ () C:\Users\Martin\Desktop\Nmc_2014-09-08_09-41-55.log
2014-09-08 09:40 - 2014-09-08 09:39 - 353468496 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner (1).exe
2014-09-08 09:33 - 2014-09-08 09:32 - 350127064 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner.exe
2014-09-08 09:24 - 2012-04-10 13:50 - 00028160 ___SH () C:\Users\Martin\Thumbs.db
2014-09-08 09:23 - 2012-02-21 10:50 - 00000000 ____D () C:\Program Files\Google
2014-09-08 09:12 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Registration
2014-09-08 09:04 - 2012-08-21 07:00 - 00000000 ____D () C:\Program Files\HDD Regenerator
2014-09-05 06:49 - 2010-11-20 23:01 - 01584626 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-03 08:45 - 2014-09-03 07:32 - 09614797 _____ () C:\Users\Martin\Documents\stul prace.skp
2014-09-03 08:40 - 2014-09-03 07:49 - 05253830 _____ () C:\Users\Martin\Documents\stul prace.skb
2014-08-29 05:57 - 2009-07-14 06:33 - 08537648 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-27 11:07 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-08-26 07:21 - 2012-02-21 10:50 - 00000000 ____D () C:\Users\Martin\AppData\Local\Google
2014-08-23 03:46 - 2014-08-28 08:18 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 02:42 - 2014-08-28 08:18 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-18 06:34 - 2014-08-18 06:34 - 00001790 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-08-18 06:34 - 2014-08-18 06:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-08-18 06:33 - 2014-08-18 06:32 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-08-18 06:33 - 2014-08-18 06:32 - 00000000 ____D () C:\Program Files\iTunes
2014-08-18 06:32 - 2014-08-18 06:32 - 00000000 ____D () C:\Program Files\iPod
2014-08-18 06:32 - 2011-10-25 07:47 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-08-18 06:28 - 2014-08-18 06:28 - 00001852 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-08-18 06:28 - 2014-08-18 06:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-08-18 06:28 - 2014-08-18 06:28 - 00000000 ____D () C:\Program Files\QuickTime
2014-08-13 12:11 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-13 11:41 - 2014-05-07 05:57 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-13 11:11 - 2013-08-15 14:30 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-13 11:09 - 2011-10-27 07:02 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-11 14:07 - 2011-10-04 06:28 - 00000000 ____D () C:\install
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-08 11:36
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:97.66 GB) (Free:15.92 GB) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:886.63 GB) NTFS
Drive e: () (Fixed) (Total:833.58 GB) (Free:703.57 GB) NTFS
Drive o: () (Fixed) (Total:0.28 GB) (Free:0.23 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Available physical RAM: 2073.59 MB
Total physical RAM: 3575.37 MB
Percentage of memory in use: 42%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D84EF3D6)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2BAB359D)
Partition 1: (Active) - (Size=283 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=833.6 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: AVG Internet Security 2013 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2013 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2013 (Disabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Martin\Desktop" je 4967 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun [x]
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Re: zpomalený pc - hadiprd
tak nevim jsetli je to vse a pokud ano tak mnohokrat dekuji
Re: zpomalený pc - hadiprd
Jeste docistime Tvorba fixlistu pro FRST
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
