Prosím kontrolu - je to všechno nějaké pomalé.

Zpráva

DJFil · #1 Příspěvek od **DJFil** » 18 lis 2014 22:42

Logfile of random's system information tool 1.10 (written by random/random)
Run by Filip at 2014-11-18 22:40:54
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 175 GB (37%) free of 477 GB
Total RAM: 3958 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:40:56, on 18.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Filip.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 81.27.195.6:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: (no name) - {d40c654d-7c51-4eb3-95b2-1e23905c2a2d} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Logitech . Registrace produktu.lnk = C:\Program Files (x86)\Logitech\Ereg\eReg.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_Trigger_Service - MICRO-STAR INTERNATIONAL CO., LTD. - C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: SplitCamService (SpliCamService) - SplitCam Co. - C:\Program Files (x86)\SplitCam\SplitCamService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update BringStar - Unknown owner - C:\Program Files (x86)\BringStar\updateBringStar.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8348 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe"
"C:\Program Files (x86)\SplitCam\SplitCamService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\BringStar\updateBringStar.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-85924d2f-d299-4a7f-9294-41e10fd4f6dd -SystemEventPortName:HostProcess-351dea2b-6ec9-4267-a980-a1bdd8b4812d -IoCancelEventPortName:HostProcess-654ccef5-9b81-46a2-b6f8-42d537325d92 -NonStateChangingEventPortName:HostProcess-d00a241a-b56e-4bab-9cfa-2e117138e117 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c173af65-7b1c-4714-822e-de259dd11949 -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"taskhost.exe"
ngservice.exe pipeserver
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe" -hide
"C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe" /hide
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Users\Filip\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "www.seznam.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.21.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\
bs-player-controlbar-b-customized-web-search.xml
buenosearch.xml
Google.xml
icqplugin-1.xml
icqplugin-10.xml
icqplugin-11.xml
icqplugin-12.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.xml
search-here.xml
trovi-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-11 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-04-01 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-04-01 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d40c654d-7c51-4eb3-95b2-1e23905c2a2d}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-04-01 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-04-01 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-06-17 165872]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-06-17 407536]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-06-17 444400]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-06-27 7191768]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-07-03 3673184]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-11-11 5225064]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]
"LWS"=C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [2012-09-13 204136]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-09-12 959176]

C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Logitech . Registrace produktu.lnk - C:\Program Files (x86)\Logitech\Ereg\eReg.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-06-14 441344]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux3"=wdmaud.drv
"wave9"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-18 22:35:24 ----D---- C:\rsit
2014-11-18 22:35:24 ----D---- C:\Program Files\trend micro
2014-11-18 20:22:32 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-11-18 20:22:32 ----A---- C:\Windows\system32\pku2u.dll
2014-11-18 20:22:32 ----A---- C:\Windows\system32\kerberos.dll
2014-11-18 20:22:29 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-12 13:52:46 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 13:52:46 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 13:52:46 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 13:52:46 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 13:52:45 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 13:52:45 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 13:52:45 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 13:52:45 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 13:52:45 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 13:52:38 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-11-12 13:52:38 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-12 13:52:38 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-11-12 13:52:38 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-11-12 13:52:38 ----A---- C:\Windows\system32\iernonce.dll
2014-11-12 13:52:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-12 13:52:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-12 13:52:38 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-12 13:52:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-11-12 13:52:37 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 13:52:37 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 13:52:36 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-11-12 13:52:36 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-11-12 13:52:36 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-11-12 13:52:35 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-12 13:52:35 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-11-12 13:52:35 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-12 13:52:34 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-11-12 13:52:34 ----A---- C:\Windows\system32\urlmon.dll
2014-11-12 13:52:32 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-12 13:52:32 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-11-12 13:52:32 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-11-12 13:52:32 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 13:52:31 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-11-12 13:52:31 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-12 13:52:31 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 13:52:31 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-12 13:52:30 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-11-12 13:52:30 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-12 13:52:29 ----A---- C:\Windows\system32\iesetup.dll
2014-11-12 13:52:29 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-12 13:52:28 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-11-12 13:52:28 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-11-12 13:52:28 ----A---- C:\Windows\system32\iertutil.dll
2014-11-12 13:52:27 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-11-12 13:52:27 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-11-12 13:52:27 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-12 13:52:27 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-11-12 13:52:27 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-12 13:52:27 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-12 13:52:26 ----A---- C:\Windows\system32\ieui.dll
2014-11-12 13:52:26 ----A---- C:\Windows\system32\ieframe.dll
2014-11-12 13:52:26 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-12 13:52:25 ----A---- C:\Windows\system32\vbscript.dll
2014-11-12 13:52:25 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-12 13:52:25 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-12 13:52:25 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-12 13:52:25 ----A---- C:\Windows\system32\jscript9.dll
2014-11-12 13:52:24 ----A---- C:\Windows\system32\wininet.dll
2014-11-12 13:52:24 ----A---- C:\Windows\system32\msrating.dll
2014-11-12 13:52:24 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-12 13:52:23 ----A---- C:\Windows\system32\mshtml.dll
2014-11-12 13:52:19 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 13:52:19 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 13:52:19 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 13:52:19 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 13:52:15 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 13:52:15 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 13:52:08 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 13:52:08 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 13:52:08 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 13:52:07 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 13:52:07 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 13:52:07 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 13:52:07 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 13:52:06 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 13:52:04 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 13:52:03 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 13:52:03 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 13:52:02 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 13:52:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 13:52:02 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 13:52:02 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 13:52:02 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 13:52:02 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 13:52:01 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 13:52:01 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 13:52:01 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 13:51:52 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 13:51:52 ----A---- C:\Windows\system32\packager.dll
2014-11-12 13:51:49 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 13:51:46 ----A---- C:\Windows\system32\msi.dll
2014-11-12 13:51:45 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 13:51:39 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-12 13:51:38 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-11 18:05:21 ----D---- C:\Users\Filip\AppData\Roaming\SplitCam
2014-11-11 18:04:12 ----D---- C:\Program Files (x86)\SplitCam
2014-11-11 17:57:56 ----D---- C:\Windows\SYSWOW64\vbox
2014-11-11 17:57:56 ----D---- C:\Windows\system32\vbox
2014-11-11 17:53:43 ----A---- C:\Windows\system32\aswBoot.exe
2014-11-11 17:53:38 ----A---- C:\Windows\avastSS.scr
2014-11-10 22:17:13 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-11-01 12:32:19 ----D---- C:\Users\Filip\AppData\Roaming\iSpy
2014-11-01 12:32:11 ----D---- C:\Program Files (x86)\iSpy
2014-11-01 12:28:03 ----D---- C:\Program Files (x86)\HmelyoffLabs
2014-10-28 09:45:43 ----D---- C:\Zuzna