Start HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated) HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated) HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41336 2014-05-08] (Adobe Systems Incorporated) HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840568 2014-05-08] (Adobe Systems Inc.) HKLM\...\Run: [] => [X] HKLM\...\Run: [HDD Regenerator] => C:\Program Files\HDD Regenerator\HDD Regenerator.exe HKLM\...\Run: [Nvtmru] => "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation) HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.) HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-17] (InstallShield Software Corporation) HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe [1104256 2014-05-08] (Adobe Systems Incorporated) HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd) HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6] => C:\Program Files\Google\Chrome\Application\chrome.exe [852808 2014-08-30] (Google Inc.) HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {573e9842-edb8-11e0-827e-806e6f6e6963} - F:\startdvd.exe HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {7ce7096e-f93d-11e0-a338-801f022438c0} - L:\LaunchU3.exe -a HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {f2772099-7757-11e3-a52f-801f022438c0} - L:\MediaManager.exe HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {f7f890e8-0627-11e3-a6b4-801f022438c0} - explorer.exe .\ SearchScopes: HKCU - {4205D10E-CE72-4964-A334-D3D6EB32222B} URL = http://www.google.com/cse?cx=partner-pu ... 1509802&q={searchTerms} SearchScopes: HKCU - {8A83E35D-6884-4431-ABB4-E3BB418C86E3} URL = http://www.bing.com/search?q={searchTerms}&form=SPLBR1&pc=SPLH Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll No File 2014-09-09 10:47 - 2014-09-09 10:51 - 00022231 _____ () C:\Users\Martin\Desktop\FRST.txt 2014-09-09 10:46 - 2014-09-09 10:46 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe 2014-09-09 10:45 - 2014-09-09 10:45 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 124261.crdownload 2014-09-09 10:44 - 2014-09-09 10:44 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 204334.crdownload 2014-09-09 10:20 - 2014-09-09 10:10 - 00024064 _____ () C:\Windows\zoek-delete.exe 2014-09-09 10:11 - 2014-09-09 10:24 - 00008527 _____ () C:\zoek-results.log 2014-09-09 10:10 - 2014-09-09 10:17 - 00000000 ____D () C:\zoek_backup 2014-09-09 10:09 - 2014-09-09 10:09 - 01290240 _____ () C:\Users\Martin\Desktop\zoek.exe 2014-09-09 08:23 - 2014-09-09 08:23 - 00005370 _____ () C:\Users\Martin\Desktop\RKreport_SCN_09092014_081928.log 2014-09-08 13:57 - 2014-09-09 09:59 - 00033512 _____ () C:\Windows\system32\Drivers\TrueSight.sys 2014-09-08 13:57 - 2014-09-08 13:57 - 00000000 ____D () C:\ProgramData\RogueKiller 2014-09-08 13:55 - 2014-09-08 13:55 - 04857944 _____ () C:\Users\Martin\Desktop\RogueKiller.exe 2014-09-08 13:38 - 2014-09-08 13:38 - 00001103 _____ () C:\Users\Martin\Desktop\MBAM.txt 2014-09-08 12:34 - 2014-09-08 12:34 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Martin\Downloads\mbam-clean-2.1.1.1001.exe 2014-09-08 12:33 - 2014-09-08 12:33 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Martin\Downloads\mbam-setup-1.75.0.1300.exe 2014-09-08 12:27 - 2014-09-08 12:27 - 00006089 _____ () C:\Users\Martin\Desktop\AdwCleaner[S0].txt 2014-09-08 12:22 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll 2014-09-08 11:53 - 2014-09-09 07:57 - 00000000 ____D () C:\AdwCleaner 2014-09-08 11:52 - 2014-09-08 11:52 - 01370467 _____ () C:\Users\Martin\Desktop\adwcleaner_3.309.exe 2014-09-08 09:41 - 2014-09-08 10:01 - 00011040 _____ () C:\Users\Martin\Desktop\Nmc_2014-09-08_09-41-55.log 2014-09-08 09:39 - 2014-09-08 09:40 - 353468496 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner (1).exe 2014-09-08 09:32 - 2014-09-08 09:33 - 350127064 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f Hosts: Reboot: End- Ulozte vytvoreny TXT jako fixlist.txt
- Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
- Kliknete na Fix
- Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: zpomalený pc - hadiprd
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 07-09-2014
Ran by Martin at 2014-09-10 06:27:13 Run:1