======List of files/folders modified in the last 1 month======

2014-11-18 22:40:56 ----D---- C:\Windows\Temp
2014-11-18 22:40:42 ----D---- C:\Windows\Prefetch
2014-11-18 22:35:24 ----D---- C:\Program Files
2014-11-18 22:30:19 ----D---- C:\Windows\System32
2014-11-18 22:28:07 ----D---- C:\Windows\winsxs
2014-11-18 22:27:46 ----D---- C:\Windows\system32\config
2014-11-18 22:26:01 ----D---- C:\Windows\SysWOW64
2014-11-18 22:22:54 ----SHD---- C:\System Volume Information
2014-11-18 22:15:52 ----D---- C:\Users\Filip\AppData\Roaming\Skype
2014-11-17 23:31:34 ----D---- C:\Windows\system32\catroot2
2014-11-15 13:42:06 ----D---- C:\Program Files (x86)\BringStar
2014-11-15 12:36:20 ----SHD---- C:\Windows\Installer
2014-11-12 23:37:09 ----RD---- C:\Program Files (x86)
2014-11-12 23:37:07 ----D---- C:\Windows\Tasks
2014-11-12 17:13:25 ----D---- C:\Windows\rescache
2014-11-12 16:18:42 ----D---- C:\Windows\Microsoft.NET
2014-11-12 16:18:08 ----RSD---- C:\Windows\assembly
2014-11-12 15:00:42 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-11-12 15:00:42 ----D---- C:\Windows\system32\cs-CZ
2014-11-12 15:00:41 ----D---- C:\Windows\system32\drivers
2014-11-12 15:00:41 ----D---- C:\Program Files\Internet Explorer
2014-11-12 15:00:39 ----D---- C:\Windows\SYSWOW64\en-US
2014-11-12 15:00:38 ----D---- C:\Windows\system32\en-US
2014-11-12 15:00:36 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 14:30:23 ----D---- C:\ProgramData\Microsoft Help
2014-11-12 14:27:46 ----D---- C:\Windows\system32\MRT
2014-11-12 14:24:34 ----D---- C:\Windows\debug
2014-11-12 14:24:30 ----A---- C:\Windows\system32\MRT.exe
2014-11-12 14:00:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-11-11 17:53:57 ----D---- C:\Windows\system32\Tasks
2014-11-11 17:53:41 ----D---- C:\Windows
2014-11-11 09:52:27 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-10 22:40:54 ----D---- C:\Program Files (x86)\Visit-X B.V
2014-11-10 17:02:17 ----D---- C:\Windows\inf
2014-11-10 17:02:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-07 16:45:43 ----D---- C:\ProgramData\Adobe
2014-11-07 16:45:43 ----D---- C:\Program Files (x86)\Adobe
2014-11-04 14:30:58 ----N---- C:\Windows\system32\MpSigStub.exe
2014-11-01 10:55:17 ----SD---- C:\Users\Filip\AppData\Roaming\Microsoft
2014-11-01 10:55:17 ----D---- C:\Program Files (x86)\Logitech
2014-11-01 10:54:59 ----D---- C:\Windows\system32\DriverStore
2014-11-01 10:54:40 ----D---- C:\Program Files\Common Files\Logishrd
2014-11-01 10:42:13 ----D---- C:\Program Files (x86)\SpeedFan
2014-10-28 09:44:49 ----D---- C:\Users\Filip\AppData\Roaming\DAEMON Tools Lite
2014-10-28 09:37:42 ----D---- C:\Program Files\CCleaner
2014-10-28 09:31:05 ----D---- C:\Filip
2014-10-28 09:17:58 ----D---- C:\Users\Filip\AppData\Roaming\uTorrent
2014-10-28 09:10:05 ----D---- C:\Program Files (x86)\Tbccint
2014-10-21 23:37:19 ----D---- C:\Windows\system32\NDF
2014-10-19 18:35:24 ----D---- C:\ProgramData\Skype

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-11-11 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-11-11 267632]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 20464]
R0 nvstor64;nvstor64; C:\Windows\system32\DRIVERS\nvstor64.sys [2009-08-04 241696]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-11-11 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-11 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-11-11 436624]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-10-04 283064]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-11-11 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-11-11 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-11-11 116728]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-11-11 271752]
R3 CAMBOXDRV;VISIT-X Video Splitter; C:\Windows\system32\DRIVERS\camboxdrv64.sys [2013-01-30 34944]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-06-14 4441856]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-07-02 3472600]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-05-22 452088]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 786416]
R3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2012-09-21 351520]
R3 LVUVC64;Logitech HD Webcam C270(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2012-09-21 4763680]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-05-17 64624]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-04-10 849992]
R3 scvad_simple;SplitCam Virtual Microphone (WDM); C:\Windows\system32\drivers\SplitCamAudio.sys [2013-04-24 23552]
R3 splitcam_hd_driver;SplitCam Virtual Video Driver; C:\Windows\system32\DRIVERS\splitcam_hd_driver.sys [2013-12-16 37496]
R3 VCam_WDM;Live-Strip.com Splitter; C:\Windows\system32\DRIVERS\VCam_WDM.sys [2012-04-28 102240]
S3 3xHybr64;3xHybrid service; C:\Windows\system32\DRIVERS\3xHybr64.sys [2011-09-20 1437952]
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-11-16 11922944]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-11-16 359936]
S3 arusb_win7x;Atheros 11n Wireless LAN device driver; C:\Windows\system32\DRIVERS\arusb_win7x.sys [2010-04-27 783360]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-11-16 11922944]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfoX64.sys [2007-09-25 18128]
S3 GPU-Z;GPU-Z; \??\C:\Users\Filip\AppData\Local\Temp\GPU-Z.sys []
S3 MSICDSetup;MSICDSetup; \??\D:\CDriver64.sys []
S3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2012-05-25 15416]
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 USBMULCD;USB Multi-Channel Audio Device Interface; C:\Windows\system32\drivers\CM10664.sys [2008-10-13 1451008]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-11 50344]
R2 MSI_Trigger_Service;MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [2013-05-28 29728]
R2 SpliCamService;SplitCamService; C:\Program Files (x86)\SplitCam\SplitCamService.exe [2014-09-15 311424]
R2 Update BringStar;Update BringStar; C:\Program Files (x86)\BringStar\updateBringStar.exe [2014-02-01 103200]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-11-11 4012248]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-27 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-06-17 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-27 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-01-13 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-10 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

#2 Příspěvek od **altrok** » 18 lis 2014 22:57

Dobry vecer Vam preju

Jsou s PC nejake konkretnejsi problemy?

Odinstalujte Google Toolbar

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/

ukoncete vsechny programy
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Scan, pote na Clean
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

Stahnete Crystal Disk Info (CDI) http://sourceforge.jp/frs/redir.php?m=j ... o6_2_1.zip
v archivu spustte soubor DiskInfo.exe
ve spustenem programu kliknete nahore na Upravy -> Kopirovat (log mate nyni zkopirovany ve schrance)
log vlozte do dalsi odpovedi (Ctrl + V)

DJFil · #3 Příspěvek od **DJFil** » 18 lis 2014 23:33

Ten Google toolbar používám.

Start a vypínání PC je pomalé. Dlouho trvá než najede Windows a dlouho se zase vypíná.

# AdwCleaner v4.101 - Report created 18/11/2014 at 23:16:06
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Filip - FILIP-PC
# Running from : C:\Users\Filip\Desktop\adwcleaner_4.101.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : Update BringStar

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\ParetoLogic
Folder Deleted : C:\ProgramData\Tbccint
Folder Deleted : C:\Program Files (x86)\BringStar
Folder Deleted : C:\Program Files (x86)\ICQ6Toolbar
Folder Deleted : C:\Program Files (x86)\ParetoLogic
Folder Deleted : C:\Program Files (x86)\Tbccint
Folder Deleted : C:\Program Files (x86)\WinRST
Folder Deleted : C:\Users\Filip\AppData\Local\NativeMessaging
Folder Deleted : C:\Users\Filip\AppData\Local\Pirrit Suggestor
Folder Deleted : C:\Users\Filip\AppData\Local\Tbccint
Folder Deleted : C:\Users\Filip\AppData\Local\TBHostSupport
Folder Deleted : C:\Users\Filip\AppData\Local\WinRST
Folder Deleted : C:\Users\Filip\AppData\Local\Temp\BS_Player_ControlBar_B
Folder Deleted : C:\Users\Filip\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Filip\AppData\LocalLow\Tbccint
Folder Deleted : C:\Users\Filip\AppData\Roaming\DriverCure
Folder Deleted : C:\Users\Filip\AppData\Roaming\ParetoLogic
Folder Deleted : C:\Users\Filip\AppData\Roaming\Pirrit
Folder Deleted : C:\Users\Filip\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\cflheckfmhopnialghigdlggahiomebp
File Deleted : C:\END
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\defaulttab.config
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\invalidprefs.js
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\buenosearch.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin-1.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin-10.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin-11.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin-12.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin-2.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin-3.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin-4.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin-5.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin-6.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin-7.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin-8.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\icqplugin-9.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\search-here.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\trovi-search.xml
File Deleted : C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\searchplugins\bs-player-controlbar-b-customized-web-search.xml

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKCU\Software\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\DefaultTabBHO.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3329621
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{38495740-0035-4471-851E-F5BBB86AB085}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FEB62B15-CC00-4736-AAEC-BA046C9DFF73}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D40C654D-7C51-4EB3-95B2-1E23905C2A2D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D40C654D-7C51-4EB3-95B2-1E23905C2A2D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0BDDE35F-64F7-49C3-99B2-404E899C49F7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{24236608-609C-42C5-B13C-A8A3EC921850}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{28B1A706-4B97-4EB1-8B32-125042685AD9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{33575A26-D9CF-40C6-8A3E-116F17201C7F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4BDFD19F-93D7-49CE-B554-5C215FDC0136}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7307CF0F-7173-4FBF-8649-B149916DD322}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{80A5E38C-5F6B-485F-BD97-0B5BE991FAD5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9544D727-A26F-4D57-AF38-4496088640EA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC4C30BF-7D5F-4EAB-9C2A-454178F079AA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BC6F9C26-93EA-4C6D-A4A7-C1FA333B4BBE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E975527B-ABE7-40B3-B5C1-385016913E3B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA4B5B1-6C76-4B20-BCDB-D41A93E79053}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A69DFF4-5F4B-4529-B78D-2EB3D434A08D}
Key Deleted : HKCU\Software\BI
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Default Tab
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKCU\Software\Pirrit
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\Tbccint
Key Deleted : HKCU\Software\Tbccint_HKLM
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Tbccint
Key Deleted : HKCU\Software\AppDataLow\Software\TbccintSearchScopes
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar
Key Deleted : HKLM\SOFTWARE\ParetoLogic
Key Deleted : HKLM\SOFTWARE\Pirrit
Key Deleted : HKLM\SOFTWARE\RST
Key Deleted : [x64] HKLM\SOFTWARE\Pirrit
Key Deleted : [x64] HKLM\SOFTWARE\systweak

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17420

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v33.1 (x86 cs)

[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.FF19Solved", "true");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.UserID", "UN18628636833202112");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.fullUserID", "UN18628636833202112.IN.20131216120106");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.installDate", "16/12/2013 12:01:09");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.installSessionId", "-1");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.installSp", "FALSE");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.installerVersion", "1.8.1.4");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.searchRevert", "FALSE");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.searchUninstallUserMode", "1");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.searchUserMode", "1");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.toolbarInstallDate", "16-12-2013 12:01:06");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.versionFromInstaller", "10.22.3.18");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3289075.xpeMode", "0");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("CT3329621_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1410587300016,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxps://www.google.com/search");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("Smartbar.TBHomepagesList", "");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("Smartbar.TBSearchEngineList", "");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("Smartbar.TBSearchUrlList", "");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT3329621");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.admin", false);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.aflt", "babsst");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.appId", "{37EB75F2-7392-4DBE-B5AD-147EC6D7BF5F}");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.autoRvrt", "false");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.bbDpng", "3");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.cntry", "CZ");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.dfltLng", "en");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.excTlbr", false);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.ffxUnstlRst", true);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.hdrMd5", "2C49072159CA968376888ABE205060FF");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.id", "88022f76000000000000d43d7eebd534");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.instlDay", "16193");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.instlRef", "sst");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.lastB", "hxxp://www.buenosearch.com/?babsrc=HP_ss&mntrI ... 6&tsp=5197");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.lastVrsnTs", "1.8.28.721:00:29");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.newTab", false);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.prdct", "buenosearch");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.prtnrId", "buenosearch");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.rvrt", "false");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.sg", "azb");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.smplGrp", "none");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.tb_url", "hxxp://www.buenosearch.com/?q={searchTerms}&ba ... 6&tsp=5236");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.tlbrId", "base");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.tlbrSrchUrl", "hxxp://www.buenosearch.com/?q={searchTerms}&ba ... 6&tsp=5236");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.vrsn", "1.8.28.7");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.vrsnTs", "1.8.28.721:00:29");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.vrsni", "1.8.28.7");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.engineVerified", false);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.firstTbRun", false);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.geolastmodified", 1376391550);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.hiddenElements", "itb_options itb_people itb_zoom_in itb_zoom_out itb_zoom_default itb_games itb_highlight");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.history", "mustang%20shelby%20gt%20500mustang%20shelby%20gt%20500%20eleanorOstrava-%20heroldaheroldagaybubble%2Ccom");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.icqgeo", 42);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.installTime", "1345226059");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.newtab_most_visited_state", "1");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.previousFFVersion", "22.0");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.suggestions", false);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.uniqueID", "133797548213379754821338151481539");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1376494516);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.version", "1.5.3");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.voucherHideClicks", 0);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.voucherRedeemClicks", 0);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.voucherWasShown", 0);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("smartbar.addressBarOwnerCTID", "CT3329621");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3329621&CUI=UN28392997942553431&UM=4&SearchSource=13");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT3329621&SearchSource=2&CUI=UN28392997942553431&UM=4&q=");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("smartbar.defaultSearchOwnerCTID", "CT3329621");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("smartbar.homePageOwnerCTID", "CT3329621");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("smartbar.homepageList", "hxxp://search.conduit.com/?ctid=CT3329621&CUI=UN28392997942553431&UM=4&SearchSource=13");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("smartbar.machineId", "HAEKFHAKIXAJD9AWGA9JSCHXB9N3ZL7IASJ/ONDBIESWC699+OYBA6A75RJMC7UTRKZ+6EGJKIQMOXDEVG3RKQ");
[k6h8u9rj.default\prefs.js] - Line Deleted : user_pref("smartbar.searchAddressUrlList", "hxxp://trovi.com/ResultsExt.aspx?ctid=CT3329621&SearchSource=2&CUI=UN28392997942553431&UM=4&q=");

-\\ Google Chrome v38.0.2125.111

*************************

AdwCleaner[R0].txt - [17846 octets] - [18/11/2014 23:15:13]
AdwCleaner[S0].txt - [17501 octets] - [18/11/2014 23:16:06]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [17562 octets] ##########

DJFil · #4 Příspěvek od **DJFil** » 18 lis 2014 23:35

----------------------------------------------------------------------------
CrystalDiskInfo 6.2.1 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x64)
Date : 2014/11/18 23:34:02

-- Controller Map ----------------------------------------------------------
+ ATA Channel 0 (0) [ATA]
- WDC WD5000AACS-00G8B1 ATA Device
- TSSTcorp CDDVDW SH-S223F ATA Device
- ATA Channel 1 (1) [ATA]
+ Intel(R) 8 Series/C220 Series 4 port Serial ATA Storage Controller - 8C00 [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)

-- Disk List ---------------------------------------------------------------
(1) WDC WD5000AACS-00G8B1 : 500,1 GB [0/0/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD5000AACS-00G8B1
----------------------------------------------------------------------------
Model : WDC WD5000AACS-00G8B1
Firmware : 05.04C05
Serial Number : WD-WCAUH0459932
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : ---- | SATA/300
Power On Hours : 16922 hod.
Power On Count : 3720 krát
Temperature : 36 C (96 F)
Health Status : Pozor
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 138 137 _21 0000000017D4 Čas na roztočení ploten
04 _97 _97 __0 000000000F6F Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 100 253 __0 000000000000 Počet chybných hledání
09 _77 _77 __0 00000000421A Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _97 _97 __0 000000000E88 Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000221 Počet vypnutí disku
C1 199 199 __0 000000000F6F Počet cyklů načítání/vymazání
C2 111 100 __0 000000000024 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000001 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5743 4155 4830 3435 3939 3332
020: 0000 8000 0032 3035 2E30 3443 3035 5744 4320 5744
030: 3530 3030 4141 4353 2D30 3047 3842 3120 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0706 0000 0044 0040
080: 01FE 0000 746B 7F61 4123 7469 BC41 4123 207F 003A
090: 003A 0000 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 0000 0000 5001 4EE2
110: 027B E607 0000 0000 0000 0000 0000 0000 0000 4010
120: 4010 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16BA 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 303F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 100E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 B5A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 8A 89 D4 17 00 00 00 00 00 04 32 00 61 61 6F
020: 0F 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 64 FD 00 00 00 00 00 00 00 09 32
040: 00 4D 4D 1A 42 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 61 61 88 0E 00 00 00 00 00 C0 32
070: 00 C8 C8 21 02 00 00 00 00 00 C1 32 00 C7 C7 6F
080: 0F 00 00 00 00 00 C2 22 00 6F 64 24 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 01 00 00 00 00 00 00 C6 30 00 C8 C8 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 84 00 88 2C 01 7B
170: 03 00 01 00 02 85 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 03 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 00 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 64 64 64 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 C8 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 E1

#5 Příspěvek od **altrok** » 18 lis 2014 23:38

DJFil píše:Ten Google toolbar používám.

Dobre, diky, ze jste mi dal vedet... beru na vedomi.