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41336 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840568 2014-05-08] (Adobe Systems Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [HDD Regenerator] => C:\Program Files\HDD Regenerator\HDD Regenerator.exe
HKLM\...\Run: [Nvtmru] => "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-17] (InstallShield Software Corporation)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe [1104256 2014-05-08] (Adobe Systems Incorporated)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6] => C:\Program Files\Google\Chrome\Application\chrome.exe [852808 2014-08-30] (Google Inc.)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {573e9842-edb8-11e0-827e-806e6f6e6963} - F:\startdvd.exe
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {7ce7096e-f93d-11e0-a338-801f022438c0} - L:\LaunchU3.exe -a
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {f2772099-7757-11e3-a52f-801f022438c0} - L:\MediaManager.exe
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {f7f890e8-0627-11e3-a6b4-801f022438c0} - explorer.exe .\
SearchScopes: HKCU - {4205D10E-CE72-4964-A334-D3D6EB32222B} URL = http://www.google.com/cse?cx=partner-pu ... 1509802&q={searchTerms}
SearchScopes: HKCU - {8A83E35D-6884-4431-ABB4-E3BB418C86E3} URL = http://www.bing.com/search?q={searchTer ... R1&pc=SPLH
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll No File
2014-09-09 10:47 - 2014-09-09 10:51 - 00022231 _____ () C:\Users\Martin\Desktop\FRST.txt
2014-09-09 10:46 - 2014-09-09 10:46 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe
2014-09-09 10:45 - 2014-09-09 10:45 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 124261.crdownload
2014-09-09 10:44 - 2014-09-09 10:44 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 204334.crdownload
2014-09-09 10:20 - 2014-09-09 10:10 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-09 10:11 - 2014-09-09 10:24 - 00008527 _____ () C:\zoek-results.log
2014-09-09 10:10 - 2014-09-09 10:17 - 00000000 ____D () C:\zoek_backup
2014-09-09 10:09 - 2014-09-09 10:09 - 01290240 _____ () C:\Users\Martin\Desktop\zoek.exe
2014-09-09 08:23 - 2014-09-09 08:23 - 00005370 _____ () C:\Users\Martin\Desktop\RKreport_SCN_09092014_081928.log
2014-09-08 13:57 - 2014-09-09 09:59 - 00033512 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-09-08 13:57 - 2014-09-08 13:57 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-09-08 13:55 - 2014-09-08 13:55 - 04857944 _____ () C:\Users\Martin\Desktop\RogueKiller.exe
2014-09-08 13:38 - 2014-09-08 13:38 - 00001103 _____ () C:\Users\Martin\Desktop\MBAM.txt
2014-09-08 12:34 - 2014-09-08 12:34 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Martin\Downloads\mbam-clean-2.1.1.1001.exe
2014-09-08 12:33 - 2014-09-08 12:33 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Martin\Downloads\mbam-setup-1.75.0.1300.exe
2014-09-08 12:27 - 2014-09-08 12:27 - 00006089 _____ () C:\Users\Martin\Desktop\AdwCleaner[S0].txt
2014-09-08 12:22 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-09-08 11:53 - 2014-09-09 07:57 - 00000000 ____D () C:\AdwCleaner
2014-09-08 11:52 - 2014-09-08 11:52 - 01370467 _____ () C:\Users\Martin\Desktop\adwcleaner_3.309.exe
2014-09-08 09:41 - 2014-09-08 10:01 - 00011040 _____ () C:\Users\Martin\Desktop\Nmc_2014-09-08_09-41-55.log
2014-09-08 09:39 - 2014-09-08 09:40 - 353468496 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner (1).exe
2014-09-08 09:32 - 2014-09-08 09:33 - 350127064 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f
Hosts:
Reboot:
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\APSDaemon => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeCS5.5ServiceManager => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Acrobat Speed Launcher => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Acrobat Assistant 8.0 => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\HDD Regenerator => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Nvtmru => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper => value deleted successfully.
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ISUSPM Startup => value deleted successfully.