Ulozte na plochu zoek.exe http://hijackthis.nl/smeenk/zoek.htm

spustte jako spravce
do velkeho okna zkopirujte script uvedeny nize
kliknete na Run script
po restartu na Vas vyskoci log (pripadne jej najdete v C:\zoek-results.log) - vlozte mi jej do pristi odpovedi
Kód: Vybrat vše
```
autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;
```

DJFil · #6 Příspěvek od **DJFil** » 19 lis 2014 00:10

Zoek.exe v5.0.0.0 Updated 16-November-2014
Tool run by Filip on Łt 18.11.2014 at 23:48:06,32.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Filip\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

18.11.2014 23:49:09 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3985477195-3131831738-4107921213-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_USERS\S-1-5-21-3985477195-3131831738-4107921213-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\prefs.js:
user_pref("browser.startup.homepage", "www.seznam.cz");
user_pref("browser.search.defaulturl", "https://www.google.com/search");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default

user.js not found
---- Lines BringStar removed from prefs.js ----
user_pref("extensions.BringStar.aul", "1391359481188");
user_pref("extensions.BringStar.irl", true);
user_pref("extensions.BringStar.is", "IM27lsCZ");
user_pref("extensions.BringStar.ug", "D9FAB76F-C88F-44D2-828A-F6D22FF1C08B");
---- Lines valueApps removed from prefs.js ----
user_pref("valueApps.storage.mam_gk_userId", "35613063333132632D353261642D343138662D386437642D396134616131616266363737");
---- Lines defaulttab removed from prefs.js ----
user_pref("extensions.defaulttab.installdate", 1381844920);
user_pref("extensions.defaulttab.lastUsed", 1382626488);
user_pref("extensions.defaulttab.useNewTabWhiteList", false);
---- FireFox user.js and prefs.js backups ----

prefs_18.11.2014_2355_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~2\GUM7B27.tmp deleted
C:\PROGRA~2\Mozilla Firefox\defaults\preferences\pref.js deleted
C:\Users\Filip\AppData\Roaming\dlg deleted
C:\Users\Filip\AppData\Roaming\ICQ Search deleted
C:\PROGRA~3\ICQ deleted
C:\Users\Filip\AppData\Local\CRE deleted
C:\Users\Filip\AppData\LocalLow\TB deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\ICQToolbarData deleted
C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default\CT3289075 deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [11.11.2014 17:53]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default
67D325B5AEB28E381B84E8DE1A90C7A8 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll - Shockwave Flash
ADC539F67D3198679F480974EE203678 - C:\Windows\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.210.11
15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System

==== Fake Chromium Profiles Check ======================

Fake profile C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome deleted

==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
edfohacdfdemjkeejihknkmjkabndgkg - C:\Users\Filip\AppData\Local\CRE\edfohacdfdemjkeejihknkmjkabndgkg.crx[]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[11.11.2014 17:53]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
edfohacdfdemjkeejihknkmjkabndgkg - C:\Users\Filip\AppData\Local\CRE\edfohacdfdemjkeejihknkmjkabndgkg.crx[]

Avast Online Security - Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seznam.cz/"
"Search Page"="http://www.bing.com/search?q={searchTer ... DF&PC=AV01"
"ICQ Search"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A69DFF4-5F4B-4529-B78D-2EB3D434A08D}"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A69DFF4-5F4B-4529-B78D-2EB3D434A08D}] not found

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"ICQ Search"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IESR02"
{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} Microsoft (Bing) Url="http://www.bing.com/search?q={searchTer ... DF&PC=AV01"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... NI_csCZ485"

==== Reset Google Chrome ======================

C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\edfohacdfdemjkeejihknkmjkabndgkg deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\edfohacdfdemjkeejihknkmjkabndgkg deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Filip\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Filip\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Filip\AppData\Local\Mozilla\Firefox\Profiles\k6h8u9rj.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache is not empty, a reboot is needed

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=148 folders=15 8563639 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Filip\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Filip\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Filip\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\N7SGU89C\static.xvideos.com" not found

==== EOF on st 19.11.2014 at 0:05:51,04 ======================

#7 Příspěvek od **altrok** » 19 lis 2014 00:12

Dejte novy log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

DJFil · #8 Příspěvek od **DJFil** » 19 lis 2014 00:22

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-11-2014
Ran by Filip (administrator) on FILIP-PC on 19-11-2014 00:19:18
Running from C:\Users\Filip\Desktop
Loaded Profile: Filip (Available profiles: Filip)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(SplitCam Co.) C:\Program Files (x86)\SplitCam\SplitCamService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Filip\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7191768 2013-06-27] (Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5225064 2014-11-11] (AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-09-12] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3985477195-3131831738-4107921213-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673184 2013-07-03] (Disc Soft Ltd)
Startup: C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Registrace produktu.lnk
ShortcutTarget: Logitech . Registrace produktu.lnk -> C:\Program Files (x86)\Logitech\Ereg\eReg.exe (Leader Technologies/Logitech)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-3985477195-3131831738-4107921213-1000] => 81.27.195.6:3128
HKU\S-1-5-21-3985477195-3131831738-4107921213-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-3985477195-3131831738-4107921213-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
SearchScopes: HKLM-x32 -> DefaultScope {6A69DFF4-5F4B-4529-B78D-2EB3D434A08D} URL =
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKU\S-1-5-21-3985477195-3131831738-4107921213-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3985477195-3131831738-4107921213-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3985477195-3131831738-4107921213-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-3985477195-3131831738-4107921213-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36

FireFox:
========
FF ProfilePath: C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\k6h8u9rj.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchUrl: hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.seznam.cz
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 -> C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-05-26]

Chrome:
=======
CHR Profile: C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-02]
CHR Extension: (Disk Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-02]
CHR Extension: (YouTube) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-02]
CHR Extension: (Vyhledávání Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-02]
CHR Extension: (Avast Online Security) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-05-02]
CHR Extension: (Peněženka Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-02]
CHR Extension: (Gmail) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-02]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-11] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-11-11] (Avast Software)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [29728 2013-05-28] (MICRO-STAR INTERNATIONAL CO., LTD.)
R2 SpliCamService; C:\Program Files (x86)\SplitCam\SplitCamService.exe [311424 2014-09-15] (SplitCam Co.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 3xHybr64; C:\Windows\System32\DRIVERS\3xHybr64.sys [1437952 2011-09-20] (NXP Semiconductors Germany GmbH) [File not signed]
S3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [11922944 2012-11-16] (Advanced Micro Devices, Inc.) [File not signed]
S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [359936 2012-11-16] (Advanced Micro Devices, Inc.) [File not signed]
S3 arusb_win7x; C:\Windows\System32\DRIVERS\arusb_win7x.sys [783360 2010-04-27] (Atheros Communications, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-11] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-11] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-11] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-11] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-11] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-11] ()
S3 atikmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [11922944 2012-11-16] (Advanced Micro Devices, Inc.) [File not signed]
R3 CAMBOXDRV; C:\Windows\System32\DRIVERS\camboxdrv64.sys [34944 2013-01-30] (Visit-X B.V.)
S3 CrystalSysInfo; C:\Program Files\MediaCoder\SysInfoX64.sys [18128 2007-09-25] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-10-04] (Disc Soft Ltd)
S3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2012-05-25] ()
R3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [23552 2013-04-24] (Windows (R) Win 7 DDK provider)
R3 splitcam_hd_driver; C:\Windows\System32\DRIVERS\splitcam_hd_driver.sys [37496 2013-12-16] (Windows (R) Win 7 DDK provider)
S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1451008 2008-10-13] (C-Media Electronics Inc)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2014-11-11] (Avast Software)
R3 VCam_WDM; C:\Windows\System32\DRIVERS\VCam_WDM.sys [102240 2012-04-28] (e2eSoft)
S3 GPU-Z; \??\C:\Users\Filip\AppData\Local\Temp\GPU-Z.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-19 00:19 - 2014-11-19 00:19 - 00012841 _____ () C:\Users\Filip\Desktop\FRST.txt
2014-11-19 00:18 - 2014-11-19 00:19 - 00000000 ____D () C:\FRST
2014-11-19 00:18 - 2014-11-19 00:18 - 00112640 _____ (forum.viry.cz) C:\Users\Filip\Desktop\FRSTLauncher.exe
2014-11-19 00:15 - 2014-11-19 00:15 - 02117120 _____ (Farbar) C:\Users\Filip\Desktop\FRST64.exe
2014-11-19 00:08 - 2014-11-19 00:08 - 00000197 _____ () C:\Windows\system32\2014-11-18-23-08-27.099-AvastVBoxSVC.exe-2508.log
2014-11-18 23:58 - 2014-11-18 23:47 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-11-18 23:48 - 2014-11-19 00:05 - 00011756 _____ () C:\zoek-results.log
2014-11-18 23:48 - 2014-11-18 23:55 - 00000000 ____D () C:\zoek_backup
2014-11-18 23:47 - 2014-11-18 23:47 - 01294848 _____ () C:\Users\Filip\Desktop\zoek.exe
2014-11-18 23:33 - 2014-11-18 23:33 - 00000236 _____ () C:\Users\Filip\Desktop\DiskInfo.ini
2014-11-18 23:33 - 2014-11-18 23:33 - 00000000 ____D () C:\Users\Filip\Desktop\Smart
2014-11-18 23:33 - 2014-08-31 19:02 - 00000000 ____D () C:\Users\Filip\Desktop\CdiResource
2014-11-18 23:33 - 2014-08-31 18:58 - 02385016 _____ (Crystal Dew World) C:\Users\Filip\Desktop\DiskInfo.exe
2014-11-18 23:33 - 2014-01-27 21:18 - 00000000 ____D () C:\Users\Filip\Desktop\License
2014-11-18 23:19 - 2014-11-18 23:19 - 00000197 _____ () C:\Windows\system32\2014-11-18-22-19-06.093-AvastVBoxSVC.exe-2712.log
2014-11-18 23:15 - 2014-11-18 23:16 - 00000000 ____D () C:\AdwCleaner
2014-11-18 23:14 - 2014-11-18 23:14 - 02817974 _____ () C:\Users\Filip\Desktop\CrystalDiskInfo6_2_1.zip
2014-11-18 23:14 - 2014-11-18 23:14 - 02140160 _____ () C:\Users\Filip\Desktop\adwcleaner_4.101.exe
2014-11-18 22:35 - 2014-11-18 22:40 - 00000000 ____D () C:\Program Files\trend micro
2014-11-18 22:35 - 2014-11-18 22:35 - 00000000 ____D () C:\rsit
2014-11-18 22:34 - 2014-11-18 22:34 - 01222144 _____ () C:\Users\Filip\Desktop\RSITx64.exe
2014-11-18 22:30 - 2014-11-18 22:30 - 00000197 _____ () C:\Windows\system32\2014-11-18-21-30-19.039-AvastVBoxSVC.exe-2296.log
2014-11-18 22:25 - 2014-11-18 22:25 - 00000000 ____D () C:\Users\Default\AppData\Roaming\AVAST Software
2014-11-18 22:25 - 2014-11-18 22:25 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\AVAST Software
2014-11-18 20:22 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-18 20:22 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-18 20:22 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-18 20:22 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-18 10:07 - 2014-11-18 10:07 - 00000197 _____ () C:\Windows\system32\2014-11-18-09-07-21.078-AvastVBoxSVC.exe-3180.log
2014-11-17 23:32 - 2014-11-17 23:32 - 00000197 _____ () C:\Windows\system32\2014-11-17-22-32-22.053-AvastVBoxSVC.exe-3596.log
2014-11-17 11:29 - 2014-11-12 16:25 - 1753640960 _____ () C:\Users\Filip\Desktop\Kamarád taky rád CZDAB.avi
2014-11-17 10:08 - 2014-11-17 10:08 - 00000197 _____ () C:\Windows\system32\2014-11-17-09-08-10.085-AvastVBoxSVC.exe-3048.log
2014-11-16 20:04 - 2014-11-16 20:04 - 00000197 _____ () C:\Windows\system32\2014-11-16-19-04-05.095-AvastVBoxSVC.exe-2112.log
2014-11-15 15:22 - 2014-11-15 15:22 - 00000197 _____ () C:\Windows\system32\2014-11-15-14-22-42.020-AvastVBoxSVC.exe-1296.log
2014-11-15 10:24 - 2014-11-15 10:24 - 00000197 _____ () C:\Windows\system32\2014-11-15-09-24-44.000-AvastVBoxSVC.exe-3108.log
2014-11-14 18:49 - 2014-11-14 18:49 - 00000197 _____ () C:\Windows\system32\2014-11-14-17-49-54.091-AvastVBoxSVC.exe-1396.log
2014-11-14 15:43 - 2014-11-14 15:43 - 00000197 _____ () C:\Windows\system32\2014-11-14-14-43-29.060-AvastVBoxSVC.exe-3376.log
2014-11-14 11:34 - 2014-11-14 11:34 - 00000197 _____ () C:\Windows\system32\2014-11-14-10-34-20.044-AvastVBoxSVC.exe-2376.log
2014-11-14 11:22 - 2014-11-14 11:22 - 00000197 _____ () C:\Windows\system32\2014-11-14-10-22-50.087-AvastVBoxSVC.exe-2876.log
2014-11-14 08:03 - 2014-11-14 08:03 - 00000197 _____ () C:\Windows\system32\2014-11-14-07-03-52.017-AvastVBoxSVC.exe-2716.log
2014-11-13 21:15 - 2014-11-13 21:15 - 00000197 _____ () C:\Windows\system32\2014-11-13-20-15-19.005-AvastVBoxSVC.exe-2544.log
2014-11-13 14:36 - 2014-11-13 14:37 - 00000197 _____ () C:\Windows\system32\2014-11-13-13-36-52.015-AvastVBoxSVC.exe-2040.log
2014-11-12 16:15 - 2014-11-12 16:15 - 00000197 _____ () C:\Windows\system32\2014-11-12-15-15-31.074-AvastVBoxSVC.exe-3108.log
2014-11-12 15:05 - 2014-11-12 15:05 - 00000197 _____ () C:\Windows\system32\2014-11-12-14-05-49.062-AvastVBoxSVC.exe-2444.log
2014-11-12 15:05 - 2014-11-12 15:05 - 00000000 __SHD () C:\Users\Filip\AppData\Local\EmieBrowserModeList
2014-11-12 13:52 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 13:52 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 13:52 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 13:52 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 13:52 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 13:52 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 13:52 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 13:52 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 13:52 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 13:52 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 13:52 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 13:52 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 13:52 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 13:52 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 13:52 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 13:52 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 13:52 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 13:52 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 13:52 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 13:52 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 13:52 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 13:52 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 13:52 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 13:52 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 13:52 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 13:52 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 13:52 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 13:52 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 13:52 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 13:52 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 13:52 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 13:52 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 13:52 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 13:52 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 13:52 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 13:52 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 13:52 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 13:52 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 13:52 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 13:52 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 13:52 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 13:52 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 13:52 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 13:52 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 13:52 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 13:52 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 13:52 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 13:52 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 13:52 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 13:52 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 13:52 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 13:52 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 13:52 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 13:52 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 13:52 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 13:52 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 13:52 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 13:52 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 13:52 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 13:52 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 13:52 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 13:52 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 13:52 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 13:52 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 13:52 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 13:52 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 13:52 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 13:52 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 13:52 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 13:52 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 13:52 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 13:52 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 13:52 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 13:52 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 13:52 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 13:52 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 13:52 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 13:52 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 13:52 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 13:52 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 13:52 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 13:52 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 13:52 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 13:52 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 13:52 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-12 13:52 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 13:52 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 13:52 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 13:52 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 13:52 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 13:52 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-12 13:51 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 13:51 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 13:51 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 13:51 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 13:51 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 13:51 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 13:51 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 12:42 - 2014-11-12 12:42 - 00000197 _____ () C:\Windows\system32\2014-11-12-11-42-13.062-AvastVBoxSVC.exe-1988.log
2014-11-11 18:13 - 2014-11-11 18:13 - 00000247 _____ () C:\Windows\system32\2014-11-11-17-13-34.031-aswFe.exe-1696.log
2014-11-11 18:09 - 2014-11-11 18:13 - 00000247 _____ () C:\Windows\system32\2014-11-11-17-09-49.040-aswFe.exe-4340.log
2014-11-11 18:09 - 2014-11-11 18:09 - 00000197 _____ () C:\Windows\system32\2014-11-11-17-09-44.073-AvastVBoxSVC.exe-4328.log
2014-11-11 18:05 - 2014-11-11 18:05 - 00001015 _____ () C:\Users\Filip\Desktop\SplitCam.lnk
2014-11-11 18:05 - 2014-11-11 18:05 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\SplitCam
2014-11-11 18:05 - 2014-11-11 18:05 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SplitCam
2014-11-11 18:04 - 2014-11-11 18:05 - 00000000 ____D () C:\Program Files (x86)\SplitCam
2014-11-11 17:57 - 2014-11-11 17:57 - 00000000 ____D () C:\Windows\SysWOW64\vbox
2014-11-11 17:57 - 2014-11-11 17:57 - 00000000 ____D () C:\Windows\system32\vbox
2014-11-11 17:54 - 2014-11-14 10:33 - 00001972 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-11-11 17:53 - 2014-11-11 17:53 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-11-11 17:53 - 2014-11-11 17:53 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-11-10 22:17 - 2014-11-10 22:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-07 16:45 - 2014-11-07 16:46 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-11-07 16:45 - 2014-11-07 16:45 - 00002023 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-11-02 18:30 - 2014-11-02 18:31 - 00000098 _____ () C:\Users\Filip\Desktop\Nový textový dokument.txt
2014-11-01 12:36 - 2014-11-01 15:53 - 00000000 ____D () C:\Users\Filip\Desktop\audio
2014-11-01 12:36 - 2014-11-01 15:50 - 00000000 ____D () C:\Users\Filip\Desktop\video
2014-11-01 12:32 - 2014-11-01 15:43 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\iSpy
2014-11-01 12:32 - 2014-11-01 12:32 - 00001882 _____ () C:\Users\Public\Desktop\iSpy.lnk
2014-11-01 12:32 - 2014-11-01 12:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSpy
2014-11-01 12:32 - 2014-11-01 12:32 - 00000000 ____D () C:\Program Files (x86)\iSpy
2014-11-01 12:28 - 2014-11-01 13:24 - 00000000 ____D () C:\Program Files (x86)\HmelyoffLabs
2014-11-01 10:54 - 2014-11-01 10:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-11-01 10:52 - 2014-11-01 10:53 - 74637872 _____ (Logitech, Inc.) C:\Users\Filip\Desktop\lws251.exe
2014-11-01 10:39 - 2014-11-01 10:55 - 00010063 _____ () C:\Windows\LDPINST.LOG
2014-11-01 10:36 - 2014-11-19 00:05 - 00008202 _____ () C:\Windows\PFRO.log
2014-11-01 10:07 - 2014-11-01 10:07 - 00699016 _____ (CNET Download.com) C:\Users\Filip\Downloads\cbsidlm-cbsi213-SplitCam-SEO-10500269.exe
2014-10-28 09:47 - 2014-11-19 00:05 - 00006436 _____ () C:\Windows\setupact.log
2014-10-28 09:47 - 2014-10-28 09:47 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-28 09:46 - 2014-10-28 09:46 - 00000654 _____ () C:\Users\Filip\Desktop\Zuzna – zástupce.lnk
2014-10-28 09:45 - 2014-10-28 09:46 - 00000000 ____D () C:\Zuzna