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value deleted successfully.
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Acrobat Synchronizer => value deleted successfully.
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6 => value deleted successfully.
"HKU\S-1-5-21-3393032927-722208142-1737332873-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{573e9842-edb8-11e0-827e-806e6f6e6963}" => Key deleted successfully.
"HKCR\CLSID\{573e9842-edb8-11e0-827e-806e6f6e6963}" => Key not found.
"HKU\S-1-5-21-3393032927-722208142-1737332873-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7ce7096e-f93d-11e0-a338-801f022438c0}" => Key deleted successfully.
"HKCR\CLSID\{7ce7096e-f93d-11e0-a338-801f022438c0}" => Key not found.
"HKU\S-1-5-21-3393032927-722208142-1737332873-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f2772099-7757-11e3-a52f-801f022438c0}" => Key deleted successfully.
"HKCR\CLSID\{f2772099-7757-11e3-a52f-801f022438c0}" => Key not found.
"HKU\S-1-5-21-3393032927-722208142-1737332873-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f7f890e8-0627-11e3-a6b4-801f022438c0}" => Key deleted successfully.
"HKCR\CLSID\{f7f890e8-0627-11e3-a6b4-801f022438c0}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4205D10E-CE72-4964-A334-D3D6EB32222B}" => Key deleted successfully.
"HKCR\CLSID\{4205D10E-CE72-4964-A334-D3D6EB32222B}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8A83E35D-6884-4431-ABB4-E3BB418C86E3}" => Key deleted successfully.
"HKCR\CLSID\{8A83E35D-6884-4431-ABB4-E3BB418C86E3}" => Key not found.
"HKCR\PROTOCOLS\Handler\linkscanner" => Key deleted successfully.
"HKCR\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}" => Key deleted successfully.
C:\Users\Martin\Desktop\FRST.txt => Moved successfully.
C:\Users\Martin\Desktop\FRSTLauncher (2).exe => Moved successfully.
"C:\Users\Martin\Downloads\Nepotvrzeno 124261.crdownload" => File/Directory not found.
"C:\Users\Martin\Downloads\Nepotvrzeno 204334.crdownload" => File/Directory not found.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Martin\Desktop\zoek.exe => Moved successfully.
C:\Users\Martin\Desktop\RKreport_SCN_09092014_081928.log => Moved successfully.
C:\Windows\system32\Drivers\TrueSight.sys => Moved successfully.
C:\ProgramData\RogueKiller => Moved successfully.
C:\Users\Martin\Desktop\RogueKiller.exe => Moved successfully.
C:\Users\Martin\Desktop\MBAM.txt => Moved successfully.
C:\Users\Martin\Downloads\mbam-clean-2.1.1.1001.exe => Moved successfully.
C:\Users\Martin\Downloads\mbam-setup-1.75.0.1300.exe => Moved successfully.
C:\Users\Martin\Desktop\AdwCleaner[S0].txt => Moved successfully.
C:\Windows\system32\sqlite3.dll => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Martin\Desktop\adwcleaner_3.309.exe => Moved successfully.
C:\Users\Martin\Desktop\Nmc_2014-09-08_09-41-55.log => Moved successfully.
C:\Users\Martin\Downloads\Norman_Malware_Cleaner (1).exe => Moved successfully.
C:\Users\Martin\Downloads\Norman_Malware_Cleaner.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
The system needed a reboot.
==== End of Fixlog ====
Ran by Martin at 2014-09-10 06:27:13 Run:1
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41336 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840568 2014-05-08] (Adobe Systems Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [HDD Regenerator] => C:\Program Files\HDD Regenerator\HDD Regenerator.exe
HKLM\...\Run: [Nvtmru] => "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-17] (InstallShield Software Corporation)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe [1104256 2014-05-08] (Adobe Systems Incorporated)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\Run: [GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6] => C:\Program Files\Google\Chrome\Application\chrome.exe [852808 2014-08-30] (Google Inc.)