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-19 00:18 - 2012-11-12 01:21 - 00003970 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{2BB39773-344D-43E9-B891-5B4AE5FBE6FD}
2014-11-19 00:13 - 2009-07-14 05:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-19 00:13 - 2009-07-14 05:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-19 00:09 - 2012-05-24 21:49 - 01232847 _____ () C:\Windows\WindowsUpdate.log
2014-11-19 00:06 - 2013-10-15 14:17 - 00000008 __RSH () C:\Users\Filip\ntuser.pol
2014-11-19 00:06 - 2012-07-09 23:42 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-11-19 00:06 - 2012-05-24 22:07 - 00000000 ____D () C:\Users\Filip
2014-11-19 00:05 - 2012-05-27 20:46 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-19 00:05 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-19 00:00 - 2012-05-25 21:27 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-18 23:55 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-11-18 23:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-11-18 23:42 - 2012-05-27 20:46 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-18 22:15 - 2012-05-27 21:35 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\Skype
2014-11-13 21:06 - 2014-05-01 11:50 - 00000000 ____D () C:\Users\Filip\Desktop\Strip a Visit
2014-11-12 23:37 - 2012-05-27 20:46 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-12 23:37 - 2012-05-27 20:46 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-12 17:13 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-12 15:02 - 2009-07-14 05:45 - 00300800 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-12 14:30 - 2012-05-26 07:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-12 14:27 - 2013-07-16 18:57 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-12 14:24 - 2012-05-25 22:41 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-12 14:00 - 2012-05-25 21:27 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-12 14:00 - 2012-05-25 21:26 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-12 14:00 - 2012-05-25 21:26 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-11 17:53 - 2014-05-01 07:02 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-11-11 17:53 - 2013-12-27 08:51 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-11-11 17:53 - 2013-03-23 19:54 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-11-11 17:53 - 2013-03-23 19:54 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-11-11 17:53 - 2012-05-26 09:28 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-11-11 17:53 - 2012-05-26 09:28 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-11-11 17:53 - 2012-05-26 09:28 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-11-11 17:53 - 2012-05-26 09:28 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-11-11 09:52 - 2013-05-23 07:51 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-10 22:40 - 2014-04-15 11:52 - 00000000 ____D () C:\Program Files (x86)\Visit-X B.V
2014-11-10 22:40 - 2014-03-21 07:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VISIT-X
2014-11-10 17:02 - 2010-11-21 10:27 - 00668882 _____ () C:\Windows\system32\perfh005.dat
2014-11-10 17:02 - 2010-11-21 10:27 - 00141542 _____ () C:\Windows\system32\perfc005.dat
2014-11-10 17:02 - 2009-07-14 06:13 - 01584626 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-09 23:25 - 2014-03-21 07:47 - 00000000 ____D () C:\Users\Filip\Documents\VX-Software 9
2014-11-07 16:45 - 2012-05-26 08:43 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-11-07 16:45 - 2012-05-26 08:42 - 00000000 ____D () C:\ProgramData\Adobe
2014-11-07 14:02 - 2014-09-05 18:53 - 00000000 ____D () C:\Users\Filip\Desktop\relax
2014-11-04 14:30 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-01 10:55 - 2013-05-20 15:51 - 00011179 _____ () C:\Windows\system32\lvcoinst.log
2014-11-01 10:55 - 2013-05-20 15:48 - 00000000 ____D () C:\Program Files (x86)\Logitech
2014-11-01 10:54 - 2013-05-20 15:49 - 00000000 ____D () C:\Program Files\Common Files\Logishrd
2014-11-01 10:42 - 2013-01-13 16:59 - 00000000 ____D () C:\Program Files (x86)\SpeedFan
2014-10-30 02:11 - 2012-11-14 14:25 - 00000830 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-10-28 14:39 - 2014-05-01 02:49 - 00002187 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-28 09:44 - 2013-10-04 13:04 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\DAEMON Tools Lite
2014-10-28 09:43 - 2014-03-23 07:37 - 00000000 ___DC () C:\Users\Filip\AppData\Local\MigWiz
2014-10-28 09:37 - 2012-11-14 14:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-10-28 09:37 - 2012-11-14 14:25 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-28 09:31 - 2011-08-21 11:00 - 00000000 ____D () C:\Filip
2014-10-28 09:19 - 2013-07-16 21:31 - 00000000 ____D () C:\Users\Filip\Desktop\GM
2014-10-28 09:17 - 2013-04-10 14:52 - 00000000 ____D () C:\Users\Filip\AppData\Roaming\uTorrent
2014-10-26 09:50 - 2009-07-14 06:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-10-25 20:26 - 2009-07-14 05:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-10-21 23:37 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-11-15 15:47

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (ACER) (Fixed) (Total:465.76 GB) (Free:170.29 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

Available physical RAM: 2364.14 MB
Total physical RAM: 3958.03 MB
Percentage of memory in use: 40%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7D826B35)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Filip\Desktop" je 3536 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

DJFil · #9 Příspěvek od **DJFil** » 19 lis 2014 00:22

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-11-2014
Ran by Filip at 2014-11-19 00:19:49
Running from C:\Users\Filip\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

777 ShowSoft v3 (HKLM-x32\...\{9352B83B-D6E4-4EB1-9908-B79592A3782B}_is1) (Version: 3.4.2 - 777-Systems N.V.)
777 ShowSoft v3 (HKLM-x32\...\AirShowsoft) (Version: 3.3.5 - UNKNOWN)
777 ShowSoft v3 (x32 Version: 3.3.5 - UNKNOWN) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated)
Adobe Flash Media Live Encoder 3.2 (HKLM-x32\...\{0659E943-DDF4-44FC-9FEE-A13B09F8BB08}) (Version: 3.2.0 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
AirLive X.USB (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - OvisLink)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.0.2208 - AVAST Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.67.1076 - AB Team, d.o.o.)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
CPUID CPU-Z 1.62 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0335 - Disc Soft Ltd)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3215 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
iSpy (HKLM-x32\...\{88964344-7E39-457C-BBA3-CA5188538884}) (Version: 6.2.5 - iSpy)
Java 7 Update 21 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.210 - Oracle)
JavaFX 2.1.0 (HKLM-x32\...\{1111706F-666A-4037-7777-210328764D10}) (Version: 2.1.0 - Oracle Corporation)
jetAudio Basic VX (HKLM-x32\...\{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}) (Version: 8.1.0 - COWON)
Live-Strip.com Sendertool (HKLM-x32\...\{D911FE2B-44E3-420F-8157-30D93F4A5DE7}) (Version: 2.1.8 - CAM-CONTENT S.L.)
LiveStripSplitter (HKLM-x32\...\{7C8AACCD-584F-45D5-953C-4B808A4D344E}) (Version: 1.0.3 - CAM-CONTENT S.L.)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
Marvell Miniport Driver (HKLM-x32\...\Marvell Miniport Driver) (Version: 11.45.4.3 - Marvell)
MediaCoder 0.8.28.5582 (HKLM-x32\...\MediaCoder) (Version: 0.8.28.5582 - Mediatronic)
MediaCoder x64 0.8.28.5582 (HKLM\...\MediaCoder x64) (Version: 0.8.28.5582 - Mediatronic)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Windows Media Video 9 VCM (HKLM-x32\...\WMV9_VCM) (Version: - )
Mozilla Firefox 33.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 33.1 (x86 cs)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.72.410.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6959 - Realtek Semiconductor Corp.)
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
SplitCam (HKLM-x32\...\SplitCam) (Version: 6.9.4.1 - SplitCam Co)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VISIT-X Video Splitter 9.0.1.3 (HKLM-x32\...\VISIT-X Video Splitter_is1) (Version: 9.0.1.3 - Visit-X B.V.)
VX-Software 9 v.9.1.5.6 (HKLM-x32\...\{54DDB1B0-5E5B-4637-99DD-7A364CE6A75B}}_is1) (Version: - )
VX-Tool Uploader 1.0.0.0 (HKLM-x32\...\VX-Tool Uploader) (Version: 1.0.0.0 - VISIT-X)
Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version: - )
WinRAR 4.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points =========================

14-10-2014 22:57:52 Windows Update
15-10-2014 13:25:01 Windows Update
21-10-2014 11:46:17 Windows Update
28-10-2014 08:11:24 Windows Update
31-10-2014 14:38:10 Windows Update
01-11-2014 09:50:51 Windows Defender Checkpoint
01-11-2014 11:31:47 Installed iSpy
06-11-2014 22:23:03 Windows Update
11-11-2014 16:49:22 Windows Update
11-11-2014 16:52:34 avast! antivirus system restore point
12-11-2014 13:22:50 Windows Update
18-11-2014 19:22:29 Windows Update
18-11-2014 21:22:20 Windows Update
18-11-2014 22:48:46 zoek.exe restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2014-11-18 23:49 - 00000840 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0DFB9901-3BA2-4C5B-8EE9-BB6925C0A558} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-23] (Piriform Ltd)
Task: {0F1037B2-C66E-463E-9B3D-F78B68550141} - System32\Tasks\{40FA150C-6BF4-4870-9034-70DB27C41389} => Firefox.exe http://ui.skype.com/ui/0/6.10.0.104/cs/ ... rogressBar
Task: {101938C8-FECD-4897-8317-F6BAB322099E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-27] (Google Inc.)
Task: {292FDD47-3ED7-4504-B6F0-720602FB173D} - System32\Tasks\{DD2E631E-76E7-4C2D-B804-D124A93273B6} => Chrome.exe http://ui.skype.com/ui/0/6.0.0.126/cs/a ... rogressBar
Task: {29EF8D87-A81B-47E5-AF62-B757FEE4F120} - System32\Tasks\{D7188A75-E3F9-46DC-8379-E3F3FBAC4E82} => Firefox.exe http://ui.skype.com/ui/0/6.10.0.104/cs/ ... rogressBar
Task: {2FD03142-AE14-49E9-82DB-7BD6EDB026E4} - System32\Tasks\{F6B698F4-5CB3-4EEF-B083-DF9E3936DCD4} => Firefox.exe http://ui.skype.com/ui/0/6.10.0.104/cs/ ... rogressBar
Task: {35D45DE2-B327-4F74-820C-4F378A75410A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-11-11] (AVAST Software)
Task: {38F96307-7DCB-4C06-A094-1239D59B61D8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12] (Adobe Systems Incorporated)
Task: {54B869F3-8022-43F7-88BD-544533135162} - System32\Tasks\{0C2305A5-0527-4E42-9DE8-16C8F32DD428} => Firefox.exe http://ui.skype.com/ui/0/6.16.0.105/cs/ ... rogressBar
Task: {600B24DF-3F52-474C-A296-808F1805F22B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-27] (Google Inc.)
Task: {6CA4D97D-2CCF-4D6A-847B-9CC3B9CF0237} - System32\Tasks\{944C02FD-DE92-4AE3-9AB9-8CF8E6C22D29} => C:\Program Files (x86)\SplitCam\SplitCam.exe [2014-09-15] (SplitCam Co.)
Task: {8DF844E5-0E95-4914-B4A6-35B51A3CB837} - System32\Tasks\{AD87651E-A937-4CA2-A2A9-15A980D62BAA} => Chrome.exe http://ui.skype.com/ui/0/6.3.0.105/cs/a ... rogressBar
Task: {A944AD2E-D2C5-42CD-832D-C5ADECBD4466} - System32\Tasks\{5DFCE99A-DACA-42D5-B104-7E7A82B9A945} => C:\Program Files (x86)\SplitCam\SplitCam.exe [2014-09-15] (SplitCam Co.)
Task: {DBF4FE20-D146-49AE-888C-E4B13FDF92D6} - System32\Tasks\{064EADBF-7BE4-4860-A83D-37C2FBEC2BEA} => Firefox.exe http://ui.skype.com/ui/0/6.16.0.105/cs/ ... rogressBar
Task: {E165CF1C-BB8B-4BCF-AC48-3E0DF5AFEA1E} - System32\Tasks\{0B942AEE-69D9-4DED-BD07-41823DC75BBF} => Chrome.exe http://ui.skype.com/ui/0/6.0.0.126/cs/a ... rogressBar
Task: {F66239FA-AD6B-4009-A13B-2AC736B1CD5A} - System32\Tasks\{84151FB7-2691-4CB6-8B12-8B88B9C525D8} => Firefox.exe http://ui.skype.com/ui/0/5.9.0.115/cs/g ... Error=1618
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-05-25 21:44 - 2011-05-28 21:05 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2014-11-11 17:53 - 2014-11-11 17:53 - 00388208 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDDU.dll
2014-11-11 17:53 - 2014-11-11 17:53 - 05851328 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxRT.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 00264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2014-11-18 18:14 - 2014-11-18 18:14 - 02902528 _____ () C:\Program Files\AVAST Software\Avast\defs\14111802\algo.dll
2014-11-11 17:53 - 2014-11-11 17:53 - 04495336 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\x86\VBoxRT-x86.dll
2014-09-15 06:17 - 2014-09-15 06:17 - 00114304 _____ () C:\Program Files (x86)\SplitCam\splitcam_hd_driver_ProxyPlugin.ax
2014-11-11 17:53 - 2014-11-11 17:53 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2012-09-13 00:39 - 2012-09-13 00:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2014-11-10 22:17 - 2014-11-10 22:17 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

========================= Accounts: ==========================

Administrator (S-1-5-21-3985477195-3131831738-4107921213-500 - Administrator - Disabled)
Filip (S-1-5-21-3985477195-3131831738-4107921213-1000 - Administrator - Enabled) => C:\Users\Filip
Guest (S-1-5-21-3985477195-3131831738-4107921213-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3985477195-3131831738-4107921213-1200 - Limited - Enabled)

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (11/13/2014 09:15:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: VISIT-X Video Splitter.exe, verze: 9.0.1.3, časové razítko: 0x51094fd7
Název chybujícího modulu: Deinterlace.ax, verze: 1.2.0.0, časové razítko: 0x508fad49
Kód výjimky: 0xc0000005
Posun chyby: 0x0000436d
ID chybujícího procesu: 0xf88
Čas spuštění chybující aplikace: 0xVISIT-X Video Splitter.exe0
Cesta k chybující aplikaci: VISIT-X Video Splitter.exe1
Cesta k chybujícímu modulu: VISIT-X Video Splitter.exe2
ID zprávy: VISIT-X Video Splitter.exe3

Error: (11/13/2014 09:09:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: VISIT-X Video Splitter.exe, verze: 9.0.1.3, časové razítko: 0x51094fd7
Název chybujícího modulu: Deinterlace.ax, verze: 1.2.0.0, časové razítko: 0x508fad49
Kód výjimky: 0xc0000005
Posun chyby: 0x0000436d
ID chybujícího procesu: 0x1bf8
Čas spuštění chybující aplikace: 0xVISIT-X Video Splitter.exe0
Cesta k chybující aplikaci: VISIT-X Video Splitter.exe1
Cesta k chybujícímu modulu: VISIT-X Video Splitter.exe2
ID zprávy: VISIT-X Video Splitter.exe3

Error: (11/13/2014 09:09:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: VISIT-X Video Splitter.exe, verze: 9.0.1.3, časové razítko: 0x51094fd7
Název chybujícího modulu: Deinterlace.ax, verze: 1.2.0.0, časové razítko: 0x508fad49
Kód výjimky: 0xc0000005
Posun chyby: 0x0000436d
ID chybujícího procesu: 0x16a4
Čas spuštění chybující aplikace: 0xVISIT-X Video Splitter.exe0
Cesta k chybující aplikaci: VISIT-X Video Splitter.exe1
Cesta k chybujícímu modulu: VISIT-X Video Splitter.exe2
ID zprávy: VISIT-X Video Splitter.exe3