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {573e9842-edb8-11e0-827e-806e6f6e6963} - F:\startdvd.exe
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {7ce7096e-f93d-11e0-a338-801f022438c0} - L:\LaunchU3.exe -a
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {f2772099-7757-11e3-a52f-801f022438c0} - L:\MediaManager.exe
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\...\MountPoints2: {f7f890e8-0627-11e3-a6b4-801f022438c0} - explorer.exe .\
SearchScopes: HKCU - {4205D10E-CE72-4964-A334-D3D6EB32222B} URL = http://www.google.com/cse?cx=partner-pu ... 1509802&q={searchTerms}
SearchScopes: HKCU - {8A83E35D-6884-4431-ABB4-E3BB418C86E3} URL = http://www.bing.com/search?q={searchTer ... R1&pc=SPLH
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll No File
2014-09-09 10:47 - 2014-09-09 10:51 - 00022231 _____ () C:\Users\Martin\Desktop\FRST.txt
2014-09-09 10:46 - 2014-09-09 10:46 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher (2).exe
2014-09-09 10:45 - 2014-09-09 10:45 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 124261.crdownload
2014-09-09 10:44 - 2014-09-09 10:44 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Downloads\Nepotvrzeno 204334.crdownload
2014-09-09 10:20 - 2014-09-09 10:10 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-09-09 10:11 - 2014-09-09 10:24 - 00008527 _____ () C:\zoek-results.log
2014-09-09 10:10 - 2014-09-09 10:17 - 00000000 ____D () C:\zoek_backup
2014-09-09 10:09 - 2014-09-09 10:09 - 01290240 _____ () C:\Users\Martin\Desktop\zoek.exe
2014-09-09 08:23 - 2014-09-09 08:23 - 00005370 _____ () C:\Users\Martin\Desktop\RKreport_SCN_09092014_081928.log
2014-09-08 13:57 - 2014-09-09 09:59 - 00033512 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-09-08 13:57 - 2014-09-08 13:57 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-09-08 13:55 - 2014-09-08 13:55 - 04857944 _____ () C:\Users\Martin\Desktop\RogueKiller.exe
2014-09-08 13:38 - 2014-09-08 13:38 - 00001103 _____ () C:\Users\Martin\Desktop\MBAM.txt
2014-09-08 12:34 - 2014-09-08 12:34 - 00321848 _____ (Malwarebytes Corporation) C:\Users\Martin\Downloads\mbam-clean-2.1.1.1001.exe
2014-09-08 12:33 - 2014-09-08 12:33 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Martin\Downloads\mbam-setup-1.75.0.1300.exe
2014-09-08 12:27 - 2014-09-08 12:27 - 00006089 _____ () C:\Users\Martin\Desktop\AdwCleaner[S0].txt
2014-09-08 12:22 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-09-08 11:53 - 2014-09-09 07:57 - 00000000 ____D () C:\AdwCleaner
2014-09-08 11:52 - 2014-09-08 11:52 - 01370467 _____ () C:\Users\Martin\Desktop\adwcleaner_3.309.exe
2014-09-08 09:41 - 2014-09-08 10:01 - 00011040 _____ () C:\Users\Martin\Desktop\Nmc_2014-09-08_09-41-55.log
2014-09-08 09:39 - 2014-09-08 09:40 - 353468496 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner (1).exe
2014-09-08 09:32 - 2014-09-08 09:33 - 350127064 _____ (Norman Shark AS) C:\Users\Martin\Downloads\Norman_Malware_Cleaner.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f
Hosts:
Reboot:
End
*****************
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\APSDaemon => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeCS5.5ServiceManager => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Acrobat Speed Launcher => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Acrobat Assistant 8.0 => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\HDD Regenerator => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Nvtmru => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper => value deleted successfully.
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ISUSPM Startup => value deleted successfully.
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value deleted successfully.
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Acrobat Synchronizer => value deleted successfully.
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
HKU\S-1-5-21-3393032927-722208142-1737332873-1000\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6 => value deleted successfully.
"HKU\S-1-5-21-3393032927-722208142-1737332873-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{573e9842-edb8-11e0-827e-806e6f6e6963}" => Key deleted successfully.
"HKCR\CLSID\{573e9842-edb8-11e0-827e-806e6f6e6963}" => Key not found.
"HKU\S-1-5-21-3393032927-722208142-1737332873-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7ce7096e-f93d-11e0-a338-801f022438c0}" => Key deleted successfully.
"HKCR\CLSID\{7ce7096e-f93d-11e0-a338-801f022438c0}" => Key not found.
"HKU\S-1-5-21-3393032927-722208142-1737332873-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f2772099-7757-11e3-a52f-801f022438c0}" => Key deleted successfully.
"HKCR\CLSID\{f2772099-7757-11e3-a52f-801f022438c0}" => Key not found.
"HKU\S-1-5-21-3393032927-722208142-1737332873-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f7f890e8-0627-11e3-a6b4-801f022438c0}" => Key deleted successfully.
"HKCR\CLSID\{f7f890e8-0627-11e3-a6b4-801f022438c0}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4205D10E-CE72-4964-A334-D3D6EB32222B}" => Key deleted successfully.
"HKCR\CLSID\{4205D10E-CE72-4964-A334-D3D6EB32222B}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8A83E35D-6884-4431-ABB4-E3BB418C86E3}" => Key deleted successfully.
"HKCR\CLSID\{8A83E35D-6884-4431-ABB4-E3BB418C86E3}" => Key not found.
"HKCR\PROTOCOLS\Handler\linkscanner" => Key deleted successfully.
"HKCR\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}" => Key deleted successfully.
C:\Users\Martin\Desktop\FRST.txt => Moved successfully.
C:\Users\Martin\Desktop\FRSTLauncher (2).exe => Moved successfully.
"C:\Users\Martin\Downloads\Nepotvrzeno 124261.crdownload" => File/Directory not found.
"C:\Users\Martin\Downloads\Nepotvrzeno 204334.crdownload" => File/Directory not found.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Martin\Desktop\zoek.exe => Moved successfully.
C:\Users\Martin\Desktop\RKreport_SCN_09092014_081928.log => Moved successfully.
C:\Windows\system32\Drivers\TrueSight.sys => Moved successfully.
C:\ProgramData\RogueKiller => Moved successfully.
C:\Users\Martin\Desktop\RogueKiller.exe => Moved successfully.
C:\Users\Martin\Desktop\MBAM.txt => Moved successfully.
C:\Users\Martin\Downloads\mbam-clean-2.1.1.1001.exe => Moved successfully.
C:\Users\Martin\Downloads\mbam-setup-1.75.0.1300.exe => Moved successfully.
C:\Users\Martin\Desktop\AdwCleaner[S0].txt => Moved successfully.
C:\Windows\system32\sqlite3.dll => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Martin\Desktop\adwcleaner_3.309.exe => Moved successfully.
C:\Users\Martin\Desktop\Nmc_2014-09-08_09-41-55.log => Moved successfully.
C:\Users\Martin\Downloads\Norman_Malware_Cleaner (1).exe => Moved successfully.
C:\Users\Martin\Downloads\Norman_Malware_Cleaner.exe => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
The system needed a reboot.
==== End of Fixlog ====
Re: zpomalený pc - hadiprd
Tak jeste uklidime 
T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
OTC http://oldtimer.geekstogo.com/OTC.exe
TFC http://oldtimer.geekstogo.com/TFC.exe
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
A pokud nejsou problemy ci dotazy, je to z me strany vse 
T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
A pokud nejsou problemy ci dotazy, je to z me strany vse "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?