Error: (11/13/2014 09:08:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: VISIT-X Video Splitter.exe, verze: 9.0.1.3, časové razítko: 0x51094fd7
Název chybujícího modulu: Deinterlace.ax, verze: 1.2.0.0, časové razítko: 0x508fad49
Kód výjimky: 0xc0000005
Posun chyby: 0x0000436d
ID chybujícího procesu: 0xc2c
Čas spuštění chybující aplikace: 0xVISIT-X Video Splitter.exe0
Cesta k chybující aplikaci: VISIT-X Video Splitter.exe1
Cesta k chybujícímu modulu: VISIT-X Video Splitter.exe2
ID zprávy: VISIT-X Video Splitter.exe3

Error: (10/28/2014 03:01:01 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program IEXPLORE.EXE verze 11.0.9600.17344 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 8d0

Čas spuštění: 01cff23da51054b5

Čas ukončení: 130

Cesta k aplikaci: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

ID hlášení: 32e4d709-5e46-11e4-a2d5-d43d7eebd534

Error: (09/26/2014 03:31:18 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program IEXPLORE.EXE verze 11.0.9600.17280 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: f58

Čas spuštění: 01cfd91d43b908e7

Čas ukončení: 348

Cesta k aplikaci: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

ID hlášení:

Error: (09/17/2014 10:53:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program IEXPLORE.EXE verze 11.0.9600.17280 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 6e4

Čas spuštění: 01cfd25cfe359495

Čas ukončení: 16

Cesta k aplikaci: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

ID hlášení:

Error: (09/13/2014 06:48:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 32.0.0.5350, časové razítko: 0x53fc3d9f
Název chybujícího modulu: mozalloc.dll, verze: 32.0.0.5350, časové razítko: 0x53fc0a56
Kód výjimky: 0x80000003
Posun chyby: 0x0000141b
ID chybujícího procesu: 0x1204
Čas spuštění chybující aplikace: 0xplugin-container.exe0
Cesta k chybující aplikaci: plugin-container.exe1
Cesta k chybujícímu modulu: plugin-container.exe2
ID zprávy: plugin-container.exe3

Error: (09/03/2014 06:07:59 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program IEXPLORE.EXE verze 11.0.9600.17239 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: d40

Čas spuštění: 01cfc734d49e2cda

Čas ukončení: 10

Cesta k aplikaci: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

ID hlášení:

Error: (08/26/2014 08:29:40 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program IEXPLORE.EXE verze 11.0.9600.17239 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 338

Čas spuštění: 01cfc0fd4acab6f8

Čas ukončení: 30

Cesta k aplikaci: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

ID hlášení:

System errors:
=============
Error: (11/19/2014 00:18:19 AM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/19/2014 00:18:16 AM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/19/2014 00:18:13 AM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/19/2014 00:18:10 AM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/19/2014 00:17:53 AM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/19/2014 00:17:50 AM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/19/2014 00:17:47 AM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/19/2014 00:17:44 AM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/19/2014 00:17:41 AM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/19/2014 00:17:38 AM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2012-05-28 23:32:00.392
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Filip\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-05-28 23:32:00.375
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Filip\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-05-28 23:32:00.342
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-05-28 23:32:00.326
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-05-28 23:31:27.682
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Filip\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-05-28 23:31:27.664
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Filip\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-05-28 23:31:27.613
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-05-28 23:31:27.596
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-05-28 23:29:19.741
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Filip\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2012-05-28 23:29:19.724
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Filip\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU G3420 @ 3.20GHz
Percentage of memory in use: 40%
Total physical RAM: 3958.03 MB
Available physical RAM: 2364.14 MB
Total Pagefile: 7914.23 MB
Available Pagefile: 6206.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (ACER) (Fixed) (Total:465.76 GB) (Free:170.29 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7D826B35)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End Of Log ============================

#10 Příspěvek od **altrok** » 19 lis 2014 00:30

Vypnete trvale Windows Defender - http://windows.microsoft.com/cs-cz/wind ... =windows-7

Velikost plochy by nemela presahovat 200 MB. Snizuje se pak start i samotny chod celeho PC.

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-09-12] (Adobe Systems Incorporated)
HKU\S-1-5-21-3985477195-3131831738-4107921213-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673184 2013-07-03] (Disc Soft Ltd)
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
SearchScopes: HKLM-x32 -> DefaultScope {6A69DFF4-5F4B-4529-B78D-2EB3D434A08D} URL =
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-3985477195-3131831738-4107921213-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3985477195-3131831738-4107921213-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3985477195-3131831738-4107921213-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
S3 GPU-Z; \??\C:\Users\Filip\AppData\Local\Temp\GPU-Z.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
2014-11-18 23:58 - 2014-11-18 23:47 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-11-18 23:48 - 2014-11-19 00:05 - 00011756 _____ () C:\zoek-results.log
2014-11-18 23:48 - 2014-11-18 23:55 - 00000000 ____D () C:\zoek_backup
2014-11-18 23:47 - 2014-11-18 23:47 - 01294848 _____ () C:\Users\Filip\Desktop\zoek.exe
2014-11-18 22:35 - 2014-11-18 22:40 - 00000000 ____D () C:\Program Files\trend micro
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End

DJFil · #11 Příspěvek od **DJFil** » 19 lis 2014 01:02

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 17-11-2014
Ran by Filip at 2014-11-19 00:53:52 Run:1
Running from C:\Users\Filip\Desktop
Loaded Profile: Filip (Available profiles: Filip)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-09-12] (Adobe Systems Incorporated)
HKU\S-1-5-21-3985477195-3131831738-4107921213-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673184 2013-07-03] (Disc Soft Ltd)
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
SearchScopes: HKLM-x32 -> DefaultScope {6A69DFF4-5F4B-4529-B78D-2EB3D434A08D} URL =
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKU\S-1-5-21-3985477195-3131831738-4107921213-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3985477195-3131831738-4107921213-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3985477195-3131831738-4107921213-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
S3 GPU-Z; \??\C:\Users\Filip\AppData\Local\Temp\GPU-Z.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
2014-11-18 23:58 - 2014-11-18 23:47 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-11-18 23:48 - 2014-11-19 00:05 - 00011756 _____ () C:\zoek-results.log
2014-11-18 23:48 - 2014-11-18 23:55 - 00000000 ____D () C:\zoek_backup
2014-11-18 23:47 - 2014-11-18 23:47 - 01294848 _____ () C:\Users\Filip\Desktop\zoek.exe
2014-11-18 22:35 - 2014-11-18 22:40 - 00000000 ____D () C:\Program Files\trend micro
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKU\S-1-5-21-3985477195-3131831738-4107921213-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => Key not found.
HKU\S-1-5-21-3985477195-3131831738-4107921213-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-3985477195-3131831738-4107921213-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => Key deleted successfully.
"HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66}" => Key not found.
"HKU\S-1-5-21-3985477195-3131831738-4107921213-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => Key deleted successfully.
"HKCR\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value deleted successfully.
"HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value deleted successfully.
"HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}" => Key not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => Key deleted successfully.
GPU-Z => Service deleted successfully.
MSICDSetup => Service deleted successfully.
NTIOLib_1_0_C => Service deleted successfully.
C:\Windows\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Filip\Desktop\zoek.exe => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 119 MB temporary data.

The system needed a reboot.

==== End of Fixlog ====

#12 Příspěvek od **altrok** » 19 lis 2014 01:05

Vyborne, jak se pocitac chova ted?

Nebylo by od veci provest defragmentaci disku napr. pomoci Defraggleru - https://www.piriform.com/defraggler/download

DJFil · #13 Příspěvek od **DJFil** » 19 lis 2014 01:14

Zdá se mi to mnohem lepší. Děkuji.
Ještě to projedu tím Defragglerem.

#14 Příspěvek od **altrok** » 19 lis 2014 01:15

Nainstalujte a spustte HD Tune - http://www.hdtune.com/files/hdtune_255.exe

Prejdete na zalozku Health a zkontrolujte, ze je ve sloupecku Status vsude hodnota OK a dole sviti zelene Health status: OK
Na zalozce Error Scan kliknete na Start. Po dokonceni testu udelejte screen a prilozte ho k dalsi odpovedi.

/e za konzultaci dekuji kolegovi cernohous13

DJFil · #15 Příspěvek od **DJFil** » 19 lis 2014 12:28

V příloze screen.

VIRY.CZ

Prosím kontrolu - je to všechno nějaké pomalé.

Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.

Re: Prosím kontrolu - je to všechno nějaké pomalé.